$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer File: CA678C886D87F023B9297877BF550E88E90AE169.cer (raw, json) Hash identifier: EaRC0vHks+NskFqlTAXCPlRnmqXgXzV8CTU/pO3t6jI= Subject key identifier: CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 3576FC79CC1DB4BF8D43D77CF73E669E50BE4451 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft caRepository: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:44 +0000 Certificate not after: Mon 10 May 2027 16:01:44 +0000 Subordinate resources: IP: 49.213.34.0/23 IP: 2402:22e0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:76:fc:79:cc:1d:b4:bf:8d:43:d7:7c:f7:3e:66:9e:50:be:44:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:44 2026 GMT Not After : May 10 16:01:44 2027 GMT Subject: CN=CA678C886D87F023B9297877BF550E88E90AE169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d0:e7:13:28:0d:51:f3:42:32:ab:f5:4c:f8: 77:f3:2c:2b:7d:b9:7b:65:14:0e:3f:c9:c6:b8:5a: f9:42:37:fb:1e:ce:26:38:29:4d:61:e6:17:44:b4: b1:c3:00:ad:67:69:c6:9a:d1:6c:af:c5:03:95:ee: ad:74:0e:db:e5:15:28:0d:88:c2:86:7a:7f:12:a4: bb:7d:78:7b:39:66:ff:94:20:80:b6:9a:3d:fb:aa: c9:5b:95:f1:3f:16:6a:86:8f:ab:9c:88:3d:52:b5: ae:28:df:05:36:0f:a1:f6:f1:1d:b2:0d:cb:d2:70: 32:37:38:0c:0d:e4:a4:70:63:4f:26:f6:10:ac:6a: 4d:0b:ca:b2:88:79:fd:a0:ee:86:08:4d:a7:3d:8d: 20:03:34:2e:bb:16:fe:c5:31:6b:b5:0a:66:64:3e: 81:83:09:6e:9e:42:e2:83:dc:74:3f:ee:88:55:4b: 4c:7f:c8:42:2d:58:f5:ce:db:8e:2c:99:39:54:b0: 08:f0:1c:bd:c2:f4:90:ff:a0:7e:1e:63:58:08:ab: 58:1a:4a:7b:61:13:41:7b:01:1e:5e:05:c4:5a:d4: 9c:47:e8:82:5d:58:fe:eb:77:62:77:56:91:4b:11: 9e:ab:f6:de:1d:6b:86:aa:dc:b0:a7:73:72:23:ca: 47:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.213.34.0/23 IPv6: 2402:22e0::/32 Signature Algorithm: sha256WithRSAEncryption 37:ea:e3:b6:29:b7:53:6d:94:25:ad:06:2d:28:a6:23:4d:19: c0:32:45:7b:12:ed:da:55:cc:42:a4:72:bb:9e:32:d2:02:7f: 75:db:38:38:64:72:85:7d:b4:5e:57:5f:0f:97:63:54:2a:ce: ba:f6:83:35:89:b6:9c:72:d6:0c:b9:0f:5d:44:d1:11:f7:96: d6:6c:57:cc:e4:ca:2c:5e:41:82:fc:96:20:bf:44:07:7e:ae: 62:6d:c6:20:1d:66:54:0f:21:7a:d9:8f:4f:1d:88:db:b4:8a: 07:aa:d5:94:dc:d6:b9:ea:3a:3e:9f:30:61:b5:6a:53:ba:18: 49:7e:b5:b5:00:55:d9:08:d1:af:82:47:80:1b:7c:54:ba:d7: 22:79:b8:cd:08:78:8a:e8:6d:57:ca:93:ce:56:28:e0:40:f4: 18:c8:26:48:e2:43:f3:a4:cb:d7:d5:9d:4b:f8:c2:c8:8c:a6: d0:2a:16:44:09:0e:3a:c2:c8:a8:a3:52:f0:21:29:18:a2:de: e3:e0:52:0c:8b:70:50:93:92:1e:c3:f8:54:b3:97:4a:3a:02: 7a:f0:ec:2f:56:a1:3a:35:4c:79:ca:d9:77:9c:8f:da:ef:08: 98:df:ba:99:00:ba:ef:42:a6:e7:29:f4:7c:fe:22:d6:72:fc: 26:3d:dd:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUNXb8ecwdtL+NQ9d89z5mnlC+RFEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTY0NFoX DTI3MDUxMDE2MDE0NFowMzExMC8GA1UEAxMoQ0E2NzhDODg2RDg3RjAyM0I5Mjk3 ODc3QkY1NTBFODhFOTBBRTE2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKjQ5xMoDVHzQjKr9Uz4d/MsK325e2UUDj/Jxrha+UI3+x7OJjgpTWHmF0S0 scMArWdpxprRbK/FA5XurXQO2+UVKA2IwoZ6fxKku314ezlm/5QggLaaPfuqyVuV 8T8WaoaPq5yIPVK1rijfBTYPofbxHbINy9JwMjc4DA3kpHBjTyb2EKxqTQvKsoh5 /aDuhghNpz2NIAM0LrsW/sUxa7UKZmQ+gYMJbp5C4oPcdD/uiFVLTH/IQi1Y9c7b jiyZOVSwCPAcvcL0kP+gfh5jWAirWBpKe2ETQXsBHl4FxFrUnEfogl1Y/ut3YndW kUsRnqv23h1rhqrcsKdzciPKR98CAwEAAaOCAncwggJzMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMpnjIhth/AjuSl4d79VDojpCuFpMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSElZSVlJLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NISVlJ WUkvMC9DQTY3OEM4ODZEODdGMDIzQjkyOTc4NzdCRjU1MEU4OEU5MEFFMTY5Lm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBMdUiMA0EAgACMAcDBQAkAiLgMA0GCSqGSIb3DQEB CwUAA4IBAQA36uO2KbdTbZQlrQYtKKYjTRnAMkV7Eu3aVcxCpHK7njLSAn912zg4 ZHKFfbReV18Pl2NUKs669oM1ibacctYMuQ9dRNER95bWbFfM5MosXkGC/JYgv0QH fq5ibcYgHWZUDyF62Y9PHYjbtIoHqtWU3Na56jo+nzBhtWpTuhhJfrW1AFXZCNGv gkeAG3xUutciebjNCHiK6G1XypPOVijgQPQYyCZI4kPzpMvX1Z1L+MLIjKbQKhZE CQ46wsioo1LwISkYot7j4FIMi3BQk5Iew/hUs5dKOgJ68OwvVqE6NUx5ytl3nI/a 7wiY37qZALrvQqbnKfR8/iLWcvwmPd3H -----END CERTIFICATE-----Generated at Wed May 13 06:55:28 2026 by rpki-client