$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/D1AE3338035BFCA7C4E86FBC281A1FDF0BE69B90.cer File: D1AE3338035BFCA7C4E86FBC281A1FDF0BE69B90.cer (raw, json) Hash identifier: TjQTSGOR7GptJQmPiN2HoYCKqL5kuXJ8sMHwNT1PRoY= Subject key identifier: D1:AE:33:38:03:5B:FC:A7:C4:E8:6F:BC:28:1A:1F:DF:0B:E6:9B:90 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 0D0ADB1879055BC1FA5E789376A19F817A67EB7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SHANGFU/0/D1AE3338035BFCA7C4E86FBC281A1FDF0BE69B90.mft caRepository: rsync://rpkica.twnic.tw/rpki/SHANGFU/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:30 +0000 Certificate not after: Mon 10 May 2027 16:01:30 +0000 Subordinate resources: IP: 103.126.88.0/22 IP: 2405:67c0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0a:db:18:79:05:5b:c1:fa:5e:78:93:76:a1:9f:81:7a:67:eb:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:30 2026 GMT Not After : May 10 16:01:30 2027 GMT Subject: CN=D1AE3338035BFCA7C4E86FBC281A1FDF0BE69B90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:93:ba:f5:56:bb:9e:ca:c8:1a:01:2a:e3:62: c2:7d:28:fa:62:25:84:ff:75:be:6a:3a:bc:d1:07: ff:14:9f:27:05:cc:48:f0:db:ea:74:71:b3:41:e9: 19:4f:8c:da:6e:a4:fb:33:d8:7e:d8:4c:e1:e2:e7: 15:fb:90:f5:b6:a1:07:15:b0:49:0b:be:90:29:b7: 75:1a:9f:5d:24:51:97:4b:a5:36:b6:83:c0:91:a0: 79:47:23:c0:c1:38:8f:b1:59:e1:34:de:fa:ae:51: 0d:56:bd:24:6d:6e:c1:d1:72:45:99:6c:9c:cb:fd: bc:e4:b7:a8:65:3b:16:6a:73:bf:a2:cd:ed:f4:f2: a0:31:b6:7e:99:2f:54:56:9c:e7:64:eb:cf:61:8e: 3d:14:24:8a:dd:1c:0b:65:7a:94:be:86:c1:2d:05: 39:63:38:49:56:92:a7:76:5d:1e:37:93:fa:7f:c1: e2:65:5c:4d:85:66:8b:76:c4:2c:4f:69:f7:11:07: c7:87:a2:7f:12:8d:07:d9:7e:3a:d9:c1:2b:62:df: d2:f9:fc:d0:48:6f:ba:81:53:ab:0d:cd:ea:a7:09: 98:1a:9f:f3:8f:31:71:71:ca:0b:52:b3:d6:15:8d: 75:de:fe:c7:17:a7:6c:7a:c7:57:77:2c:39:b6:1a: ad:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D1:AE:33:38:03:5B:FC:A7:C4:E8:6F:BC:28:1A:1F:DF:0B:E6:9B:90 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SHANGFU/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SHANGFU/0/D1AE3338035BFCA7C4E86FBC281A1FDF0BE69B90.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.88.0/22 IPv6: 2405:67c0::/32 Signature Algorithm: sha256WithRSAEncryption 53:ea:ec:6f:f6:3b:de:ce:a1:01:36:cc:f7:1b:2b:1b:87:e4: 33:d8:6f:1c:f6:d0:83:bd:7f:c1:61:e7:b2:f2:2b:ba:e5:24: 9b:9e:26:ea:e5:0d:8e:6e:2a:c7:20:5e:ea:e9:3d:6b:85:31: 62:90:35:d0:d7:f6:e3:bc:a7:0e:e4:a5:67:18:07:ae:79:1d: 39:5b:49:01:9a:2b:0e:d1:db:94:03:8e:5e:a5:fb:67:30:c1: a1:a0:f5:ca:2b:b7:43:cd:e8:6c:d5:f9:ca:a7:02:77:f5:9c: a1:97:a1:a1:36:90:14:97:e9:43:43:35:08:46:58:06:d2:7b: 41:98:f1:a8:ab:3e:24:10:59:d9:12:74:ab:bc:c7:62:f8:63: 28:45:06:28:98:27:63:22:11:1e:16:51:d8:21:41:34:24:48: 7c:36:17:3e:37:96:94:27:ce:5f:85:bb:a6:4b:b2:36:79:07: 88:ec:01:fc:36:40:ef:93:fa:00:b2:32:76:3b:9c:22:7f:3c: 77:32:1e:82:57:00:e9:c7:19:d1:27:30:80:36:65:31:02:56: d0:4b:a1:78:0f:c2:18:3c:71:1c:3a:d7:8b:72:31:ea:9b:54: 73:77:32:27:75:11:f5:49:75:74:e9:f7:4e:cf:30:38:96:64: 15:75:49:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUDQrbGHkFW8H6XniTdqGfgXpn638wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTYzMFoX DTI3MDUxMDE2MDEzMFowMzExMC8GA1UEAxMoRDFBRTMzMzgwMzVCRkNBN0M0RTg2 RkJDMjgxQTFGREYwQkU2OUI5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOOTuvVWu57KyBoBKuNiwn0o+mIlhP91vmo6vNEH/xSfJwXMSPDb6nRxs0Hp GU+M2m6k+zPYfthM4eLnFfuQ9bahBxWwSQu+kCm3dRqfXSRRl0ulNraDwJGgeUcj wME4j7FZ4TTe+q5RDVa9JG1uwdFyRZlsnMv9vOS3qGU7Fmpzv6LN7fTyoDG2fpkv VFac52Trz2GOPRQkit0cC2V6lL6GwS0FOWM4SVaSp3ZdHjeT+n/B4mVcTYVmi3bE LE9p9xEHx4eifxKNB9l+OtnBK2Lf0vn80EhvuoFTqw3N6qcJmBqf848xcXHKC1Kz 1hWNdd7+xxenbHrHV3csObYarcECAwEAAaOCAncwggJzMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNGuMzgDW/ynxOhvvCgaH98L5puQMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSEFOR0ZVLzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NIQU5H RlUvMC9EMUFFMzMzODAzNUJGQ0E3QzRFODZGQkMyODFBMUZERjBCRTY5QjkwLm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQCZ35YMA0EAgACMAcDBQAkBWfAMA0GCSqGSIb3DQEB CwUAA4IBAQBT6uxv9jvezqEBNsz3Gysbh+Qz2G8c9tCDvX/BYeey8iu65SSbnibq 5Q2ObirHIF7q6T1rhTFikDXQ1/bjvKcO5KVnGAeueR05W0kBmisO0duUA45epftn MMGhoPXKK7dDzehs1fnKpwJ39Zyhl6GhNpAUl+lDQzUIRlgG0ntBmPGoqz4kEFnZ EnSrvMdi+GMoRQYomCdjIhEeFlHYIUE0JEh8Nhc+N5aUJ85fhbumS7I2eQeI7AH8 NkDvk/oAsjJ2O5wifzx3Mh6CVwDpxxnRJzCANmUxAlbQS6F4D8IYPHEcOteLcjHq m1RzdzIndRH1SXV06fdOzzA4lmQVdUmi -----END CERTIFICATE-----Generated at Tue May 12 22:16:48 2026 by rpki-client