$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer File: 3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer (raw, json) Hash identifier: WxllgQ+n8a2x8QOiNbGtNljHBSJ6Fl/t3GRLpzAlNh4= Subject key identifier: 3E:0A:B7:86:AB:86:C4:D2:5A:7B:E8:64:DD:D1:40:76:0C:C0:2E:EA Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 4C0230EC0A515D3DB737FB809AB5A791FA6541FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft caRepository: rsync://rpkica.twnic.tw/rpki/SDTV/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:24 +0000 Certificate not after: Mon 10 May 2027 16:01:24 +0000 Subordinate resources: AS: 131611 IP: 103.100.164.0/22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:02:30:ec:0a:51:5d:3d:b7:37:fb:80:9a:b5:a7:91:fa:65:41:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:24 2026 GMT Not After : May 10 16:01:24 2027 GMT Subject: CN=3E0AB786AB86C4D25A7BE864DDD140760CC02EEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:80:d8:e7:2b:c7:12:c5:dc:ea:0c:83:65:40: 5c:24:87:2c:3a:6c:f1:09:f7:96:d4:72:dc:88:9a: 16:b0:c9:06:c8:a8:95:82:f2:d1:f0:a4:86:78:47: 99:d9:8f:08:0d:02:7c:f4:5e:56:b6:e6:4e:cd:98: bd:fe:c6:df:a5:8e:3d:61:30:dd:73:7f:af:17:c6: bf:59:80:7e:ce:a8:9f:74:79:3d:cb:37:78:a0:68: 15:8a:97:b9:0b:fd:13:3a:15:af:ee:3e:46:8a:32: 6d:c0:a6:1d:ba:71:bf:42:98:8b:6c:a9:fa:1d:6e: a6:bf:c0:41:f7:c3:df:62:bf:ca:62:d2:c8:f1:33: b3:02:44:02:c4:00:b6:6c:e1:94:96:b3:5f:71:18: a7:12:0e:bf:db:93:14:72:02:0b:65:26:b4:0d:4c: a7:7e:4d:c2:0f:01:83:98:36:f5:bb:7c:56:a4:2e: 45:15:f4:ab:f4:c1:bd:cd:74:f4:c2:71:ea:3d:40: ad:3e:1d:cc:9f:89:8c:d4:4e:e9:9c:c3:d2:55:72: 2c:01:ef:31:36:e0:15:82:22:71:56:7d:a4:3e:a9: ae:fd:c1:30:bb:9a:21:62:3b:98:50:84:07:2a:6a: 32:d3:23:5c:a4:cb:03:6d:35:0e:70:f0:93:d4:76: d2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3E:0A:B7:86:AB:86:C4:D2:5A:7B:E8:64:DD:D1:40:76:0C:C0:2E:EA X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SDTV/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.164.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131611 Signature Algorithm: sha256WithRSAEncryption 06:95:a3:4c:c8:01:a0:fc:51:6b:80:e5:e0:cb:04:d2:27:72: c9:71:06:d3:c8:13:47:ef:c4:ba:0c:c1:9a:58:74:3e:9d:06: a3:7e:ae:75:76:ed:cb:a0:d0:c5:c8:7b:b8:5d:bd:1b:ee:be: 81:77:9f:41:f4:94:40:26:47:02:9e:ec:3f:8c:16:ff:c0:ef: 2e:84:c9:07:f9:ff:8f:c1:02:01:2a:82:a4:21:46:4e:4d:3d: 36:e2:22:ac:aa:7b:77:60:21:15:37:d0:af:b3:19:aa:58:23: 67:42:19:31:6c:83:1a:10:d0:93:e0:16:90:05:4a:04:b2:ad: df:40:78:64:26:e4:36:7d:64:84:13:52:f8:83:78:17:05:42: 51:76:78:8e:41:85:98:94:55:a8:95:ad:ae:20:f5:3e:cf:24: 75:92:23:9e:54:6f:71:e0:e7:70:44:1e:1f:f7:c3:5b:37:63: 1e:7e:1c:f1:62:7a:27:4a:a6:8b:bc:e9:f3:8a:b8:74:79:45: d1:d8:d2:9d:ef:27:8b:7f:ba:ab:3f:bf:11:42:64:98:86:c3: fc:d5:32:7f:35:8d:9f:1c:92:64:e9:d1:bd:91:ff:1c:64:1f: 2c:d4:5f:68:02:cd:f6:20:ad:75:a5:b3:6a:5b:0c:e2:7d:ad: d6:30:65:ff -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgIUTAIw7ApRXT23N/uAmrWnkfplQfowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTYyNFoX DTI3MDUxMDE2MDEyNFowMzExMC8GA1UEAxMoM0UwQUI3ODZBQjg2QzREMjVBN0JF ODY0REREMTQwNzYwQ0MwMkVFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALiA2OcrxxLF3OoMg2VAXCSHLDps8Qn3ltRy3IiaFrDJBsiolYLy0fCkhnhH mdmPCA0CfPReVrbmTs2Yvf7G36WOPWEw3XN/rxfGv1mAfs6on3R5Pcs3eKBoFYqX uQv9EzoVr+4+RooybcCmHbpxv0KYi2yp+h1upr/AQffD32K/ymLSyPEzswJEAsQA tmzhlJazX3EYpxIOv9uTFHICC2UmtA1Mp35Nwg8Bg5g29bt8VqQuRRX0q/TBvc10 9MJx6j1ArT4dzJ+JjNRO6ZzD0lVyLAHvMTbgFYIicVZ9pD6prv3BMLuaIWI7mFCE BypqMtMjXKTLA201DnDwk9R20q0CAwEAAaOCAn4wggJ6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD4Kt4arhsTSWnvoZN3RQHYMwC7qMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TRFRWLzAvMFwG CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NEVFYvMC8z RTBBQjc4NkFCODZDNEQyNUE3QkU4NjREREQxNDA3NjBDQzAyRUVBLm1mdDA3Bggr BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQCZ2SkMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwICGzANBgkq hkiG9w0BAQsFAAOCAQEABpWjTMgBoPxRa4Dl4MsE0idyyXEG08gTR+/EugzBmlh0 Pp0Go36udXbty6DQxch7uF29G+6+gXefQfSUQCZHAp7sP4wW/8DvLoTJB/n/j8EC ASqCpCFGTk09NuIirKp7d2AhFTfQr7MZqlgjZ0IZMWyDGhDQk+AWkAVKBLKt30B4 ZCbkNn1khBNS+IN4FwVCUXZ4jkGFmJRVqJWtriD1Ps8kdZIjnlRvceDncEQeH/fD WzdjHn4c8WJ6J0qmi7zp84q4dHlF0djSne8ni3+6qz+/EUJkmIbD/NUyfzWNnxyS ZOnRvZH/HGQfLNRfaALN9iCtdaWzalsM4n2t1jBl/w== -----END CERTIFICATE-----Generated at Tue May 12 22:31:59 2026 by rpki-client