$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/4D7FACF5E4861DAF455F31BCAEBB761339B8145F.cer File: 4D7FACF5E4861DAF455F31BCAEBB761339B8145F.cer (raw, json) Hash identifier: HYp6un+SFd62Wtd2enCBMSZv2ffzE8O+CGkLvSq0OEE= Subject key identifier: 4D:7F:AC:F5:E4:86:1D:AF:45:5F:31:BC:AE:BB:76:13:39:B8:14:5F Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 07B09BC1BC4CB95A6E9BEF9B16191D776A159EED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/HEALTHNET/0/4D7FACF5E4861DAF455F31BCAEBB761339B8145F.mft caRepository: rsync://rpkica.twnic.tw/rpki/HEALTHNET/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:46:28 +0000 Certificate not after: Mon 10 May 2027 15:51:28 +0000 Subordinate resources: IP: 203.65.0.0 -- 203.65.159.255 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:b0:9b:c1:bc:4c:b9:5a:6e:9b:ef:9b:16:19:1d:77:6a:15:9e:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:46:28 2026 GMT Not After : May 10 15:51:28 2027 GMT Subject: CN=4D7FACF5E4861DAF455F31BCAEBB761339B8145F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3a:0f:67:a0:9c:be:2a:93:81:c5:10:f8:f7: 83:ca:a7:b9:ed:e0:93:da:98:ad:e3:07:18:31:a3: 79:cd:fb:68:3f:e0:1d:e3:9b:1f:9c:43:36:57:32: 2f:25:14:4e:b8:76:21:90:f9:26:48:b4:b7:a6:1e: e0:5d:07:ef:99:c2:3f:a5:2a:4f:a4:7a:38:9d:9c: 5b:60:4e:af:43:16:ee:e3:70:9c:ee:fe:ec:9e:3d: f3:f5:c5:e6:b4:e2:42:29:45:cd:38:a2:27:f0:47: f3:fa:6f:a3:b5:b8:ae:0e:07:46:43:77:6a:e4:f6: 99:0f:12:49:5f:55:d6:e0:76:e8:de:b1:99:7c:09: 39:9c:57:0b:88:7a:42:bf:13:18:64:50:8c:0e:f0: 73:60:20:0b:34:ef:b2:97:0b:b9:8e:f7:4b:62:3d: 0e:ca:37:f7:a2:ec:f5:05:86:57:d4:29:b4:d4:f0: 3a:f8:02:6f:49:cd:00:de:84:2c:66:1d:47:36:e5: a8:b5:d3:0f:e2:de:2f:cf:ae:67:26:0e:bb:c1:6d: 71:14:85:e8:74:73:5c:7b:f7:99:4a:d0:0c:a5:0a: 79:1d:f5:e9:a2:72:0f:da:40:4f:d6:19:bf:95:c4: e6:ae:ee:66:63:6e:84:66:d3:55:2a:49:4d:2c:04: 7f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4D:7F:AC:F5:E4:86:1D:AF:45:5F:31:BC:AE:BB:76:13:39:B8:14:5F X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/HEALTHNET/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/HEALTHNET/0/4D7FACF5E4861DAF455F31BCAEBB761339B8145F.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.65.0.0-203.65.159.255 Signature Algorithm: sha256WithRSAEncryption 82:bf:01:f2:78:b9:56:81:dc:8b:79:e3:20:2e:c7:e8:05:43: 36:34:f0:81:4d:2b:e8:97:65:ad:1a:46:97:28:a8:64:bd:0a: 53:ce:e7:4f:77:e9:26:bc:ac:16:4b:4f:49:1a:0d:5f:ea:f2: 0b:f7:e9:59:e3:be:8b:55:32:a1:de:5e:ca:90:d1:96:0b:14: f6:3f:91:c4:5b:40:4d:33:c2:7d:74:fb:4e:36:e6:14:a6:94: 91:b0:d4:8f:b3:1b:c4:55:95:e3:49:ef:29:f9:eb:93:b8:e4: 68:13:0c:f9:51:d2:6c:1e:35:a2:57:c2:35:19:3d:23:44:4a: aa:aa:0f:b5:a9:58:ee:9d:7a:80:a3:36:0a:8b:8f:7e:a3:82: 3d:f6:c1:ca:34:84:0e:78:3b:c5:b7:80:91:c6:d7:24:ac:7b: 51:bb:ba:8b:e4:ee:a4:68:28:35:76:63:52:a3:da:e2:f6:32: 11:40:42:5b:bb:df:2b:9d:d2:90:6e:2a:42:5d:a4:a9:69:75: 77:f9:c1:c1:65:12:4b:66:00:be:78:99:15:2e:25:c5:be:ad: d3:5f:14:f8:59:0c:19:75:ec:64:f6:36:89:66:3c:c3:3d:af: 58:78:e9:f7:81:c4:e6:ae:c8:8d:a9:5a:24:9f:79:c3:8f:03: dc:64:8c:48 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIUB7CbwbxMuVpum++bFhkdd2oVnu0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDYyOFoX DTI3MDUxMDE1NTEyOFowMzExMC8GA1UEAxMoNEQ3RkFDRjVFNDg2MURBRjQ1NUYz MUJDQUVCQjc2MTMzOUI4MTQ1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL06D2egnL4qk4HFEPj3g8qnue3gk9qYreMHGDGjec37aD/gHeObH5xDNlcy LyUUTrh2IZD5Jki0t6Ye4F0H75nCP6UqT6R6OJ2cW2BOr0MW7uNwnO7+7J498/XF 5rTiQilFzTiiJ/BH8/pvo7W4rg4HRkN3auT2mQ8SSV9V1uB26N6xmXwJOZxXC4h6 Qr8TGGRQjA7wc2AgCzTvspcLuY73S2I9Dso396Ls9QWGV9QptNTwOvgCb0nNAN6E LGYdRzblqLXTD+LeL8+uZyYOu8FtcRSF6HRzXHv3mUrQDKUKeR316aJyD9pAT9YZ v5XE5q7uZmNuhGbTVSpJTSwEf20CAwEAAaOCAnMwggJvMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE1/rPXkhh2vRV8xvK67dhM5uBRfMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHjBggrBgEFBQcBCwSB1jCB0zA1Bggr BgEFBQcwBYYpcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9IRUFMVEhORVQv MC8wYQYIKwYBBQUHMAqGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSEVB TFRITkVULzAvNEQ3RkFDRjVFNDg2MURBRjQ1NUYzMUJDQUVCQjc2MTMzOUI4MTQ1 Ri5tZnQwNwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAmBggrBgEF BQcBBwEB/wQXMBUwEwQCAAEwDTALAwMAy0EDBAXLQYAwDQYJKoZIhvcNAQELBQAD ggEBAIK/AfJ4uVaB3It54yAux+gFQzY08IFNK+iXZa0aRpcoqGS9ClPO50936Sa8 rBZLT0kaDV/q8gv36VnjvotVMqHeXsqQ0ZYLFPY/kcRbQE0zwn10+0425hSmlJGw 1I+zG8RVleNJ7yn565O45GgTDPlR0mweNaJXwjUZPSNESqqqD7WpWO6deoCjNgqL j36jgj32wco0hA54O8W3gJHG1ySse1G7uovk7qRoKDV2Y1Kj2uL2MhFAQlu73yud 0pBuKkJdpKlpdXf5wcFlEktmAL54mRUuJcW+rdNfFPhZDBl17GT2NolmPMM9r1h4 6feBxOauyI2pWiSfecOPA9xkjEg= -----END CERTIFICATE-----Generated at Tue May 12 22:02:35 2026 by rpki-client