$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/DA4FE4BDE3C797EA6449CE50674158686675A9F4.cer File: DA4FE4BDE3C797EA6449CE50674158686675A9F4.cer (raw, json) Hash identifier: dV2hdq2je//JIn90mYbrQ7Lj3jrqVmvbSS3Ecv2y3Yc= Subject key identifier: DA:4F:E4:BD:E3:C7:97:EA:64:49:CE:50:67:41:58:68:66:75:A9:F4 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 2268286A98F8DE74D00FD5827EED17C7CA1F9C88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/CJME/0/DA4FE4BDE3C797EA6449CE50674158686675A9F4.mft caRepository: rsync://rpkica.twnic.tw/rpki/CJME/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:14 +0000 Certificate not after: Mon 10 May 2027 15:49:14 +0000 Subordinate resources: IP: 2401:88a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:68:28:6a:98:f8:de:74:d0:0f:d5:82:7e:ed:17:c7:ca:1f:9c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:14 2026 GMT Not After : May 10 15:49:14 2027 GMT Subject: CN=DA4FE4BDE3C797EA6449CE50674158686675A9F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:81:ae:da:fc:9f:04:0e:00:99:dd:62:f6:14: cc:06:ce:63:aa:6e:3e:09:e1:c6:99:e2:1b:cf:8a: 0f:46:b1:34:d2:3c:68:df:fd:23:98:0b:a1:98:f2: 2f:4b:e5:05:d6:4f:e0:1f:bd:e3:89:40:b4:1d:6f: 5c:08:33:4a:d4:b6:ea:ff:1b:78:2e:b6:3f:10:23: e0:14:49:fc:4a:2e:40:e0:39:f7:4f:27:7d:98:d9: a8:6b:12:67:97:05:fa:ac:72:31:4e:d6:de:a7:a3: d4:c4:1c:d1:cb:92:d3:e0:8f:17:ec:a7:cf:3c:21: bc:20:59:a5:a5:1f:51:78:56:c8:2d:3d:4c:14:87: 1a:f6:d1:5b:4f:32:df:b2:28:2d:ce:5b:e6:03:a1: 01:40:b2:e8:3f:a0:89:f5:56:b5:b7:6a:0a:28:3b: dc:f2:67:d8:26:9e:df:fc:ae:fc:e4:b6:eb:44:f2: 0c:eb:6f:0b:97:8d:e4:8d:82:75:5f:7d:1f:63:f7: 3a:e8:0a:b4:a1:48:a3:28:cf:08:7f:2d:08:03:d1: d0:15:35:2a:01:60:6e:56:9d:46:dd:f6:0b:62:db: 7a:10:62:5d:45:68:05:f8:17:84:59:16:84:c4:f3: 59:26:f2:f2:5f:75:69:15:4f:df:34:17:96:80:8e: b1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DA:4F:E4:BD:E3:C7:97:EA:64:49:CE:50:67:41:58:68:66:75:A9:F4 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CJME/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CJME/0/DA4FE4BDE3C797EA6449CE50674158686675A9F4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:88a0::/32 Signature Algorithm: sha256WithRSAEncryption 43:94:fa:e9:0b:59:6a:9f:35:58:7d:ff:60:c7:d0:4f:90:10: 85:cd:8c:10:66:fd:d8:1d:aa:50:3c:9f:f8:5b:29:66:0a:0b: 6b:9f:d3:c2:5a:10:c3:86:fd:b6:53:97:d4:f0:6f:ac:3c:0b: ad:7b:7e:bc:68:9b:df:f3:63:2c:41:5d:51:29:1c:49:31:dc: 9e:5e:d7:8d:12:88:ec:ba:bd:a0:72:36:d4:5d:cf:f8:e5:3b: 1f:a7:c9:68:16:c7:02:3a:de:ff:b0:bf:3e:b3:b3:9c:f1:1a: 85:42:49:20:a5:56:95:81:d5:ae:ee:d7:c4:0d:30:f9:bc:f5: a1:02:74:39:86:86:69:e8:b3:9f:6f:3f:4c:b6:57:a6:de:d1: c2:54:b0:2e:1b:f3:fe:1f:da:c4:9e:27:26:98:b9:7b:c2:e4: 6d:b8:d2:78:0e:9a:2a:7a:75:9d:2b:66:b8:70:ad:43:be:15: 3c:fe:3f:c3:93:7c:36:3e:1e:90:05:af:3e:87:09:e0:97:b7: 46:6a:56:1d:d1:23:94:ef:dd:b9:5e:e4:96:5e:07:e6:3e:8e: 45:f7:11:92:c3:3e:d7:86:b6:d9:97:e9:1b:a5:4c:57:ad:ab: c0:11:04:8f:6d:e7:72:f3:5e:bb:19:34:8a:f8:46:c0:b7:f6: 7f:f4:f1:94 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUImgoapj43nTQD9WCfu0Xx8ofnIgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQxNFoX DTI3MDUxMDE1NDkxNFowMzExMC8GA1UEAxMoREE0RkU0QkRFM0M3OTdFQTY0NDlD RTUwNjc0MTU4Njg2Njc1QTlGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2Brtr8nwQOAJndYvYUzAbOY6puPgnhxpniG8+KD0axNNI8aN/9I5gLoZjy L0vlBdZP4B+944lAtB1vXAgzStS26v8beC62PxAj4BRJ/EouQOA5908nfZjZqGsS Z5cF+qxyMU7W3qej1MQc0cuS0+CPF+ynzzwhvCBZpaUfUXhWyC09TBSHGvbRW08y 37IoLc5b5gOhAUCy6D+gifVWtbdqCig73PJn2Cae3/yu/OS260TyDOtvC5eN5I2C dV99H2P3OugKtKFIoyjPCH8tCAPR0BU1KgFgbladRt32C2LbehBiXUVoBfgXhFkW hMTzWSby8l91aRVP3zQXloCOsYsCAwEAAaOCAmMwggJfMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNpP5L3jx5fqZEnOUGdBWGhmdan0MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSk1FLzAvMFwG CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NKTUUvMC9E QTRGRTRCREUzQzc5N0VBNjQ0OUNFNTA2NzQxNTg2ODY2NzVBOUY0Lm1mdDA3Bggr BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw DzANBAIAAjAHAwUAJAGIoDANBgkqhkiG9w0BAQsFAAOCAQEAQ5T66QtZap81WH3/ YMfQT5AQhc2MEGb92B2qUDyf+FspZgoLa5/TwloQw4b9tlOX1PBvrDwLrXt+vGib 3/NjLEFdUSkcSTHcnl7XjRKI7Lq9oHI21F3P+OU7H6fJaBbHAjre/7C/PrOznPEa hUJJIKVWlYHVru7XxA0w+bz1oQJ0OYaGaeizn28/TLZXpt7RwlSwLhvz/h/axJ4n Jpi5e8LkbbjSeA6aKnp1nStmuHCtQ74VPP4/w5N8Nj4ekAWvPocJ4Je3RmpWHdEj lO/duV7kll4H5j6ORfcRksM+14a22ZfpG6VMV62rwBEEj23ncvNeuxk0ivhGwLf2 f/TxlA== -----END CERTIFICATE-----Generated at Wed May 13 01:36:41 2026 by rpki-client