$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.cer File: F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.cer (raw, json) Hash identifier: /5qhGqxHsXgx0VuiMXjMC8Ct6CW8HY6GVkPNBmdOlP0= Subject key identifier: F2:A5:54:CF:6D:98:A4:AE:E7:BB:39:99:32:B4:63:B7:2F:3F:4B:45 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 52A32518BE0E8BD8C717179E470A7C5F59A5735F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/CHINATEL/0/F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.mft caRepository: rsync://rpkica.twnic.tw/rpki/CHINATEL/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:44:00 +0000 Certificate not after: Mon 10 May 2027 15:49:00 +0000 Subordinate resources: IP: 103.183.78.0/23 IP: 2400:61a0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a3:25:18:be:0e:8b:d8:c7:17:17:9e:47:0a:7c:5f:59:a5:73:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:44:00 2026 GMT Not After : May 10 15:49:00 2027 GMT Subject: CN=F2A554CF6D98A4AEE7BB399932B463B72F3F4B45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1e:b2:d2:73:b6:2a:bc:7f:06:40:79:56:a4: 3c:59:f0:a3:7e:27:de:71:b4:38:4d:6d:6c:7a:57: 16:a0:f1:fa:5c:3e:ad:33:c6:9c:35:6d:f1:94:9e: b7:b9:14:d5:c9:67:32:81:fa:0a:03:44:76:6e:71: c8:26:dc:bf:04:18:a5:0f:d4:07:ba:96:fb:cb:fd: e3:fa:de:9c:bb:3d:33:79:be:cb:1c:aa:bf:2b:87: f2:7b:3e:0c:f1:24:e1:cf:df:c6:77:a2:9e:27:cd: df:b1:e0:33:58:e6:b5:08:ad:b3:1f:94:b4:74:ce: da:d9:43:6a:0a:92:72:d8:d5:40:29:11:af:c7:66: d3:61:3c:b7:61:81:47:ff:ff:13:cc:fb:43:3b:84: 6e:a8:bb:de:81:0e:ba:68:3f:de:35:24:e6:a1:b7: 8a:62:b8:96:72:e6:cd:7d:6a:34:cb:42:5b:94:14: 6a:ae:d1:bb:25:51:bf:cd:0c:24:d1:eb:f5:98:e7: f4:f2:21:2c:06:63:47:ee:38:1c:b9:dc:87:e2:26: 89:41:5d:58:f6:70:78:c2:76:dc:23:dd:be:74:94: 77:e5:4c:19:26:88:c2:b6:97:59:69:31:3d:95:ca: cb:a5:8b:c4:bc:c3:be:67:66:18:99:d0:b9:65:66: 4f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F2:A5:54:CF:6D:98:A4:AE:E7:BB:39:99:32:B4:63:B7:2F:3F:4B:45 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/CHINATEL/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/CHINATEL/0/F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.78.0/23 IPv6: 2400:61a0::/32 Signature Algorithm: sha256WithRSAEncryption b9:60:ac:41:24:14:06:c8:10:19:cf:71:d3:01:f8:65:d0:a3: 20:3c:57:3a:a7:e3:51:3a:52:21:a2:1d:24:46:bf:7c:ca:d7: 02:45:4a:c3:c3:17:82:57:67:41:56:0d:68:b4:4b:fe:83:ac: aa:ad:64:2d:d8:2d:9b:04:c1:0c:41:66:90:5f:29:8a:57:e9: c7:31:b2:de:b9:57:ea:55:b5:81:5c:af:e0:5b:db:cd:f8:61: b4:0d:0e:fc:1a:d3:24:31:05:e2:45:df:06:43:be:fa:b0:42: eb:0f:09:ef:1a:c2:c5:61:cc:f1:ac:97:6e:5f:ec:61:05:58: 77:64:22:ef:f0:53:9f:49:97:9e:61:f6:34:0f:f2:17:7d:ca: 2f:d0:e3:4a:f7:48:16:63:48:f0:ff:fe:cd:3c:bb:b2:3e:93: 64:b7:28:f8:37:f6:26:f3:49:72:51:e6:ff:09:b9:f3:34:9d: ed:83:88:f9:98:7f:06:c4:fa:bd:61:6d:75:db:24:74:71:15: 2d:c1:a0:67:65:12:e2:34:e3:b4:84:f7:79:27:71:c0:df:76: a0:4f:f3:ed:cc:a4:80:fc:7e:8d:9e:7b:e4:3e:78:b2:c6:fe: 52:d9:02:aa:1d:d2:1e:a0:e4:03:85:18:91:4d:30:2c:50:dd: e6:a5:d1:7b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgIUUqMlGL4Oi9jHFxeeRwp8X1mlc18wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDQwMFoX DTI3MDUxMDE1NDkwMFowMzExMC8GA1UEAxMoRjJBNTU0Q0Y2RDk4QTRBRUU3QkIz OTk5MzJCNDYzQjcyRjNGNEI0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALQestJztiq8fwZAeVakPFnwo34n3nG0OE1tbHpXFqDx+lw+rTPGnDVt8ZSe t7kU1clnMoH6CgNEdm5xyCbcvwQYpQ/UB7qW+8v94/renLs9M3m+yxyqvyuH8ns+ DPEk4c/fxneinifN37HgM1jmtQitsx+UtHTO2tlDagqSctjVQCkRr8dm02E8t2GB R///E8z7QzuEbqi73oEOumg/3jUk5qG3imK4lnLmzX1qNMtCW5QUaq7RuyVRv80M JNHr9Zjn9PIhLAZjR+44HLnch+ImiUFdWPZweMJ23CPdvnSUd+VMGSaIwraXWWkx PZXKy6WLxLzDvmdmGJnQuWVmT2sCAwEAAaOCAnkwggJ1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPKlVM9tmKSu57s5mTK0Y7cvP0tFMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElOQVRFTC8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElO QVRFTC8wL0YyQTU1NENGNkQ5OEE0QUVFN0JCMzk5OTMyQjQ2M0I3MkYzRjRCNDUu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUH AQcBAf8EHzAdMAwEAgABMAYDBAFnt04wDQQCAAIwBwMFACQAYaAwDQYJKoZIhvcN AQELBQADggEBALlgrEEkFAbIEBnPcdMB+GXQoyA8Vzqn41E6UiGiHSRGv3zK1wJF SsPDF4JXZ0FWDWi0S/6DrKqtZC3YLZsEwQxBZpBfKYpX6ccxst65V+pVtYFcr+Bb 2834YbQNDvwa0yQxBeJF3wZDvvqwQusPCe8awsVhzPGsl25f7GEFWHdkIu/wU59J l55h9jQP8hd9yi/Q40r3SBZjSPD//s08u7I+k2S3KPg39ibzSXJR5v8JufM0ne2D iPmYfwbE+r1hbXXbJHRxFS3BoGdlEuI047SE93knccDfdqBP8+3MpID8fo2ee+Q+ eLLG/lLZAqod0h6g5AOFGJFNMCxQ3eal0Xs= -----END CERTIFICATE-----Generated at Wed May 13 02:11:43 2026 by rpki-client