$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.cer File: 4703E44596DFB4A93F400A7B57126B31D5EC4CDA.cer (raw, json) Hash identifier: 98GpF+4pNepso9N8luogV3E780cGfH8sM0R2zBz+cr4= Subject key identifier: 47:03:E4:45:96:DF:B4:A9:3F:40:0A:7B:57:12:6B:31:D5:EC:4C:DA Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 7F6196C2C0C476143B7C93A23D36A5560A3DA8E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/KTCFE/0/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.mft caRepository: rsync://rpkica.twnic.tw/rpki/KTCFE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:47:36 +0000 Certificate not after: Mon 10 May 2027 15:52:36 +0000 Subordinate resources: AS: 131595 IP: 103.59.220.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:61:96:c2:c0:c4:76:14:3b:7c:93:a2:3d:36:a5:56:0a:3d:a8:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:47:36 2026 GMT Not After : May 10 15:52:36 2027 GMT Subject: CN=4703E44596DFB4A93F400A7B57126B31D5EC4CDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:de:44:a0:5f:76:cb:f2:ee:09:5c:dd:f6:70: e3:d4:32:5a:04:9a:81:a2:d2:1f:83:9a:cd:29:fd: c3:ba:b8:2f:3d:46:b4:a6:67:04:05:2b:bf:8a:03: 64:da:6a:c7:d8:5f:6a:a0:70:d4:cd:95:d2:d5:d9: a6:40:18:bf:de:39:4d:8b:a7:a1:4e:fd:17:8b:c1: 97:71:52:20:58:75:78:77:ca:bc:f1:15:9b:d9:62: 3f:f0:73:70:b4:ef:eb:21:86:12:09:4d:e7:03:39: 3f:ae:d2:fe:d1:9f:7f:c1:58:5a:e9:6b:01:2c:1d: 1d:97:b3:65:6a:40:fb:87:cb:4a:f7:8f:69:08:68: 03:fa:a8:85:47:fa:e5:f5:a7:49:d9:b0:3d:7c:48: ff:51:7b:86:be:1b:a0:6f:45:f4:f8:c4:d7:7e:da: 41:83:fe:a7:17:c5:5a:9e:8d:e8:ab:34:7a:84:b5: 06:85:a2:80:4a:2f:1e:5e:e5:de:70:63:61:31:68: 45:5d:5e:49:d1:89:67:9e:7a:60:ac:90:42:8e:09: 60:61:13:5f:ee:63:d4:24:43:b9:15:ff:15:1c:80: 15:a8:7e:9d:dd:f8:c1:ad:ee:a1:28:c5:f1:52:c9: 68:ac:13:0d:a7:43:b4:62:86:e7:ea:84:c3:4e:5e: af:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 47:03:E4:45:96:DF:B4:A9:3F:40:0A:7B:57:12:6B:31:D5:EC:4C:DA X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/KTCFE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/KTCFE/0/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.220.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131595 Signature Algorithm: sha256WithRSAEncryption 8c:b9:3a:a1:2f:0a:92:ab:e1:30:15:c2:9f:42:ab:09:6b:81: 22:b3:3a:84:6b:2d:70:30:a3:a2:e6:42:36:e3:db:cf:c3:cf: 0e:6c:e1:bc:0f:44:d3:90:f6:39:24:b0:ac:ee:74:54:56:7d: ea:03:8b:c5:df:c7:9f:d8:3b:dc:c3:41:d1:3f:76:95:64:c4: bb:93:1f:fa:d1:13:06:76:14:d7:f7:97:54:78:46:40:7b:95: e2:7f:6c:6c:45:3a:fa:82:08:17:93:a1:14:ff:2c:ab:27:4a: e6:d4:21:a3:76:fb:a6:35:da:7b:47:30:c4:f1:29:46:93:ec: c5:84:88:55:9d:7c:b7:dd:d2:04:1e:90:a8:14:7e:af:38:d2: 3d:82:72:41:ac:3b:d1:84:ad:13:83:4b:2e:08:b1:a6:f8:50: 93:05:b9:cc:5c:78:58:c1:94:f5:c6:f6:7a:5a:08:a7:da:07: 80:a6:0e:f1:7d:ad:fb:86:e8:2c:80:b0:a6:fa:44:fc:2b:85: 4b:1c:50:02:ae:8c:0d:a6:fd:61:b6:69:3b:0c:73:6c:e6:39: 26:28:71:37:99:e9:bc:95:e2:f7:4a:dc:d7:a9:9f:71:8a:90: 0e:ba:67:61:3b:1c:8e:f7:8c:72:65:11:f5:cb:30:1d:fe:9e: fb:7b:7a:e2 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIUf2GWwsDEdhQ7fJOiPTalVgo9qOEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDczNloX DTI3MDUxMDE1NTIzNlowMzExMC8GA1UEAxMoNDcwM0U0NDU5NkRGQjRBOTNGNDAw QTdCNTcxMjZCMzFENUVDNENEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMveRKBfdsvy7glc3fZw49QyWgSagaLSH4OazSn9w7q4Lz1GtKZnBAUrv4oD ZNpqx9hfaqBw1M2V0tXZpkAYv945TYunoU79F4vBl3FSIFh1eHfKvPEVm9liP/Bz cLTv6yGGEglN5wM5P67S/tGff8FYWulrASwdHZezZWpA+4fLSvePaQhoA/qohUf6 5fWnSdmwPXxI/1F7hr4boG9F9PjE137aQYP+pxfFWp6N6Ks0eoS1BoWigEovHl7l 3nBjYTFoRV1eSdGJZ556YKyQQo4JYGETX+5j1CRDuRX/FRyAFah+nd34wa3uoSjF 8VLJaKwTDadDtGKG5+qEw05erxkCAwEAAaOCAoAwggJ8MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEcD5EWW37SpP0AKe1cSazHV7EzaMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9LVENGRS8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9LVENGRS8w LzQ3MDNFNDQ1OTZERkI0QTkzRjQwMEE3QjU3MTI2QjMxRDVFQzRDREEubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnO9wwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAgILMA0G CSqGSIb3DQEBCwUAA4IBAQCMuTqhLwqSq+EwFcKfQqsJa4EiszqEay1wMKOi5kI2 49vPw88ObOG8D0TTkPY5JLCs7nRUVn3qA4vF38ef2Dvcw0HRP3aVZMS7kx/60RMG dhTX95dUeEZAe5Xif2xsRTr6gggXk6EU/yyrJ0rm1CGjdvumNdp7RzDE8SlGk+zF hIhVnXy33dIEHpCoFH6vONI9gnJBrDvRhK0Tg0suCLGm+FCTBbnMXHhYwZT1xvZ6 Wgin2geApg7xfa37hugsgLCm+kT8K4VLHFACrowNpv1htmk7DHNs5jkmKHE3mem8 leL3StzXqZ9xipAOumdhOxyO94xyZRH1yzAd/p77e3ri -----END CERTIFICATE-----Generated at Tue May 12 22:32:27 2026 by rpki-client