$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.cer File: 5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.cer (raw, json) Hash identifier: F7Bcb1LnQUqMHxkeHwPO0wGRLV0zoRu05/H6xeaFpmc= Subject key identifier: 5A:4C:57:23:25:82:51:A2:F2:23:37:EC:5A:BE:9F:2B:1A:E2:FB:4C Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 6F242A0AF9F16B45E5C99621D19B0037D0DEB746 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/DCTV/0/5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.mft caRepository: rsync://rpkica.twnic.tw/rpki/DCTV/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:45:01 +0000 Certificate not after: Mon 10 May 2027 15:50:01 +0000 Subordinate resources: AS: 131607 IP: 27.0.152.0/22 IP: 103.207.252.0/22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:24:2a:0a:f9:f1:6b:45:e5:c9:96:21:d1:9b:00:37:d0:de:b7:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:45:01 2026 GMT Not After : May 10 15:50:01 2027 GMT Subject: CN=5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9c:5e:71:9b:b7:cb:45:35:cd:ac:47:a9:6e: b4:07:b7:fd:a9:d8:50:11:33:f9:94:c2:b8:7b:43: 7a:98:38:36:23:72:f1:8d:ab:c2:45:8b:fc:bc:ea: 93:e4:69:16:41:6a:51:a2:fb:a5:c0:d2:f1:48:8c: 7a:6b:24:8b:49:a4:a9:91:03:ad:a3:ad:45:32:4c: 1a:0e:4d:2c:f3:f2:dd:ab:d1:2f:ab:e0:4a:2d:58: 4b:1b:79:0e:2a:7a:4f:b3:37:98:b0:a0:66:49:80: 64:4b:bf:ba:a1:ec:d9:03:61:c3:5a:fa:c3:ef:a3: 22:be:a5:4c:cb:a6:25:48:29:04:11:15:70:6c:db: 83:04:1c:bd:a6:03:73:ce:2d:da:16:99:ff:3b:c2: ec:20:f8:b8:ee:b4:7d:b7:a3:b9:b4:66:8f:ca:05: 26:38:ee:20:c8:ca:2e:a3:95:5a:5e:fa:04:72:e1: 96:19:79:be:56:46:27:a1:2f:f7:c2:65:08:3e:80: 11:7e:db:b1:ec:e7:49:fe:80:8c:15:50:3b:7c:d4: ed:1c:96:f2:f3:9a:33:7a:3d:37:29:99:f8:8c:c8: 10:c1:1b:ef:11:e0:76:7e:d6:91:01:65:e3:c5:dd: 50:44:69:b4:30:1b:7c:ce:21:e9:3e:03:37:05:cd: dd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5A:4C:57:23:25:82:51:A2:F2:23:37:EC:5A:BE:9F:2B:1A:E2:FB:4C X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/DCTV/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/DCTV/0/5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.152.0/22 103.207.252.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131607 Signature Algorithm: sha256WithRSAEncryption 2c:16:33:f2:5f:73:79:5c:33:3e:8b:96:45:a4:f1:09:94:b2: bc:ab:ee:9d:31:04:16:8e:84:15:1f:cd:78:97:29:0a:79:b3: db:1f:a5:49:8e:f0:bd:be:ee:0e:fe:71:e8:6f:bd:9a:ed:35: 14:52:af:95:41:76:88:8f:2b:a4:02:51:7c:79:06:88:1f:7e: f5:6c:8c:be:d2:ec:50:23:4b:94:76:36:26:18:e6:16:46:19: fd:f4:3b:d8:4a:07:81:90:33:20:64:95:27:4b:dc:18:26:90: 12:73:80:4e:5d:5e:b5:26:2e:45:76:65:08:09:b2:6d:c9:72: 6a:e1:fe:cf:85:05:8b:a6:b9:56:e5:a4:c5:c6:b6:a3:48:86: 81:bc:88:ca:93:c4:42:44:fc:52:99:1d:fd:8b:b6:aa:2f:93: 4a:5f:96:21:91:49:86:2c:93:75:4b:79:ca:02:a5:3f:34:6c: 9a:8e:47:08:bf:14:2f:0a:7e:af:52:28:46:ff:2f:e2:bc:a4: 88:7b:db:94:25:d3:64:fd:45:d0:75:d4:36:2f:89:f4:af:b8: 77:70:ca:09:8a:59:04:37:94:cb:2b:2f:67:c5:39:11:9a:84: b6:47:35:f0:9f:47:b3:8e:4e:b9:c1:d2:3e:b9:9d:20:9b:db: 17:2f:6b:17 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgIUbyQqCvnxa0XlyZYh0ZsAN9Det0YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDUwMVoX DTI3MDUxMDE1NTAwMVowMzExMC8GA1UEAxMoNUE0QzU3MjMyNTgyNTFBMkYyMjMz N0VDNUFCRTlGMkIxQUUyRkI0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOycXnGbt8tFNc2sR6lutAe3/anYUBEz+ZTCuHtDepg4NiNy8Y2rwkWL/Lzq k+RpFkFqUaL7pcDS8UiMemski0mkqZEDraOtRTJMGg5NLPPy3avRL6vgSi1YSxt5 Dip6T7M3mLCgZkmAZEu/uqHs2QNhw1r6w++jIr6lTMumJUgpBBEVcGzbgwQcvaYD c84t2haZ/zvC7CD4uO60fbejubRmj8oFJjjuIMjKLqOVWl76BHLhlhl5vlZGJ6Ev 98JlCD6AEX7bseznSf6AjBVQO3zU7RyW8vOaM3o9NymZ+IzIEMEb7xHgdn7WkQFl 48XdUERptDAbfM4h6T4DNwXN3ScCAwEAAaOCAoQwggKAMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFpMVyMlglGi8iM37Fq+nysa4vtMMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9EQ1RWLzAvMFwG CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RDVFYvMC81 QTRDNTcyMzI1ODI1MUEyRjIyMzM3RUM1QUJFOUYyQjFBRTJGQjRDLm1mdDA3Bggr BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYw FDASBAIAATAMAwQCGwCYAwQCZ8/8MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwIC FzANBgkqhkiG9w0BAQsFAAOCAQEALBYz8l9zeVwzPouWRaTxCZSyvKvunTEEFo6E FR/NeJcpCnmz2x+lSY7wvb7uDv5x6G+9mu01FFKvlUF2iI8rpAJRfHkGiB9+9WyM vtLsUCNLlHY2JhjmFkYZ/fQ72EoHgZAzIGSVJ0vcGCaQEnOATl1etSYuRXZlCAmy bclyauH+z4UFi6a5VuWkxca2o0iGgbyIypPEQkT8Upkd/Yu2qi+TSl+WIZFJhiyT dUt5ygKlPzRsmo5HCL8ULwp+r1IoRv8v4rykiHvblCXTZP1F0HXUNi+J9K+4d3DK CYpZBDeUyysvZ8U5EZqEtkc18J9Hs45OucHSPrmdIJvbFy9rFw== -----END CERTIFICATE-----Generated at Tue May 12 22:16:54 2026 by rpki-client