$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/5407824F2094BDB5E96C450A4F36563A73225CCB.cer File: 5407824F2094BDB5E96C450A4F36563A73225CCB.cer (raw, json) Hash identifier: EnGGTHa1a+QxKRjRn3dYD1sHK8sS3RgSuwpknz5s2BU= Subject key identifier: 54:07:82:4F:20:94:BD:B5:E9:6C:45:0A:4F:36:56:3A:73:22:5C:CB Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 6EE6A9DE78CBDC17D6EB1A37C9B94669908F1631 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SIMPLE/0/5407824F2094BDB5E96C450A4F36563A73225CCB.mft caRepository: rsync://rpkica.twnic.tw/rpki/SIMPLE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:46 +0000 Certificate not after: Mon 10 May 2027 16:01:46 +0000 Subordinate resources: AS: 9923 IP: 2401:ba60::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:e6:a9:de:78:cb:dc:17:d6:eb:1a:37:c9:b9:46:69:90:8f:16:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:46 2026 GMT Not After : May 10 16:01:46 2027 GMT Subject: CN=5407824F2094BDB5E96C450A4F36563A73225CCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c7:d6:9a:25:99:ce:56:8d:a4:19:42:cf:69: e5:66:9c:6e:be:91:89:60:b4:0c:4d:6c:11:2f:4f: e6:8f:d0:86:cc:27:13:83:a9:60:be:c2:7b:bf:86: e0:cc:72:b3:95:f7:76:06:d4:1d:b5:4e:9a:64:d8: 4f:8a:2e:38:0d:45:f0:c6:a1:e5:f0:27:49:54:1d: 2e:b2:23:79:08:69:a0:0a:46:7e:3a:2e:80:1e:4a: d8:45:04:f7:cc:24:81:73:93:1e:f2:f9:c5:09:a6: ae:7b:42:6e:b9:64:98:09:af:dd:70:d5:2a:54:72: 56:56:69:20:ab:c7:32:14:14:01:b0:11:33:ac:7a: 5e:c0:1b:54:35:63:75:f8:4a:e6:a4:e4:6b:38:40: 46:6e:7d:8f:e3:db:b9:7c:a8:87:5e:cd:50:f9:40: 67:64:14:e7:8f:68:c3:b4:45:eb:c9:93:67:84:5c: 20:92:0f:fb:e3:dc:e7:30:cf:8d:9a:8e:49:dd:4f: c2:0e:15:33:93:54:7d:85:b5:8e:cb:ce:3c:d7:ea: 2f:f9:72:67:b5:ac:8a:45:de:20:02:24:8c:ca:b4: cb:7c:8c:dc:7d:70:11:f6:76:52:80:29:a9:89:41: ba:7c:5c:de:c5:fa:df:1f:ac:19:cc:3f:8b:2d:9c: 51:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 54:07:82:4F:20:94:BD:B5:E9:6C:45:0A:4F:36:56:3A:73:22:5C:CB X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SIMPLE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SIMPLE/0/5407824F2094BDB5E96C450A4F36563A73225CCB.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ba60::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 9923 Signature Algorithm: sha256WithRSAEncryption 60:46:84:f1:e6:e1:2b:f1:86:e1:2c:35:91:1b:9d:ca:e5:87: e9:54:76:05:a4:99:79:c3:1e:b7:c2:29:ff:bf:76:df:09:00: 4b:ca:46:81:15:49:bf:66:9e:c2:b9:c7:fe:76:88:d2:42:55: e3:bc:79:af:00:fa:b2:a5:1a:07:d1:29:e8:8b:87:a9:77:96: ee:80:40:7c:6e:d2:d7:25:85:c4:28:38:66:05:f2:96:1b:4f: f8:e2:9a:cc:c2:9d:02:fb:f3:e7:30:25:c8:58:36:35:dd:5e: 91:bc:eb:ee:86:c2:1c:93:62:5c:e8:b7:5c:28:07:9f:b1:a0: 9a:2d:a3:fb:c7:2d:bb:8b:34:5f:ee:fb:59:57:32:f5:1d:5a: 52:e7:f8:c6:61:1c:0c:13:e6:e8:0a:ff:94:d6:7f:db:e0:a5: ea:df:81:ab:bb:d5:de:67:16:81:2b:c8:4b:bd:7c:e6:72:d6: b2:d3:6a:a7:0a:41:9a:64:13:9e:e2:d3:66:63:b6:c9:f4:5c: b3:09:68:47:2c:1d:2a:4b:98:c2:98:c5:ff:df:84:bf:6e:22: 9b:c6:8f:ec:11:09:c8:53:74:42:7f:a3:b7:23:fc:9d:5a:ca: bd:98:ba:a8:e7:06:88:8c:40:bc:a9:73:18:f6:1d:bf:70:c7: e0:3e:27:47 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIUbuap3njL3BfW6xo3yblGaZCPFjEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTY0NloX DTI3MDUxMDE2MDE0NlowMzExMC8GA1UEAxMoNTQwNzgyNEYyMDk0QkRCNUU5NkM0 NTBBNEYzNjU2M0E3MzIyNUNDQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/H1polmc5WjaQZQs9p5Wacbr6RiWC0DE1sES9P5o/QhswnE4OpYL7Ce7+G 4Mxys5X3dgbUHbVOmmTYT4ouOA1F8Mah5fAnSVQdLrIjeQhpoApGfjougB5K2EUE 98wkgXOTHvL5xQmmrntCbrlkmAmv3XDVKlRyVlZpIKvHMhQUAbARM6x6XsAbVDVj dfhK5qTkazhARm59j+PbuXyoh17NUPlAZ2QU549ow7RF68mTZ4RcIJIP++Pc5zDP jZqOSd1Pwg4VM5NUfYW1jsvOPNfqL/lyZ7WsikXeIAIkjMq0y3yM3H1wEfZ2UoAp qYlBunxc3sX63x+sGcw/iy2cUUMCAwEAAaOCAoIwggJ+MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFQHgk8glL216WxFCk82VjpzIlzLMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSU1QTEUvMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0lNUExF LzAvNTQwNzgyNEYyMDk0QkRCNUU5NkM0NTBBNEYzNjU2M0E3MzIyNUNDQi5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACQBumAwGQYIKwYBBQUHAQgBAf8ECjAIoAYwBAICJsMw DQYJKoZIhvcNAQELBQADggEBAGBGhPHm4SvxhuEsNZEbncrlh+lUdgWkmXnDHrfC Kf+/dt8JAEvKRoEVSb9mnsK5x/52iNJCVeO8ea8A+rKlGgfRKeiLh6l3lu6AQHxu 0tclhcQoOGYF8pYbT/jimszCnQL78+cwJchYNjXdXpG86+6GwhyTYlzot1woB5+x oJoto/vHLbuLNF/u+1lXMvUdWlLn+MZhHAwT5ugK/5TWf9vgperfgau71d5nFoEr yEu9fOZy1rLTaqcKQZpkE57i02Zjtsn0XLMJaEcsHSpLmMKYxf/fhL9uIpvGj+wR CchTdEJ/o7cj/J1ayr2YuqjnBoiMQLypcxj2Hb9wx+A+J0c= -----END CERTIFICATE-----Generated at Tue May 12 22:16:25 2026 by rpki-client