$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/2E8003B145695D652CFF3D58625D3B0A3535AD84.cer File: 2E8003B145695D652CFF3D58625D3B0A3535AD84.cer (raw, json) Hash identifier: BKWFlF6hYbue6QzM9akyuETaadpSGG1mCahc58KEDqE= Subject key identifier: 2E:80:03:B1:45:69:5D:65:2C:FF:3D:58:62:5D:3B:0A:35:35:AD:84 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 04612CCB5662742E71BA5FE3D56F7A107466394F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/CXT/0/2E8003B145695D652CFF3D58625D3B0A3535AD84.mft caRepository: rsync://rpkica.twnic.tw/rpki/CXT/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:42 +0000 Certificate not after: Mon 10 May 2027 15:49:42 +0000 Subordinate resources: IP: 103.129.180.0/22 IP: 2403:8340::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:61:2c:cb:56:62:74:2e:71:ba:5f:e3:d5:6f:7a:10:74:66:39:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:42 2026 GMT Not After : May 10 15:49:42 2027 GMT Subject: CN=2E8003B145695D652CFF3D58625D3B0A3535AD84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:25:42:8b:7f:8f:0d:50:92:63:54:96:94:80: a5:4d:55:66:e8:75:a5:7c:de:c2:4e:bf:a9:6f:ed: 7a:10:24:5c:2f:bc:de:7e:b9:c3:09:43:9b:e5:1c: 2f:ad:08:15:3b:91:7a:42:63:de:14:1d:53:d7:a2: 7f:96:ca:e3:0b:c7:0c:6c:4d:e6:92:12:4f:39:23: d3:58:d6:97:f0:7f:c4:78:e5:1d:4a:f0:81:11:22: d8:d6:96:6f:2e:d8:5c:c1:13:d1:9e:18:00:ec:15: c2:4b:ae:34:a8:81:ca:26:13:d7:09:8c:eb:30:72: 60:31:63:60:07:47:fe:bc:c9:34:fc:2d:d9:93:3f: f6:73:d1:7c:a9:2d:b4:15:6a:21:74:55:d5:38:00: 88:88:ff:28:31:3a:7a:bd:af:47:8b:a6:d1:a0:1b: d8:8c:b2:c3:2d:2f:ef:31:6b:f3:24:0a:bb:ae:d5: 7a:a3:b2:2d:68:86:50:f6:6e:1b:5b:e7:48:41:65: 34:ef:07:ff:4d:7e:ad:d3:aa:7f:13:a7:47:57:c8: 65:cb:2a:c8:ae:02:93:2d:c6:33:db:fb:a5:13:b6: b4:23:12:db:ca:22:41:df:ad:1a:47:81:9e:f1:f0: 7a:6a:21:a3:d4:db:1e:a0:a6:4d:e5:cc:98:e9:45: 7b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2E:80:03:B1:45:69:5D:65:2C:FF:3D:58:62:5D:3B:0A:35:35:AD:84 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CXT/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CXT/0/2E8003B145695D652CFF3D58625D3B0A3535AD84.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.180.0/22 IPv6: 2403:8340::/32 Signature Algorithm: sha256WithRSAEncryption 36:fa:bc:f0:54:c6:f0:a4:52:f7:58:db:42:19:c2:fe:6b:ef: d1:b4:25:98:55:54:8b:8d:41:be:80:3e:06:4b:6c:2c:72:a7: c4:0b:3a:d2:3c:34:f3:36:07:3e:eb:d3:4b:55:a6:f6:5b:19: fa:db:92:7a:c4:93:e5:8a:bf:1d:fd:16:58:61:c0:a3:47:d3: 75:90:5e:8a:87:66:79:6d:26:d2:33:bc:79:5a:ff:b6:ab:51: d1:8c:87:66:04:e5:4a:c3:5f:23:a8:55:73:a2:2d:bd:f1:d4: cb:87:26:f1:cd:24:cf:9a:3c:23:18:fc:62:e2:6c:65:12:e8: 3f:e1:2a:dd:fd:c9:2b:24:cf:96:04:eb:5a:b6:e3:f1:cb:d2: 5f:b3:45:05:4f:7b:a5:85:29:87:da:f6:1b:ff:8c:e7:79:ab: fc:87:86:11:14:99:6a:82:1d:d7:45:f0:a5:56:5d:af:3d:64: 69:52:de:6e:0c:52:e8:89:ac:d8:e0:97:ce:60:13:d1:3d:0e: 26:6f:eb:7b:66:5b:84:31:a5:7b:1d:12:a2:75:e7:89:ea:2f: 09:2e:a6:b5:bc:e5:39:2f:1c:d9:b6:f8:28:95:1a:a5:de:46: 10:09:92:2b:af:34:7a:61:85:f0:20:de:3f:b6:c4:25:a5:55: f9:e7:0e:09 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUBGEsy1ZidC5xul/j1W96EHRmOU8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQ0MloX DTI3MDUxMDE1NDk0MlowMzExMC8GA1UEAxMoMkU4MDAzQjE0NTY5NUQ2NTJDRkYz RDU4NjI1RDNCMEEzNTM1QUQ4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMlQot/jw1QkmNUlpSApU1VZuh1pXzewk6/qW/tehAkXC+83n65wwlDm+Uc L60IFTuRekJj3hQdU9eif5bK4wvHDGxN5pISTzkj01jWl/B/xHjlHUrwgREi2NaW by7YXMET0Z4YAOwVwkuuNKiByiYT1wmM6zByYDFjYAdH/rzJNPwt2ZM/9nPRfKkt tBVqIXRV1TgAiIj/KDE6er2vR4um0aAb2Iyywy0v7zFr8yQKu67VeqOyLWiGUPZu G1vnSEFlNO8H/01+rdOqfxOnR1fIZcsqyK4Cky3GM9v7pRO2tCMS28oiQd+tGkeB nvHwemoho9TbHqCmTeXMmOlFe08CAwEAAaOCAm8wggJrMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC6AA7FFaV1lLP89WGJdOwo1Na2EMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DWFQvMC8wWwYI KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ1hULzAvMkU4 MDAzQjE0NTY5NUQ2NTJDRkYzRDU4NjI1RDNCMEEzNTM1QUQ4NC5tZnQwNwYIKwYB BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54 bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmeBtDANBAIAAjAHAwUAJAODQDANBgkqhkiG9w0BAQsFAAOCAQEA Nvq88FTG8KRS91jbQhnC/mvv0bQlmFVUi41BvoA+BktsLHKnxAs60jw08zYHPuvT S1Wm9lsZ+tuSesST5Yq/Hf0WWGHAo0fTdZBeiodmeW0m0jO8eVr/tqtR0YyHZgTl SsNfI6hVc6ItvfHUy4cm8c0kz5o8Ixj8YuJsZRLoP+Eq3f3JKyTPlgTrWrbj8cvS X7NFBU97pYUph9r2G/+M53mr/IeGERSZaoId10XwpVZdrz1kaVLebgxS6Ims2OCX zmAT0T0OJm/re2ZbhDGlex0SonXnieovCS6mtbzlOS8c2bb4KJUapd5GEAmSK680 emGF8CDeP7bEJaVV+ecOCQ== -----END CERTIFICATE-----Generated at Tue May 12 22:16:20 2026 by rpki-client