$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/BA76DF7F88073A2138A8860116C53F470BF01FF5.cer File: BA76DF7F88073A2138A8860116C53F470BF01FF5.cer (raw, json) Hash identifier: Jq3bkcUqaLEDscgw0eBKSVCbtv+iOo9iGbeFxL0VkBU= Subject key identifier: BA:76:DF:7F:88:07:3A:21:38:A8:86:01:16:C5:3F:47:0B:F0:1F:F5 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 494D303C1C0AA57DF1D0D1302DECBDCD11668586 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/HAOWANG/0/BA76DF7F88073A2138A8860116C53F470BF01FF5.mft caRepository: rsync://rpkica.twnic.tw/rpki/HAOWANG/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:46:21 +0000 Certificate not after: Mon 10 May 2027 15:51:21 +0000 Subordinate resources: IP: 103.255.42.0/23 IP: 2401:2920::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:4d:30:3c:1c:0a:a5:7d:f1:d0:d1:30:2d:ec:bd:cd:11:66:85:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:46:21 2026 GMT Not After : May 10 15:51:21 2027 GMT Subject: CN=BA76DF7F88073A2138A8860116C53F470BF01FF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4a:7d:f4:e5:2b:87:30:aa:51:4d:3d:b3:db: 11:d1:a0:08:28:ca:1d:36:a9:e0:24:48:e8:1b:01: 77:ec:23:4d:cf:50:09:4b:9a:35:af:6b:c8:59:ba: a4:df:cc:94:5e:8f:ec:36:26:6e:8d:29:e0:3a:7a: 2b:dd:bb:f1:6e:a4:4c:92:16:f6:71:e8:d0:db:d4: 2d:1c:2e:9e:2f:ad:33:e6:f3:ad:e6:e3:58:9e:dc: 9b:9e:9c:d4:5f:ad:26:80:2e:a0:66:6f:ae:66:53: aa:07:22:a3:39:0a:38:40:e8:ea:86:57:85:76:86: c9:22:dd:34:ee:56:1e:c7:42:76:04:ed:5a:02:f2: b0:2c:d2:7a:33:bd:bc:89:0e:22:90:19:96:5f:2c: 49:62:43:3c:ae:e8:33:21:7f:f4:18:c4:06:67:df: fc:80:1a:cd:8b:b1:52:74:a2:45:88:79:24:41:ad: de:d8:9b:81:23:7c:1b:3f:12:72:87:d0:07:69:bf: a5:52:7a:dc:19:83:94:11:df:08:24:b4:f6:93:a6: 79:a0:26:cc:e5:a4:56:d5:45:5e:c5:ee:0e:ee:73: 78:be:44:00:40:bf:f7:a8:98:77:13:81:a7:1c:a6: f9:dc:db:00:be:c4:4d:28:ab:6e:27:dc:a7:9a:bc: ad:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BA:76:DF:7F:88:07:3A:21:38:A8:86:01:16:C5:3F:47:0B:F0:1F:F5 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/HAOWANG/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/HAOWANG/0/BA76DF7F88073A2138A8860116C53F470BF01FF5.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.42.0/23 IPv6: 2401:2920::/32 Signature Algorithm: sha256WithRSAEncryption 83:ad:c5:73:59:76:5b:b4:00:10:5c:ca:a9:7d:75:60:74:a1: 1a:a0:1c:30:4d:52:37:b8:b2:61:cb:c1:89:62:61:8e:9c:a3: 3a:b5:e5:be:cc:ac:9f:bd:36:66:ae:33:a2:fb:7d:2c:d5:00: 75:b5:33:b6:b0:0b:bc:4d:a9:10:d7:61:45:76:54:6c:61:01: fb:13:f1:61:e6:b2:12:61:f4:e8:57:fb:3a:f6:99:85:98:0e: 17:68:09:fd:ce:90:3a:33:39:19:61:11:3d:ce:b8:fb:29:fe: 44:ab:c3:f9:6a:29:e1:55:69:df:cf:ed:67:dc:cd:f1:ee:81: 70:c9:42:37:c4:c8:85:44:40:c1:8e:9b:9c:7d:7f:e4:93:3f: 7c:34:84:6e:1f:96:8c:58:dd:00:ac:bf:84:ec:c8:66:4b:9a: 7d:86:5b:a1:48:c4:71:39:4b:44:da:d1:4d:c8:8f:0a:ee:82: bb:1b:0f:64:c2:80:03:9e:04:eb:79:34:38:0c:5a:fb:75:e5: 30:89:c8:0a:7f:51:ae:15:e3:c9:71:e4:ab:7c:c3:6f:40:99: b3:03:db:75:b2:57:82:ea:24:e2:17:fa:0f:ea:1e:e0:9c:a1: fc:bf:29:63:64:52:f7:41:7d:f9:c1:a2:81:95:d2:df:6d:c4: 1a:e5:d6:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUSU0wPBwKpX3x0NEwLey9zRFmhYYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDYyMVoX DTI3MDUxMDE1NTEyMVowMzExMC8GA1UEAxMoQkE3NkRGN0Y4ODA3M0EyMTM4QTg4 NjAxMTZDNTNGNDcwQkYwMUZGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhKffTlK4cwqlFNPbPbEdGgCCjKHTap4CRI6BsBd+wjTc9QCUuaNa9ryFm6 pN/MlF6P7DYmbo0p4Dp6K9278W6kTJIW9nHo0NvULRwuni+tM+bzrebjWJ7cm56c 1F+tJoAuoGZvrmZTqgciozkKOEDo6oZXhXaGySLdNO5WHsdCdgTtWgLysCzSejO9 vIkOIpAZll8sSWJDPK7oMyF/9BjEBmff/IAazYuxUnSiRYh5JEGt3tibgSN8Gz8S cofQB2m/pVJ63BmDlBHfCCS09pOmeaAmzOWkVtVFXsXuDu5zeL5EAEC/96iYdxOB pxym+dzbAL7ETSirbifcp5q8rVMCAwEAAaOCAncwggJzMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLp233+IBzohOKiGARbFP0cL8B/1MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9IQU9XQU5HLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0hBT1dB TkcvMC9CQTc2REY3Rjg4MDczQTIxMzhBODg2MDExNkM1M0Y0NzBCRjAxRkY1Lm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZ/8qMA0EAgACMAcDBQAkASkgMA0GCSqGSIb3DQEB CwUAA4IBAQCDrcVzWXZbtAAQXMqpfXVgdKEaoBwwTVI3uLJhy8GJYmGOnKM6teW+ zKyfvTZmrjOi+30s1QB1tTO2sAu8TakQ12FFdlRsYQH7E/Fh5rISYfToV/s69pmF mA4XaAn9zpA6MzkZYRE9zrj7Kf5Eq8P5ainhVWnfz+1n3M3x7oFwyUI3xMiFREDB jpucfX/kkz98NIRuH5aMWN0ArL+E7MhmS5p9hluhSMRxOUtE2tFNyI8K7oK7Gw9k woADngTreTQ4DFr7deUwicgKf1GuFePJceSrfMNvQJmzA9t1sleC6iTiF/oP6h7g nKH8vyljZFL3QX35waKBldLfbcQa5dZJ -----END CERTIFICATE-----Generated at Tue May 12 22:16:39 2026 by rpki-client