$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/3/138A054AE20232FE74DA41A7D1FB6684BFF8B631.cer File: 138A054AE20232FE74DA41A7D1FB6684BFF8B631.cer (raw, json) Hash identifier: Zo39dsWqNkolqaKhWzlf8458SfxFo6DnsdWakso6pqc= Subject key identifier: 13:8A:05:4A:E2:02:32:FE:74:DA:41:A7:D1:FB:66:84:BF:F8:B6:31 Authority key identifier: C4:9B:AE:24:30:BE:EC:35:4C:1B:14:F2:26:E7:61:FC:9B:DC:F0:05 Certificate issuer: /CN=A91BDB290000/serialNumber=C49BAE2430BEEC354C1B14F226E761FC9BDCF005 Certificate serial: 495D2A1CCB94448D4D74F3098427057D1D13783C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xJuuJDC-7DVMGxTyJudh_Jvc8AU.cer Manifest: rsync://rpkica.twnic.tw/rpki/TW1033/1/138A054AE20232FE74DA41A7D1FB6684BFF8B631.mft caRepository: rsync://rpkica.twnic.tw/rpki/TW1033/1/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:58:08 +0000 Certificate not after: Mon 10 May 2027 16:03:08 +0000 Subordinate resources: IP: 151.158.168.0/23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/3/C49BAE2430BEEC354C1B14F226E761FC9BDCF005.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/3/C49BAE2430BEEC354C1B14F226E761FC9BDCF005.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xJuuJDC-7DVMGxTyJudh_Jvc8AU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:5d:2a:1c:cb:94:44:8d:4d:74:f3:09:84:27:05:7d:1d:13:78:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=C49BAE2430BEEC354C1B14F226E761FC9BDCF005 Validity Not Before: May 11 15:58:08 2026 GMT Not After : May 10 16:03:08 2027 GMT Subject: CN=138A054AE20232FE74DA41A7D1FB6684BFF8B631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f1:b7:35:7f:91:d7:04:f6:5d:c6:1c:1f:86: 76:c9:9a:de:bc:e9:75:f0:ac:0c:46:01:dd:27:17: f5:66:f0:db:ca:53:5f:30:f1:ff:48:21:e2:1c:5d: 0a:99:9a:6d:bb:b3:2b:a4:89:93:e2:14:c8:ff:94: 36:3d:25:cc:41:aa:cb:75:69:d4:9c:85:b3:c9:17: 7a:bf:11:d3:c9:ae:ce:83:34:15:9b:f9:4f:4e:bd: da:12:01:b4:c2:4d:90:71:66:91:1d:52:f8:93:bf: b6:5f:a2:21:1b:25:8b:17:d4:93:9c:8b:79:db:3e: 3a:9c:1d:4b:78:53:20:f7:0e:8f:3b:d0:1c:71:dc: 33:fa:36:7a:e0:0b:c9:71:dd:fa:86:f4:6f:5f:c1: 9f:37:55:0a:9e:07:17:31:b9:0e:b0:39:9b:c7:06: 9c:aa:01:ef:6f:eb:8a:aa:64:e7:42:c7:a8:40:45: f2:59:eb:73:71:6e:35:3b:c5:86:3f:54:dd:78:a5: d6:b5:63:ed:bc:78:a2:58:66:0a:5b:66:24:84:e0: 31:95:dc:07:ee:d3:5f:5f:0c:f1:6e:c8:38:09:ac: 95:25:8d:fe:20:47:ea:29:0d:b7:63:e5:b4:87:c3: 6d:5b:9a:f6:64:23:2d:e9:16:07:83:8f:92:ac:bc: 37:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 13:8A:05:4A:E2:02:32:FE:74:DA:41:A7:D1:FB:66:84:BF:F8:B6:31 X509v3 Authority Key Identifier: keyid:C4:9B:AE:24:30:BE:EC:35:4C:1B:14:F2:26:E7:61:FC:9B:DC:F0:05 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3/C49BAE2430BEEC354C1B14F226E761FC9BDCF005.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xJuuJDC-7DVMGxTyJudh_Jvc8AU.