$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/35904BA082DF1690711D4866CC0E87AF00FA998D.cer File: 35904BA082DF1690711D4866CC0E87AF00FA998D.cer (raw, json) Hash identifier: Ss8QToUsocSBc8iqhYwkJrSD17Dy2gSEr/9kllg7rGY= Subject key identifier: 35:90:4B:A0:82:DF:16:90:71:1D:48:66:CC:0E:87:AF:00:FA:99:8D Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 44A03C5D1770B39D0122DA5BCA4E5EA1DD0B4CE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/STARCLOUD/0/35904BA082DF1690711D4866CC0E87AF00FA998D.mft caRepository: rsync://rpkica.twnic.tw/rpki/STARCLOUD/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:57:12 +0000 Certificate not after: Mon 10 May 2027 16:02:12 +0000 Subordinate resources: IP: 103.179.148.0/23 IP: 2400:4d20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:a0:3c:5d:17:70:b3:9d:01:22:da:5b:ca:4e:5e:a1:dd:0b:4c:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:57:12 2026 GMT Not After : May 10 16:02:12 2027 GMT Subject: CN=35904BA082DF1690711D4866CC0E87AF00FA998D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ca:f5:77:d4:a5:83:2a:3c:a1:bf:31:21:97: c7:94:43:54:cc:93:db:fd:a5:61:30:eb:bf:ce:00: ce:4b:2c:dc:0d:37:f4:42:80:c3:25:75:20:78:e0: dc:57:e6:8b:aa:56:c7:da:42:e4:11:4c:2f:86:34: 16:fb:a3:da:2e:ce:9e:17:97:a9:f8:40:e6:d6:94: 83:a6:43:b7:84:e1:36:e5:e6:8a:a3:32:5d:4e:d5: 87:e7:ea:d3:a7:51:bf:3f:fd:f4:69:be:a3:57:1a: e7:bd:66:5c:7d:bb:ed:14:48:fe:e9:8d:d5:05:bf: 54:e2:7d:a9:d5:07:23:a8:c4:7b:cb:ea:96:ab:e4: de:b0:bc:6a:c3:47:d6:67:fd:2e:66:a0:0d:ca:77: c5:0b:48:06:5b:24:b7:ec:c0:b3:c6:b1:50:6c:f0: 54:16:34:35:09:a2:d1:5a:6b:de:4c:b0:ef:f9:f1: 11:7f:1b:6d:0e:96:77:1a:a0:85:58:4d:4b:40:cd: 72:24:1f:83:c7:bc:71:89:5d:a1:e7:a0:7e:c9:8a: f5:1c:db:1d:12:f9:79:71:12:40:f5:2b:3e:3e:1c: 36:ba:f8:7f:ab:72:82:2d:7b:93:f8:90:7c:e8:96: b0:59:c7:63:7e:1f:bc:d2:c0:73:d0:3b:a0:bc:f7: 21:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:90:4B:A0:82:DF:16:90:71:1D:48:66:CC:0E:87:AF:00:FA:99:8D X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/STARCLOUD/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/STARCLOUD/0/35904BA082DF1690711D4866CC0E87AF00FA998D.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.148.0/23 IPv6: 2400:4d20::/32 Signature Algorithm: sha256WithRSAEncryption b2:79:72:ed:99:5f:a5:db:ec:69:8f:4d:9c:91:81:9f:ed:92: 9e:92:ec:5d:3c:a2:43:f0:7d:b9:81:26:ff:3f:c5:1e:f7:a5: 5a:4d:25:09:97:ef:47:18:76:16:de:11:22:38:30:16:54:63: f4:73:a3:d0:85:ad:7e:71:55:6c:4f:f1:f9:21:c6:5c:04:03: 91:7c:4e:bf:d8:74:35:41:af:3c:5f:06:df:84:f6:99:d1:76: 2a:5f:b3:c3:9f:49:58:b9:36:4e:e0:b3:ba:fe:ae:e4:57:86: ed:b1:1b:9c:a6:05:97:41:5d:3a:07:c8:2b:98:9e:99:f8:d1: 15:a3:35:c1:20:a5:07:5d:03:ce:3c:a6:c3:e0:9f:f6:51:f4: bc:85:43:5d:fc:46:d0:8d:a8:92:73:ac:1d:9a:23:ae:c7:b6: c5:23:4b:1a:4c:44:12:ee:56:a5:57:4d:3e:7d:c8:cd:20:e3: de:cc:f2:84:26:b1:7e:90:dc:ed:3f:64:20:b0:79:75:2d:dc: 30:e6:76:8f:e5:42:1d:3c:34:6f:95:84:81:c1:17:49:cf:4f: ab:34:01:f9:3b:b3:6c:54:d3:b1:2a:49:cd:79:e5:67:5d:8e: 4b:93:f1:94:2f:71:91:14:6f:c5:ed:b8:6a:02:bc:9b:73:a1: da:04:fd:ba -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIURKA8XRdws50BItpbyk5eod0LTOMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTcxMloX DTI3MDUxMDE2MDIxMlowMzExMC8GA1UEAxMoMzU5MDRCQTA4MkRGMTY5MDcxMUQ0 ODY2Q0MwRTg3QUYwMEZBOTk4RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTK9XfUpYMqPKG/MSGXx5RDVMyT2/2lYTDrv84Azkss3A039EKAwyV1IHjg 3Ffmi6pWx9pC5BFML4Y0Fvuj2i7OnheXqfhA5taUg6ZDt4ThNuXmiqMyXU7Vh+fq 06dRvz/99Gm+o1ca571mXH277RRI/umN1QW/VOJ9qdUHI6jEe8vqlqvk3rC8asNH 1mf9LmagDcp3xQtIBlskt+zAs8axUGzwVBY0NQmi0Vpr3kyw7/nxEX8bbQ6Wdxqg hVhNS0DNciQfg8e8cYldoeegfsmK9RzbHRL5eXESQPUrPj4cNrr4f6tygi17k/iQ fOiWsFnHY34fvNLAc9A7oLz3IVECAwEAAaOCAnswggJ3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDWQS6CC3xaQcR1IZswOh68A+pmNMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHjBggrBgEFBQcBCwSB1jCB0zA1Bggr BgEFBQcwBYYpcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TVEFSQ0xPVUQv MC8wYQYIKwYBBQUHMAqGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU1RB UkNMT1VELzAvMzU5MDRCQTA4MkRGMTY5MDcxMUQ0ODY2Q0MwRTg3QUYwMEZBOTk4 RC5tZnQwNwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEAWezlDANBAIAAjAHAwUAJABNIDANBgkqhkiG 9w0BAQsFAAOCAQEAsnly7ZlfpdvsaY9NnJGBn+2SnpLsXTyiQ/B9uYEm/z/FHvel Wk0lCZfvRxh2Ft4RIjgwFlRj9HOj0IWtfnFVbE/x+SHGXAQDkXxOv9h0NUGvPF8G 34T2mdF2Kl+zw59JWLk2TuCzuv6u5FeG7bEbnKYFl0FdOgfIK5iemfjRFaM1wSCl B10Dzjymw+Cf9lH0vIVDXfxG0I2oknOsHZojrse2xSNLGkxEEu5WpVdNPn3IzSDj 3szyhCaxfpDc7T9kILB5dS3cMOZ2j+VCHTw0b5WEgcEXSc9PqzQB+TuzbFTTsSpJ zXnlZ12OS5PxlC9xkRRvxe24agK8m3Oh2gT9ug== -----END CERTIFICATE-----Generated at Tue May 12 22:16:53 2026 by rpki-client