$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.cer File: AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.cer (raw, json) Hash identifier: kbz3vCo9w4N+48pV6QapNh3gBjYPfhW4EIPU+FRo/nI= Subject key identifier: AB:38:88:A4:E1:63:E2:BC:E7:6E:A9:86:E3:C3:F2:FD:DE:D8:8E:1B Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 53F98D54C36F5F1CBC424C3B0D3803E1F5FE885E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/BRICKSINC/0/AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.mft caRepository: rsync://rpkica.twnic.tw/rpki/BRICKSINC/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:43:26 +0000 Certificate not after: Mon 10 May 2027 15:48:26 +0000 Subordinate resources: IP: 103.51.90.0/23 IP: 202.5.10.0/23 IP: 2400:c9e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f9:8d:54:c3:6f:5f:1c:bc:42:4c:3b:0d:38:03:e1:f5:fe:88:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:43:26 2026 GMT Not After : May 10 15:48:26 2027 GMT Subject: CN=AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fd:48:c3:b3:c9:57:a3:7b:0a:41:7a:38:fb: 01:29:c1:14:c6:ad:aa:db:03:84:08:05:6d:bb:f4: 1c:5a:f7:b1:84:d9:00:2f:f7:e4:bf:c9:26:3c:bf: 32:59:88:db:cd:ba:bb:9f:bf:b0:ca:06:0c:c3:f1: d6:32:88:d0:91:c0:ae:3d:f8:50:b1:64:a5:dc:b3: e8:21:24:c8:28:e4:97:e1:9f:d1:91:c0:ad:cd:91: 9b:59:f2:6f:a8:92:d9:78:f8:0f:8c:f6:fc:24:b2: d2:e3:1c:25:2d:c7:62:2c:a9:f2:9d:22:db:6f:99: a6:d6:10:8e:0a:09:a3:95:6a:e8:3d:66:49:a8:b8: 9a:0a:55:36:96:c1:82:4c:1d:b9:18:5c:92:aa:77: 3d:3e:9b:32:e8:57:43:3a:7a:de:84:53:76:d2:64: 67:a3:fd:8e:7b:60:d2:f0:b0:e2:bd:e8:49:ce:25: 1e:87:58:39:31:41:a2:87:5b:6c:a2:04:df:62:61: 18:76:21:f0:63:11:03:93:22:82:0f:f1:29:9e:b9: fb:b3:75:47:74:7f:87:08:85:07:e2:d6:ef:b7:ee: 54:c7:05:e1:34:86:42:f2:0c:b7:6e:37:29:21:ae: 8c:0e:3c:0a:5a:f8:67:97:17:de:8a:42:13:b7:96: bc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AB:38:88:A4:E1:63:E2:BC:E7:6E:A9:86:E3:C3:F2:FD:DE:D8:8E:1B X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/BRICKSINC/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/BRICKSINC/0/AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.51.90.0/23 202.5.10.0/23 IPv6: 2400:c9e0::/32 Signature Algorithm: sha256WithRSAEncryption b2:ff:ec:d2:54:c9:8f:ec:35:fa:3b:08:31:ab:f2:a5:84:8e: d8:3f:54:06:8d:b7:4e:31:50:58:04:8a:32:8e:49:c5:45:a0: 06:be:e7:5e:84:de:5b:e6:cd:85:7d:14:17:1a:7d:bf:5a:6a: c5:e6:da:55:d8:e1:fa:26:a3:5f:93:a2:7c:6f:f6:2a:b9:96: e7:08:c2:24:69:3e:a7:32:76:6f:1f:58:59:61:17:fa:47:3b: 95:ca:56:41:7e:de:01:78:28:a0:b8:5a:b6:6a:9a:35:2e:1f: b1:37:74:56:36:25:d7:8d:43:b2:b2:cd:d8:12:85:20:7f:0f: 27:ac:94:6c:4a:ea:f2:ba:fa:df:2c:bc:5a:ba:af:72:89:b0: 99:44:6f:d2:b2:6d:80:4f:c3:cd:cd:3c:62:6c:7b:6d:b9:c3: 34:45:2e:71:8e:d2:09:79:d4:eb:a9:93:4b:1a:36:75:aa:6e: e1:d3:75:9b:33:6a:0a:10:f6:1b:15:11:78:95:a2:da:d1:ec: dd:cc:9b:e1:95:76:78:a7:4b:46:1b:98:a5:1a:56:2c:5d:49: fd:21:83:37:24:0b:55:d3:a5:9c:88:dd:9d:6c:4d:5a:d0:c8: 57:b1:e2:6c:e7:b6:6e:83:a3:d6:4e:42:a9:6d:72:0e:e1:b6: cf:c4:a3:0d -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgIUU/mNVMNvXxy8Qkw7DTgD4fX+iF4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDMyNloX DTI3MDUxMDE1NDgyNlowMzExMC8GA1UEAxMoQUIzODg4QTRFMTYzRTJCQ0U3NkVB OTg2RTNDM0YyRkRERUQ4OEUxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/9SMOzyVejewpBejj7ASnBFMatqtsDhAgFbbv0HFr3sYTZAC/35L/JJjy/ MlmI2826u5+/sMoGDMPx1jKI0JHArj34ULFkpdyz6CEkyCjkl+Gf0ZHArc2Rm1ny b6iS2Xj4D4z2/CSy0uMcJS3HYiyp8p0i22+ZptYQjgoJo5Vq6D1mSai4mgpVNpbB gkwduRhckqp3PT6bMuhXQzp63oRTdtJkZ6P9jntg0vCw4r3oSc4lHodYOTFBoodb bKIE32JhGHYh8GMRA5Migg/xKZ65+7N1R3R/hwiFB+LW77fuVMcF4TSGQvIMt243 KSGujA48Clr4Z5cX3opCE7eWvOMCAwEAAaOCAoEwggJ9MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKs4iKThY+K8526phuPD8v3e2I4bMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHjBggrBgEFBQcBCwSB1jCB0zA1Bggr BgEFBQcwBYYpcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9CUklDS1NJTkMv MC8wYQYIKwYBBQUHMAqGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQlJJ Q0tTSU5DLzAvQUIzODg4QTRFMTYzRTJCQ0U3NkVBOTg2RTNDM0YyRkRERUQ4OEUx Qi5tZnQwNwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEF BQcBBwEB/wQlMCMwEgQCAAEwDAMEAWczWgMEAcoFCjANBAIAAjAHAwUAJADJ4DAN BgkqhkiG9w0BAQsFAAOCAQEAsv/s0lTJj+w1+jsIMavypYSO2D9UBo23TjFQWASK Mo5JxUWgBr7nXoTeW+bNhX0UFxp9v1pqxebaVdjh+iajX5OifG/2KrmW5wjCJGk+ pzJ2bx9YWWEX+kc7lcpWQX7eAXgooLhatmqaNS4fsTd0VjYl141DsrLN2BKFIH8P J6yUbErq8rr63yy8WrqvcomwmURv0rJtgE/Dzc08Ymx7bbnDNEUucY7SCXnU66mT Sxo2dapu4dN1mzNqChD2GxUReJWi2tHs3cyb4ZV2eKdLRhuYpRpWLF1J/SGDNyQL VdOlnIjdnWxNWtDIV7HibOe2boOj1k5CqW1yDuG2z8SjDQ== -----END CERTIFICATE-----Generated at Wed May 13 02:25:31 2026 by rpki-client