$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8.cer File: 59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8.cer (raw, json) Hash identifier: AltezuIOfRtSqT2E99dmZR12su8O2kLqJeEZ53q36Wo= Subject key identifier: 59:DA:68:B6:23:93:24:DC:D6:FD:0C:8F:E9:94:9E:2F:7D:E1:FF:D8 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 3579E0FA8AC988440155186979EF4B3C75FB809D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SINOPAC/0/59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8.mft caRepository: rsync://rpkica.twnic.tw/rpki/SINOPAC/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:53 +0000 Certificate not after: Mon 10 May 2027 16:01:53 +0000 Subordinate resources: AS: 18045 IP: 211.76.144.0/20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:79:e0:fa:8a:c9:88:44:01:55:18:69:79:ef:4b:3c:75:fb:80:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:53 2026 GMT Not After : May 10 16:01:53 2027 GMT Subject: CN=59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:45:1d:f2:9a:a2:0f:12:8b:60:a6:fa:72:e3: 90:57:fc:2a:72:9a:5b:7e:1b:05:b4:d6:a4:7a:59: cd:f7:cc:a3:d9:6d:51:d7:e2:c0:9f:ce:fd:aa:d2: c6:36:1c:2a:2f:b8:af:28:65:ae:55:2c:72:fc:5b: 77:60:b9:32:42:6e:a5:10:6a:da:50:39:95:c3:d2: 3a:d6:e6:bc:2a:22:e6:57:a7:11:b8:4a:f8:29:bb: 36:1f:99:0c:51:ba:18:8d:53:1e:d6:df:90:e7:d3: c2:29:f7:dc:6e:28:d2:2f:d7:e4:a4:5d:6d:d2:d4: fc:40:af:cc:a0:d2:89:9c:4c:7a:ca:48:c5:0a:5d: a8:f6:04:31:0c:cf:9f:61:71:c1:14:70:7c:81:bc: 2b:36:86:d7:d9:e1:44:81:5a:db:da:8d:07:07:38: 61:a8:5c:f4:f5:62:99:ca:ed:21:36:1d:ca:6e:b3: 29:63:8c:4b:ca:1b:23:35:1a:38:0a:da:2e:3d:55: c0:06:da:07:3e:fc:3e:c6:2c:42:a6:6e:d4:b6:b0: 9f:aa:45:48:65:1b:e8:51:98:22:1d:e9:70:09:dc: 4d:49:9c:11:bb:35:39:54:e7:c8:b3:b6:04:82:be: 76:d8:50:32:5d:29:5d:a8:f3:8a:bf:08:d0:d5:7f: 26:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 59:DA:68:B6:23:93:24:DC:D6:FD:0C:8F:E9:94:9E:2F:7D:E1:FF:D8 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SINOPAC/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SINOPAC/0/59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.76.144.0/20 sbgp-autonomousSysNum: critical Autonomous System Numbers: 18045 Signature Algorithm: sha256WithRSAEncryption 1f:e7:4d:a3:41:4f:ca:f0:91:ec:77:15:6f:39:fa:88:c4:5b: 77:1c:30:80:07:6f:d8:0c:34:f2:6a:76:ef:91:9f:26:78:c7: e3:95:a9:09:16:dc:8e:6b:be:7b:07:c0:9c:fa:95:df:41:ec: 04:b1:5d:83:c7:68:b8:1e:28:f2:73:71:b3:9d:ef:d0:b8:e9: 36:e1:f9:4f:f5:a2:f3:19:61:d9:cc:12:1e:65:d2:cc:b6:01: cd:0f:18:9c:5e:cb:45:91:54:01:ac:74:6b:59:aa:3c:b9:fa: 7f:38:8f:46:91:d0:fb:f2:07:91:d1:64:4f:62:9c:41:68:93: 89:74:4f:ae:2b:69:a8:f7:1d:a7:7b:51:cf:ad:3e:48:ef:d6: 2e:64:3c:8d:9f:a4:f4:ea:52:ab:9b:60:3e:f6:78:33:99:b7: 17:bc:cb:9e:63:21:26:09:ca:63:d2:e7:a2:bc:fc:93:24:95: 6a:59:d5:e7:2a:53:ea:58:f7:f3:10:5e:07:fd:c9:63:53:f8: f7:a3:6b:81:1c:de:7e:51:eb:55:6b:93:5c:42:93:31:de:40: 33:a5:e2:15:8a:84:db:2b:93:e6:52:23:5c:28:5b:af:ed:57: 9d:3d:28:c4:d6:15:b0:fc:1c:66:ad:67:06:f1:2e:84:81:33: c0:30:9b:9e -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIUNXng+orJiEQBVRhpee9LPHX7gJ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTY1M1oX DTI3MDUxMDE2MDE1M1owMzExMC8GA1UEAxMoNTlEQTY4QjYyMzkzMjREQ0Q2RkQw QzhGRTk5NDlFMkY3REUxRkZEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNFHfKaog8Si2Cm+nLjkFf8KnKaW34bBbTWpHpZzffMo9ltUdfiwJ/O/arS xjYcKi+4ryhlrlUscvxbd2C5MkJupRBq2lA5lcPSOtbmvCoi5lenEbhK+Cm7Nh+Z DFG6GI1THtbfkOfTwin33G4o0i/X5KRdbdLU/ECvzKDSiZxMespIxQpdqPYEMQzP n2FxwRRwfIG8KzaG19nhRIFa29qNBwc4Yahc9PVimcrtITYdym6zKWOMS8obIzUa OAraLj1VwAbaBz78PsYsQqZu1Lawn6pFSGUb6FGYIh3pcAncTUmcEbs1OVTnyLO2 BIK+dthQMl0pXajzir8I0NV/JoUCAwEAAaOCAoMwggJ/MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFnaaLYjkyTc1v0Mj+mUni994f/YMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSU5PUEFDLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NJTk9Q QUMvMC81OURBNjhCNjIzOTMyNERDRDZGRDBDOEZFOTk0OUUyRjdERTFGRkQ4Lm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQE00yQMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAkZ9 MA0GCSqGSIb3DQEBCwUAA4IBAQAf502jQU/K8JHsdxVvOfqIxFt3HDCAB2/YDDTy anbvkZ8meMfjlakJFtyOa757B8Cc+pXfQewEsV2Dx2i4Hijyc3Gzne/QuOk24flP 9aLzGWHZzBIeZdLMtgHNDxicXstFkVQBrHRrWao8ufp/OI9GkdD78geR0WRPYpxB aJOJdE+uK2mo9x2ne1HPrT5I79YuZDyNn6T06lKrm2A+9ngzmbcXvMueYyEmCcpj 0ueivPyTJJVqWdXnKlPqWPfzEF4H/cljU/j3o2uBHN5+UetVa5NcQpMx3kAzpeIV ioTbK5PmUiNcKFuv7VedPSjE1hWw/BxmrWcG8S6EgTPAMJue -----END CERTIFICATE-----Generated at Tue May 12 22:47:51 2026 by rpki-client