$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.cer File: 68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.cer (raw, json) Hash identifier: FBJQmWWz9T7aB+bQfKIsQuZZXEFjERoaay78HaAuGaI= Subject key identifier: 68:58:4C:D1:C7:EB:08:08:E1:AE:2D:E4:C1:95:CC:E1:32:57:05:F0 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 1A63335230EC2AF89A0014FB78D7C5B2FF37EB1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/TDC/0/68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.mft caRepository: rsync://rpkica.twnic.tw/rpki/TDC/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:57:42 +0000 Certificate not after: Mon 10 May 2027 16:02:42 +0000 Subordinate resources: IP: 103.220.218.0/23 IP: 2401:a60::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:63:33:52:30:ec:2a:f8:9a:00:14:fb:78:d7:c5:b2:ff:37:eb:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:57:42 2026 GMT Not After : May 10 16:02:42 2027 GMT Subject: CN=68584CD1C7EB0808E1AE2DE4C195CCE1325705F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d1:ce:d2:cf:32:5d:79:09:c5:41:e6:44:59: 7f:51:62:09:33:76:89:23:41:73:f2:d7:75:8c:51: 4a:c3:e9:70:bd:3c:14:65:f9:37:52:b8:b0:60:5d: 5e:17:e3:de:43:ce:28:da:19:37:ac:d6:9c:f0:7c: 2b:85:3c:ec:69:8e:99:ba:c4:11:cb:40:da:f5:32: 22:3e:04:1b:e7:89:2d:0b:93:7e:24:c7:be:25:fd: af:9f:82:f7:84:88:4c:cc:db:ac:38:99:96:34:2e: de:71:26:cc:4c:63:97:fe:b6:31:41:ab:ec:82:f2: 81:69:54:be:ea:a4:2c:e1:5f:b8:04:a2:9c:d3:cf: 8d:9a:45:06:f1:1c:4b:92:73:70:48:c9:4f:d0:1a: d1:fc:b1:50:1a:35:e1:7e:ed:52:f2:cb:95:95:35: 0e:5a:52:5c:42:26:61:86:93:82:b3:10:12:7e:c7: 75:fd:1e:4c:4b:7d:d1:c1:5e:c7:a6:b9:a2:7c:e1: 81:f8:e8:f4:95:7f:e3:96:52:00:09:77:dc:21:39: 86:5b:bd:ed:aa:e4:a9:b6:04:4e:e4:98:44:4d:b3: cf:6a:39:f5:e7:a5:72:17:89:df:12:7a:3a:f0:c0: ad:a9:ff:59:35:63:fd:a4:68:7d:6c:fc:d4:e3:df: 5c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 68:58:4C:D1:C7:EB:08:08:E1:AE:2D:E4:C1:95:CC:E1:32:57:05:F0 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TDC/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TDC/0/68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.218.0/23 IPv6: 2401:a60::/32 Signature Algorithm: sha256WithRSAEncryption 1b:d7:5d:2a:cb:49:a9:a7:42:8d:0f:00:19:b7:05:31:b5:27: b3:f0:dc:da:f3:75:25:e0:11:df:5d:d4:c1:69:8a:df:df:a9: df:d9:6b:82:d0:19:ad:67:b1:24:fc:fe:6f:bb:67:a3:ee:12: 1f:db:b2:2a:ea:c4:c6:9b:2f:7f:56:fa:22:08:c3:5d:d3:46: f2:03:ad:4d:7d:ea:2e:7e:7f:1a:7d:70:34:9d:b6:eb:53:30: e9:01:43:25:56:c7:f5:74:ff:4f:35:81:0d:33:93:23:93:2a: 33:93:ef:79:99:ba:b0:f0:1d:e6:f6:a3:b9:d2:c1:c0:cd:38: 1e:85:0d:34:6e:63:ed:07:c3:af:7e:01:8e:02:15:64:2b:6c: 42:da:41:f9:bb:b0:2d:da:02:57:b2:d3:df:8e:42:0d:03:5d: 1b:6e:f8:6b:09:6e:0d:f0:78:24:3e:b1:84:3b:81:94:51:b3: 2b:2c:2d:62:68:3f:02:cd:74:a4:64:15:ac:66:10:4f:91:b3: b9:d5:4d:ee:89:ed:c2:03:ad:f4:9b:ce:ca:3c:15:cb:e8:26: af:28:56:62:9f:2c:e1:40:45:47:33:8d:f9:dd:1f:18:ae:db: 6c:3d:45:5f:7e:10:89:50:da:59:12:90:ee:3a:21:d4:95:ce: 85:ab:ca:7e -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUGmMzUjDsKviaABT7eNfFsv836x8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTc0MloX DTI3MDUxMDE2MDI0MlowMzExMC8GA1UEAxMoNjg1ODRDRDFDN0VCMDgwOEUxQUUy REU0QzE5NUNDRTEzMjU3MDVGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLRztLPMl15CcVB5kRZf1FiCTN2iSNBc/LXdYxRSsPpcL08FGX5N1K4sGBd Xhfj3kPOKNoZN6zWnPB8K4U87GmOmbrEEctA2vUyIj4EG+eJLQuTfiTHviX9r5+C 94SITMzbrDiZljQu3nEmzExjl/62MUGr7ILygWlUvuqkLOFfuASinNPPjZpFBvEc S5JzcEjJT9Aa0fyxUBo14X7tUvLLlZU1DlpSXEImYYaTgrMQEn7Hdf0eTEt90cFe x6a5onzhgfjo9JV/45ZSAAl33CE5hlu97arkqbYETuSYRE2zz2o59eelcheJ3xJ6 OvDAran/WTVj/aRofWz81OPfXKsCAwEAAaOCAm8wggJrMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGhYTNHH6wgI4a4t5MGVzOEyVwXwMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UREMvMC8wWwYI KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVERDLzAvNjg1 ODRDRDFDN0VCMDgwOEUxQUUyREU0QzE5NUNDRTEzMjU3MDVGMC5tZnQwNwYIKwYB BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54 bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWfc2jANBAIAAjAHAwUAJAEKYDANBgkqhkiG9w0BAQsFAAOCAQEA G9ddKstJqadCjQ8AGbcFMbUns/Dc2vN1JeAR313UwWmK39+p39lrgtAZrWexJPz+ b7tno+4SH9uyKurExpsvf1b6IgjDXdNG8gOtTX3qLn5/Gn1wNJ2261Mw6QFDJVbH 9XT/TzWBDTOTI5MqM5PveZm6sPAd5vajudLBwM04HoUNNG5j7QfDr34BjgIVZCts QtpB+buwLdoCV7LT345CDQNdG274awluDfB4JD6xhDuBlFGzKywtYmg/As10pGQV rGYQT5GzudVN7ontwgOt9JvOyjwVy+gmryhWYp8s4UBFRzON+d0fGK7bbD1FX34Q iVDaWRKQ7joh1JXOhavKfg== -----END CERTIFICATE-----Generated at Tue May 12 22:32:03 2026 by rpki-client