$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/3E0842CB09173FD62797099AF95D837AFF05C8C1.cer File: 3E0842CB09173FD62797099AF95D837AFF05C8C1.cer (raw, json) Hash identifier: gslVNBVTLZDfCZgmNjKGpdRKgngE9wdRhvJaJmNxYh0= Subject key identifier: 3E:08:42:CB:09:17:3F:D6:27:97:09:9A:F9:5D:83:7A:FF:05:C8:C1 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 7933CCCB7C880681FB9DE334254862639709CE6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.mft caRepository: rsync://rpkica.twnic.tw/rpki/JDA/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:47:12 +0000 Certificate not after: Mon 10 May 2027 15:52:12 +0000 Subordinate resources: IP: 210.79.154.0/23 IP: 2401:55e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:33:cc:cb:7c:88:06:81:fb:9d:e3:34:25:48:62:63:97:09:ce:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:47:12 2026 GMT Not After : May 10 15:52:12 2027 GMT Subject: CN=3E0842CB09173FD62797099AF95D837AFF05C8C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:82:e7:cd:21:27:62:a8:52:d5:17:c7:de:51: f6:4c:52:b6:35:88:0c:c0:ca:ff:d1:27:92:05:c0: 54:f9:b3:b1:13:0c:0e:13:aa:22:9c:48:f6:a9:cd: 53:6f:3c:a5:69:f0:e9:41:93:0f:55:03:88:17:93: 27:96:ff:9b:1a:68:ac:68:2e:74:46:84:80:3a:6f: b8:a4:a3:65:46:ae:0c:ff:43:03:11:d7:f9:81:67: 4c:16:e9:3d:84:c2:cc:96:cb:8c:85:67:7c:c6:7c: 77:a2:a3:97:86:56:f8:44:cb:8f:5e:55:5a:02:b1: da:20:2c:4d:f7:2e:a2:8e:0c:9a:b7:2b:89:3e:ac: bf:62:35:68:21:52:21:c5:c8:01:a7:92:ac:ee:63: 6f:fb:c0:cf:cc:54:a3:bb:15:25:e2:3d:56:72:bb: 41:d6:25:9f:a9:09:d6:80:a5:e4:87:1a:a2:fa:43: 76:fa:a4:6c:d8:0a:8f:fd:a2:a2:f0:52:ee:df:04: a8:97:7c:f9:c4:71:f8:55:fb:94:0a:92:fd:53:8e: 49:8f:a6:73:b1:c7:98:f0:c7:9a:fa:cf:94:18:d4: 96:b4:4c:2c:c8:b8:fd:e9:de:1f:2f:cb:cb:7e:e4: 21:63:5c:f5:52:49:11:58:b6:e8:08:18:7f:94:b6: e1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3E:08:42:CB:09:17:3F:D6:27:97:09:9A:F9:5D:83:7A:FF:05:C8:C1 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/JDA/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.154.0/23 IPv6: 2401:55e0::/32 Signature Algorithm: sha256WithRSAEncryption 97:b7:02:5a:00:36:b9:7c:ea:40:ed:75:b6:69:1e:c0:c4:cb: 45:35:db:f3:98:52:b3:84:92:b3:d0:5b:9f:09:60:25:16:07: 85:df:76:14:2e:83:67:7c:82:a2:5b:0b:f1:33:7e:0b:b4:30: 15:11:5a:45:19:91:73:e9:22:8a:20:c2:ef:06:06:af:ad:8a: ec:67:5b:14:7d:fe:eb:51:e0:61:81:c7:db:4b:35:9b:ef:47: 59:92:22:86:be:68:97:e5:b6:60:73:ed:e0:c5:b6:87:29:15: f9:f1:bf:21:ef:9d:59:64:05:a8:d9:df:41:e7:73:21:54:08: 6f:a8:16:3f:a9:35:fd:03:ac:53:22:9c:ec:53:6a:f6:4f:8c: 61:0a:5d:20:2f:36:60:3f:4a:35:0c:6c:59:16:cb:9e:1d:1a: 38:31:e5:51:00:71:ce:32:68:05:04:66:3e:5d:68:6b:e9:95: 57:f2:09:18:be:86:e5:a2:df:e1:1f:6e:f3:fb:62:3f:83:ba: b8:c0:99:ab:b3:34:e3:a7:e3:4d:30:05:0f:0e:39:97:3e:77: 33:eb:e0:b6:f0:4d:16:0e:d0:12:e7:c8:2b:9a:41:96:af:71: 6c:9a:2a:83:63:a5:68:21:de:81:3d:e9:ed:7b:17:0b:77:c2: ff:1f:95:94 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUeTPMy3yIBoH7neM0JUhiY5cJzm8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDcxMloX DTI3MDUxMDE1NTIxMlowMzExMC8GA1UEAxMoM0UwODQyQ0IwOTE3M0ZENjI3OTcw OTlBRjk1RDgzN0FGRjA1QzhDMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKC580hJ2KoUtUXx95R9kxStjWIDMDK/9EnkgXAVPmzsRMMDhOqIpxI9qnN U288pWnw6UGTD1UDiBeTJ5b/mxporGgudEaEgDpvuKSjZUauDP9DAxHX+YFnTBbp PYTCzJbLjIVnfMZ8d6Kjl4ZW+ETLj15VWgKx2iAsTfcuoo4MmrcriT6sv2I1aCFS IcXIAaeSrO5jb/vAz8xUo7sVJeI9VnK7QdYln6kJ1oCl5IcaovpDdvqkbNgKj/2i ovBS7t8EqJd8+cRx+FX7lAqS/VOOSY+mc7HHmPDHmvrPlBjUlrRMLMi4/eneHy/L y37kIWNc9VJJEVi26AgYf5S24ecCAwEAAaOCAm8wggJrMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD4IQssJFz/WJ5cJmvldg3r/BcjBMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9KREEvMC8wWwYI KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSkRBLzAvM0Uw ODQyQ0IwOTE3M0ZENjI3OTcwOTlBRjk1RDgzN0FGRjA1QzhDMS5tZnQwNwYIKwYB BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54 bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAdJPmjANBAIAAjAHAwUAJAFV4DANBgkqhkiG9w0BAQsFAAOCAQEA l7cCWgA2uXzqQO11tmkewMTLRTXb85hSs4SSs9BbnwlgJRYHhd92FC6DZ3yColsL 8TN+C7QwFRFaRRmRc+kiiiDC7wYGr62K7GdbFH3+61HgYYHH20s1m+9HWZIihr5o l+W2YHPt4MW2hykV+fG/Ie+dWWQFqNnfQedzIVQIb6gWP6k1/QOsUyKc7FNq9k+M YQpdIC82YD9KNQxsWRbLnh0aODHlUQBxzjJoBQRmPl1oa+mVV/IJGL6G5aLf4R9u 8/tiP4O6uMCZq7M046fjTTAFDw45lz53M+vgtvBNFg7QEufIK5pBlq9xbJoqg2Ol aCHegT3p7XsXC3fC/x+VlA== -----END CERTIFICATE-----Generated at Wed May 13 01:45:35 2026 by rpki-client