$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer File: BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer (raw, json) Hash identifier: vGInYpJSu/QbB1C2y1qoXmKc7xyq9hPH233LvrQvULg= Subject key identifier: BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 553043669B9D5AA762C0F37EE3B4796B154F0E85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft caRepository: rsync://rpkica.twnic.tw/rpki/GAMBESON/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:45:55 +0000 Certificate not after: Mon 10 May 2027 15:50:55 +0000 Subordinate resources: AS: 131590 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:30:43:66:9b:9d:5a:a7:62:c0:f3:7e:e3:b4:79:6b:15:4f:0e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:45:55 2026 GMT Not After : May 10 15:50:55 2027 GMT Subject: CN=BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:77:92:f7:3e:48:d7:6c:f5:e2:e2:ac:56:55: 7d:cf:74:49:bc:d0:d0:4f:93:a9:db:9c:09:30:54: 4d:5e:15:d1:ef:27:06:b5:a8:80:2d:dc:cf:b6:a3: 9e:84:7e:b2:40:60:37:95:10:e6:f2:5f:b7:ac:8a: c0:81:56:16:ce:78:73:8d:9a:0d:d4:0e:27:28:6a: cb:7f:cb:d7:c6:8e:b8:52:64:40:97:6b:e3:09:fc: 82:74:c3:11:da:45:fa:17:27:23:82:46:e5:5e:bb: 76:9c:2d:86:bc:0b:af:97:ce:33:20:bc:28:0c:7f: ac:7e:cd:4d:f0:82:b6:6a:11:43:72:4f:1e:04:3c: e2:82:ca:c1:a4:c9:cf:c3:69:4a:1d:bd:16:43:2f: 15:e4:f7:3a:c6:c0:2b:5f:97:60:a2:e9:45:20:da: af:5b:c8:17:56:e4:0a:0b:51:ef:5a:14:c2:9e:30: ed:1a:6d:6f:6f:63:d6:ee:2d:8f:36:20:01:17:e4: bc:cb:a3:8b:1c:03:ce:fe:04:0e:de:26:47:a5:ca: fe:ff:50:b5:cc:77:54:17:11:eb:86:0c:4c:3f:0c: 77:87:27:46:c2:45:30:b6:08:1e:bd:03:48:66:23: ad:8a:ef:b5:5b:09:73:53:65:12:52:43:5e:15:40: c8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 131590 Signature Algorithm: sha256WithRSAEncryption b4:a7:01:a9:bc:68:f7:e5:50:07:4b:d7:f1:fc:33:56:7f:d2: 89:c3:ee:8c:71:f2:ae:8e:52:97:70:75:4f:55:35:04:3d:7d: 4f:c5:96:8c:d8:c5:d0:50:e5:24:a1:d9:5f:45:75:d6:aa:a5: ca:db:0e:8b:e1:18:a7:1b:c4:e2:fe:e0:29:1f:c0:b6:11:df: 14:5f:2c:3a:2e:00:ce:bb:c2:1a:ab:25:a9:db:9a:53:61:c2: 3b:b8:a7:56:02:f8:f3:e3:95:33:6d:cc:52:a2:35:e0:d8:4f: d7:b0:f8:4f:32:e9:31:36:30:d9:43:20:d2:d3:83:40:dd:13: 72:2f:c9:9c:29:f6:69:a1:26:0c:7e:31:e6:60:7c:3b:d3:d8: 54:c4:8f:a7:0d:f4:38:79:98:5f:26:b5:b3:52:2f:43:86:c3: e7:b8:ac:e3:40:01:d4:ea:98:b9:d3:f1:80:90:37:79:ed:fa: 9f:03:fc:00:7a:9f:7b:8c:b7:7c:3c:48:e6:c2:0f:ac:61:98: 82:ee:80:86:a2:e2:00:9a:67:ae:7e:b0:78:28:d8:8b:3c:ae: 99:28:bb:62:7a:55:b6:a1:de:d7:64:89:e2:c4:a3:5b:8a:89: 5c:f4:f9:10:3b:2c:e1:99:65:61:36:40:e3:f0:79:35:6e:da: 53:85:44:fa -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIUVTBDZpudWqdiwPN+47R5axVPDoUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDU1NVoX DTI3MDUxMDE1NTA1NVowMzExMC8GA1UEAxMoQkFBOUUxQjVDNTZBRTJBQjE1NzNG NEREMzRFRTY3OTQzQUU1RDREMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMN3kvc+SNds9eLirFZVfc90SbzQ0E+TqducCTBUTV4V0e8nBrWogC3cz7aj noR+skBgN5UQ5vJft6yKwIFWFs54c42aDdQOJyhqy3/L18aOuFJkQJdr4wn8gnTD EdpF+hcnI4JG5V67dpwthrwLr5fOMyC8KAx/rH7NTfCCtmoRQ3JPHgQ84oLKwaTJ z8NpSh29FkMvFeT3OsbAK1+XYKLpRSDar1vIF1bkCgtR71oUwp4w7Rptb29j1u4t jzYgARfkvMujixwDzv4EDt4mR6XK/v9Qtcx3VBcR64YMTD8Md4cnRsJFMLYIHr0D SGYjrYrvtVsJc1NlElJDXhVAyBUCAwEAAaOCAmUwggJhMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLqp4bXFauKrFXP03TTuZ5Q65dTQMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HQU1CRVNPTi8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HQU1C RVNPTi8wL0JBQTlFMUI1QzU2QUUyQUIxNTczRjRERDM0RUU2Nzk0M0FFNUQ0RDAu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwGgYIKwYBBQUH AQgBAf8ECzAJoAcwBQIDAgIGMA0GCSqGSIb3DQEBCwUAA4IBAQC0pwGpvGj35VAH S9fx/DNWf9KJw+6McfKujlKXcHVPVTUEPX1PxZaM2MXQUOUkodlfRXXWqqXK2w6L 4RinG8Ti/uApH8C2Ed8UXyw6LgDOu8IaqyWp25pTYcI7uKdWAvjz45UzbcxSojXg 2E/XsPhPMukxNjDZQyDS04NA3RNyL8mcKfZpoSYMfjHmYHw709hUxI+nDfQ4eZhf JrWzUi9DhsPnuKzjQAHU6pi50/GAkDd57fqfA/wAep97jLd8PEjmwg+sYZiC7oCG ouIAmmeufrB4KNiLPK6ZKLtielW2od7XZInixKNbiolc9PkQOyzhmWVhNkDj8Hk1 btpThUT6 -----END CERTIFICATE-----Generated at Tue May 12 22:03:58 2026 by rpki-client