$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/4E0F5EDE240439F8FC2D99F967DFDFAE18B6783A.cer File: 4E0F5EDE240439F8FC2D99F967DFDFAE18B6783A.cer (raw, json) Hash identifier: DMp6v4QP/buh4wsIcsMZA42Rz4iu7irHrex/4mekAQo= Subject key identifier: 4E:0F:5E:DE:24:04:39:F8:FC:2D:99:F9:67:DF:DF:AE:18:B6:78:3A Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 5DC0E7DC37BEA36E973B0E7A1C8349E0BF8900C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/MAIFENG/0/4E0F5EDE240439F8FC2D99F967DFDFAE18B6783A.mft caRepository: rsync://rpkica.twnic.tw/rpki/MAIFENG/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:48:15 +0000 Certificate not after: Mon 10 May 2027 15:53:15 +0000 Subordinate resources: IP: 103.188.120.0/23 IP: 2400:8260::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c0:e7:dc:37:be:a3:6e:97:3b:0e:7a:1c:83:49:e0:bf:89:00:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:48:15 2026 GMT Not After : May 10 15:53:15 2027 GMT Subject: CN=4E0F5EDE240439F8FC2D99F967DFDFAE18B6783A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:58:3f:82:0f:61:dd:6e:7a:3b:ae:05:7e:e7: 0f:c8:7b:2b:2e:98:19:92:31:3b:f6:34:bb:09:01: 7d:db:28:41:bf:88:39:fb:fe:72:62:46:b0:ad:21: 0a:0d:2c:02:2f:0b:90:73:50:03:07:84:73:27:fc: bb:50:1e:e7:55:1a:c3:ad:e0:b0:10:1c:e6:18:24: 34:d1:fb:e0:e7:d3:03:fd:16:36:89:3f:0c:3e:8f: 6c:ee:35:95:e2:7c:8d:8a:fd:95:55:1a:46:1a:3e: 50:04:f4:c9:1a:f2:81:ee:55:e9:73:bb:b4:d0:f5: ab:99:e1:d5:09:de:78:34:99:28:01:1e:01:ee:04: 55:1f:f0:09:17:fb:3f:5c:91:95:c4:70:78:50:1b: d9:ae:9f:40:1c:ff:e8:09:e1:fe:36:bd:db:94:0e: 5d:d8:38:4a:ec:ee:51:bb:8e:b7:53:c3:72:9f:89: 4f:d6:9d:0c:d6:51:3a:97:58:d9:0c:e4:2e:03:86: d9:b8:39:d4:23:01:11:ff:7c:b1:d2:b1:3a:dd:f4: 58:df:28:32:a1:3b:9f:01:a7:a6:42:d0:c1:20:c3: 7d:40:c4:85:b7:eb:93:43:85:44:8c:e0:97:f4:79: d2:7a:35:a1:5a:33:10:ef:08:bf:a8:b1:f3:05:55: ca:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4E:0F:5E:DE:24:04:39:F8:FC:2D:99:F9:67:DF:DF:AE:18:B6:78:3A X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/MAIFENG/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/MAIFENG/0/4E0F5EDE240439F8FC2D99F967DFDFAE18B6783A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.120.0/23 IPv6: 2400:8260::/32 Signature Algorithm: sha256WithRSAEncryption 1c:7d:6e:3c:bb:ba:f3:8e:36:b5:8f:c9:b0:dd:63:c6:55:2e: ab:33:a5:4a:77:e8:b2:10:e7:9e:16:37:a4:8a:8c:a8:b8:c4: 4f:7f:3e:d8:92:a0:1b:55:2b:f2:59:1c:b9:74:4a:ae:58:bd: e1:59:b2:59:4a:a1:4d:89:2a:d3:79:31:61:5d:2a:bd:94:cf: e7:44:ba:dd:9f:52:17:88:dc:27:c1:f8:73:78:26:93:a2:d8: 9b:da:2b:3e:c2:cc:b0:3b:1c:1b:70:b2:8e:3e:51:b5:a5:09: 9d:29:e0:6c:c1:88:09:d9:4e:71:0c:b1:ce:d0:21:c8:c2:f1: 1e:4d:a5:51:0a:18:ed:e0:09:05:c0:b1:93:f0:1c:1c:63:bf: 32:ab:58:88:a5:17:9e:c0:f6:d6:d7:c8:92:9b:9e:27:2c:31: aa:e3:e7:14:25:bb:6d:7c:3d:e6:df:96:19:e4:eb:d4:05:49: 4f:56:29:a7:e7:54:5b:3f:69:48:bb:2e:c5:5d:c3:21:d6:00: 3d:7d:82:9b:33:e1:61:2e:c7:b6:91:98:db:a3:10:30:98:7c: 32:06:8b:1d:7c:a5:33:5d:dc:53:f6:e3:52:65:6d:68:7e:5a: c6:94:fb:5a:29:38:47:a5:6e:36:69:69:f9:de:0f:69:88:7c: cc:9d:af:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUXcDn3De+o26XOw56HINJ4L+JAMIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDgxNVoX DTI3MDUxMDE1NTMxNVowMzExMC8GA1UEAxMoNEUwRjVFREUyNDA0MzlGOEZDMkQ5 OUY5NjdERkRGQUUxOEI2NzgzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJlYP4IPYd1uejuuBX7nD8h7Ky6YGZIxO/Y0uwkBfdsoQb+IOfv+cmJGsK0h Cg0sAi8LkHNQAweEcyf8u1Ae51Uaw63gsBAc5hgkNNH74OfTA/0WNok/DD6PbO41 leJ8jYr9lVUaRho+UAT0yRryge5V6XO7tND1q5nh1QneeDSZKAEeAe4EVR/wCRf7 P1yRlcRweFAb2a6fQBz/6Anh/ja925QOXdg4SuzuUbuOt1PDcp+JT9adDNZROpdY 2QzkLgOG2bg51CMBEf98sdKxOt30WN8oMqE7nwGnpkLQwSDDfUDEhbfrk0OFRIzg l/R50no1oVozEO8Iv6ix8wVVyrMCAwEAAaOCAncwggJzMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE4PXt4kBDn4/C2Z+Wff364Ytng6MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9NQUlGRU5HLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL01BSUZF TkcvMC80RTBGNUVERTI0MDQzOUY4RkMyRDk5Rjk2N0RGREZBRTE4QjY3ODNBLm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZ7x4MA0EAgACMAcDBQAkAIJgMA0GCSqGSIb3DQEB CwUAA4IBAQAcfW48u7rzjja1j8mw3WPGVS6rM6VKd+iyEOeeFjekioyouMRPfz7Y kqAbVSvyWRy5dEquWL3hWbJZSqFNiSrTeTFhXSq9lM/nRLrdn1IXiNwnwfhzeCaT otib2is+wsywOxwbcLKOPlG1pQmdKeBswYgJ2U5xDLHO0CHIwvEeTaVRChjt4AkF wLGT8BwcY78yq1iIpReewPbW18iSm54nLDGq4+cUJbttfD3m35YZ5OvUBUlPVimn 51RbP2lIuy7FXcMh1gA9fYKbM+FhLse2kZjboxAwmHwyBosdfKUzXdxT9uNSZW1o flrGlPtaKThHpW42aWn53g9piHzMna8r -----END CERTIFICATE-----Generated at Tue May 12 22:02:57 2026 by rpki-client