$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.cer File: E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.cer (raw, json) Hash identifier: ZLi6dpP1Dm7Y/ygeSIoNVBMcLC0t+eni1PQwUwgGw0s= Subject key identifier: E5:AA:3B:0F:9F:58:C9:34:21:C6:48:20:4A:B4:31:A4:AD:C4:B0:CB Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 5805EEA3918BA362225162579D6F502BF32668D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/M2NIM/0/E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.mft caRepository: rsync://rpkica.twnic.tw/rpki/M2NIM/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:48:11 +0000 Certificate not after: Mon 10 May 2027 15:53:11 +0000 Subordinate resources: IP: 2401:8420::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:05:ee:a3:91:8b:a3:62:22:51:62:57:9d:6f:50:2b:f3:26:68:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:48:11 2026 GMT Not After : May 10 15:53:11 2027 GMT Subject: CN=E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2a:50:2e:48:01:4b:89:4a:d7:5f:8e:b3:1f: 5a:1f:4a:f9:2f:62:ba:a8:36:92:68:60:45:7f:ce: a9:07:7e:d6:89:84:33:ba:e7:6b:b4:18:82:66:24: d1:f6:55:1b:8d:1a:36:a0:14:a5:a0:ee:3a:c3:6e: 50:a1:06:70:04:ad:65:38:69:2b:22:4e:66:b2:86: 30:ca:3a:ee:d4:3d:2d:e7:d6:1c:32:70:45:02:fc: 27:4a:30:b9:e0:88:14:41:d9:44:18:55:ed:97:c8: 6a:de:60:d2:3d:0d:8e:47:1d:40:c0:86:86:b2:3a: 5a:ff:da:58:db:06:8d:33:08:1d:d7:29:ad:47:41: 13:20:59:c2:d5:be:2e:5a:ef:41:99:1d:b2:d3:7c: e0:23:15:c1:5b:e0:8e:b7:9e:16:fb:4a:84:b5:6a: a6:2a:48:96:91:f5:6b:40:18:73:30:84:51:16:1f: cd:09:3d:b4:47:af:f0:c5:76:93:0e:30:fa:4c:2b: ce:ba:9a:c1:01:84:36:f2:bc:4b:a9:c7:24:ae:6b: ce:c7:91:e9:67:e5:f1:51:a9:f6:b7:8f:19:a3:6d: 79:ad:df:cc:40:4e:d2:d2:f3:75:27:39:ba:d3:d3: 37:96:1a:26:95:67:c5:43:94:bf:ab:66:c7:e1:ee: 73:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E5:AA:3B:0F:9F:58:C9:34:21:C6:48:20:4A:B4:31:A4:AD:C4:B0:CB X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/M2NIM/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/M2NIM/0/E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8420::/32 Signature Algorithm: sha256WithRSAEncryption b8:5f:24:e1:5a:3d:e4:02:a8:08:76:d4:d5:ee:2c:2e:f4:92: db:54:7d:31:d2:78:7b:9c:d2:5e:4c:82:a1:16:f4:0f:f7:8b: 42:6d:f9:d1:15:62:87:7d:48:9c:b8:d2:88:85:81:5d:b1:7e: d5:b7:30:53:3b:56:be:03:ee:dd:98:4d:a6:45:10:2d:88:60: 83:91:c0:6c:50:e4:5e:c8:7b:93:bd:52:84:a5:28:d3:d3:5e: be:c2:4a:69:26:3a:85:0c:4c:b5:f0:ec:d0:cd:26:d2:4c:d7: 98:74:45:00:af:b9:1c:f7:3a:02:4a:08:25:81:5f:00:79:60: 94:ce:52:c8:ad:ec:e9:6b:ea:1b:6c:4e:e9:2a:f2:d1:3d:db: 29:4b:9e:cf:28:97:16:02:ad:3d:16:10:c9:de:7e:39:f0:1b: 50:a9:03:f6:10:47:c6:32:1f:42:66:6b:05:05:3d:ca:58:6c: 3c:9a:f8:16:76:6d:23:aa:0a:71:ab:e7:f7:1f:16:6e:d2:28: f4:21:33:c2:46:75:09:aa:38:8d:73:99:55:df:c0:3d:8d:fc: 84:d5:16:10:66:d8:7f:99:82:27:7f:62:9a:08:22:ae:14:37: d2:ce:a2:76:2d:5a:8d:e5:b2:ca:8d:85:62:51:8b:8a:a6:d3: 1d:2d:d5:87 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIUWAXuo5GLo2IiUWJXnW9QK/MmaNAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDgxMVoX DTI3MDUxMDE1NTMxMVowMzExMC8GA1UEAxMoRTVBQTNCMEY5RjU4QzkzNDIxQzY0 ODIwNEFCNDMxQTRBREM0QjBDQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwqUC5IAUuJStdfjrMfWh9K+S9iuqg2kmhgRX/OqQd+1omEM7rna7QYgmYk 0fZVG40aNqAUpaDuOsNuUKEGcAStZThpKyJOZrKGMMo67tQ9LefWHDJwRQL8J0ow ueCIFEHZRBhV7ZfIat5g0j0NjkcdQMCGhrI6Wv/aWNsGjTMIHdcprUdBEyBZwtW+ LlrvQZkdstN84CMVwVvgjreeFvtKhLVqpipIlpH1a0AYczCEURYfzQk9tEev8MV2 kw4w+kwrzrqawQGENvK8S6nHJK5rzseR6Wfl8VGp9rePGaNtea3fzEBO0tLzdSc5 utPTN5YaJpVnxUOUv6tmx+Huc18CAwEAAaOCAmUwggJhMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOWqOw+fWMk0IcZIIEq0MaStxLDLMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9NMk5JTS8wLzBd BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9NMk5JTS8w L0U1QUEzQjBGOUY1OEM5MzQyMUM2NDgyMDRBQjQzMUE0QURDNEIwQ0IubWZ0MDcG CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAYQgMA0GCSqGSIb3DQEBCwUAA4IBAQC4XyThWj3kAqgI dtTV7iwu9JLbVH0x0nh7nNJeTIKhFvQP94tCbfnRFWKHfUicuNKIhYFdsX7VtzBT O1a+A+7dmE2mRRAtiGCDkcBsUOReyHuTvVKEpSjT016+wkppJjqFDEy18OzQzSbS TNeYdEUAr7kc9zoCSgglgV8AeWCUzlLIrezpa+obbE7pKvLRPdspS57PKJcWAq09 FhDJ3n458BtQqQP2EEfGMh9CZmsFBT3KWGw8mvgWdm0jqgpxq+f3HxZu0ij0ITPC RnUJqjiNc5lV38A9jfyE1RYQZth/mYInf2KaCCKuFDfSzqJ2LVqN5bLKjYViUYuK ptMdLdWH -----END CERTIFICATE-----Generated at Wed May 13 00:44:31 2026 by rpki-client