$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/2BC02246E19787B13282114325AFD3BB8B58D2A9.cer File: 2BC02246E19787B13282114325AFD3BB8B58D2A9.cer (raw, json) Hash identifier: mayjyGr1gzC2JmFtNb19LSTZFJwBWpB6r4zG3rJ3zxI= Subject key identifier: 2B:C0:22:46:E1:97:87:B1:32:82:11:43:25:AF:D3:BB:8B:58:D2:A9 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 3BAA2BE408FF28BD430B725134875C4BD75A5592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/WDKING/0/2BC02246E19787B13282114325AFD3BB8B58D2A9.mft caRepository: rsync://rpkica.twnic.tw/rpki/WDKING/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 16:00:46 +0000 Certificate not after: Mon 10 May 2027 16:05:46 +0000 Subordinate resources: AS: 150754 IP: 103.67.72.0/23 IP: 2401:4860::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:aa:2b:e4:08:ff:28:bd:43:0b:72:51:34:87:5c:4b:d7:5a:55:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 16:00:46 2026 GMT Not After : May 10 16:05:46 2027 GMT Subject: CN=2BC02246E19787B13282114325AFD3BB8B58D2A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:15:14:22:98:a1:3f:eb:c7:37:63:0f:7e:e1: 87:4b:0c:af:58:94:f8:f3:bf:2d:52:85:e6:9e:1b: 3d:ff:b0:d7:c6:d6:f7:6f:79:50:ce:09:f3:8f:a8: a1:e3:89:c8:1f:cc:18:f6:14:8e:6c:be:d7:52:6a: 1b:aa:03:9f:b3:ca:e6:1d:e0:93:7f:a3:0f:48:89: 5e:52:ac:8d:aa:df:0f:d2:a5:73:49:dc:34:77:83: e9:e4:51:3d:19:e4:bb:1e:66:09:a3:b9:36:ea:05: 3c:8b:28:ee:d9:5e:b3:97:86:dc:14:e8:68:3d:07: b0:00:78:89:df:80:51:c9:7f:b1:2f:a4:af:7d:ba: da:de:e7:b9:bc:e0:41:70:2c:fd:8e:48:02:40:dc: 64:32:42:7c:31:23:b5:1b:5f:01:6b:1a:93:b4:93: d2:91:e9:52:ef:b5:b6:ca:74:3f:3e:88:ac:bf:2f: 92:38:a3:e2:3b:29:21:4c:53:bc:eb:4a:b8:28:5d: 2e:b9:86:f5:b2:db:a8:df:46:fb:8a:bc:40:3e:1a: 83:2d:fd:e8:67:0b:6e:13:93:da:71:bb:00:97:9b: ce:61:c5:bd:2b:11:a0:29:44:d9:23:61:46:d5:9f: 1c:2d:6e:87:11:38:5d:5f:ac:52:62:84:a7:b2:2f: 58:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2B:C0:22:46:E1:97:87:B1:32:82:11:43:25:AF:D3:BB:8B:58:D2:A9 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/WDKING/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/WDKING/0/2BC02246E19787B13282114325AFD3BB8B58D2A9.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.67.72.0/23 IPv6: 2401:4860::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 150754 Signature Algorithm: sha256WithRSAEncryption 90:92:02:ae:98:4f:14:bb:a2:bf:15:ac:2b:6b:87:da:94:19: c7:66:2f:b8:3d:a0:e4:ab:fe:ed:dc:7e:94:21:4b:cb:7d:aa: 5b:8a:5a:cb:82:1b:09:39:bc:81:67:25:81:d0:b4:73:b6:84: 0a:35:b8:70:53:22:18:73:c0:53:85:cd:2b:3e:a5:7c:da:de: d2:f4:e4:6c:29:89:75:f7:f7:fd:cf:94:e3:17:ce:d4:8d:13: f2:9b:83:9f:c2:c1:92:cb:c9:d0:3f:e4:a7:20:04:7f:54:d8: f8:2a:8a:e1:51:2e:1d:16:81:42:9d:4c:9e:d2:1f:40:bb:0f: f7:c1:fd:aa:aa:61:df:27:ee:dc:ca:30:ab:f4:ba:58:3d:11: 31:53:cf:54:3f:ab:19:88:17:18:84:4b:8c:c9:75:bb:1b:df: 1a:42:85:10:29:55:0e:e8:67:07:0a:d3:ba:98:de:36:87:5f: ea:ed:21:7f:45:20:a4:f3:83:bf:3b:22:6e:58:e2:67:f2:9f: 16:62:e5:e6:6e:2e:e0:93:ff:08:20:a1:86:81:2e:e7:a6:b3: b9:f5:02:d1:02:8b:6c:79:5c:6e:ca:07:8a:ea:61:c1:25:67: ad:29:54:c3:4d:c0:72:60:ef:02:71:9d:10:cb:28:07:28:78: e0:be:17:a3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUO6or5Aj/KL1DC3JRNIdcS9daVZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE2MDA0NloX DTI3MDUxMDE2MDU0NlowMzExMC8GA1UEAxMoMkJDMDIyNDZFMTk3ODdCMTMyODIx MTQzMjVBRkQzQkI4QjU4RDJBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI8VFCKYoT/rxzdjD37hh0sMr1iU+PO/LVKF5p4bPf+w18bW9295UM4J84+o oeOJyB/MGPYUjmy+11JqG6oDn7PK5h3gk3+jD0iJXlKsjarfD9Klc0ncNHeD6eRR PRnkux5mCaO5NuoFPIso7tles5eG3BToaD0HsAB4id+AUcl/sS+kr3262t7nubzg QXAs/Y5IAkDcZDJCfDEjtRtfAWsak7ST0pHpUu+1tsp0Pz6IrL8vkjij4jspIUxT vOtKuChdLrmG9bLbqN9G+4q8QD4agy396GcLbhOT2nG7AJebzmHFvSsRoClE2SNh RtWfHC1uhxE4XV+sUmKEp7IvWC8CAwEAAaOCApEwggKNMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCvAIkbhl4exMoIRQyWv07uLWNKpMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9XREtJTkcvMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvV0RLSU5H LzAvMkJDMDIyNDZFMTk3ODdCMTMyODIxMTQzMjVBRkQzQkI4QjU4RDJBOS5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB /wQfMB0wDAQCAAEwBgMEAWdDSDANBAIAAjAHAwUAJAFIYDAaBggrBgEFBQcBCAEB /wQLMAmgBzAFAgMCTOIwDQYJKoZIhvcNAQELBQADggEBAJCSAq6YTxS7or8VrCtr h9qUGcdmL7g9oOSr/u3cfpQhS8t9qluKWsuCGwk5vIFnJYHQtHO2hAo1uHBTIhhz wFOFzSs+pXza3tL05GwpiXX39/3PlOMXztSNE/Kbg5/CwZLLydA/5KcgBH9U2Pgq iuFRLh0WgUKdTJ7SH0C7D/fB/aqqYd8n7tzKMKv0ulg9ETFTz1Q/qxmIFxiES4zJ dbsb3xpChRApVQ7oZwcK07qY3jaHX+rtIX9FIKTzg787Im5Y4mfynxZi5eZuLuCT /wggoYaBLuems7n1AtECi2x5XG7KB4rqYcElZ60pVMNNwHJg7wJxnRDLKAcoeOC+ F6M= -----END CERTIFICATE-----Generated at Tue May 12 22:33:24 2026 by rpki-client