$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/D31DE8192962A403BB6809455D9C0776F79CC527.cer File: D31DE8192962A403BB6809455D9C0776F79CC527.cer (raw, json) Hash identifier: q/nzrar2H2ndvnIugaoNG4f98Y94AMdw26kzG6+2FA4= Subject key identifier: D3:1D:E8:19:29:62:A4:03:BB:68:09:45:5D:9C:07:76:F7:9C:C5:27 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 24E34DAD272F9C686B3E4DA127E84361E25540C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/EDTNS/0/D31DE8192962A403BB6809455D9C0776F79CC527.mft caRepository: rsync://rpkica.twnic.tw/rpki/EDTNS/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:45:30 +0000 Certificate not after: Mon 10 May 2027 15:50:30 +0000 Subordinate resources: AS: 18411 IP: 61.56.16.0/20 IP: 119.30.16.0/20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:e3:4d:ad:27:2f:9c:68:6b:3e:4d:a1:27:e8:43:61:e2:55:40:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:45:30 2026 GMT Not After : May 10 15:50:30 2027 GMT Subject: CN=D31DE8192962A403BB6809455D9C0776F79CC527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:46:c9:6d:14:92:4c:81:b4:75:8a:9c:2e:8b: 78:54:3e:2f:d5:f6:34:20:80:1f:c6:7f:76:24:98: cc:2a:08:60:c1:6d:c0:2f:6c:e5:f6:a2:8c:1f:fd: c8:31:1c:54:b2:81:6f:02:7e:d3:27:90:56:ef:3f: f2:c4:eb:d3:c5:9f:df:51:23:e9:c4:0f:e2:3f:17: 24:e4:02:2a:e5:60:a5:a8:0e:b1:66:10:d2:9c:df: 9e:fb:62:d5:b0:ec:8a:59:2e:c7:f8:79:b5:8a:b8: 06:7b:fb:1e:77:4d:a5:00:25:18:24:21:9c:16:0d: 27:6f:a2:40:b0:c3:b3:d3:68:ae:87:ec:b7:19:ee: 48:06:1a:c7:da:e1:fb:66:02:e7:19:48:8f:6c:7b: 9d:8d:42:7e:c0:1c:8a:e8:01:26:d3:8a:82:07:b5: be:ec:0e:95:05:46:2e:4c:3c:76:00:e3:ef:d2:56: e1:bc:5d:4d:be:c5:66:89:6c:8a:8c:36:f9:97:03: da:46:df:6c:cf:3f:5e:29:a2:b5:bd:4f:18:bf:ed: 3e:c0:02:41:f9:7a:08:0d:5b:ac:97:ae:49:7f:d5: 74:53:74:5d:6b:f3:ea:76:4a:27:e5:5e:75:69:39: bc:46:d3:a1:18:34:03:e3:ee:ac:62:a7:0e:4e:9c: 54:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D3:1D:E8:19:29:62:A4:03:BB:68:09:45:5D:9C:07:76:F7:9C:C5:27 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/EDTNS/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/EDTNS/0/D31DE8192962A403BB6809455D9C0776F79CC527.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.56.16.0/20 119.30.16.0/20 sbgp-autonomousSysNum: critical Autonomous System Numbers: 18411 Signature Algorithm: sha256WithRSAEncryption 9e:30:31:f4:61:28:ff:81:5c:af:52:35:59:38:c4:5c:58:0c: f4:3e:ec:e6:20:a1:f5:4c:f9:3f:00:82:e0:90:9b:b9:17:d6: 3f:4c:d2:9a:4b:57:58:30:83:c3:d7:b8:3d:c4:bc:7e:ed:50: 97:17:05:54:95:bc:03:66:f5:d2:0c:d1:09:ce:64:09:b8:80: ca:25:56:60:7c:bd:4d:43:e3:bb:61:fa:4a:3b:8e:ff:5a:09: 13:c5:2f:d7:58:12:ae:1b:a2:c0:29:66:a6:3f:3a:81:d2:2d: d3:77:b8:99:db:a1:ef:79:f5:6a:37:9b:af:34:aa:a4:b3:41: 9c:1d:4f:37:8f:a4:ee:df:e4:66:f2:c7:90:46:91:9a:92:39: 68:05:22:2a:ca:45:5d:56:fd:0f:d5:3f:23:a1:83:99:14:06: 47:2c:96:af:04:de:19:c0:1e:9a:7f:da:a4:f3:ef:bf:cd:c1: 68:dc:1d:5f:67:9d:bd:a7:ea:86:7e:c1:6a:7b:2a:a0:7a:ce: f0:4c:b8:54:2e:0d:a4:a3:45:c0:7f:60:34:4d:3a:96:5d:fc: e9:f1:2d:51:16:f1:6b:e8:6f:30:59:e5:9c:3a:39:62:78:d4: 49:02:ab:ac:f2:96:76:c2:43:0e:b7:99:26:aa:50:1b:87:b3: 66:11:fb:f2 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgIUJONNrScvnGhrPk2hJ+hDYeJVQMAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDUzMFoX DTI3MDUxMDE1NTAzMFowMzExMC8GA1UEAxMoRDMxREU4MTkyOTYyQTQwM0JCNjgw OTQ1NUQ5QzA3NzZGNzlDQzUyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANNGyW0UkkyBtHWKnC6LeFQ+L9X2NCCAH8Z/diSYzCoIYMFtwC9s5faijB/9 yDEcVLKBbwJ+0yeQVu8/8sTr08Wf31Ej6cQP4j8XJOQCKuVgpagOsWYQ0pzfnvti 1bDsilkux/h5tYq4Bnv7HndNpQAlGCQhnBYNJ2+iQLDDs9NorofstxnuSAYax9rh +2YC5xlIj2x7nY1CfsAciugBJtOKgge1vuwOlQVGLkw8dgDj79JW4bxdTb7FZols iow2+ZcD2kbfbM8/Ximitb1PGL/tPsACQfl6CA1brJeuSX/VdFN0XWvz6nZKJ+Ve dWk5vEbToRg0A+PurGKnDk6cVNMCAwEAAaOCAoUwggKBMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNMd6BkpYqQDu2gJRV2cB3b3nMUnMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9FRFROUy8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9FRFROUy8w L0QzMURFODE5Mjk2MkE0MDNCQjY4MDk0NTVEOUMwNzc2Rjc5Q0M1MjcubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAQ9OBADBAR3HhAwGQYIKwYBBQUHAQgBAf8ECjAIoAYwBAIC R+swDQYJKoZIhvcNAQELBQADggEBAJ4wMfRhKP+BXK9SNVk4xFxYDPQ+7OYgofVM +T8AguCQm7kX1j9M0ppLV1gwg8PXuD3EvH7tUJcXBVSVvANm9dIM0QnOZAm4gMol VmB8vU1D47th+ko7jv9aCRPFL9dYEq4bosApZqY/OoHSLdN3uJnboe959Wo3m680 qqSzQZwdTzePpO7f5Gbyx5BGkZqSOWgFIirKRV1W/Q/VPyOhg5kUBkcslq8E3hnA Hpp/2qTz77/NwWjcHV9nnb2n6oZ+wWp7KqB6zvBMuFQuDaSjRcB/YDRNOpZd/Onx LVEW8WvobzBZ5Zw6OWJ41EkCq6zylnbCQw63mSaqUBuHs2YR+/I= -----END CERTIFICATE-----Generated at Wed May 13 03:58:40 2026 by rpki-client