$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/B76FD1E694797D3247661AEF17ADB42F18FF37F9.cer File: B76FD1E694797D3247661AEF17ADB42F18FF37F9.cer (raw, json) Hash identifier: Fxa29oWRLk4t3cDUFufLYymZizahaJ63a+3PvjxEC1I= Subject key identifier: B7:6F:D1:E6:94:79:7D:32:47:66:1A:EF:17:AD:B4:2F:18:FF:37:F9 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 5A89E675B657F08AAA28123867EF958884636553 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/HWME1204/0/B76FD1E694797D3247661AEF17ADB42F18FF37F9.mft caRepository: rsync://rpkica.twnic.tw/rpki/HWME1204/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:46:50 +0000 Certificate not after: Mon 10 May 2027 15:51:50 +0000 Subordinate resources: IP: 103.126.180.0/22 IP: 2404:f40::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:89:e6:75:b6:57:f0:8a:aa:28:12:38:67:ef:95:88:84:63:65:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:46:50 2026 GMT Not After : May 10 15:51:50 2027 GMT Subject: CN=B76FD1E694797D3247661AEF17ADB42F18FF37F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:74:79:da:14:b2:77:36:e8:c8:6c:ac:d4:bf: bf:d2:82:9f:fa:3d:19:ea:3f:00:58:96:9e:84:20: 3a:b7:23:43:df:89:54:e3:c2:8b:1e:65:84:22:5f: ba:d4:66:87:49:02:e6:a7:4d:2f:8c:0c:7a:8f:f6: 22:fc:04:80:e3:47:53:dd:44:97:c4:31:20:f0:7e: 92:4d:2e:fc:ea:7b:4a:1a:f9:13:30:7a:22:88:ef: 43:e6:eb:be:45:d0:b9:1c:60:48:75:a7:4c:f3:e2: cc:06:75:b9:2a:ae:d8:44:c8:e9:5d:52:a9:d1:6a: ee:8c:8f:01:a9:bf:d8:a5:a9:a2:d5:10:96:c5:39: 96:48:f8:73:19:b1:d8:c9:8d:6a:a2:3d:76:66:ff: 88:94:9a:c8:00:97:41:bf:d2:98:05:f1:0a:67:21: 37:ce:68:ec:d6:e6:1c:7f:70:8f:05:9c:51:a1:d7: 71:47:42:2d:6d:a8:74:e4:3e:f2:20:70:ef:d7:ed: 5f:d7:7b:b9:ce:2a:b4:86:d6:99:a7:36:e1:ee:c2: 97:c0:64:38:1f:fd:80:b0:fc:0c:6a:4f:46:07:a4: 07:a1:21:d1:a8:3b:45:9a:8f:df:87:9d:a8:05:7d: d7:21:16:41:3e:62:9e:3c:95:ff:64:df:f6:49:0a: 5b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B7:6F:D1:E6:94:79:7D:32:47:66:1A:EF:17:AD:B4:2F:18:FF:37:F9 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/HWME1204/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/HWME1204/0/B76FD1E694797D3247661AEF17ADB42F18FF37F9.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.180.0/22 IPv6: 2404:f40::/32 Signature Algorithm: sha256WithRSAEncryption 68:df:ee:6a:1d:92:ce:af:b2:c6:66:63:a1:0d:0a:a0:e9:5d: b7:fc:3b:57:d0:62:03:70:17:a8:8e:4b:b6:c4:e4:de:8d:65: 94:e0:fd:3f:ff:b1:46:6a:2f:d3:06:9e:1e:d1:8f:45:19:9f: c6:c1:8c:d4:7e:b1:6e:2f:53:b0:05:bb:dd:a3:d7:73:53:4f: 03:76:48:96:aa:a2:90:87:97:30:28:f6:d3:eb:ac:78:6f:0a: aa:ca:b5:dc:16:73:ef:4b:00:73:7f:be:ca:02:1c:a4:2e:02: d3:fe:cb:39:ab:a9:49:b8:54:c7:21:96:77:ef:b9:96:66:d2: 70:48:51:fa:a6:db:98:02:35:8c:84:a3:e5:ab:8a:c0:4c:8b: 36:ae:69:f2:fa:11:26:28:8b:8e:81:a7:59:18:8d:bf:53:a2: 27:a3:17:84:50:d9:1e:ec:e6:c9:55:05:0f:4b:aa:9a:de:d4: da:81:d5:69:2c:86:cc:88:5e:53:b1:17:72:c8:9b:88:19:d6: 41:5e:9e:7e:08:3e:40:2b:62:4e:bb:d7:e0:37:4e:9c:84:51: 15:32:08:4d:dc:75:42:ce:52:ee:32:f0:d4:4a:8b:43:98:c6: de:7f:df:fd:ad:d1:87:52:8b:ac:43:39:5e:08:f0:73:5f:98: 9b:6e:be:af -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgIUWonmdbZX8IqqKBI4Z++ViIRjZVMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDY1MFoX DTI3MDUxMDE1NTE1MFowMzExMC8GA1UEAxMoQjc2RkQxRTY5NDc5N0QzMjQ3NjYx QUVGMTdBREI0MkYxOEZGMzdGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALp0edoUsnc26MhsrNS/v9KCn/o9Geo/AFiWnoQgOrcjQ9+JVOPCix5lhCJf utRmh0kC5qdNL4wMeo/2IvwEgONHU91El8QxIPB+kk0u/Op7Shr5EzB6IojvQ+br vkXQuRxgSHWnTPPizAZ1uSqu2ETI6V1SqdFq7oyPAam/2KWpotUQlsU5lkj4cxmx 2MmNaqI9dmb/iJSayACXQb/SmAXxCmchN85o7NbmHH9wjwWcUaHXcUdCLW2odOQ+ 8iBw79ftX9d7uc4qtIbWmac24e7Cl8BkOB/9gLD8DGpPRgekB6Eh0ag7RZqP34ed qAV91yEWQT5injyV/2Tf9kkKW4UCAwEAAaOCAnkwggJ1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLdv0eaUeX0yR2Ya7xettC8Y/zf5MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9IV01FMTIwNC8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9IV01F MTIwNC8wL0I3NkZEMUU2OTQ3OTdEMzI0NzY2MUFFRjE3QURCNDJGMThGRjM3Rjku bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUH AQcBAf8EHzAdMAwEAgABMAYDBAJnfrQwDQQCAAIwBwMFACQED0AwDQYJKoZIhvcN AQELBQADggEBAGjf7modks6vssZmY6ENCqDpXbf8O1fQYgNwF6iOS7bE5N6NZZTg /T//sUZqL9MGnh7Rj0UZn8bBjNR+sW4vU7AFu92j13NTTwN2SJaqopCHlzAo9tPr rHhvCqrKtdwWc+9LAHN/vsoCHKQuAtP+yzmrqUm4VMchlnfvuZZm0nBIUfqm25gC NYyEo+WrisBMizauafL6ESYoi46Bp1kYjb9ToiejF4RQ2R7s5slVBQ9Lqpre1NqB 1WkshsyIXlOxF3LIm4gZ1kFenn4IPkArYk671+A3TpyEURUyCE3cdULOUu4y8NRK i0OYxt5/3/2t0YdSi6xDOV4I8HNfmJtuvq8= -----END CERTIFICATE-----Generated at Tue May 12 22:16:38 2026 by rpki-client