$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/B67E34D8538AB361BC35DAA6BB862938B7074CF5.cer File: B67E34D8538AB361BC35DAA6BB862938B7074CF5.cer (raw, json) Hash identifier: NTWNqAr0WSV4aZkUYkJqHwLXRcg6Zxt2B8gNSE2VlFg= Subject key identifier: B6:7E:34:D8:53:8A:B3:61:BC:35:DA:A6:BB:86:29:38:B7:07:4C:F5 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 60D0AA8736827907AC1E632E24124CF707EC9210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SKIPTECH/0/B67E34D8538AB361BC35DAA6BB862938B7074CF5.mft caRepository: rsync://rpkica.twnic.tw/rpki/SKIPTECH/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:56 +0000 Certificate not after: Mon 10 May 2027 16:01:56 +0000 Subordinate resources: AS: 63909 IP: 103.196.174.0/23 IP: 2401:b4a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:d0:aa:87:36:82:79:07:ac:1e:63:2e:24:12:4c:f7:07:ec:92:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:56 2026 GMT Not After : May 10 16:01:56 2027 GMT Subject: CN=B67E34D8538AB361BC35DAA6BB862938B7074CF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:eb:20:30:82:3b:1b:4d:a8:a8:1e:55:03:88: c6:ee:d8:b0:1f:f9:00:50:06:8a:e9:16:35:1d:0b: d6:4c:d2:9a:9c:97:f2:06:13:c0:d4:cb:31:32:aa: a3:0d:09:37:8c:83:fb:72:23:e2:95:43:ac:33:11: d4:ba:ed:c1:8e:20:ac:66:07:e9:6a:7d:b3:1b:03: 28:6a:c5:ed:e4:39:46:25:04:8a:e9:c9:ce:d0:e0: 3b:17:da:5f:e3:3d:7b:82:ef:81:e4:8b:87:a7:f0: be:36:6c:72:ed:5a:dd:30:11:4c:4e:51:64:8b:5e: 8b:69:e4:de:75:ea:35:6e:0a:48:b4:13:fd:be:fb: 10:25:42:14:fb:ff:60:80:9f:b4:43:66:be:84:54: 22:cb:ef:a1:00:c8:5d:02:1a:dd:48:97:02:d8:5d: 3e:a4:7e:50:3f:14:4b:99:b7:49:e3:ea:60:a8:78: bc:8a:f8:f2:54:e2:07:b0:5b:e5:89:1c:74:5c:81: 5a:a8:9f:ea:dd:3d:67:14:04:76:aa:9f:f7:ad:22: 33:3e:a9:14:dc:52:57:8e:df:ba:9b:11:cf:4f:08: f5:b2:a7:df:33:29:31:3b:de:5a:a0:ac:6d:70:e7: 81:01:ce:cc:e1:e1:a2:69:cf:cb:d2:5d:24:dd:22: b7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B6:7E:34:D8:53:8A:B3:61:BC:35:DA:A6:BB:86:29:38:B7:07:4C:F5 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SKIPTECH/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SKIPTECH/0/B67E34D8538AB361BC35DAA6BB862938B7074CF5.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.174.0/23 IPv6: 2401:b4a0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 63909 Signature Algorithm: sha256WithRSAEncryption 09:2e:0b:14:48:3a:ef:4f:54:68:9e:29:04:ba:2c:c4:59:b2: fd:e0:06:96:b2:65:e2:a1:b6:b0:1c:c7:af:ff:bf:70:19:f9: f2:46:24:c8:15:a9:5c:0a:fb:c6:aa:80:b6:1e:b5:95:0b:89: 43:44:b0:18:94:67:2c:68:ac:e6:66:f7:70:d0:be:0d:16:fd: 66:33:1e:25:37:f9:95:bd:cf:67:3c:32:07:c6:1f:af:0f:dc: 0b:1e:55:22:a8:1d:c3:0c:ed:25:70:8b:c9:b2:5c:63:6d:4d: 6e:96:fe:35:d5:c3:13:7a:3d:39:26:63:76:af:2e:90:6c:d0: 97:2a:96:9c:02:28:4e:b4:bc:29:df:cf:7d:5c:16:17:1b:0e: 1a:ef:f1:0d:a9:eb:3a:23:50:c7:6a:9a:8e:cb:83:91:43:a4: 9f:2e:59:28:fc:57:48:62:4c:51:fd:38:55:75:f8:ec:18:3b: c5:30:b7:9e:0c:66:c4:be:a8:ad:24:ab:cd:22:1c:17:94:99: 36:47:60:d9:c6:c9:cf:7f:28:98:5a:63:b4:6a:76:5c:dd:16: 63:d2:c8:d7:11:fe:ff:28:5c:fc:db:f0:70:37:c0:b6:d3:dd: c8:05:d0:06:2f:a4:44:06:01:e7:93:db:ca:a4:64:e2:e8:53: 9c:c6:14:2a -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgIUYNCqhzaCeQesHmMuJBJM9wfskhAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTY1NloX DTI3MDUxMDE2MDE1NlowMzExMC8GA1UEAxMoQjY3RTM0RDg1MzhBQjM2MUJDMzVE QUE2QkI4NjI5MzhCNzA3NENGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMHrIDCCOxtNqKgeVQOIxu7YsB/5AFAGiukWNR0L1kzSmpyX8gYTwNTLMTKq ow0JN4yD+3Ij4pVDrDMR1LrtwY4grGYH6Wp9sxsDKGrF7eQ5RiUEiunJztDgOxfa X+M9e4LvgeSLh6fwvjZscu1a3TARTE5RZItei2nk3nXqNW4KSLQT/b77ECVCFPv/ YICftENmvoRUIsvvoQDIXQIa3UiXAthdPqR+UD8US5m3SePqYKh4vIr48lTiB7Bb 5YkcdFyBWqif6t09ZxQEdqqf960iMz6pFNxSV47fupsRz08I9bKn3zMpMTveWqCs bXDngQHOzOHhomnPy9JdJN0it60CAwEAAaOCApUwggKRMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLZ+NNhTirNhvDXapruGKTi3B0z1MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TS0lQVEVDSC8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TS0lQ VEVDSC8wL0I2N0UzNEQ4NTM4QUIzNjFCQzM1REFBNkJCODYyOTM4QjcwNzRDRjUu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUH AQcBAf8EHzAdMAwEAgABMAYDBAFnxK4wDQQCAAIwBwMFACQBtKAwGgYIKwYBBQUH AQgBAf8ECzAJoAcwBQIDAPmlMA0GCSqGSIb3DQEBCwUAA4IBAQAJLgsUSDrvT1Ro nikEuizEWbL94AaWsmXiobawHMev/79wGfnyRiTIFalcCvvGqoC2HrWVC4lDRLAY lGcsaKzmZvdw0L4NFv1mMx4lN/mVvc9nPDIHxh+vD9wLHlUiqB3DDO0lcIvJslxj bU1ulv411cMTej05JmN2ry6QbNCXKpacAihOtLwp3899XBYXGw4a7/ENqes6I1DH apqOy4ORQ6SfLlko/FdIYkxR/ThVdfjsGDvFMLeeDGbEvqitJKvNIhwXlJk2R2DZ xsnPfyiYWmO0anZc3RZj0sjXEf7/KFz82/BwN8C2093IBdAGL6REBgHnk9vKpGTi 6FOcxhQq -----END CERTIFICATE-----Generated at Wed May 13 04:51:24 2026 by rpki-client