$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/37BC55C5539971AFB8F6709E81C83C92EFDCA25E.cer File: 37BC55C5539971AFB8F6709E81C83C92EFDCA25E.cer (raw, json) Hash identifier: zXQo0Dwg+vytEit7zZTz18oacl1mshqK9z43Haz0+T4= Subject key identifier: 37:BC:55:C5:53:99:71:AF:B8:F6:70:9E:81:C8:3C:92:EF:DC:A2:5E Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 641848065E75B094561689225BD9D6FDE61F396C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/BREACH9/0/37BC55C5539971AFB8F6709E81C83C92EFDCA25E.mft caRepository: rsync://rpkica.twnic.tw/rpki/BREACH9/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:43:23 +0000 Certificate not after: Mon 10 May 2027 15:48:23 +0000 Subordinate resources: IP: 163.128.76.0/23 IP: 2001:dfe::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:18:48:06:5e:75:b0:94:56:16:89:22:5b:d9:d6:fd:e6:1f:39:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:43:23 2026 GMT Not After : May 10 15:48:23 2027 GMT Subject: CN=37BC55C5539971AFB8F6709E81C83C92EFDCA25E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5f:32:67:7d:78:99:d4:20:48:a9:91:74:e2: 0e:a7:a5:fc:44:5b:36:ba:97:25:bd:24:a6:c1:f3: 39:c6:fb:7b:e5:4f:aa:4d:d7:01:5d:14:c9:88:80: ed:23:65:c0:10:de:3c:89:d8:43:b4:b1:a8:6e:57: 9d:3d:9b:29:22:c9:48:65:5d:2b:b2:1c:ac:3e:9b: 29:3a:cc:f1:4a:30:ad:e6:83:66:8c:04:a0:b5:71: 8b:9c:4f:44:95:ef:fc:03:61:92:38:e0:12:a4:a4: 17:61:03:12:0d:68:39:dd:f1:a6:c2:0d:82:73:88: 83:bf:a3:af:50:27:15:1e:79:c9:51:e4:cd:e0:9e: 18:d6:d6:4b:31:67:39:64:df:ec:f1:ee:64:f7:26: 51:bd:53:15:a7:f5:1c:ab:2d:35:40:fb:d3:eb:89: 24:b7:b8:f4:70:95:e8:06:f0:43:5d:24:04:b7:bf: ca:5f:79:e8:35:c8:ff:80:50:0d:66:af:2f:42:5d: 71:81:bf:e9:4f:90:50:2f:68:53:ce:2a:2d:12:bf: 4c:bd:0c:9b:eb:0f:af:3e:5b:bc:5f:1e:d7:fa:9d: fb:ac:93:25:3f:71:97:c9:e7:4a:ee:e9:c3:33:9c: b3:de:e8:83:6b:40:38:3d:c1:be:67:06:44:4a:86: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 37:BC:55:C5:53:99:71:AF:B8:F6:70:9E:81:C8:3C:92:EF:DC:A2:5E X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/BREACH9/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/BREACH9/0/37BC55C5539971AFB8F6709E81C83C92EFDCA25E.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.76.0/23 IPv6: 2001:dfe::/32 Signature Algorithm: sha256WithRSAEncryption 16:98:08:09:2a:40:a1:58:15:ef:3e:70:f2:fa:00:a6:c8:4c: 18:df:19:f4:96:d5:30:94:fc:ba:16:d5:bc:a1:1d:b5:fe:36: 48:3c:43:1b:aa:8c:3b:6c:84:29:12:eb:fe:c6:05:d7:f9:97: 16:53:38:0b:5f:64:08:ea:e0:c2:5e:d7:56:49:36:df:2f:81: eb:13:7b:18:a5:51:2c:e3:ca:47:9c:19:e5:d7:bb:42:28:d7: df:8d:b6:8e:e1:6d:87:53:33:e9:45:34:00:bd:3c:a6:3b:88: 98:f1:9f:3d:62:55:64:e4:48:1f:d5:fe:27:40:49:8e:0b:b2: d0:1a:f5:ec:ef:69:56:37:0c:02:ed:bf:db:9b:1d:83:31:ce: 6d:89:85:18:e3:a8:e7:9a:30:dd:c4:54:90:8e:c4:39:b0:40: 23:da:24:ea:90:c6:86:33:59:2a:6f:35:5b:fd:9c:cf:bc:03: 20:0c:e0:54:58:76:6d:8f:f5:34:4e:2f:50:6a:8f:91:e7:59: 3c:70:0e:5f:68:48:68:c1:99:36:58:59:a6:26:34:07:93:a1: f5:a7:4e:3b:7b:47:68:f6:c7:03:b7:62:0c:79:d2:41:55:99: 1d:75:6a:ed:c3:44:7f:f2:3a:58:57:44:69:26:f9:87:c0:64: e0:21:7c:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUZBhIBl51sJRWFokiW9nW/eYfOWwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDMyM1oX DTI3MDUxMDE1NDgyM1owMzExMC8GA1UEAxMoMzdCQzU1QzU1Mzk5NzFBRkI4RjY3 MDlFODFDODNDOTJFRkRDQTI1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKxfMmd9eJnUIEipkXTiDqel/ERbNrqXJb0kpsHzOcb7e+VPqk3XAV0UyYiA 7SNlwBDePInYQ7SxqG5XnT2bKSLJSGVdK7IcrD6bKTrM8UowreaDZowEoLVxi5xP RJXv/ANhkjjgEqSkF2EDEg1oOd3xpsINgnOIg7+jr1AnFR55yVHkzeCeGNbWSzFn OWTf7PHuZPcmUb1TFaf1HKstNUD70+uJJLe49HCV6AbwQ10kBLe/yl956DXI/4BQ DWavL0JdcYG/6U+QUC9oU84qLRK/TL0Mm+sPrz5bvF8e1/qd+6yTJT9xl8nnSu7p wzOcs97og2tAOD3BvmcGREqG2mECAwEAAaOCAncwggJzMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDe8VcVTmXGvuPZwnoHIPJLv3KJeMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9CUkVBQ0g5LzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0JSRUFD SDkvMC8zN0JDNTVDNTUzOTk3MUFGQjhGNjcwOUU4MUM4M0M5MkVGRENBMjVFLm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBo4BMMA0EAgACMAcDBQAgAQ3+MA0GCSqGSIb3DQEB CwUAA4IBAQAWmAgJKkChWBXvPnDy+gCmyEwY3xn0ltUwlPy6FtW8oR21/jZIPEMb qow7bIQpEuv+xgXX+ZcWUzgLX2QI6uDCXtdWSTbfL4HrE3sYpVEs48pHnBnl17tC KNffjbaO4W2HUzPpRTQAvTymO4iY8Z89YlVk5Egf1f4nQEmOC7LQGvXs72lWNwwC 7b/bmx2DMc5tiYUY46jnmjDdxFSQjsQ5sEAj2iTqkMaGM1kqbzVb/ZzPvAMgDOBU WHZtj/U0Ti9Qao+R51k8cA5faEhowZk2WFmmJjQHk6H1p047e0do9scDt2IMedJB VZkddWrtw0R/8jpYV0RpJvmHwGTgIXwT -----END CERTIFICATE-----Generated at Wed May 13 01:36:03 2026 by rpki-client