$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer File: BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer (raw, json) Hash identifier: vdGLl9kt60rtTSDuvoXYn3j17/pkx0Qv0EwqQSJ5gwE= Subject key identifier: BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 6EEF806578D5C54C33EB0F8E157BF8497ECBAD4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft caRepository: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:19 +0000 Certificate not after: Mon 10 May 2027 15:49:19 +0000 Subordinate resources: AS: 131653 AS: 152626 IP: 2402:4d20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ef:80:65:78:d5:c5:4c:33:eb:0f:8e:15:7b:f8:49:7e:cb:ad:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:19 2026 GMT Not After : May 10 15:49:19 2027 GMT Subject: CN=BED725C413C7A436F5A200F207F3CB3A7A9E05DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fb:1d:29:8b:39:7a:7d:f1:16:fb:da:58:c0: 79:4e:d9:11:1e:88:72:62:3b:33:42:b5:ac:1c:57: 2a:bf:ac:25:98:b8:90:61:31:e1:7d:86:cf:57:9e: 2e:f7:cd:a7:94:eb:af:e5:0d:36:33:f6:e9:8f:65: 64:c8:57:65:a0:33:cf:95:1d:30:90:b3:60:27:a6: 6a:41:1e:27:d9:be:67:a6:b4:1c:f5:cd:40:0f:d8: 28:bd:a6:16:87:79:20:59:b8:ab:4b:12:9d:0e:3b: 7f:41:fc:0e:9a:8c:c2:ee:3d:95:3c:78:d9:fe:e3: 4d:94:ce:2a:c5:dc:42:d6:a3:4e:92:fc:c0:e3:b6: 9b:d7:f6:42:ec:95:a0:f0:af:1f:af:ed:13:c3:73: ac:64:ba:24:58:d4:ee:7f:15:27:45:cc:ca:eb:f1: ef:f9:1f:c9:17:25:20:5d:9e:52:b6:91:70:ab:0d: 49:d5:be:40:3a:90:89:aa:62:53:23:c7:d2:28:4b: 7d:bb:b4:79:fe:e7:6c:34:89:c8:c6:6d:70:96:95: 79:f6:9b:db:7c:4e:fc:67:b3:0f:33:98:c4:ea:56: e4:d3:82:7c:b1:d8:21:c6:1d:fa:6d:49:56:68:ea: dd:38:58:f7:2f:a6:9b:cd:1d:a2:65:89:07:40:b2: f6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4d20::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 131653 152626 Signature Algorithm: sha256WithRSAEncryption 07:43:32:c2:e1:4c:41:05:21:68:a3:18:31:f1:d4:61:f9:e9: f3:88:23:11:bf:ae:61:66:47:08:59:da:38:b7:4e:5c:58:1f: 43:97:f4:ca:d3:e7:4b:e5:0b:71:33:fb:71:0d:80:71:98:16: e9:1c:71:5c:76:cb:bf:90:97:76:7d:45:be:76:e8:c3:58:80: e7:15:7c:6f:58:18:24:73:cc:3c:f2:b3:79:8c:88:73:33:76: 02:9e:56:23:0a:91:41:63:eb:12:6f:78:2b:da:61:d1:96:e4: 02:fb:88:4b:4d:3d:08:b8:a4:c9:2c:26:47:58:8d:66:1e:69: 4d:d3:85:13:ae:a5:7e:7c:bc:38:41:73:fe:ec:66:c2:09:80: b1:a7:16:56:91:92:31:18:f4:1c:ea:2a:0e:cc:68:20:b2:c5: 00:20:c0:3c:0f:ff:8b:ee:0f:8c:8b:7f:75:10:44:4c:9b:1e: 5c:bd:a0:13:0c:23:a1:41:94:16:02:a3:24:ee:2c:04:93:ba: b8:23:66:a3:75:5f:13:0a:0c:7e:8d:8c:e6:00:95:8d:a1:be: 15:95:64:27:76:a6:56:ec:42:4a:3f:7e:01:0e:77:0e:f5:4d: df:fa:a3:35:cd:15:e8:f8:0b:a3:9d:25:ca:97:1c:16:74:ff: 03:ee:cb:32 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUbu+AZXjVxUwz6w+OFXv4SX7LrUswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQxOVoX DTI3MDUxMDE1NDkxOVowMzExMC8GA1UEAxMoQkVENzI1QzQxM0M3QTQzNkY1QTIw MEYyMDdGM0NCM0E3QTlFMDVEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKX7HSmLOXp98Rb72ljAeU7ZER6IcmI7M0K1rBxXKr+sJZi4kGEx4X2Gz1ee LvfNp5Trr+UNNjP26Y9lZMhXZaAzz5UdMJCzYCemakEeJ9m+Z6a0HPXNQA/YKL2m Fod5IFm4q0sSnQ47f0H8DpqMwu49lTx42f7jTZTOKsXcQtajTpL8wOO2m9f2QuyV oPCvH6/tE8NzrGS6JFjU7n8VJ0XMyuvx7/kfyRclIF2eUraRcKsNSdW+QDqQiapi UyPH0ihLfbu0ef7nbDSJyMZtcJaVefab23xO/GezDzOYxOpW5NOCfLHYIcYd+m1J Vmjq3ThY9y+mm80domWJB0Cy9r8CAwEAAaOCAo4wggKKMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL7XJcQTx6Q29aIA8gfzyzp6ngXaMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHjBggrBgEFBQcBCwSB1jCB0zA1Bggr BgEFBQcwBYYpcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DTE9VREJBU0Uv MC8wYQYIKwYBBQUHMAqGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xP VURCQVNFLzAvQkVENzI1QzQxM0M3QTQzNkY1QTIwMEYyMDdGM0NCM0E3QTlFMDVE QS5tZnQwNwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEF BQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCTSAwHwYIKwYBBQUHAQgBAf8EEDAOoAww CgIDAgJFAgMCVDIwDQYJKoZIhvcNAQELBQADggEBAAdDMsLhTEEFIWijGDHx1GH5 6fOIIxG/rmFmRwhZ2ji3TlxYH0OX9MrT50vlC3Ez+3ENgHGYFukccVx2y7+Ql3Z9 Rb526MNYgOcVfG9YGCRzzDzys3mMiHMzdgKeViMKkUFj6xJveCvaYdGW5AL7iEtN PQi4pMksJkdYjWYeaU3ThROupX58vDhBc/7sZsIJgLGnFlaRkjEY9BzqKg7MaCCy xQAgwDwP/4vuD4yLf3UQREybHly9oBMMI6FBlBYCoyTuLASTurgjZqN1XxMKDH6N jOYAlY2hvhWVZCd2plbsQko/fgEOdw71Td/6ozXNFej4C6OdJcqXHBZ0/wPuyzI= -----END CERTIFICATE-----Generated at Tue May 12 22:16:47 2026 by rpki-client