$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/2D63D0213010A74651A161277EB9CBDC9CF65853.cer File: 2D63D0213010A74651A161277EB9CBDC9CF65853.cer (raw, json) Hash identifier: oywRJ+Sh6nTcXfwfaovHrdjGiK4xqjv8thL7wBaM8v8= Subject key identifier: 2D:63:D0:21:30:10:A7:46:51:A1:61:27:7E:B9:CB:DC:9C:F6:58:53 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 48E9AE99921D8626C2B3358A0F7436B8A2F56B7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SAELW/0/2D63D0213010A74651A161277EB9CBDC9CF65853.mft caRepository: rsync://rpkica.twnic.tw/rpki/SAELW/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:16 +0000 Certificate not after: Mon 10 May 2027 16:01:16 +0000 Subordinate resources: AS: 152610 IP: 2401:9e60::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:e9:ae:99:92:1d:86:26:c2:b3:35:8a:0f:74:36:b8:a2:f5:6b:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:16 2026 GMT Not After : May 10 16:01:16 2027 GMT Subject: CN=2D63D0213010A74651A161277EB9CBDC9CF65853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d7:82:00:9f:27:47:b5:c3:e7:27:70:f8:8a: ea:4c:98:15:05:98:b8:07:3e:33:83:36:6d:ef:9e: 0b:07:cb:82:fc:ec:4d:14:a5:a7:03:a3:52:e4:1b: a2:3f:fa:bc:ca:37:c5:0e:59:70:cc:6b:06:a1:96: 99:0c:dc:7f:a5:44:7f:cb:a4:6f:81:97:de:19:65: f7:77:11:27:78:2d:ed:d8:a6:68:11:00:c9:e5:ba: f5:9d:5e:e7:62:88:d8:dd:31:6a:c0:6b:f5:98:6f: 94:b1:b9:be:e4:96:d5:05:17:3f:01:fa:17:7a:6f: 71:a0:40:03:83:59:61:61:41:b8:99:91:d2:19:7a: a2:0b:0e:8e:ad:de:f1:f9:f2:b4:55:1f:4d:88:87: 8f:65:02:c0:46:04:6b:1d:59:5a:13:48:32:8b:b7: 18:29:4f:2b:54:e5:0a:df:8e:35:06:de:2b:2b:df: 39:8f:3e:0e:b5:e8:dc:2e:6d:09:5a:5f:04:d7:12: ed:af:7c:3d:00:a7:58:5f:4e:43:5c:bf:69:2c:2a: 78:de:c9:1e:a0:21:7a:ae:b4:59:82:2a:41:99:39: d8:be:1e:42:fa:21:d5:14:b5:1b:be:c7:16:11:a8: 5d:0a:4b:1c:61:fd:19:ec:08:c2:c3:bc:ea:90:d5: e1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2D:63:D0:21:30:10:A7:46:51:A1:61:27:7E:B9:CB:DC:9C:F6:58:53 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SAELW/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SAELW/0/2D63D0213010A74651A161277EB9CBDC9CF65853.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:9e60::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 152610 Signature Algorithm: sha256WithRSAEncryption a5:73:c2:a0:cf:5d:9e:d6:2a:13:1b:2f:ea:ea:1a:b5:e2:64: f5:d3:fc:54:bf:44:f4:44:4d:0f:0c:63:33:f6:06:00:3c:fa: 1a:94:d1:ec:e4:77:7b:b5:4b:5a:6c:b4:87:47:bd:d0:50:8c: dd:3b:33:d8:78:2d:f6:25:60:7a:d7:15:2c:bb:7b:99:a6:5f: 6c:e6:85:67:63:73:bf:96:96:21:d7:47:29:76:bd:4a:76:c8: 0e:98:5e:25:51:f2:68:c0:f4:14:45:7b:5a:d0:af:14:d8:ef: f2:4f:6d:8f:7e:64:49:f4:b9:ea:c9:c1:52:dc:56:63:b0:3a: d7:ee:a0:f7:f1:b6:ff:0a:3e:7b:2a:a3:60:76:59:32:33:7f: 16:b6:ff:90:52:cf:a9:6c:06:aa:5a:90:b2:16:00:1d:a7:46: 4f:1d:3b:0b:01:d8:cd:79:e7:e0:d7:f9:7f:16:b2:dc:06:01: fa:46:76:e8:ea:d8:ba:bd:d9:8e:f2:89:7b:87:3b:cd:2e:cd: 24:5a:c7:20:d0:d9:ca:ec:1e:6c:36:c9:ce:3d:30:67:eb:a3: 49:1e:11:6d:c8:db:a9:b1:2f:04:74:83:e4:fb:09:a5:6e:05: 22:f8:90:2f:7c:96:de:9d:a6:f1:08:63:93:c0:2d:9c:3a:5a: 20:fc:25:05 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgIUSOmumZIdhibCszWKD3Q2uKL1a38wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTYxNloX DTI3MDUxMDE2MDExNlowMzExMC8GA1UEAxMoMkQ2M0QwMjEzMDEwQTc0NjUxQTE2 MTI3N0VCOUNCREM5Q0Y2NTg1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvXggCfJ0e1w+cncPiK6kyYFQWYuAc+M4M2be+eCwfLgvzsTRSlpwOjUuQb oj/6vMo3xQ5ZcMxrBqGWmQzcf6VEf8ukb4GX3hll93cRJ3gt7dimaBEAyeW69Z1e 52KI2N0xasBr9ZhvlLG5vuSW1QUXPwH6F3pvcaBAA4NZYWFBuJmR0hl6ogsOjq3e 8fnytFUfTYiHj2UCwEYEax1ZWhNIMou3GClPK1TlCt+ONQbeKyvfOY8+DrXo3C5t CVpfBNcS7a98PQCnWF9OQ1y/aSwqeN7JHqAheq60WYIqQZk52L4eQvoh1RS1G77H FhGoXQpLHGH9GewIwsO86pDV4UkCAwEAAaOCAoEwggJ9MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC1j0CEwEKdGUaFhJ365y9yc9lhTMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TQUVMVy8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TQUVMVy8w LzJENjNEMDIxMzAxMEE3NDY1MUExNjEyNzdFQjlDQkRDOUNGNjU4NTMubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAZ5gMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJUIjAN BgkqhkiG9w0BAQsFAAOCAQEApXPCoM9dntYqExsv6uoateJk9dP8VL9E9ERNDwxj M/YGADz6GpTR7OR3e7VLWmy0h0e90FCM3Tsz2Hgt9iVgetcVLLt7maZfbOaFZ2Nz v5aWIddHKXa9SnbIDpheJVHyaMD0FEV7WtCvFNjv8k9tj35kSfS56snBUtxWY7A6 1+6g9/G2/wo+eyqjYHZZMjN/Frb/kFLPqWwGqlqQshYAHadGTx07CwHYzXnn4Nf5 fxay3AYB+kZ26OrYur3ZjvKJe4c7zS7NJFrHINDZyuwebDbJzj0wZ+ujSR4Rbcjb qbEvBHSD5PsJpW4FIviQL3yW3p2m8Qhjk8AtnDpaIPwlBQ== -----END CERTIFICATE-----Generated at Wed May 13 00:21:20 2026 by rpki-client