$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer File: CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer (raw, json) Hash identifier: j9Qsxs5cKFk2ounwE01yYsqkjvFHGKmarPEnXa/ftjE= Subject key identifier: CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 52B605A8EAC377ED3E9F85B4CE2BC2E5EFF7691E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft caRepository: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:43:59 +0000 Certificate not after: Mon 10 May 2027 15:48:59 +0000 Subordinate resources: IP: 103.123.188.0/22 IP: 2403:a7c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b6:05:a8:ea:c3:77:ed:3e:9f:85:b4:ce:2b:c2:e5:ef:f7:69:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:43:59 2026 GMT Not After : May 10 15:48:59 2027 GMT Subject: CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:94:30:a0:50:b0:a3:f9:ab:a1:bd:81:62:23: 73:e7:12:25:d3:ba:3e:67:85:40:a0:5d:89:71:1b: 03:2a:51:36:f9:bc:8c:92:2b:6d:85:b6:24:97:e7: cb:32:af:4d:e3:4e:f0:12:bc:74:1e:c3:97:44:99: d4:fd:91:50:cc:19:68:69:46:d4:f7:98:4a:2c:94: 2a:5c:ef:b6:d7:ee:37:ed:5f:8f:71:b2:f4:05:da: e7:86:23:b3:a3:f8:e2:77:19:e2:6b:2f:95:22:fa: 36:39:13:32:ff:2f:1e:74:87:7f:c2:39:13:07:b3: 73:9e:ba:da:36:a8:ed:f9:d7:1b:03:4b:33:5a:58: c3:75:12:98:1d:c8:63:7a:2e:db:c9:67:11:54:8f: cd:67:9e:96:3f:76:11:40:11:62:78:7d:4a:5f:af: 36:29:06:44:96:0b:51:e5:f1:e9:fa:8c:41:3f:7c: 26:eb:de:5e:5f:41:96:72:b0:a9:51:3b:52:3b:e0: b6:a4:b9:1f:08:cb:72:de:cc:ed:d7:0a:70:8e:96: 87:7b:ee:7e:eb:01:c5:12:02:dd:9e:d1:02:2c:0b: 30:51:16:ab:f5:3d:02:7c:43:f8:1e:fe:28:d6:ba: 74:e4:46:3c:8a:07:b6:35:0f:d9:e3:c8:c6:77:58: 0d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.188.0/22 IPv6: 2403:a7c0::/32 Signature Algorithm: sha256WithRSAEncryption 31:46:67:a1:19:2c:f9:8f:08:19:0a:75:5e:21:d7:01:69:03: 64:58:e6:2c:7b:4a:66:87:ae:26:52:f0:9f:4d:69:c1:96:7b: 1c:38:69:da:0f:84:54:f3:3c:fb:07:73:d8:1b:86:8d:d1:86: 61:28:8c:a1:bf:e2:f3:fa:47:13:3d:22:c9:52:fc:74:56:ac: ee:0a:63:77:29:c9:d3:9c:93:55:7d:c9:42:69:2b:dd:76:ed: d5:df:bb:c3:ef:84:3d:d0:b5:19:b8:6e:97:61:91:88:b6:0f: d7:57:b8:33:21:29:99:36:1a:0d:a7:75:be:55:fb:13:0e:b4: 23:8b:3a:32:ee:a9:c7:d5:bd:44:e3:0f:a4:98:a3:5a:d3:dd: a5:4b:3c:a0:1d:ce:ff:54:d9:2a:e9:d9:1d:55:bd:88:f4:cc: 07:6d:41:46:9a:6f:b1:11:53:22:47:29:6c:62:91:b5:14:59: f4:7d:67:0b:54:e7:28:44:1a:99:60:44:b2:56:f3:b5:a5:71: 11:fe:e7:6b:a4:dc:93:ef:27:dd:fd:84:c1:2d:8d:3a:b9:e1: 62:3f:de:84:5e:47:45:ae:b4:49:33:f5:71:a4:99:40:4c:e3: d2:d1:d6:33:44:11:ce:fd:95:8b:48:85:25:e4:51:fd:67:9b: 1d:5d:cc:1e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIUUrYFqOrDd+0+n4W0zivC5e/3aR4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDM1OVoX DTI3MDUxMDE1NDg1OVowMzExMC8GA1UEAxMoQ0U1QTgxMDBCQTA5OTRBMkI4MDdG NUY0RkI3NDFDNTI4RUVBQ0NERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCUMKBQsKP5q6G9gWIjc+cSJdO6PmeFQKBdiXEbAypRNvm8jJIrbYW2JJfn yzKvTeNO8BK8dB7Dl0SZ1P2RUMwZaGlG1PeYSiyUKlzvttfuN+1fj3Gy9AXa54Yj s6P44ncZ4msvlSL6NjkTMv8vHnSHf8I5Ewezc5662jao7fnXGwNLM1pYw3USmB3I Y3ou28lnEVSPzWeelj92EUARYnh9Sl+vNikGRJYLUeXx6fqMQT98JuveXl9BlnKw qVE7UjvgtqS5HwjLct7M7dcKcI6Wh3vufusBxRIC3Z7RAiwLMFEWq/U9AnxD+B7+ KNa6dORGPIoHtjUP2ePIxndYDcMCAwEAAaOCAnswggJ3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM5agQC6CZSiuAf19Pt0HFKO6szdMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHjBggrBgEFBQcBCwSB1jCB0zA1Bggr BgEFBQcwBYYpcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElOQUxJRkUv MC8wYQYIKwYBBQUHMAqGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJ TkFMSUZFLzAvQ0U1QTgxMDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4RUVBQ0NE RC5tZnQwNwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEAmd7vDANBAIAAjAHAwUAJAOnwDANBgkqhkiG 9w0BAQsFAAOCAQEAMUZnoRks+Y8IGQp1XiHXAWkDZFjmLHtKZoeuJlLwn01pwZZ7 HDhp2g+EVPM8+wdz2BuGjdGGYSiMob/i8/pHEz0iyVL8dFas7gpjdynJ05yTVX3J Qmkr3Xbt1d+7w++EPdC1Gbhul2GRiLYP11e4MyEpmTYaDad1vlX7Ew60I4s6Mu6p x9W9ROMPpJijWtPdpUs8oB3O/1TZKunZHVW9iPTMB21BRppvsRFTIkcpbGKRtRRZ 9H1nC1TnKEQamWBEslbztaVxEf7na6Tck+8n3f2EwS2NOrnhYj/ehF5HRa60STP1 caSZQEzj0tHWM0QRzv2Vi0iFJeRR/WebHV3MHg== -----END CERTIFICATE-----Generated at Tue May 12 22:45:37 2026 by rpki-client