$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer File: 68C2C435D736FC21F07F0FD09824C8408E615E50.cer (raw, json) Hash identifier: Fl1TenUeUWNVJnIXXr6KExSFSa0e4oeJeaYbGePCMAg= Subject key identifier: 68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 43AEBEE8408A1D8757B5D0A324D0AE19BBDCE6DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft caRepository: rsync://rpkica.twnic.tw/rpki/TW1033/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:58:06 +0000 Certificate not after: Mon 10 May 2027 16:03:06 +0000 Subordinate resources: AS: 131631 IP: 2402:4de0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ae:be:e8:40:8a:1d:87:57:b5:d0:a3:24:d0:ae:19:bb:dc:e6:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:58:06 2026 GMT Not After : May 10 16:03:06 2027 GMT Subject: CN=68C2C435D736FC21F07F0FD09824C8408E615E50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:57:82:aa:ad:50:61:16:81:2b:c6:db:27:3a: 71:06:70:65:56:12:ee:6a:6f:16:04:da:86:a5:72: 42:ec:40:55:a9:cd:45:78:fe:52:06:5a:ce:3a:32: 68:d3:99:a3:27:c0:19:65:50:38:71:f4:ea:1e:67: 51:46:d3:a8:f3:93:e6:e4:7a:bf:65:c2:1c:91:fc: f9:e0:14:bc:24:8e:7f:91:d2:b5:bb:2e:16:be:e9: 85:6d:28:44:fe:01:5b:49:42:7d:de:7b:74:7a:6d: a6:4c:cf:bf:09:23:cd:c2:0b:6f:c4:d3:9c:f0:df: 99:69:c7:11:e8:78:94:4f:7a:5d:15:83:58:8d:a3: e7:dd:f7:aa:a6:aa:fd:65:d4:2d:b2:3f:16:10:8a: 83:8a:5f:92:84:fd:30:21:b5:ea:de:86:18:27:df: 7b:5a:d2:fe:30:03:c7:c6:b8:b0:f2:86:1f:b1:6b: ff:e9:14:c4:b4:22:82:76:b1:87:80:8a:8c:65:ba: 4f:fe:49:0d:8e:d7:b7:03:65:b8:5f:6f:70:83:f4: 9f:aa:f1:eb:3f:b9:d3:7b:6c:eb:05:ae:45:b6:b8: 7a:6e:6a:c7:54:8a:2b:04:d5:7b:24:e9:ec:3d:d4: 72:99:2e:6a:16:34:e0:78:62:e8:20:cb:5c:16:1a: 87:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4de0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131631 Signature Algorithm: sha256WithRSAEncryption a0:0d:c4:19:c5:b1:b8:c9:a4:79:59:c8:ca:e9:ce:54:5c:79: 3f:8c:84:01:db:91:63:c9:73:f4:49:05:8a:ec:92:11:ed:11: d5:2c:60:21:b5:c3:00:3c:c9:a5:9d:ee:2c:45:06:04:82:e6: 59:42:16:45:73:ac:26:4e:45:62:fa:0d:ff:c8:62:68:19:27: e3:e9:60:ea:b3:96:7c:81:bc:4e:56:5d:17:50:80:b9:98:c1: 1e:c6:9a:55:b6:38:1a:d5:6a:ac:93:bf:e1:0c:7e:ce:db:7e: d7:73:3c:99:e6:7d:e5:32:b5:a6:06:b2:0c:b8:b1:82:53:e1: 6a:ff:e9:95:6a:90:92:05:2d:1f:58:47:e2:e7:8e:c9:bf:d4: 0c:6f:69:62:70:b8:f2:88:c3:95:18:c5:90:30:81:6b:5c:8e: 3e:83:8e:1b:0c:45:6c:e5:7d:9c:0f:82:df:b4:17:10:8e:d6: ce:e5:78:b9:36:dd:a0:54:f6:f7:96:d3:20:1d:76:08:eb:95: 12:5c:fe:fd:ba:cd:66:a1:0c:3d:5e:ec:47:08:41:30:9d:ac: b1:f4:4e:6f:37:72:49:af:5e:ce:fd:1a:dc:e6:b8:db:60:1e: 5c:d4:54:10:86:59:7e:85:1a:80:52:ee:8c:1c:9d:b8:bd:fa: c1:66:be:0d -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIUQ66+6ECKHYdXtdCjJNCuGbvc5t8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTgwNloX DTI3MDUxMDE2MDMwNlowMzExMC8GA1UEAxMoNjhDMkM0MzVENzM2RkMyMUYwN0Yw RkQwOTgyNEM4NDA4RTYxNUU1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1XgqqtUGEWgSvG2yc6cQZwZVYS7mpvFgTahqVyQuxAVanNRXj+UgZazjoy aNOZoyfAGWVQOHH06h5nUUbTqPOT5uR6v2XCHJH8+eAUvCSOf5HStbsuFr7phW0o RP4BW0lCfd57dHptpkzPvwkjzcILb8TTnPDfmWnHEeh4lE96XRWDWI2j5933qqaq /WXULbI/FhCKg4pfkoT9MCG16t6GGCffe1rS/jADx8a4sPKGH7Fr/+kUxLQignax h4CKjGW6T/5JDY7XtwNluF9vcIP0n6rx6z+503ts6wWuRba4em5qx1SKKwTVeyTp 7D3UcpkuahY04Hhi6CDLXBYah/cCAwEAAaOCAoMwggJ/MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGjCxDXXNvwh8H8P0JgkyECOYV5QMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UVzEwMzMvMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMz LzAvNjhDMkM0MzVENzM2RkMyMUYwN0YwRkQwOTgyNEM4NDA4RTYxNUU1MC5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACQCTeAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAgIv MA0GCSqGSIb3DQEBCwUAA4IBAQCgDcQZxbG4yaR5WcjK6c5UXHk/jIQB25FjyXP0 SQWK7JIR7RHVLGAhtcMAPMmlne4sRQYEguZZQhZFc6wmTkVi+g3/yGJoGSfj6WDq s5Z8gbxOVl0XUIC5mMEexppVtjga1Wqsk7/hDH7O237XczyZ5n3lMrWmBrIMuLGC U+Fq/+mVapCSBS0fWEfi547Jv9QMb2licLjyiMOVGMWQMIFrXI4+g44bDEVs5X2c D4LftBcQjtbO5Xi5Nt2gVPb3ltMgHXYI65USXP79us1moQw9XuxHCEEwnayx9E5v N3JJr17O/Rrc5rjbYB5c1FQQhll+hRqAUu6MHJ24vfrBZr4N -----END CERTIFICATE-----Generated at Tue May 12 22:03:36 2026 by rpki-client