$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer File: 61F2C234A51074E0978404BDC79AA79130040B00.cer (raw, json) Hash identifier: HTled5zXMhMPvyqP3ppEtqqi4+aOQXTx54qjXkilejk= Subject key identifier: 61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 13ED5D0427B6E6CB0E96A56F0CAD9D80FFDFD366 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft caRepository: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:55:41 +0000 Certificate not after: Mon 10 May 2027 16:00:41 +0000 Subordinate resources: AS: 131674 IP: 103.147.130.0/23 IP: 2405:b8c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:ed:5d:04:27:b6:e6:cb:0e:96:a5:6f:0c:ad:9d:80:ff:df:d3:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:55:41 2026 GMT Not After : May 10 16:00:41 2027 GMT Subject: CN=61F2C234A51074E0978404BDC79AA79130040B00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:22:b6:79:7e:2b:55:a0:fa:9a:32:9a:44:fc: 95:a9:84:ff:7d:b8:0a:dd:ba:5a:e0:4d:95:e4:53: d3:ab:cc:91:44:d7:3d:61:a7:0a:dd:1d:4f:e6:f6: 25:91:a4:c2:c3:45:1c:a4:ca:2f:b7:a3:09:05:e7: f8:bc:b4:b3:ed:41:bc:44:17:80:76:2a:16:7e:ac: a5:71:04:ac:50:6f:28:76:e0:2b:c1:cf:59:1a:41: ab:b9:a4:3c:fe:5e:84:d9:b5:70:74:72:68:b7:48: ff:ad:e1:ff:37:58:8a:b7:79:1d:e6:fb:b7:ae:1e: be:7d:25:46:fd:bc:84:6c:e1:63:c3:9b:9f:f7:86: cb:67:b3:5c:c4:5d:db:a8:5a:a6:de:ce:08:ca:28: f0:95:ac:dd:76:d2:fc:86:bf:70:ba:e5:eb:13:61: 68:44:54:c9:62:93:6f:14:c3:a2:46:df:9f:0a:91: c8:14:20:d8:a5:89:cf:bb:0d:67:48:71:ff:c8:9f: e0:38:b7:fb:98:5b:36:3d:6a:73:ee:bc:05:e5:b3: 26:d4:d6:ee:73:5e:b1:e5:73:a1:ac:6d:47:a2:cf: fa:7f:ed:5a:39:83:1e:a6:c5:75:59:62:80:e3:7d: 71:a7:10:d1:69:35:aa:84:e9:47:37:9c:49:3d:4f: ee:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.130.0/23 IPv6: 2405:b8c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131674 Signature Algorithm: sha256WithRSAEncryption ac:e6:f6:6a:1d:c9:9d:5e:44:6e:7b:d3:e0:b0:69:73:3c:cf: 34:28:71:fd:45:f8:4d:5f:71:f9:aa:58:1f:72:11:d9:b1:a2: 30:5f:22:8c:e1:c3:2c:30:5f:a6:bd:74:1e:48:9b:26:8d:94: 35:d3:6f:82:9c:05:03:c8:79:23:75:ec:2e:00:1b:e1:ee:7e: 09:88:a7:09:55:d4:66:aa:37:f9:97:7a:d4:76:ad:35:86:c7: b0:ca:dd:42:a1:e8:3f:48:18:04:77:5c:54:96:90:48:0f:09: 02:05:fd:2c:74:fe:1c:03:6b:5b:4b:3c:ff:d3:4b:f3:37:d9: 69:2e:c6:71:54:6f:84:7f:8e:01:b1:12:fd:27:fc:da:f1:54: 87:ec:d6:87:91:30:b0:eb:70:87:df:8e:30:f7:6e:3e:1a:7e: 87:0e:40:88:59:e0:4f:7a:db:6b:97:c2:32:03:13:3d:c8:6d: ab:58:f3:92:a2:03:24:fb:a6:3a:e9:8f:3b:53:0b:63:81:52: ad:e0:f4:63:20:74:8d:dc:72:e3:8a:04:c8:c8:23:cf:2a:8d: a2:e3:f9:ca:b5:a1:4b:d8:86:5c:1c:0c:88:3f:1a:09:af:81: 55:04:6f:b2:4a:8e:06:82:b3:4b:3d:cd:3b:38:ae:cc:19:dd: cf:2d:d5:af -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgIUE+1dBCe25ssOlqVvDK2dgP/f02YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTU0MVoX DTI3MDUxMDE2MDA0MVowMzExMC8GA1UEAxMoNjFGMkMyMzRBNTEwNzRFMDk3ODQw NEJEQzc5QUE3OTEzMDA0MEIwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEitnl+K1Wg+poymkT8lamE/324Ct26WuBNleRT06vMkUTXPWGnCt0dT+b2 JZGkwsNFHKTKL7ejCQXn+Ly0s+1BvEQXgHYqFn6spXEErFBvKHbgK8HPWRpBq7mk PP5ehNm1cHRyaLdI/63h/zdYird5Heb7t64evn0lRv28hGzhY8Obn/eGy2ezXMRd 26hapt7OCMoo8JWs3XbS/Ia/cLrl6xNhaERUyWKTbxTDokbfnwqRyBQg2KWJz7sN Z0hx/8if4Di3+5hbNj1qc+68BeWzJtTW7nNeseVzoaxtR6LP+n/tWjmDHqbFdVli gON9cacQ0Wk1qoTpRzecST1P7mUCAwEAAaOCApUwggKRMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGHywjSlEHTgl4QEvceap5EwBAsAMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9PUEVOUklDSC8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9PUEVO UklDSC8wLzYxRjJDMjM0QTUxMDc0RTA5Nzg0MDRCREM3OUFBNzkxMzAwNDBCMDAu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUH AQcBAf8EHzAdMAwEAgABMAYDBAFnk4IwDQQCAAIwBwMFACQFuMAwGgYIKwYBBQUH AQgBAf8ECzAJoAcwBQIDAgJaMA0GCSqGSIb3DQEBCwUAA4IBAQCs5vZqHcmdXkRu e9PgsGlzPM80KHH9RfhNX3H5qlgfchHZsaIwXyKM4cMsMF+mvXQeSJsmjZQ102+C nAUDyHkjdewuABvh7n4JiKcJVdRmqjf5l3rUdq01hsewyt1Coeg/SBgEd1xUlpBI DwkCBf0sdP4cA2tbSzz/00vzN9lpLsZxVG+Ef44BsRL9J/za8VSH7NaHkTCw63CH 344w924+Gn6HDkCIWeBPettrl8IyAxM9yG2rWPOSogMk+6Y66Y87UwtjgVKt4PRj IHSN3HLjigTIyCPPKo2i4/nKtaFL2IZcHAyIPxoJr4FVBG+ySo4GgrNLPc07OK7M Gd3PLdWv -----END CERTIFICATE-----Generated at Wed May 13 04:51:23 2026 by rpki-client