$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/8DFE241B6B56425D05308D6CF84E530F0AD99312.cer File: 8DFE241B6B56425D05308D6CF84E530F0AD99312.cer (raw, json) Hash identifier: 8GsWctKE4zvTJwFxkFatK6OiglZOPvoIPYfxzhXLDws= Subject key identifier: 8D:FE:24:1B:6B:56:42:5D:05:30:8D:6C:F8:4E:53:0F:0A:D9:93:12 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 40EA914A89DAEBF7C3D281572C434C3B77CB295C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/TTNS/0/8DFE241B6B56425D05308D6CF84E530F0AD99312.mft caRepository: rsync://rpkica.twnic.tw/rpki/TTNS/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:58:01 +0000 Certificate not after: Mon 10 May 2027 16:03:01 +0000 Subordinate resources: IP: 103.159.206.0/23 IP: 2406:db40::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ea:91:4a:89:da:eb:f7:c3:d2:81:57:2c:43:4c:3b:77:cb:29:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:58:01 2026 GMT Not After : May 10 16:03:01 2027 GMT Subject: CN=8DFE241B6B56425D05308D6CF84E530F0AD99312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:09:3b:c4:ee:f4:5b:67:83:34:e2:ad:78:d9: ab:3e:e6:3c:18:41:77:12:bf:48:37:03:c7:c5:03: 56:5a:3f:c3:9e:a7:99:98:ca:52:7b:c0:31:3c:23: c2:a2:9c:2a:71:68:20:f8:15:9b:2c:6d:5f:19:84: 5f:93:b1:e7:e2:05:69:c0:76:bf:dd:0c:f2:5f:30: 2c:0f:3d:b7:77:00:2b:cc:38:0c:92:97:39:4b:1d: 69:ed:6b:dc:04:3f:35:36:d7:dd:3c:88:ea:0f:10: 4e:a7:10:a9:06:e1:6d:f9:b5:0e:79:0d:cb:ef:b3: 14:cd:f1:47:1e:dc:28:6b:eb:4d:d9:8a:8e:77:30: 8b:ea:56:30:15:3a:fc:ec:aa:b7:f5:8b:73:3c:bb: b9:95:e8:ff:b3:9d:cd:92:7f:c5:65:a8:4b:8b:e5: a8:4c:18:0a:ab:70:41:78:e9:d6:1f:b3:12:9b:c7: 8b:99:c6:a2:b6:97:1f:b5:e3:c2:5b:21:15:70:1f: df:e4:ed:80:11:3c:ce:7e:c1:0d:fa:85:d4:2e:c8: 1b:2b:48:af:7b:22:d6:37:1b:fd:17:9e:0e:f7:7d: 97:1d:35:65:7e:80:ef:93:de:df:7a:d5:05:18:c9: 8e:cf:c4:d9:af:e6:a1:72:86:66:63:db:cb:19:9f: 91:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8D:FE:24:1B:6B:56:42:5D:05:30:8D:6C:F8:4E:53:0F:0A:D9:93:12 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TTNS/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TTNS/0/8DFE241B6B56425D05308D6CF84E530F0AD99312.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.206.0/23 IPv6: 2406:db40::/32 Signature Algorithm: sha256WithRSAEncryption 9d:fa:bf:d2:41:00:3f:ab:5f:d9:6a:7d:22:4d:67:0f:ea:02: 4c:75:a7:49:fb:e8:00:1a:77:fb:bf:99:2c:cb:45:9d:05:42: e9:f3:27:91:36:dd:84:97:4d:ab:f8:9a:a9:9e:83:63:63:32: 38:19:a4:22:95:20:f1:29:01:22:fe:ce:ff:43:e8:e3:e9:15: 35:dc:d7:f9:1a:83:95:4d:ee:b2:be:4e:76:5c:c2:9b:9f:80: 5a:c3:26:c8:00:e8:09:0d:51:0f:05:bf:aa:fc:85:eb:f8:b2: 62:19:68:6d:6b:fa:f3:1a:21:d6:4c:7c:bf:b1:29:55:51:fe: 73:eb:f5:b7:17:f8:d7:05:31:46:3e:2d:32:8e:b7:c4:eb:94: 32:dc:12:73:a2:ac:b1:b7:53:67:dc:a1:d9:a8:e6:c7:78:9b: 6f:d3:bb:3f:38:59:58:b2:22:a0:03:6b:de:17:32:91:84:1d: ec:ec:75:86:de:34:a7:4f:0b:0f:6c:38:3f:6c:94:ba:c3:a1: aa:20:e4:95:0b:13:fc:58:ec:d9:09:f9:3b:c7:9c:c4:92:bb: 4a:cd:49:b0:0a:a0:a3:c2:49:96:a2:39:39:4b:1b:d6:b1:50: bd:e9:5d:6a:b5:6d:5c:66:d5:d0:86:cd:17:f1:0a:25:8d:e3: 09:a5:08:e2 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUQOqRSona6/fD0oFXLENMO3fLKVwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTgwMVoX DTI3MDUxMDE2MDMwMVowMzExMC8GA1UEAxMoOERGRTI0MUI2QjU2NDI1RDA1MzA4 RDZDRjg0RTUzMEYwQUQ5OTMxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8JO8Tu9FtngzTirXjZqz7mPBhBdxK/SDcDx8UDVlo/w56nmZjKUnvAMTwj wqKcKnFoIPgVmyxtXxmEX5Ox5+IFacB2v90M8l8wLA89t3cAK8w4DJKXOUsdae1r 3AQ/NTbX3TyI6g8QTqcQqQbhbfm1DnkNy++zFM3xRx7cKGvrTdmKjncwi+pWMBU6 /Oyqt/WLczy7uZXo/7OdzZJ/xWWoS4vlqEwYCqtwQXjp1h+zEpvHi5nGoraXH7Xj wlshFXAf3+TtgBE8zn7BDfqF1C7IGytIr3si1jcb/ReeDvd9lx01ZX6A75Pe33rV BRjJjs/E2a/moXKGZmPbyxmfkUECAwEAAaOCAnEwggJtMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI3+JBtrVkJdBTCNbPhOUw8K2ZMSMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UVE5TLzAvMFwG CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RUTlMvMC84 REZFMjQxQjZCNTY0MjVEMDUzMDhENkNGODRFNTMwRjBBRDk5MzEyLm1mdDA3Bggr BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8w HTAMBAIAATAGAwQBZ5/OMA0EAgACMAcDBQAkBttAMA0GCSqGSIb3DQEBCwUAA4IB AQCd+r/SQQA/q1/Zan0iTWcP6gJMdadJ++gAGnf7v5ksy0WdBULp8yeRNt2El02r +JqpnoNjYzI4GaQilSDxKQEi/s7/Q+jj6RU13Nf5GoOVTe6yvk52XMKbn4BawybI AOgJDVEPBb+q/IXr+LJiGWhta/rzGiHWTHy/sSlVUf5z6/W3F/jXBTFGPi0yjrfE 65Qy3BJzoqyxt1Nn3KHZqObHeJtv07s/OFlYsiKgA2veFzKRhB3s7HWG3jSnTwsP bDg/bJS6w6GqIOSVCxP8WOzZCfk7x5zEkrtKzUmwCqCjwkmWojk5SxvWsVC96V1q tW1cZtXQhs0X8QoljeMJpQji -----END CERTIFICATE-----Generated at Wed May 13 02:27:16 2026 by rpki-client