$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/8257DED1A3AE20532C5A9F8135AF34B9476B685C.cer File: 8257DED1A3AE20532C5A9F8135AF34B9476B685C.cer (raw, json) Hash identifier: 0MbJbVcuqq7I+q5klCj54N+BNYctRcqRQ2sJ0cypyK8= Subject key identifier: 82:57:DE:D1:A3:AE:20:53:2C:5A:9F:81:35:AF:34:B9:47:6B:68:5C Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 292F1CEBCB032AFF53D9D4BA4D06DAABA9C82AFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/DLER/0/8257DED1A3AE20532C5A9F8135AF34B9476B685C.mft caRepository: rsync://rpkica.twnic.tw/rpki/DLER/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:45:05 +0000 Certificate not after: Mon 10 May 2027 15:50:05 +0000 Subordinate resources: IP: 163.223.248.0/23 IP: 2401:fae0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:2f:1c:eb:cb:03:2a:ff:53:d9:d4:ba:4d:06:da:ab:a9:c8:2a:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:45:05 2026 GMT Not After : May 10 15:50:05 2027 GMT Subject: CN=8257DED1A3AE20532C5A9F8135AF34B9476B685C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f6:d8:de:ee:dd:b3:43:6f:f9:d9:25:03:67: eb:0d:c6:2b:33:ee:09:19:21:33:a2:71:f0:25:b6: 68:20:59:61:c7:6b:c4:19:8f:d7:10:e6:f1:45:7a: 09:83:b3:28:1d:94:d8:2e:9f:87:30:85:77:3d:65: 43:9b:11:ae:d9:f5:20:3d:32:1f:57:5b:77:c9:8d: 9d:f4:71:a6:88:41:b4:a5:b0:5a:98:f5:a9:ae:59: 80:f5:0d:8b:89:ec:f8:46:32:04:36:ca:4d:75:1a: 55:23:12:69:7b:91:3f:43:e2:41:f2:5f:d8:ad:43: cd:16:34:af:6e:66:95:ad:d5:af:36:bb:27:26:0f: d1:8f:6f:26:5e:16:eb:53:28:67:51:59:f8:2f:d2: da:a3:ec:89:93:ce:51:43:4a:7a:35:90:f6:b4:b3: 07:8d:f4:b7:3d:84:49:3f:18:d4:24:dd:6d:c9:26: 2e:46:68:7d:f9:40:bb:09:7e:8d:1e:61:25:49:3f: c2:0f:be:97:c2:0c:91:39:67:7a:f1:2f:4f:33:e3: 58:d7:43:59:56:92:5f:53:0e:05:77:ee:65:62:f7: 3f:95:84:5d:25:6b:01:cc:66:35:22:9f:82:ae:e8: 5d:a6:0e:5f:03:b6:90:80:af:a2:4f:3e:e1:8d:68: 11:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 82:57:DE:D1:A3:AE:20:53:2C:5A:9F:81:35:AF:34:B9:47:6B:68:5C X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/DLER/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/DLER/0/8257DED1A3AE20532C5A9F8135AF34B9476B685C.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.248.0/23 IPv6: 2401:fae0::/32 Signature Algorithm: sha256WithRSAEncryption 76:84:ff:24:39:72:73:3c:3b:69:81:f3:43:22:b7:40:0e:3d: 4c:68:e5:9d:50:cf:f7:67:2b:24:fb:98:3d:1b:89:e6:24:fe: 65:4d:60:a1:9c:5a:b5:64:b0:69:0f:18:88:ed:12:99:6d:36: ab:71:e4:2d:49:c4:b1:79:25:f6:65:07:08:b2:9d:f5:92:20: 10:2d:a5:b4:d0:61:f9:f4:cf:09:fc:8c:85:6a:50:ab:0f:49: 6e:7f:42:af:e1:76:47:47:68:70:c1:c1:1c:94:77:28:e8:6c: 45:f3:b9:af:83:3a:0d:49:25:e5:47:36:57:43:bf:03:d4:9e: 2c:96:22:1c:0d:1a:49:8d:1f:bd:6e:ba:16:ad:91:af:dd:2c: 5d:2b:0e:e0:5c:a0:7c:25:7b:d1:50:f0:63:c9:74:48:10:1e: ac:e9:fc:3a:81:f2:bd:7f:1a:c5:99:6e:f3:2d:32:d3:6f:53: a9:48:84:f6:47:7e:76:d5:d2:2d:ef:0b:03:57:99:16:53:e0: 86:cb:80:99:f9:35:57:20:bc:e3:2a:9b:51:65:3b:e9:0e:d3: 15:11:d9:78:3d:23:19:98:02:e6:b5:4d:f5:a5:ce:c2:91:3d: de:13:23:e2:07:6b:01:ee:8b:68:62:0e:4b:cc:82:ff:f5:71: 5e:69:18:7b -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUKS8c68sDKv9T2dS6TQbaq6nIKv4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDUwNVoX DTI3MDUxMDE1NTAwNVowMzExMC8GA1UEAxMoODI1N0RFRDFBM0FFMjA1MzJDNUE5 RjgxMzVBRjM0Qjk0NzZCNjg1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOb22N7u3bNDb/nZJQNn6w3GKzPuCRkhM6Jx8CW2aCBZYcdrxBmP1xDm8UV6 CYOzKB2U2C6fhzCFdz1lQ5sRrtn1ID0yH1dbd8mNnfRxpohBtKWwWpj1qa5ZgPUN i4ns+EYyBDbKTXUaVSMSaXuRP0PiQfJf2K1DzRY0r25mla3Vrza7JyYP0Y9vJl4W 61MoZ1FZ+C/S2qPsiZPOUUNKejWQ9rSzB430tz2EST8Y1CTdbckmLkZofflAuwl+ jR5hJUk/wg++l8IMkTlnevEvTzPjWNdDWVaSX1MOBXfuZWL3P5WEXSVrAcxmNSKf gq7oXaYOXwO2kICvok8+4Y1oEaUCAwEAAaOCAnEwggJtMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIJX3tGjriBTLFqfgTWvNLlHa2hcMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ETEVSLzAvMFwG CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RMRVIvMC84 MjU3REVEMUEzQUUyMDUzMkM1QTlGODEzNUFGMzRCOTQ3NkI2ODVDLm1mdDA3Bggr BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8w HTAMBAIAATAGAwQBo9/4MA0EAgACMAcDBQAkAfrgMA0GCSqGSIb3DQEBCwUAA4IB AQB2hP8kOXJzPDtpgfNDIrdADj1MaOWdUM/3Zysk+5g9G4nmJP5lTWChnFq1ZLBp DxiI7RKZbTarceQtScSxeSX2ZQcIsp31kiAQLaW00GH59M8J/IyFalCrD0luf0Kv 4XZHR2hwwcEclHco6GxF87mvgzoNSSXlRzZXQ78D1J4sliIcDRpJjR+9broWrZGv 3SxdKw7gXKB8JXvRUPBjyXRIEB6s6fw6gfK9fxrFmW7zLTLTb1OpSIT2R3521dIt 7wsDV5kWU+CGy4CZ+TVXILzjKptRZTvpDtMVEdl4PSMZmALmtU31pc7CkT3eEyPi B2sB7otoYg5LzIL/9XFeaRh7 -----END CERTIFICATE-----Generated at Tue May 12 22:31:50 2026 by rpki-client