$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.cer File: 4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.cer (raw, json) Hash identifier: 4knAHVTDzvJNPVwe1EVWH84QCiBiEIwe+UQejK8/tX0= Subject key identifier: 4D:4D:BD:28:BB:EB:89:20:B3:7A:A6:04:8A:C2:7D:52:46:6A:C7:E6 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 780B45A5F5B66B3966DE94C05A884A6FAD298DD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SECUNET/0/4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.mft caRepository: rsync://rpkica.twnic.tw/rpki/SECUNET/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:26 +0000 Certificate not after: Mon 10 May 2027 16:01:26 +0000 Subordinate resources: IP: 103.198.152.0/23 IP: 2400:fee0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:0b:45:a5:f5:b6:6b:39:66:de:94:c0:5a:88:4a:6f:ad:29:8d:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:26 2026 GMT Not After : May 10 16:01:26 2027 GMT Subject: CN=4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:eb:5b:e5:37:27:72:aa:ea:f2:d8:41:74:54: 22:d5:98:74:45:95:04:82:63:28:2d:42:fe:97:81: 01:ef:ea:cb:02:28:ce:99:dc:64:3a:6b:58:6a:7f: c1:d0:75:78:00:eb:cb:ac:2a:ca:f2:47:51:0b:d8: c6:99:9b:d1:e8:c4:c7:82:64:8e:f3:61:97:ed:55: c6:71:2e:9d:9c:4c:a4:e7:39:90:a3:04:5d:2d:b9: 6d:bf:0e:85:eb:c3:d2:d0:66:92:c4:dc:43:4a:ed: b5:57:f1:a5:71:36:69:38:a2:c0:e3:28:d3:c7:b4: ba:27:5a:59:d3:09:bb:24:13:15:53:6a:13:8e:13: d5:82:fb:e8:94:0c:fa:f6:a1:19:68:03:c1:fa:8b: db:32:00:e7:6f:02:37:40:ec:ae:60:66:bd:75:60: 4e:4e:03:58:b1:02:ae:00:a7:d1:7f:98:79:10:42: 69:0c:ee:ae:fb:82:c9:45:1a:3b:f7:85:a2:d6:b6: 9d:93:43:e5:34:58:4b:39:b2:09:3b:a7:4c:14:8c: b7:25:f1:a0:cc:ce:84:c7:dc:5b:34:7f:af:53:b3: ca:2f:15:88:e6:09:e9:48:40:df:9b:b0:b8:aa:16: fa:ec:1c:7a:ab:eb:3c:e3:0b:40:d6:8a:a9:58:4d: 38:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4D:4D:BD:28:BB:EB:89:20:B3:7A:A6:04:8A:C2:7D:52:46:6A:C7:E6 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SECUNET/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SECUNET/0/4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.198.152.0/23 IPv6: 2400:fee0::/32 Signature Algorithm: sha256WithRSAEncryption 3e:a7:60:93:66:2a:c5:08:de:85:84:bb:bb:f7:d5:40:19:71: a2:3f:c8:bc:1d:79:ba:23:bb:8b:08:b5:c3:cc:3e:19:2c:f3: fb:1c:28:ed:f2:17:22:32:0c:15:32:41:de:c4:fa:43:94:f4: 68:16:09:d5:fd:10:1f:13:c0:a2:92:7b:d1:0c:f2:79:71:45: b8:c1:af:46:cf:83:87:18:09:6e:4f:43:e9:a4:16:35:74:63: 84:7f:77:37:da:6a:0f:07:5d:de:3a:de:bb:e9:17:79:58:15: 42:f0:ab:51:b7:6a:48:72:22:bd:d1:ac:42:4f:ac:72:55:df: 6f:ef:f1:a5:40:ce:05:db:e0:12:76:51:1c:0f:05:35:4f:ce: b4:6b:62:f9:fd:b0:6f:77:37:67:7d:7e:5d:9c:dc:52:bf:c0: dd:90:44:80:1b:2e:d7:ab:63:12:f0:e0:7e:29:62:14:66:94: 27:4c:28:7a:82:53:2c:99:33:84:6b:72:84:93:3e:6a:27:71: 83:fb:c3:4b:9e:65:e0:b8:ec:b1:e9:d8:b9:ee:a3:af:aa:39: 7e:e9:04:75:98:ad:ff:fb:53:e5:3a:80:9e:68:02:8e:1c:98: bf:0d:fa:61:91:77:27:ca:54:96:68:ae:1b:4a:68:a8:1e:ef: 65:1f:e9:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUeAtFpfW2azlm3pTAWohKb60pjdIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTYyNloX DTI3MDUxMDE2MDEyNlowMzExMC8GA1UEAxMoNEQ0REJEMjhCQkVCODkyMEIzN0FB NjA0OEFDMjdENTI0NjZBQzdFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXrW+U3J3Kq6vLYQXRUItWYdEWVBIJjKC1C/peBAe/qywIozpncZDprWGp/ wdB1eADry6wqyvJHUQvYxpmb0ejEx4JkjvNhl+1VxnEunZxMpOc5kKMEXS25bb8O hevD0tBmksTcQ0rttVfxpXE2aTiiwOMo08e0uidaWdMJuyQTFVNqE44T1YL76JQM +vahGWgDwfqL2zIA528CN0DsrmBmvXVgTk4DWLECrgCn0X+YeRBCaQzurvuCyUUa O/eFota2nZND5TRYSzmyCTunTBSMtyXxoMzOhMfcWzR/r1Ozyi8ViOYJ6UhA35uw uKoW+uwceqvrPOMLQNaKqVhNOPkCAwEAAaOCAncwggJzMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE1NvSi764kgs3qmBIrCfVJGasfmMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TRUNVTkVULzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NFQ1VO RVQvMC80RDREQkQyOEJCRUI4OTIwQjM3QUE2MDQ4QUMyN0Q1MjQ2NkFDN0U2Lm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZ8aYMA0EAgACMAcDBQAkAP7gMA0GCSqGSIb3DQEB CwUAA4IBAQA+p2CTZirFCN6FhLu799VAGXGiP8i8HXm6I7uLCLXDzD4ZLPP7HCjt 8hciMgwVMkHexPpDlPRoFgnV/RAfE8CiknvRDPJ5cUW4wa9Gz4OHGAluT0PppBY1 dGOEf3c32moPB13eOt676Rd5WBVC8KtRt2pIciK90axCT6xyVd9v7/GlQM4F2+AS dlEcDwU1T860a2L5/bBvdzdnfX5dnNxSv8DdkESAGy7Xq2MS8OB+KWIUZpQnTCh6 glMsmTOEa3KEkz5qJ3GD+8NLnmXguOyx6di57qOvqjl+6QR1mK3/+1PlOoCeaAKO HJi/DfphkXcnylSWaK4bSmioHu9lH+lm -----END CERTIFICATE-----Generated at Tue May 12 22:16:03 2026 by rpki-client