$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/453885A7EEA9583A5124ACD32DCB0BF2FE827148.cer File: 453885A7EEA9583A5124ACD32DCB0BF2FE827148.cer (raw, json) Hash identifier: K4l5ga/ymxzxrLaeL8y4jqy/r481VYj8hXqM8skeb60= Subject key identifier: 45:38:85:A7:EE:A9:58:3A:51:24:AC:D3:2D:CB:0B:F2:FE:82:71:48 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 4814C6202B5E0E4221288E5DFAEE9FD3E4851825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/NCDR/0/453885A7EEA9583A5124ACD32DCB0BF2FE827148.mft caRepository: rsync://rpkica.twnic.tw/rpki/NCDR/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:48:57 +0000 Certificate not after: Mon 10 May 2027 15:53:57 +0000 Subordinate resources: IP: 103.191.20.0/23 IP: 2400:9360::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:14:c6:20:2b:5e:0e:42:21:28:8e:5d:fa:ee:9f:d3:e4:85:18:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:48:57 2026 GMT Not After : May 10 15:53:57 2027 GMT Subject: CN=453885A7EEA9583A5124ACD32DCB0BF2FE827148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:41:20:f0:86:1d:1c:dd:15:5d:e4:4d:6a:d2: 6d:10:57:da:e1:94:ea:76:d1:63:2f:cd:be:54:4f: a1:be:9f:c4:00:dc:be:9d:f9:f8:96:a0:51:f8:c8: 71:f6:8b:5a:bd:a7:37:64:7a:47:87:4e:05:be:c4: ae:ba:56:0b:36:bf:b0:d3:db:f0:80:2c:ff:08:bb: 02:a0:3d:1f:d9:0c:0f:63:3e:d7:04:32:d9:af:5c: 02:2b:38:72:89:ef:31:a6:4f:2f:f5:1c:62:1a:76: 03:e3:51:aa:35:71:9e:d4:be:c2:a5:2a:0a:4f:a9: 72:e0:48:54:06:f2:4b:5e:7b:2e:b2:c8:7b:1d:0f: d4:cb:b8:9e:a7:24:6d:f4:91:86:48:1b:68:0a:d0: d7:c2:19:d0:97:f4:42:3d:2b:93:61:6f:32:69:47: e2:b7:6a:62:80:04:12:4a:e3:e7:ba:74:76:da:e0: cf:ca:79:21:4f:33:02:31:c6:42:f1:a3:a9:84:b5: 46:31:b2:0f:cb:02:9b:84:98:ab:db:5a:c2:7c:a9: fd:dd:e7:96:4c:ce:bf:0d:00:1d:33:15:8b:2a:12: aa:3c:12:4d:f8:ec:7b:a6:80:d3:cd:9b:b5:d9:41: 58:58:51:4b:84:fd:cf:9c:fd:f0:3a:b8:70:05:12: 01:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 45:38:85:A7:EE:A9:58:3A:51:24:AC:D3:2D:CB:0B:F2:FE:82:71:48 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/NCDR/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/NCDR/0/453885A7EEA9583A5124ACD32DCB0BF2FE827148.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.20.0/23 IPv6: 2400:9360::/32 Signature Algorithm: sha256WithRSAEncryption 01:5f:03:df:9b:d5:00:2c:87:2b:ce:79:1e:ae:76:b4:51:45: 07:f4:95:cc:07:73:40:17:4c:7f:b1:cd:f5:38:b4:8c:76:2b: c4:7f:4f:db:55:2f:19:05:09:bc:ce:b0:52:33:59:d9:d5:cd: 57:42:cf:7b:7e:2f:5b:9a:ab:5c:d8:b3:0e:7a:9d:97:17:f4: fa:d1:88:44:fa:5c:d5:4c:2f:e2:f2:5a:99:72:7b:a9:7a:9c: cc:46:50:e7:c4:5d:80:36:ae:e8:1f:2d:89:76:0b:1e:a0:80: 80:9d:ca:c5:00:a3:ac:20:13:dd:3f:92:f0:55:ff:6f:b8:bb: da:73:2a:8b:f5:93:54:ac:5a:8c:7e:c7:41:50:2b:5b:b9:76: ab:c5:ee:c4:63:65:9a:ff:a7:30:06:61:ea:70:fd:ee:39:61: cf:35:a1:c2:70:0a:66:ed:ac:7c:95:fa:ce:ee:54:c0:92:08: 58:db:c4:0a:e5:da:c0:36:17:ee:dd:01:8d:bb:de:fa:27:a2: d7:39:89:1b:88:93:bd:f8:f7:1b:ed:e3:95:8c:fb:89:1b:c0: 9d:9b:21:91:42:b5:ba:c1:f7:c8:82:c0:22:95:e3:22:b7:4c: 3a:51:7d:23:9b:7f:e0:8a:66:77:b1:ed:f2:5b:c0:5b:26:f2: 0f:41:98:78 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUSBTGICteDkIhKI5d+u6f0+SFGCUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDg1N1oX DTI3MDUxMDE1NTM1N1owMzExMC8GA1UEAxMoNDUzODg1QTdFRUE5NTgzQTUxMjRB Q0QzMkRDQjBCRjJGRTgyNzE0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMdBIPCGHRzdFV3kTWrSbRBX2uGU6nbRYy/NvlRPob6fxADcvp35+JagUfjI cfaLWr2nN2R6R4dOBb7ErrpWCza/sNPb8IAs/wi7AqA9H9kMD2M+1wQy2a9cAis4 convMaZPL/UcYhp2A+NRqjVxntS+wqUqCk+pcuBIVAbyS157LrLIex0P1Mu4nqck bfSRhkgbaArQ18IZ0Jf0Qj0rk2FvMmlH4rdqYoAEEkrj57p0dtrgz8p5IU8zAjHG QvGjqYS1RjGyD8sCm4SYq9tawnyp/d3nlkzOvw0AHTMViyoSqjwSTfjse6aA082b tdlBWFhRS4T9z5z98Dq4cAUSAesCAwEAAaOCAnEwggJtMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEU4hafuqVg6USSs0y3LC/L+gnFIMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9OQ0RSLzAvMFwG CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DRFIvMC80 NTM4ODVBN0VFQTk1ODNBNTEyNEFDRDMyRENCMEJGMkZFODI3MTQ4Lm1mdDA3Bggr BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8w HTAMBAIAATAGAwQBZ78UMA0EAgACMAcDBQAkAJNgMA0GCSqGSIb3DQEBCwUAA4IB AQABXwPfm9UALIcrznkerna0UUUH9JXMB3NAF0x/sc31OLSMdivEf0/bVS8ZBQm8 zrBSM1nZ1c1XQs97fi9bmqtc2LMOep2XF/T60YhE+lzVTC/i8lqZcnupepzMRlDn xF2ANq7oHy2JdgseoICAncrFAKOsIBPdP5LwVf9vuLvacyqL9ZNUrFqMfsdBUCtb uXarxe7EY2Wa/6cwBmHqcP3uOWHPNaHCcApm7ax8lfrO7lTAkghY28QK5drANhfu 3QGNu976J6LXOYkbiJO9+Pcb7eOVjPuJG8CdmyGRQrW6wffIgsAileMit0w6UX0j m3/gimZ3se3yW8BbJvIPQZh4 -----END CERTIFICATE-----Generated at Tue May 12 22:16:48 2026 by rpki-client