$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/540D5EB957E44D80783D8B880FD2A47A69077A24.cer File: 540D5EB957E44D80783D8B880FD2A47A69077A24.cer (raw, json) Hash identifier: I140o71K3QMFmXLHbZ+6xx8q7kKgu4OZBcnerTm9XoI= Subject key identifier: 54:0D:5E:B9:57:E4:4D:80:78:3D:8B:88:0F:D2:A4:7A:69:07:7A:24 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 0B3982D17CA2106255DFA15757AC57B69B3A89C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/COCHENTEK/0/540D5EB957E44D80783D8B880FD2A47A69077A24.mft caRepository: rsync://rpkica.twnic.tw/rpki/COCHENTEK/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:24 +0000 Certificate not after: Mon 10 May 2027 15:49:24 +0000 Subordinate resources: IP: 103.36.24.0/23 IP: 2400:bea0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:39:82:d1:7c:a2:10:62:55:df:a1:57:57:ac:57:b6:9b:3a:89:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:24 2026 GMT Not After : May 10 15:49:24 2027 GMT Subject: CN=540D5EB957E44D80783D8B880FD2A47A69077A24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4c:4a:15:9b:69:01:03:7d:52:28:94:20:ea: 8e:37:06:d7:57:34:d2:c0:39:85:3f:42:60:1f:13: 99:35:d5:60:ab:b0:e0:5e:97:3e:51:b3:75:68:bd: 6e:e8:f8:bb:f4:44:a4:6c:60:b9:6d:da:c5:f4:80: f4:f0:7b:8c:2e:43:9c:a1:90:31:30:50:cc:2d:57: 1f:40:97:95:7f:52:43:92:50:7b:5b:cf:5d:3f:b3: ab:9b:22:88:5a:e4:7a:e1:44:c2:69:c5:35:b5:33: 38:46:c2:af:69:b9:4e:fc:df:4e:13:74:a3:c6:c2: 23:89:0e:42:3a:2a:ae:d7:c6:4f:37:96:b2:c8:f1: 50:64:5e:b6:e0:da:1d:d3:06:20:9a:ed:74:13:cb: d6:5d:a6:46:74:63:2b:56:48:ad:e6:76:74:10:a4: e2:2c:30:4d:3a:c1:59:91:95:96:7f:0a:76:5e:c0: 33:80:e8:2a:4c:cf:c4:c0:06:24:09:36:3c:1a:af: ab:35:b1:70:53:ac:0d:43:d5:e6:89:78:74:62:02: f0:d6:72:3c:5b:4b:d8:af:78:2f:55:7f:f5:b3:8c: 49:d0:81:24:02:6b:43:87:0d:8c:09:93:3d:f1:37: 60:1f:d2:c9:f1:50:64:84:b9:02:9a:de:16:a4:71: e0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 54:0D:5E:B9:57:E4:4D:80:78:3D:8B:88:0F:D2:A4:7A:69:07:7A:24 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/COCHENTEK/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/COCHENTEK/0/540D5EB957E44D80783D8B880FD2A47A69077A24.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.24.0/23 IPv6: 2400:bea0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:c2:5b:ae:6d:dc:6d:05:f9:23:8f:08:34:13:10:52:d0:15: 79:3f:a9:4e:0d:3c:72:98:c7:25:8b:3b:0c:54:fe:ec:89:61: df:76:1c:e8:b9:fd:54:42:f3:0e:ba:2c:78:5a:ee:30:3c:1c: 05:d3:56:88:84:80:9a:3b:b1:0c:7f:d6:37:70:b6:7f:a7:fe: c0:a6:16:61:6f:c3:71:9f:31:b4:4e:4f:74:2a:a5:63:f5:1a: 70:56:c5:cc:c5:6d:a2:2c:ee:7e:f4:d9:6e:94:63:aa:df:33: 96:fe:03:16:f4:aa:18:df:53:81:c1:8d:45:0e:e3:f8:5a:17: 86:0f:1b:76:69:b8:83:af:65:8c:e1:5a:8d:71:c0:36:a9:34: aa:63:0f:1b:88:67:87:26:cb:15:bb:2f:4b:12:a8:ea:80:09: 3a:bc:47:0e:8b:c4:f9:6a:3c:41:ce:90:d0:f1:28:3d:b3:9d: fd:6d:b6:3d:e6:e6:a0:bd:cf:da:88:45:27:fc:4d:3d:85:f2: 6a:1e:2f:14:d3:76:7c:58:31:52:87:4b:2e:18:e0:d4:6c:6d: 42:70:6d:aa:1c:9c:da:e1:69:3d:1e:a0:00:16:80:dc:bc:08: a7:f1:f1:2d:c2:9f:18:73:aa:57:74:70:e7:e2:32:49:6f:da: e2:98:3d:0a -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIUCzmC0XyiEGJV36FXV6xXtps6icMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQyNFoX DTI3MDUxMDE1NDkyNFowMzExMC8GA1UEAxMoNTQwRDVFQjk1N0U0NEQ4MDc4M0Q4 Qjg4MEZEMkE0N0E2OTA3N0EyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJZMShWbaQEDfVIolCDqjjcG11c00sA5hT9CYB8TmTXVYKuw4F6XPlGzdWi9 buj4u/REpGxguW3axfSA9PB7jC5DnKGQMTBQzC1XH0CXlX9SQ5JQe1vPXT+zq5si iFrkeuFEwmnFNbUzOEbCr2m5TvzfThN0o8bCI4kOQjoqrtfGTzeWssjxUGRetuDa HdMGIJrtdBPL1l2mRnRjK1ZIreZ2dBCk4iwwTTrBWZGVln8Kdl7AM4DoKkzPxMAG JAk2PBqvqzWxcFOsDUPV5ol4dGIC8NZyPFtL2K94L1V/9bOMSdCBJAJrQ4cNjAmT PfE3YB/SyfFQZIS5ApreFqRx4EMCAwEAAaOCAnswggJ3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFQNXrlX5E2AeD2LiA/SpHppB3okMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHjBggrBgEFBQcBCwSB1jCB0zA1Bggr BgEFBQcwBYYpcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DT0NIRU5URUsv MC8wYQYIKwYBBQUHMAqGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ09D SEVOVEVLLzAvNTQwRDVFQjk1N0U0NEQ4MDc4M0Q4Qjg4MEZEMkE0N0E2OTA3N0Ey NC5tZnQwNwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEAWckGDANBAIAAjAHAwUAJAC+oDANBgkqhkiG 9w0BAQsFAAOCAQEADsJbrm3cbQX5I48INBMQUtAVeT+pTg08cpjHJYs7DFT+7Ilh 33Yc6Ln9VELzDroseFruMDwcBdNWiISAmjuxDH/WN3C2f6f+wKYWYW/DcZ8xtE5P dCqlY/UacFbFzMVtoizufvTZbpRjqt8zlv4DFvSqGN9TgcGNRQ7j+FoXhg8bdmm4 g69ljOFajXHANqk0qmMPG4hnhybLFbsvSxKo6oAJOrxHDovE+Wo8Qc6Q0PEoPbOd /W22PebmoL3P2ohFJ/xNPYXyah4vFNN2fFgxUodLLhjg1GxtQnBtqhyc2uFpPR6g ABaA3LwIp/HxLcKfGHOqV3Rw5+IySW/a4pg9Cg== -----END CERTIFICATE-----Generated at Wed May 13 02:13:04 2026 by rpki-client