$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/71CDDF623ABCE39F41FB6AAC19F81E91F9AD6911.cer File: 71CDDF623ABCE39F41FB6AAC19F81E91F9AD6911.cer (raw, json) Hash identifier: YDUl1gJFII5tMIg1UHmJS8opxFfKKTjZJFwFoqSkm/g= Subject key identifier: 71:CD:DF:62:3A:BC:E3:9F:41:FB:6A:AC:19:F8:1E:91:F9:AD:69:11 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 7270683CA4D41FF863FE757F74D727BF815D3723 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/BWIZ/0/71CDDF623ABCE39F41FB6AAC19F81E91F9AD6911.mft caRepository: rsync://rpkica.twnic.tw/rpki/BWIZ/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:43:27 +0000 Certificate not after: Mon 10 May 2027 15:48:27 +0000 Subordinate resources: AS: 18415 IP: 61.57.240.0/20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:70:68:3c:a4:d4:1f:f8:63:fe:75:7f:74:d7:27:bf:81:5d:37:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:43:27 2026 GMT Not After : May 10 15:48:27 2027 GMT Subject: CN=71CDDF623ABCE39F41FB6AAC19F81E91F9AD6911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:67:40:cf:6e:45:b8:46:6a:54:c3:ae:bf:08: dd:2f:17:82:bb:20:0b:3b:2a:92:00:16:af:f2:4a: 1b:59:0c:52:c3:a9:a7:4d:1d:8f:24:3d:9f:10:d1: ce:7f:02:b0:a6:7a:0f:a4:b5:2f:24:92:5b:ae:cb: e3:d5:db:93:fe:f9:45:6b:46:8b:a8:74:a2:2b:ba: 34:aa:dc:df:2f:bd:a6:f3:59:7b:2f:b5:16:a4:ae: eb:7e:d3:ae:4f:4e:a4:a1:a1:d5:6d:e1:d1:1b:be: e5:58:ed:57:81:ae:40:aa:05:db:d3:2c:51:79:38: dc:8b:df:c0:17:1d:2d:e3:54:25:57:1e:68:3b:2f: 8b:24:ce:0c:27:79:9b:75:fa:77:09:c6:90:ff:34: 12:35:66:7b:1e:73:38:b7:1c:f4:95:eb:b8:f6:05: ad:e3:69:28:aa:de:ed:11:11:2d:37:41:ca:c6:98: f8:3d:be:9a:3b:39:9f:fa:d4:07:ac:16:52:8e:e8: 57:4c:9a:e0:fe:df:5a:2b:a9:cf:e7:44:bb:5e:5a: 82:ee:ba:33:25:90:dd:81:56:58:72:96:87:c4:3d: fc:dc:77:20:4a:a8:4b:4a:91:eb:4d:d1:3d:85:b9: b9:04:3c:d4:7f:54:1f:4e:c4:71:7c:9f:41:08:8a: da:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 71:CD:DF:62:3A:BC:E3:9F:41:FB:6A:AC:19:F8:1E:91:F9:AD:69:11 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/BWIZ/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/BWIZ/0/71CDDF623ABCE39F41FB6AAC19F81E91F9AD6911.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.57.240.0/20 sbgp-autonomousSysNum: critical Autonomous System Numbers: 18415 Signature Algorithm: sha256WithRSAEncryption 7e:79:b3:26:2b:c3:72:85:4d:1a:c0:57:12:94:46:10:aa:17: cb:e0:94:b4:ab:2f:56:04:a7:95:b1:7f:30:ae:a5:05:24:50: 6d:b0:20:f8:4d:fe:67:57:b2:18:59:87:b7:51:94:de:96:21: 6c:6a:d7:12:ce:da:26:ad:3a:a7:a1:00:08:72:eb:ba:17:28: 87:84:31:b5:dd:39:7c:80:fc:e8:dc:ed:5f:d3:1a:dd:2d:1e: c9:10:6f:94:e8:5a:a6:c8:cb:fd:1d:35:f0:80:6f:3e:77:ca: 88:51:0f:fc:03:8e:34:c4:2a:cd:c9:22:52:89:63:09:1e:38: 95:e8:bf:2d:39:82:cd:b6:b8:62:c4:1e:5f:74:a4:83:23:96: 97:86:9a:bc:79:04:30:97:33:89:0f:06:ff:4d:70:5c:0c:a7: ed:23:1a:64:a6:69:29:b9:8b:67:c2:b8:91:81:be:76:40:ef: 78:92:ba:66:39:ae:28:f7:7b:7e:98:b4:6e:a8:10:d4:a7:45: 49:0b:0d:8a:9b:6a:d5:c4:bd:7a:b1:37:c4:39:c8:f1:1b:f6: 42:2c:fa:fb:0c:14:02:df:e6:e7:a1:d8:14:a3:7c:c4:dc:b7: a1:d8:da:65:7c:33:8d:44:05:93:86:05:fa:7c:65:14:17:b7: 02:c3:9c:bf -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIUcnBoPKTUH/hj/nV/dNcnv4FdNyMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDMyN1oX DTI3MDUxMDE1NDgyN1owMzExMC8GA1UEAxMoNzFDRERGNjIzQUJDRTM5RjQxRkI2 QUFDMTlGODFFOTFGOUFENjkxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1nQM9uRbhGalTDrr8I3S8XgrsgCzsqkgAWr/JKG1kMUsOpp00djyQ9nxDR zn8CsKZ6D6S1LySSW67L49Xbk/75RWtGi6h0oiu6NKrc3y+9pvNZey+1FqSu637T rk9OpKGh1W3h0Ru+5VjtV4GuQKoF29MsUXk43IvfwBcdLeNUJVceaDsviyTODCd5 m3X6dwnGkP80EjVmex5zOLcc9JXruPYFreNpKKre7RERLTdBysaY+D2+mjs5n/rU B6wWUo7oV0ya4P7fWiupz+dEu15agu66MyWQ3YFWWHKWh8Q9/Nx3IEqoS0qR603R PYW5uQQ81H9UH07EcXyfQQiK2iECAwEAAaOCAn0wggJ5MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHHN32I6vOOfQftqrBn4HpH5rWkRMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9CV0laLzAvMFwG CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0JXSVovMC83 MUNEREY2MjNBQkNFMzlGNDFGQjZBQUMxOUY4MUU5MUY5QUQ2OTExLm1mdDA3Bggr BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQEPTnwMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAkfvMA0GCSqG SIb3DQEBCwUAA4IBAQB+ebMmK8NyhU0awFcSlEYQqhfL4JS0qy9WBKeVsX8wrqUF JFBtsCD4Tf5nV7IYWYe3UZTeliFsatcSztomrTqnoQAIcuu6FyiHhDG13Tl8gPzo 3O1f0xrdLR7JEG+U6FqmyMv9HTXwgG8+d8qIUQ/8A440xCrNySJSiWMJHjiV6L8t OYLNtrhixB5fdKSDI5aXhpq8eQQwlzOJDwb/TXBcDKftIxpkpmkpuYtnwriRgb52 QO94krpmOa4o93t+mLRuqBDUp0VJCw2Km2rVxL16sTfEOcjxG/ZCLPr7DBQC3+bn odgUo3zE3Leh2NplfDONRAWThgX6fGUUF7cCw5y/ -----END CERTIFICATE-----Generated at Tue May 12 22:39:27 2026 by rpki-client