$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer File: 3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer (raw, json) Hash identifier: uNWjsLh+CueRkmYkMrsneZvdVHP/EA6syQ5gTd+IpyY= Subject key identifier: 3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 29557B7419DC66A0BC7EA5F8BE3B349AA24E512C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft caRepository: rsync://rpkica.twnic.tw/rpki/LAZCO/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:47:44 +0000 Certificate not after: Mon 10 May 2027 15:52:44 +0000 Subordinate resources: AS: 131630 AS: 131651 IP: 2402:4f20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:55:7b:74:19:dc:66:a0:bc:7e:a5:f8:be:3b:34:9a:a2:4e:51:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:47:44 2026 GMT Not After : May 10 15:52:44 2027 GMT Subject: CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d9:5c:87:cf:d4:d6:4d:f6:e5:95:fe:d6:2b: 14:c7:6e:51:c8:9f:b1:dc:65:49:e1:14:ab:0f:ab: 58:97:6a:8c:08:47:a0:8b:73:9b:ec:e0:c7:6a:8d: ce:0f:52:32:d2:1c:95:c5:b3:4c:7f:a6:d3:86:b9: 37:61:1d:82:e9:98:0e:2b:15:19:5f:5a:2f:b0:f8: 7a:94:bc:52:b0:fb:d9:4d:08:f7:14:e9:b3:e4:2b: 16:13:2a:96:ec:88:7b:3d:d8:e4:46:c7:bf:55:26: 33:55:16:74:3a:5f:17:16:83:30:90:9c:e4:02:a7: 79:78:89:f1:05:3a:5c:48:03:5b:86:ca:ff:e4:bd: 5a:dc:44:22:56:35:ac:50:17:73:8f:e6:9c:b1:16: 33:a0:30:fa:32:26:0c:15:4c:c4:cd:83:4f:1a:8a: 22:8a:a7:ae:8e:06:9f:a7:51:a3:43:42:f7:54:d8: 4c:42:0d:46:6f:82:66:db:17:7d:90:ac:b0:f9:c2: 58:d3:79:d5:90:27:3c:dc:1f:1d:80:3b:e9:14:70: bd:6c:ac:f9:64:88:e9:5c:d4:e8:9e:38:17:f9:70: eb:bf:cc:f8:38:94:f2:d8:26:f0:f2:ad:5b:6f:0d: 1f:be:e3:95:c5:26:ce:41:b6:8b:d5:3c:cc:ce:f8: d7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4f20::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131630 131651 Signature Algorithm: sha256WithRSAEncryption 5f:5b:bd:bc:f7:04:2a:ab:4b:a5:aa:eb:62:66:22:7a:0a:6f: ce:fd:f8:06:05:3e:61:96:43:48:de:5e:15:b6:96:02:a8:f5: dc:36:b5:23:eb:8b:15:45:38:c8:1b:f2:62:01:e2:9a:93:8c: 40:69:f1:b9:f5:25:e6:b6:df:5e:58:bd:99:75:20:f1:54:42: 10:42:f4:4b:e2:9a:fe:8d:ea:4d:56:d1:77:48:73:dd:bb:54: c4:39:bc:24:78:1e:76:2e:6a:73:ca:9f:41:20:56:5a:1a:7a: 46:62:a4:4c:91:30:8f:fe:bb:3d:9e:36:e5:b9:15:2a:62:70: 6b:8d:92:55:38:18:e0:96:57:3a:d1:d7:65:e6:75:fe:0b:65: 05:f5:fc:56:84:23:34:1f:16:86:b7:44:79:4c:f9:bb:c1:ce: e2:92:01:15:ca:f7:bd:cc:e8:ce:60:08:0e:06:dd:9e:e1:ef: c5:be:65:17:6d:14:8d:0d:fe:2b:ff:55:b1:ed:6e:2a:00:82: bd:b4:c8:99:77:74:1f:a9:62:75:3b:53:26:a9:e8:2d:b2:d2: a6:e7:cb:a5:76:7e:9c:18:cd:06:4d:41:da:03:94:b3:3e:dd: cd:6b:7c:b7:e3:d5:0b:95:44:e8:ec:2f:64:93:95:46:2c:32: 0b:02:33:70 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgIUKVV7dBncZqC8fqX4vjs0mqJOUSwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDc0NFoX DTI3MDUxMDE1NTI0NFowMzExMC8GA1UEAxMoM0YyRkEwRTlBOUI3QTM2NEQ0OUEy RUE2MUVGMzg5NjcwOUM0QURBRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOfZXIfP1NZN9uWV/tYrFMduUcifsdxlSeEUqw+rWJdqjAhHoItzm+zgx2qN zg9SMtIclcWzTH+m04a5N2EdgumYDisVGV9aL7D4epS8UrD72U0I9xTps+QrFhMq luyIez3Y5EbHv1UmM1UWdDpfFxaDMJCc5AKneXiJ8QU6XEgDW4bK/+S9WtxEIlY1 rFAXc4/mnLEWM6Aw+jImDBVMxM2DTxqKIoqnro4Gn6dRo0NC91TYTEINRm+CZtsX fZCssPnCWNN51ZAnPNwfHYA76RRwvWys+WSI6VzU6J44F/lw67/M+DiU8tgm8PKt W28NH77jlcUmzkG2i9U8zM7410kCAwEAAaOCAoYwggKCMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD8voOmpt6Nk1Jouph7ziWcJxK2uMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8w LzNGMkZBMEU5QTlCN0EzNjRENDlBMkVBNjFFRjM4OTY3MDlDNEFEQUUubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAk8gMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwICLgID AgJDMA0GCSqGSIb3DQEBCwUAA4IBAQBfW7289wQqq0ulqutiZiJ6Cm/O/fgGBT5h lkNI3l4VtpYCqPXcNrUj64sVRTjIG/JiAeKak4xAafG59SXmtt9eWL2ZdSDxVEIQ QvRL4pr+jepNVtF3SHPdu1TEObwkeB52Lmpzyp9BIFZaGnpGYqRMkTCP/rs9njbl uRUqYnBrjZJVOBjgllc60ddl5nX+C2UF9fxWhCM0HxaGt0R5TPm7wc7ikgEVyve9 zOjOYAgOBt2e4e/FvmUXbRSNDf4r/1Wx7W4qAIK9tMiZd3QfqWJ1O1MmqegtstKm 58uldn6cGM0GTUHaA5SzPt3Na3y349ULlUTo7C9kk5VGLDILAjNw -----END CERTIFICATE-----Generated at Tue May 12 22:31:57 2026 by rpki-client