$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/60DF11AF99914DE6BE9FA9FC357DA624FB09A782.cer File: 60DF11AF99914DE6BE9FA9FC357DA624FB09A782.cer (raw, json) Hash identifier: 5b64XO8jjwlaKu3p6R7ZK4X0OnPGEO9Qlc28iMMHf90= Subject key identifier: 60:DF:11:AF:99:91:4D:E6:BE:9F:A9:FC:35:7D:A6:24:FB:09:A7:82 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 32FB0FE3ABBDEA13BB78F04D9391CED788189698 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/ETIME/0/60DF11AF99914DE6BE9FA9FC357DA624FB09A782.mft caRepository: rsync://rpkica.twnic.tw/rpki/ETIME/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:45:34 +0000 Certificate not after: Mon 10 May 2027 15:50:34 +0000 Subordinate resources: IP: 103.158.228.0/23 IP: 103.227.226.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:fb:0f:e3:ab:bd:ea:13:bb:78:f0:4d:93:91:ce:d7:88:18:96:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:45:34 2026 GMT Not After : May 10 15:50:34 2027 GMT Subject: CN=60DF11AF99914DE6BE9FA9FC357DA624FB09A782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d5:6f:f5:4a:97:69:ef:5f:94:41:d9:14:64: c5:49:82:97:22:1d:a3:85:c0:5d:d6:a9:30:1f:e3: 6e:ae:54:20:f4:59:ef:fa:c2:b3:f7:27:20:5a:14: fd:45:d7:bf:30:cd:f7:3f:99:37:1b:05:ac:6e:de: ff:e9:45:2c:63:16:fa:f3:d1:f2:19:c7:75:4c:85: b2:db:35:30:7e:db:af:39:56:49:00:e0:5d:bb:72: fd:73:93:ee:08:66:e8:37:ce:47:20:cb:aa:2e:78: 55:85:44:c4:55:4b:a6:5f:97:d5:4d:ac:71:f9:59: 07:6b:ad:22:ac:0a:8c:f3:aa:28:24:c7:59:12:cc: 3a:73:be:c5:cd:93:4f:2b:41:ff:40:4b:51:2c:b6: 94:93:5f:08:22:45:05:6a:87:57:b6:e8:33:00:79: a8:08:20:38:6d:c2:17:f4:ae:71:00:6c:da:56:62: 3f:5d:55:11:e5:5d:d4:76:57:b1:e3:18:db:71:fc: 4a:a5:02:5c:79:11:93:83:d5:41:12:ae:47:ba:3e: fb:4e:50:13:66:f1:bc:d2:b0:8f:03:ff:8d:f5:5d: ab:43:45:b0:13:eb:19:3b:20:bf:a6:23:0d:f6:0f: 07:dd:73:91:ee:ba:44:42:a9:6d:24:55:b4:1f:d6: 87:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 60:DF:11:AF:99:91:4D:E6:BE:9F:A9:FC:35:7D:A6:24:FB:09:A7:82 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/ETIME/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/ETIME/0/60DF11AF99914DE6BE9FA9FC357DA624FB09A782.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.228.0/23 103.227.226.0/23 Signature Algorithm: sha256WithRSAEncryption 65:57:43:db:a0:3d:32:96:08:65:40:58:7e:79:74:20:62:dc: 0a:cd:70:c7:a8:9d:5d:f4:fd:ea:c9:11:e6:f3:00:6e:07:50: 28:bc:26:d1:b7:81:0c:18:61:9e:43:24:07:d6:cf:2a:89:00: cb:75:82:fb:d9:a4:f9:28:f1:80:8a:bf:0a:e3:d3:40:4a:37: f4:49:e1:d9:5c:01:4d:18:9a:d4:d4:2f:6b:49:47:bc:c7:89: e7:da:a4:3a:be:a6:c1:21:a2:a5:93:f2:0c:bb:d0:34:79:7f: d5:ad:6d:d4:c3:99:a2:e3:59:ed:ab:4c:aa:4c:76:c4:87:82: 90:c4:f9:69:f4:67:e3:16:ac:5f:8e:a6:1b:5e:57:8d:4e:80: 49:fa:8a:2f:6a:80:83:c3:5f:94:10:69:d0:b5:55:47:84:4f: eb:17:8e:c2:e4:ee:76:5d:da:56:05:ca:92:51:67:49:94:8c: 6d:6c:18:a9:56:7e:11:41:5b:17:cc:6a:f7:72:89:4a:ac:16: 93:e6:36:84:5d:ef:ec:17:aa:41:09:7e:0a:25:44:00:05:67: 68:c0:f1:69:bc:ea:15:eb:47:ff:2f:1b:51:a3:0f:be:b8:8a: 0c:9e:89:2b:dc:2f:71:0e:40:24:7c:b0:7d:c0:0d:3a:95:2d: f6:2b:b8:ae -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUMvsP46u96hO7ePBNk5HO14gYlpgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDUzNFoX DTI3MDUxMDE1NTAzNFowMzExMC8GA1UEAxMoNjBERjExQUY5OTkxNERFNkJFOUZB OUZDMzU3REE2MjRGQjA5QTc4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjVb/VKl2nvX5RB2RRkxUmClyIdo4XAXdapMB/jbq5UIPRZ7/rCs/cnIFoU /UXXvzDN9z+ZNxsFrG7e/+lFLGMW+vPR8hnHdUyFsts1MH7brzlWSQDgXbty/XOT 7ghm6DfORyDLqi54VYVExFVLpl+X1U2scflZB2utIqwKjPOqKCTHWRLMOnO+xc2T TytB/0BLUSy2lJNfCCJFBWqHV7boMwB5qAggOG3CF/SucQBs2lZiP11VEeVd1HZX seMY23H8SqUCXHkRk4PVQRKuR7o++05QE2bxvNKwjwP/jfVdq0NFsBPrGTsgv6Yj DfYPB91zke66REKpbSRVtB/Wh9UCAwEAAaOCAmowggJmMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGDfEa+ZkU3mvp+p/DV9piT7CaeCMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9FVElNRS8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9FVElNRS8w LzYwREYxMUFGOTk5MTRERTZCRTlGQTlGQzM1N0RBNjI0RkIwOUE3ODIubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnnuQDBAFn4+IwDQYJKoZIhvcNAQELBQADggEBAGVXQ9ug PTKWCGVAWH55dCBi3ArNcMeonV30/erJEebzAG4HUCi8JtG3gQwYYZ5DJAfWzyqJ AMt1gvvZpPko8YCKvwrj00BKN/RJ4dlcAU0YmtTUL2tJR7zHiefapDq+psEhoqWT 8gy70DR5f9WtbdTDmaLjWe2rTKpMdsSHgpDE+Wn0Z+MWrF+OphteV41OgEn6ii9q gIPDX5QQadC1VUeET+sXjsLk7nZd2lYFypJRZ0mUjG1sGKlWfhFBWxfMavdyiUqs FpPmNoRd7+wXqkEJfgolRAAFZ2jA8Wm86hXrR/8vG1GjD764igyeiSvcL3EOQCR8 sH3ADTqVLfYruK4= -----END CERTIFICATE-----Generated at Tue May 12 22:32:39 2026 by rpki-client