$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/6A61ECA674DC36015EC7BC2F6FCBD515983759DA.cer File: 6A61ECA674DC36015EC7BC2F6FCBD515983759DA.cer (raw, json) Hash identifier: sQkXZ5DXAstP+UGhUJUTLim6Dlp2LnsUM77cc6UUm+Q= Subject key identifier: 6A:61:EC:A6:74:DC:36:01:5E:C7:BC:2F:6F:CB:D5:15:98:37:59:DA Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 45B4B55B32AC3180745B1761DEFE23EAE1539E25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/ONMORE/0/6A61ECA674DC36015EC7BC2F6FCBD515983759DA.mft caRepository: rsync://rpkica.twnic.tw/rpki/ONMORE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:55:35 +0000 Certificate not after: Mon 10 May 2027 16:00:35 +0000 Subordinate resources: IP: 103.122.236.0/22 IP: 2403:9740::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:b4:b5:5b:32:ac:31:80:74:5b:17:61:de:fe:23:ea:e1:53:9e:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:55:35 2026 GMT Not After : May 10 16:00:35 2027 GMT Subject: CN=6A61ECA674DC36015EC7BC2F6FCBD515983759DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b4:b5:11:77:cf:f5:10:22:79:02:46:83:95: 3f:88:ca:fe:18:30:d7:db:8a:16:e2:04:38:84:5b: 40:29:0d:ca:58:7f:57:85:50:5e:02:bc:2f:c3:6d: a2:51:09:72:bf:a6:73:1b:bd:04:c2:c0:4f:11:68: 52:b7:08:db:4a:82:2c:ff:d9:84:ac:1c:2d:42:53: 22:7c:9a:23:5d:87:df:6d:6b:d1:8f:a3:ce:b0:b5: b7:04:ff:09:d5:14:cb:35:2a:04:25:8a:5f:b9:8d: 9c:e0:d2:a8:aa:76:61:d4:f0:1d:76:80:3c:ed:5e: d7:19:41:62:e4:0d:d1:71:37:b4:ce:1e:2a:28:5e: e9:6a:fd:d3:2c:53:8e:e2:dc:a9:2d:a5:27:b3:bc: a0:ae:23:50:86:4b:0a:ae:70:ea:77:1d:f9:21:b8: 59:4b:0c:04:52:cd:a8:62:6a:fe:9c:c8:bf:cc:0e: 3b:47:1f:da:f0:78:1d:88:54:a8:c8:ee:37:e5:75: 30:c2:6a:31:8c:e4:09:f1:c5:d3:d1:35:84:6d:3d: a6:13:23:be:aa:db:95:7e:af:60:34:e8:ea:fa:87: 37:0d:64:1c:08:93:1d:d7:b2:49:e3:92:a0:f2:4b: fe:e1:46:4e:79:3e:cc:54:45:c8:8c:15:c6:a7:75: 1b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 6A:61:EC:A6:74:DC:36:01:5E:C7:BC:2F:6F:CB:D5:15:98:37:59:DA X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/ONMORE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/ONMORE/0/6A61ECA674DC36015EC7BC2F6FCBD515983759DA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.236.0/22 IPv6: 2403:9740::/32 Signature Algorithm: sha256WithRSAEncryption 4b:72:d1:e4:c4:04:27:87:02:a1:3d:86:67:7c:71:83:6f:ad: c0:81:fe:13:a7:dd:d5:1d:51:42:ae:c1:3e:13:cb:b5:0b:88: 2b:e9:fc:86:66:55:35:de:52:5b:68:27:6e:e2:e8:3b:7f:4f: 76:bd:2c:e8:29:8b:d4:0c:f2:3a:50:d2:5d:42:cc:ea:e7:11: 8b:fb:f6:e2:73:11:ba:43:a8:68:99:94:f2:30:8c:52:bf:ea: af:47:3d:27:0f:94:3f:4f:20:af:55:37:6b:80:92:d0:16:33: 99:0a:d0:44:8f:e1:fc:21:49:75:6c:18:e2:a5:3f:30:2b:1b: 9f:79:08:61:05:55:88:69:05:66:39:80:a9:68:f3:a1:8b:5d: 7a:ac:2b:be:80:18:64:26:41:ff:31:11:60:31:31:4c:82:61: 3b:bb:34:d5:ce:fe:bd:e5:76:e4:1a:6e:41:39:65:bc:83:9a: a6:ad:ec:40:ec:42:24:9c:62:92:2b:6f:a8:b8:4d:75:09:76: af:0d:51:45:a2:92:38:22:60:30:9b:18:3c:d8:31:de:06:66: 96:32:92:86:da:28:16:b6:4e:dc:f0:1c:34:49:4a:9b:ee:db: 67:e9:34:92:b7:2b:e2:69:82:bf:59:7d:e0:dc:ae:e7:cd:33: e6:70:85:09 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIURbS1WzKsMYB0Wxdh3v4j6uFTniUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTUzNVoX DTI3MDUxMDE2MDAzNVowMzExMC8GA1UEAxMoNkE2MUVDQTY3NERDMzYwMTVFQzdC QzJGNkZDQkQ1MTU5ODM3NTlEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN20tRF3z/UQInkCRoOVP4jK/hgw19uKFuIEOIRbQCkNylh/V4VQXgK8L8Nt olEJcr+mcxu9BMLATxFoUrcI20qCLP/ZhKwcLUJTInyaI12H321r0Y+jzrC1twT/ CdUUyzUqBCWKX7mNnODSqKp2YdTwHXaAPO1e1xlBYuQN0XE3tM4eKihe6Wr90yxT juLcqS2lJ7O8oK4jUIZLCq5w6ncd+SG4WUsMBFLNqGJq/pzIv8wOO0cf2vB4HYhU qMjuN+V1MMJqMYzkCfHF09E1hG09phMjvqrblX6vYDTo6vqHNw1kHAiTHdeySeOS oPJL/uFGTnk+zFRFyIwVxqd1GzcCAwEAAaOCAnUwggJxMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGph7KZ03DYBXse8L2/L1RWYN1naMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9PTk1PUkUvMC8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT05NT1JF LzAvNkE2MUVDQTY3NERDMzYwMTVFQzdCQzJGNkZDQkQ1MTU5ODM3NTlEQS5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB /wQfMB0wDAQCAAEwBgMEAmd67DANBAIAAjAHAwUAJAOXQDANBgkqhkiG9w0BAQsF AAOCAQEAS3LR5MQEJ4cCoT2GZ3xxg2+twIH+E6fd1R1RQq7BPhPLtQuIK+n8hmZV Nd5SW2gnbuLoO39Pdr0s6CmL1AzyOlDSXULM6ucRi/v24nMRukOoaJmU8jCMUr/q r0c9Jw+UP08gr1U3a4CS0BYzmQrQRI/h/CFJdWwY4qU/MCsbn3kIYQVViGkFZjmA qWjzoYtdeqwrvoAYZCZB/zERYDExTIJhO7s01c7+veV25BpuQTllvIOapq3sQOxC JJxikitvqLhNdQl2rw1RRaKSOCJgMJsYPNgx3gZmljKShtooFrZO3PAcNElKm+7b Z+k0krcr4mmCv1l94Nyu580z5nCFCQ== -----END CERTIFICATE-----Generated at Tue May 12 22:39:07 2026 by rpki-client