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TW1033/1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TW1033/1/138A054AE20232FE74DA41A7D1FB6684BFF8B631.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.168.0/23 Signature Algorithm: sha256WithRSAEncryption 44:58:cc:26:d6:c8:d9:6f:c3:ec:bf:c5:ce:64:cc:00:67:e1: 89:42:41:f2:93:c5:06:48:cf:fd:8d:63:56:7c:b2:59:3d:d2: 5e:67:bd:de:59:73:22:bd:7d:6a:bc:27:80:a7:73:f1:62:c8: e4:55:0b:c5:a3:40:6c:7f:3c:d1:02:74:ef:6d:96:3d:85:1f: e9:81:62:47:13:c3:3f:10:54:4b:b7:1b:75:63:e9:4c:48:9a: 4d:32:4a:6d:9c:3c:12:06:aa:d0:77:d6:ae:6e:5d:31:15:0d: e5:de:1f:a8:bd:58:65:13:77:4f:6b:7a:c4:55:99:01:bf:cd: 6c:20:56:27:2b:db:54:04:8a:83:bd:b6:7c:64:e7:2f:a1:e1: 29:e1:84:d4:33:e1:94:37:cd:1c:e2:90:10:b3:c9:12:94:7c: b3:ad:80:14:e0:59:4d:c8:e8:4f:05:79:b4:4d:ef:e6:9f:dd: d3:a1:98:1b:83:1a:14:25:95:07:58:68:cb:0d:dd:75:e9:7e: 28:60:80:2a:c4:27:99:a3:c1:44:ef:65:4d:f0:7e:27:1b:42: d2:d8:72:6e:0f:6a:f9:06:8f:1d:b4:f1:04:67:99:2a:59:f9: bc:85:c4:bd:29:4a:c4:7f:0b:d1:cd:df:6c:7a:2b:4e:8a:f8: 23:07:92:48 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIUSV0qHMuURI1NdPMJhCcFfR0TeDwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhDNDlCQUUyNDMw QkVFQzM1NEMxQjE0RjIyNkU3NjFGQzlCRENGMDA1MB4XDTI2MDUxMTE1NTgwOFoX DTI3MDUxMDE2MDMwOFowMzExMC8GA1UEAxMoMTM4QTA1NEFFMjAyMzJGRTc0REE0 MUE3RDFGQjY2ODRCRkY4QjYzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANzxtzV/kdcE9l3GHB+Gdsma3rzpdfCsDEYB3ScX9Wbw28pTXzDx/0gh4hxd CpmabbuzK6SJk+IUyP+UNj0lzEGqy3Vp1JyFs8kXer8R08muzoM0FZv5T0692hIB tMJNkHFmkR1S+JO/tl+iIRslixfUk5yLeds+OpwdS3hTIPcOjzvQHHHcM/o2euAL yXHd+ob0b1/BnzdVCp4HFzG5DrA5m8cGnKoB72/riqpk50LHqEBF8lnrc3FuNTvF hj9U3Xil1rVj7bx4olhmCltmJITgMZXcB+7TX18M8W7IOAmslSWN/iBH6ikNt2Pl tIfDbVua9mQjLekWB4OPkqy8NxECAwEAAaOCAmYwggJiMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBOKBUriAjL+dNpBp9H7ZoS/+LYxMB8GA1UdIwQYMBaAFMSb riQwvuw1TBsU8ibnYfyb3PAFMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMy9DNDlC QUUyNDMwQkVFQzM1NEMxQjE0RjIyNkU3NjFGQzlCRENGMDA1LmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CMzIyQTVGNDFENjYxMUUyQTNGMjdGN0M3MkZEMUZGMi94SnV1SkRD LTdEVk1HeFR5SnVkaF9KdmM4QVUuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UVzEwMzMvMS8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMz LzEvMTM4QTA1NEFFMjAyMzJGRTc0REE0MUE3RDFGQjY2ODRCRkY4QjYzMS5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAZeeqDANBgkqhkiG9w0BAQsFAAOCAQEARFjMJtbI2W/D 7L/FzmTMAGfhiUJB8pPFBkjP/Y1jVnyyWT3SXme93llzIr19arwngKdz8WLI5FUL xaNAbH880QJ0722WPYUf6YFiRxPDPxBUS7cbdWPpTEiaTTJKbZw8Egaq0HfWrm5d MRUN5d4fqL1YZRN3T2t6xFWZAb/NbCBWJyvbVASKg722fGTnL6HhKeGE1DPhlDfN HOKQELPJEpR8s62AFOBZTcjoTwV5tE3v5p/d06GYG4MaFCWVB1hoyw3ddel+KGCA KsQnmaPBRO9lTfB+JxtC0thybg9q+QaPHbTxBGeZKln5vIXEvSlKxH8L0c3fbHor Tor4IweSSA== -----END CERTIFICATE-----Generated at Wed May 13 07:15:27 2026 by rpki-client