$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/55849E9DFF3E4C6A4554160BC979EAEB2ED8220D.cer File: 55849E9DFF3E4C6A4554160BC979EAEB2ED8220D.cer (raw, json) Hash identifier: rWrxsziGpCSPRn3djBleLFWGTUw6KvjDqge8U7y7RrE= Subject key identifier: 55:84:9E:9D:FF:3E:4C:6A:45:54:16:0B:C9:79:EA:EB:2E:D8:22:0D Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 31E092CA30AB01D42A566E322110F1DABBD38EF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/UWAYIO/0/55849E9DFF3E4C6A4554160BC979EAEB2ED8220D.mft caRepository: rsync://rpkica.twnic.tw/rpki/UWAYIO/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 16:00:25 +0000 Certificate not after: Mon 10 May 2027 16:05:25 +0000 Subordinate resources: AS: 152624 IP: 2402:b20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:e0:92:ca:30:ab:01:d4:2a:56:6e:32:21:10:f1:da:bb:d3:8e:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 16:00:25 2026 GMT Not After : May 10 16:05:25 2027 GMT Subject: CN=55849E9DFF3E4C6A4554160BC979EAEB2ED8220D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:51:1b:c2:2e:57:1c:76:52:e4:e5:2d:8c:11: 15:d9:dc:53:f5:2a:79:5c:db:ae:1c:3f:d3:d5:ec: 18:8b:cb:80:5b:38:f3:cf:c4:19:6a:8e:ae:eb:18: 51:6c:b0:82:e4:49:8b:a6:24:9b:56:a4:ab:aa:f1: 15:35:f4:a0:00:17:70:ff:86:4e:5b:3d:09:1a:50: e3:7f:1b:44:ce:d4:13:cd:9e:77:f7:3b:61:d0:02: 3e:1d:90:63:83:4b:35:3b:d7:43:be:39:49:53:0b: 82:c0:3c:7a:2f:aa:68:2f:e9:a4:ac:66:96:ac:1d: 2d:03:dd:62:7f:7c:6b:cf:f4:cb:58:df:5e:4f:50: a6:71:b0:38:bc:39:d8:ef:54:27:66:b0:8e:69:01: 6e:f5:3a:91:c9:23:4d:9a:36:97:80:18:91:dd:cf: 8d:08:9c:4b:0f:2d:4c:e9:50:27:e9:7c:41:44:6e: e2:0d:03:b7:ca:73:a1:cf:66:ad:0e:72:1a:cb:21: d3:06:ed:99:cf:34:2a:97:d3:d4:27:08:2e:43:c5: bf:74:ba:ba:4e:c3:da:0d:7d:f7:12:20:ad:55:2c: 17:56:26:3b:c6:0a:36:fb:56:c8:f8:61:b8:1b:9c: 58:99:69:40:14:f4:aa:61:77:d0:2b:75:35:58:ba: 8f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 55:84:9E:9D:FF:3E:4C:6A:45:54:16:0B:C9:79:EA:EB:2E:D8:22:0D X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/UWAYIO/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/UWAYIO/0/55849E9DFF3E4C6A4554160BC979EAEB2ED8220D.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:b20::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 152624 Signature Algorithm: sha256WithRSAEncryption 52:22:8b:dd:f7:34:c4:eb:62:2b:b7:84:62:f4:7c:bc:32:e9: a0:29:6e:44:bf:a5:86:4a:e1:cd:82:a5:bf:ce:d2:66:75:ec: 97:4c:9d:76:db:54:43:d6:5c:fa:bb:d2:87:a7:41:6e:81:0a: 4c:87:c8:41:e0:42:f5:e3:30:cb:27:95:0d:be:3b:75:89:55: 21:f2:24:11:31:1e:77:f2:59:e3:c5:f5:8c:17:ca:14:0f:c3: 1a:77:ef:bf:b3:f7:0c:0a:67:51:73:7c:1f:d4:92:e1:cf:92: f9:90:d6:ef:e2:83:08:72:be:93:1b:f9:23:c1:94:60:05:9b: 1a:cf:19:96:60:52:6a:b6:64:fd:9a:79:29:10:70:8c:3a:55: 32:2a:7a:5b:94:1a:1d:8d:5b:6f:b4:76:a8:e2:28:fa:62:9e: e6:26:ec:85:89:83:2f:8f:17:31:68:5e:9d:bb:f1:db:a8:66: 99:3b:ad:ec:51:31:ec:79:9b:04:0f:74:53:41:2d:60:88:b8: af:d1:ac:07:f4:40:d4:0a:31:13:04:04:8a:09:ad:1c:bc:80: 44:b8:f6:0e:4c:37:fc:d0:2f:6e:84:87:a1:b1:21:27:85:2a: 56:c9:99:1c:6c:8e:d2:37:f6:1e:e0:2b:bc:e5:46:2f:2d:71: 00:89:6e:14 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIUMeCSyjCrAdQqVm4yIRDx2rvTjvQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE2MDAyNVoX DTI3MDUxMDE2MDUyNVowMzExMC8GA1UEAxMoNTU4NDlFOURGRjNFNEM2QTQ1NTQx NjBCQzk3OUVBRUIyRUQ4MjIwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIpRG8IuVxx2UuTlLYwRFdncU/UqeVzbrhw/09XsGIvLgFs488/EGWqOrusY UWywguRJi6Ykm1akq6rxFTX0oAAXcP+GTls9CRpQ438bRM7UE82ed/c7YdACPh2Q Y4NLNTvXQ745SVMLgsA8ei+qaC/ppKxmlqwdLQPdYn98a8/0y1jfXk9QpnGwOLw5 2O9UJ2awjmkBbvU6kckjTZo2l4AYkd3PjQicSw8tTOlQJ+l8QURu4g0Dt8pzoc9m rQ5yGssh0wbtmc80KpfT1CcILkPFv3S6uk7D2g199xIgrVUsF1YmO8YKNvtWyPhh uBucWJlpQBT0qmF30Ct1NVi6j+ECAwEAAaOCAoMwggJ/MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFWEnp3/PkxqRVQWC8l56usu2CINMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9VV0FZSU8vMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVVdBWUlP LzAvNTU4NDlFOURGRjNFNEM2QTQ1NTQxNjBCQzk3OUVBRUIyRUQ4MjIwRC5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACQCCyAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAlQw MA0GCSqGSIb3DQEBCwUAA4IBAQBSIovd9zTE62Irt4Ri9Hy8MumgKW5Ev6WGSuHN gqW/ztJmdeyXTJ1221RD1lz6u9KHp0FugQpMh8hB4EL14zDLJ5UNvjt1iVUh8iQR MR538lnjxfWMF8oUD8Mad++/s/cMCmdRc3wf1JLhz5L5kNbv4oMIcr6TG/kjwZRg BZsazxmWYFJqtmT9mnkpEHCMOlUyKnpblBodjVtvtHao4ij6Yp7mJuyFiYMvjxcx aF6du/HbqGaZO63sUTHseZsED3RTQS1giLiv0awH9EDUCjETBASKCa0cvIBEuPYO TDf80C9uhIehsSEnhSpWyZkcbI7SN/Ye4Cu85UYvLXEAiW4U -----END CERTIFICATE-----Generated at Tue May 12 22:31:58 2026 by rpki-client