$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/DF363D7461650156F76A26CBA12EB3420DB3D849.cer File: DF363D7461650156F76A26CBA12EB3420DB3D849.cer (raw, json) Hash identifier: mXSWRgO9LxnJRupgHecUIChVVD8pCl2o0JPtJWU9BIU= Subject key identifier: DF:36:3D:74:61:65:01:56:F7:6A:26:CB:A1:2E:B3:42:0D:B3:D8:49 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 67C48E6AD4A77584E1AE971F82F0C14F3BE24DAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SHINETEL/0/DF363D7461650156F76A26CBA12EB3420DB3D849.mft caRepository: rsync://rpkica.twnic.tw/rpki/SHINETEL/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:56:39 +0000 Certificate not after: Mon 10 May 2027 16:01:39 +0000 Subordinate resources: AS: 63902 IP: 103.116.14.0/23 IP: 2400:ad20::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c4:8e:6a:d4:a7:75:84:e1:ae:97:1f:82:f0:c1:4f:3b:e2:4d:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:56:39 2026 GMT Not After : May 10 16:01:39 2027 GMT Subject: CN=DF363D7461650156F76A26CBA12EB3420DB3D849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:26:fb:6e:cc:d0:0d:7f:43:7a:cb:75:33:5a: 93:73:79:2d:5a:ad:02:ee:b9:8a:88:15:c5:01:1a: 6f:80:e7:21:34:12:4d:de:56:d2:91:2c:52:5e:9a: e8:94:f0:42:ea:9e:ad:f1:15:dd:1d:bc:8a:1d:84: 80:9e:cb:4b:07:37:17:12:e7:89:42:93:d7:1b:0c: 12:c7:32:59:fc:7b:24:2a:f3:71:41:f0:cc:c5:2e: b6:8e:03:cf:50:0b:f6:95:3a:92:15:74:f9:2d:72: c5:30:63:8d:23:ed:0c:b4:81:d3:3a:60:01:c1:79: 1b:40:46:d5:87:cf:5d:31:20:46:14:e6:07:ef:6b: 45:4a:75:fd:86:a2:82:bc:95:37:c9:5f:f4:2d:f6: 7e:00:f8:51:8b:fd:4d:dd:2c:f8:ca:e7:4d:0a:40: 6a:21:56:83:b2:60:89:6c:c0:c3:44:35:82:ad:02: a5:e6:48:d6:7f:f2:e2:c5:94:07:f6:59:b3:0a:a5: 39:0b:92:fd:03:3f:2c:b2:e9:77:44:9a:79:15:68: a6:ec:a2:af:0a:20:47:c6:42:4d:33:9b:65:09:48: 63:7f:52:de:82:1f:20:57:18:44:9a:72:d4:f0:53: 8f:e2:a8:99:17:ae:de:6b:8d:3a:0f:a2:d1:4f:e6: e5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:36:3D:74:61:65:01:56:F7:6A:26:CB:A1:2E:B3:42:0D:B3:D8:49 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SHINETEL/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SHINETEL/0/DF363D7461650156F76A26CBA12EB3420DB3D849.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.14.0/23 IPv6: 2400:ad20::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 63902 Signature Algorithm: sha256WithRSAEncryption 00:8e:4e:e5:0c:5a:81:3c:f3:9e:28:6f:27:d5:52:93:6a:5a: 07:88:e6:f1:a2:be:f6:b3:73:6f:13:55:e0:73:d0:04:b2:ad: 2c:dc:a2:82:7e:60:22:98:5b:12:53:98:4b:08:36:b4:48:42: ae:14:16:73:3b:e1:5d:2f:a4:a7:c8:e2:2d:79:20:54:70:80: 25:ff:0a:26:a7:d2:77:10:2b:f8:6d:7f:3d:5c:6a:72:c4:ed: 42:8c:d9:ec:57:9f:f1:3b:02:1c:de:0f:36:8b:fb:b9:d1:fd: 43:ae:70:db:b2:71:3a:8d:13:f7:80:ca:e0:03:aa:15:e6:fc: d7:73:46:eb:12:9b:8b:7b:b7:5d:c4:ba:43:c9:d3:99:c1:0d: 2d:f9:b7:5b:fb:51:d0:2c:5a:53:18:46:6d:54:aa:9d:4b:e8: b2:09:c1:b8:64:9d:eb:b9:36:73:07:db:60:16:85:6e:e2:2f: c7:f0:15:cf:67:5d:5b:e4:e2:a3:d0:28:27:04:b9:ce:1f:8b: 51:82:2f:a4:ef:bd:05:50:a1:95:ae:00:4c:a5:4d:40:ba:d5: d8:55:28:d9:fc:37:72:b6:69:96:a5:60:90:01:a6:a8:13:65: ca:72:0b:d1:06:9f:16:81:fc:19:84:55:18:d9:b7:79:a3:61: 85:16:9c:9e -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgIUZ8SOatSndYThrpcfgvDBTzviTaswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTYzOVoX DTI3MDUxMDE2MDEzOVowMzExMC8GA1UEAxMoREYzNjNENzQ2MTY1MDE1NkY3NkEy NkNCQTEyRUIzNDIwREIzRDg0OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0m+27M0A1/Q3rLdTNak3N5LVqtAu65iogVxQEab4DnITQSTd5W0pEsUl6a 6JTwQuqerfEV3R28ih2EgJ7LSwc3FxLniUKT1xsMEscyWfx7JCrzcUHwzMUuto4D z1AL9pU6khV0+S1yxTBjjSPtDLSB0zpgAcF5G0BG1YfPXTEgRhTmB+9rRUp1/Yai gryVN8lf9C32fgD4UYv9Td0s+MrnTQpAaiFWg7JgiWzAw0Q1gq0CpeZI1n/y4sWU B/ZZswqlOQuS/QM/LLLpd0SaeRVopuyirwogR8ZCTTObZQlIY39S3oIfIFcYRJpy 1PBTj+KomReu3muNOg+i0U/m5ZkCAwEAAaOCApUwggKRMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN82PXRhZQFW92omy6Eus0INs9hJMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSElORVRFTC8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSElO RVRFTC8wL0RGMzYzRDc0NjE2NTAxNTZGNzZBMjZDQkExMkVCMzQyMERCM0Q4NDku bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUH AQcBAf8EHzAdMAwEAgABMAYDBAFndA4wDQQCAAIwBwMFACQArSAwGgYIKwYBBQUH AQgBAf8ECzAJoAcwBQIDAPmeMA0GCSqGSIb3DQEBCwUAA4IBAQAAjk7lDFqBPPOe KG8n1VKTaloHiObxor72s3NvE1Xgc9AEsq0s3KKCfmAimFsSU5hLCDa0SEKuFBZz O+FdL6SnyOIteSBUcIAl/womp9J3ECv4bX89XGpyxO1CjNnsV5/xOwIc3g82i/u5 0f1DrnDbsnE6jRP3gMrgA6oV5vzXc0brEpuLe7ddxLpDydOZwQ0t+bdb+1HQLFpT GEZtVKqdS+iyCcG4ZJ3ruTZzB9tgFoVu4i/H8BXPZ11b5OKj0CgnBLnOH4tRgi+k 770FUKGVrgBMpU1AutXYVSjZ/DdytmmWpWCQAaaoE2XKcgvRBp8WgfwZhFUY2bd5 o2GFFpye -----END CERTIFICATE-----Generated at Tue May 12 22:45:34 2026 by rpki-client