$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer File: 42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer (raw, json) Hash identifier: xwO5F8KPSJ9FU63Q1jcztJd68dn0ybtvGvDyDj6TADU= Subject key identifier: 42:C7:F7:8E:9F:DA:00:B9:CA:3E:2D:1D:DF:5E:08:DE:A8:62:01:62 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 0CFB1CE1DAF9D79A68818A045907E6BEBC7919FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/OPENFOR/0/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.mft caRepository: rsync://rpkica.twnic.tw/rpki/OPENFOR/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:55:39 +0000 Certificate not after: Mon 10 May 2027 16:00:39 +0000 Subordinate resources: AS: 131677 IP: 103.149.64.0/23 IP: 2405:e4c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:fb:1c:e1:da:f9:d7:9a:68:81:8a:04:59:07:e6:be:bc:79:19:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:55:39 2026 GMT Not After : May 10 16:00:39 2027 GMT Subject: CN=42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:60:8e:e8:2d:99:d6:d6:89:f1:1e:bf:ed:3b: e5:83:37:a3:8c:00:74:d8:27:54:18:dc:8d:a7:35: 28:8b:10:2c:8f:c5:76:12:5e:5c:85:08:df:07:c9: 28:a8:89:3b:46:60:42:35:f5:99:22:af:d1:2a:08: eb:4f:53:97:6d:71:50:92:5e:63:2b:64:82:56:8a: 53:3a:8e:aa:8c:4d:3f:90:e8:6a:13:c7:92:6b:2b: e2:b5:4e:38:ec:6b:25:22:94:eb:b6:62:cf:61:44: bf:6f:a7:ff:b0:bc:ce:46:5e:f1:22:78:fb:50:b4: 93:ac:b6:25:f5:b8:e9:d0:ab:43:bc:c8:5b:01:a3: 4d:85:79:8a:fa:a4:7e:4d:9f:e9:17:b1:a6:09:a5: f3:8d:68:97:f8:f2:78:0d:a7:f8:58:85:a7:4c:e3: 4e:cf:5d:f9:22:4d:7f:09:fe:ee:cc:43:5b:ad:2e: 93:02:79:e5:77:c8:74:9c:c3:4e:d5:8f:7d:9b:e9: f9:b6:58:9b:fa:58:fc:29:2b:f8:76:21:64:10:d8: 06:95:44:ff:f9:58:a8:55:b2:de:69:bd:36:3e:5a: 23:d6:0e:21:f0:de:ac:8d:43:45:ba:ab:62:d6:e6: 33:65:05:6c:33:79:8a:79:ee:93:88:4a:87:81:8f: a7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 42:C7:F7:8E:9F:DA:00:B9:CA:3E:2D:1D:DF:5E:08:DE:A8:62:01:62 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/OPENFOR/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/OPENFOR/0/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.64.0/23 IPv6: 2405:e4c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131677 Signature Algorithm: sha256WithRSAEncryption 1c:b5:6c:09:11:ff:d1:72:4e:22:5d:a8:77:a8:f7:fb:07:37: 5c:6a:c4:1e:94:40:17:71:1a:86:fe:0f:5c:62:a6:da:e5:58: 14:81:f4:3b:9b:6c:8a:7b:c2:8f:db:c1:a3:c3:a2:98:a0:0e: 3d:08:04:eb:f9:57:53:f7:64:1b:fb:35:51:60:09:6b:f6:b8: 75:5a:72:6f:ef:99:e9:7b:1a:db:f7:56:e1:02:05:36:b1:30: 79:38:a9:5b:be:05:60:89:3e:3a:90:09:ca:76:49:4b:49:4d: f6:dc:93:d6:1e:b7:ce:c8:7b:6c:de:06:48:a9:52:8b:2f:17: 15:69:63:b7:1e:bf:62:4f:87:73:42:21:ec:38:39:6c:5a:cf: 70:f0:cd:ec:cc:2b:4d:f3:6d:04:74:47:1c:de:c1:85:08:1c: ca:f8:ea:af:ff:88:33:af:0e:8a:f1:dc:06:84:aa:be:ff:71: 7c:81:28:71:6c:24:d4:b3:bf:af:74:fe:df:98:3a:71:77:31: 7a:95:f7:f0:6d:a7:d2:29:53:86:5a:34:48:2c:d1:4a:4f:3a: ae:4d:19:b4:04:a4:2c:62:d9:31:bb:ec:f4:93:49:57:d3:0b: bc:bd:ae:ce:e0:da:76:b8:da:e3:fa:01:d1:08:e5:15:ae:58: b3:02:e2:0e -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgIUDPsc4dr515pogYoEWQfmvrx5GfswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTUzOVoX DTI3MDUxMDE2MDAzOVowMzExMC8GA1UEAxMoNDJDN0Y3OEU5RkRBMDBCOUNBM0Uy RDFEREY1RTA4REVBODYyMDE2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJpgjugtmdbWifEev+075YM3o4wAdNgnVBjcjac1KIsQLI/FdhJeXIUI3wfJ KKiJO0ZgQjX1mSKv0SoI609Tl21xUJJeYytkglaKUzqOqoxNP5DoahPHkmsr4rVO OOxrJSKU67Ziz2FEv2+n/7C8zkZe8SJ4+1C0k6y2JfW46dCrQ7zIWwGjTYV5ivqk fk2f6Rexpgml841ol/jyeA2n+FiFp0zjTs9d+SJNfwn+7sxDW60ukwJ55XfIdJzD TtWPfZvp+bZYm/pY/Ckr+HYhZBDYBpVE//lYqFWy3mm9Nj5aI9YOIfDerI1DRbqr YtbmM2UFbDN5innuk4hKh4GPpzcCAwEAAaOCApMwggKPMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFELH946f2gC5yj4tHd9eCN6oYgFiMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9PUEVORk9SLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL09QRU5G T1IvMC80MkM3Rjc4RTlGREEwMEI5Q0EzRTJEMURERjVFMDhERUE4NjIwMTYyLm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZ5VAMA0EAgACMAcDBQAkBeTAMBoGCCsGAQUFBwEI AQH/BAswCaAHMAUCAwICXTANBgkqhkiG9w0BAQsFAAOCAQEAHLVsCRH/0XJOIl2o d6j3+wc3XGrEHpRAF3Eahv4PXGKm2uVYFIH0O5tsinvCj9vBo8OimKAOPQgE6/lX U/dkG/s1UWAJa/a4dVpyb++Z6Xsa2/dW4QIFNrEweTipW74FYIk+OpAJynZJS0lN 9tyT1h63zsh7bN4GSKlSiy8XFWljtx6/Yk+Hc0Ih7Dg5bFrPcPDN7MwrTfNtBHRH HN7BhQgcyvjqr/+IM68OivHcBoSqvv9xfIEocWwk1LO/r3T+35g6cXcxepX38G2n 0ilThlo0SCzRSk86rk0ZtASkLGLZMbvs9JNJV9MLvL2uzuDadrja4/oB0QjlFa5Y swLiDg== -----END CERTIFICATE-----Generated at Tue May 12 22:16:04 2026 by rpki-client