$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/4672CC1FE2708E882C7C7AC9F016C9C5350301B8.cer File: 4672CC1FE2708E882C7C7AC9F016C9C5350301B8.cer (raw, json) Hash identifier: oH0aAD5sh2mPTDfoc0ttUwJqyOXjqOcaO0F32eisbkI= Subject key identifier: 46:72:CC:1F:E2:70:8E:88:2C:7C:7A:C9:F0:16:C9:C5:35:03:01:B8 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 0D75731BE0EA8952ABD5047E69401D7E1329EBDE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/LIRUN/0/4672CC1FE2708E882C7C7AC9F016C9C5350301B8.mft caRepository: rsync://rpkica.twnic.tw/rpki/LIRUN/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:48:02 +0000 Certificate not after: Mon 10 May 2027 15:53:02 +0000 Subordinate resources: AS: 131147 IP: 2401:97e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:75:73:1b:e0:ea:89:52:ab:d5:04:7e:69:40:1d:7e:13:29:eb:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:48:02 2026 GMT Not After : May 10 15:53:02 2027 GMT Subject: CN=4672CC1FE2708E882C7C7AC9F016C9C5350301B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c8:b0:8e:a2:cd:ac:55:c8:68:06:39:88:c8: fd:6b:ac:fc:de:ed:c1:e4:1e:35:d9:09:52:77:02: 43:74:3b:65:9f:a7:bc:7b:aa:59:3b:4b:42:58:3f: f2:96:41:d8:3f:56:08:3f:83:b1:9a:15:75:f3:75: 65:c8:36:24:e9:9c:08:95:84:50:f3:e1:fb:69:6c: 43:05:f4:5c:38:25:5a:41:b6:18:25:9e:a9:02:34: 19:3a:89:a3:07:11:8c:11:da:e6:26:1d:21:e6:d1: e2:ae:bb:a2:c6:d5:34:05:f4:ad:ba:59:5b:77:f7: 31:08:b7:99:08:ba:ba:0d:26:20:7b:62:be:42:c4: 1b:72:8f:36:6f:fa:58:c2:22:89:4a:57:bc:1e:bc: 16:a4:1f:e6:a0:98:ce:35:da:31:95:11:c3:d6:c1: ff:73:2f:49:4c:6d:c9:c5:cd:d3:9d:9a:d3:6c:24: f1:eb:75:32:e7:1b:7b:dc:52:9c:3b:b0:da:f5:ea: aa:65:9d:ae:b0:31:24:d7:cb:28:63:a4:eb:1a:cd: bb:9a:c1:ca:ad:ba:51:2f:2e:10:b3:c2:8d:5c:ab: 49:be:48:36:3b:a4:9f:86:a1:e7:79:9d:c0:31:57: 5f:54:f0:e6:ec:64:bf:be:59:05:2c:25:2f:45:9b: fe:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 46:72:CC:1F:E2:70:8E:88:2C:7C:7A:C9:F0:16:C9:C5:35:03:01:B8 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/LIRUN/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/LIRUN/0/4672CC1FE2708E882C7C7AC9F016C9C5350301B8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:97e0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131147 Signature Algorithm: sha256WithRSAEncryption 32:b5:53:44:9f:5f:10:39:54:2e:7a:45:99:df:b2:e3:f6:e7: b7:5b:2c:f4:61:1e:74:2c:40:a5:02:97:0d:5f:0d:36:24:c0: 7e:0e:c5:d5:5d:82:7f:9c:c2:fd:c3:f7:2f:0d:f6:04:d2:48: 57:da:71:f3:1c:0f:0f:7c:91:26:34:3f:0e:69:f2:db:1f:98: f0:bf:dd:c5:e1:57:8f:7d:e9:dc:3a:54:51:3a:c3:ac:bf:ab: f1:af:95:bd:40:5d:41:d9:92:dd:2a:6b:4c:b8:94:cc:3a:ab: e9:8f:ff:a2:00:ea:ef:0b:07:43:aa:5f:49:40:16:a1:dc:e5: 93:a7:26:b3:d1:25:4e:13:db:c2:18:c0:a8:e5:ac:e7:60:c9: 1f:70:16:bd:b2:19:17:4c:83:ac:68:6e:2a:b6:7f:c7:36:3f: 43:10:64:9e:c1:8d:0f:27:77:9a:c6:3f:18:31:d7:61:7b:50: 20:f3:df:a8:d0:c6:4a:bd:d4:42:c5:1b:a6:f4:57:b0:04:1e: ce:c0:d7:46:69:bf:b1:1b:23:f3:62:78:65:77:2d:38:b2:c0: 7b:ee:fe:83:33:01:66:33:ae:41:6f:a8:47:45:1b:b7:6b:bf: 45:cc:8d:58:21:38:71:8c:ee:7f:24:04:36:31:ab:4a:5c:d5: 90:af:7d:28 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgIUDXVzG+DqiVKr1QR+aUAdfhMp694wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDgwMloX DTI3MDUxMDE1NTMwMlowMzExMC8GA1UEAxMoNDY3MkNDMUZFMjcwOEU4ODJDN0M3 QUM5RjAxNkM5QzUzNTAzMDFCODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLIsI6izaxVyGgGOYjI/Wus/N7tweQeNdkJUncCQ3Q7ZZ+nvHuqWTtLQlg/ 8pZB2D9WCD+DsZoVdfN1Zcg2JOmcCJWEUPPh+2lsQwX0XDglWkG2GCWeqQI0GTqJ owcRjBHa5iYdIebR4q67osbVNAX0rbpZW3f3MQi3mQi6ug0mIHtivkLEG3KPNm/6 WMIiiUpXvB68FqQf5qCYzjXaMZURw9bB/3MvSUxtycXN052a02wk8et1Mucbe9xS nDuw2vXqqmWdrrAxJNfLKGOk6xrNu5rByq26US8uELPCjVyrSb5INjukn4ah53md wDFXX1Tw5uxkv75ZBSwlL0Wb/kECAwEAAaOCAoEwggJ9MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEZyzB/icI6ILHx6yfAWycU1AwG4MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MSVJVTi8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MSVJVTi8w LzQ2NzJDQzFGRTI3MDhFODgyQzdDN0FDOUYwMTZDOUM1MzUwMzAxQjgubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAZfgMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwIASzAN BgkqhkiG9w0BAQsFAAOCAQEAMrVTRJ9fEDlULnpFmd+y4/bnt1ss9GEedCxApQKX DV8NNiTAfg7F1V2Cf5zC/cP3Lw32BNJIV9px8xwPD3yRJjQ/Dmny2x+Y8L/dxeFX j33p3DpUUTrDrL+r8a+VvUBdQdmS3SprTLiUzDqr6Y//ogDq7wsHQ6pfSUAWodzl k6cms9ElThPbwhjAqOWs52DJH3AWvbIZF0yDrGhuKrZ/xzY/QxBknsGNDyd3msY/ GDHXYXtQIPPfqNDGSr3UQsUbpvRXsAQezsDXRmm/sRsj82J4ZXctOLLAe+7+gzMB ZjOuQW+oR0Ubt2u/RcyNWCE4cYzufyQENjGrSlzVkK99KA== -----END CERTIFICATE-----Generated at Tue May 12 22:15:55 2026 by rpki-client