$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/10637DD43C0C29CF40478635264B40BB26F4D7E3.cer File: 10637DD43C0C29CF40478635264B40BB26F4D7E3.cer (raw, json) Hash identifier: BBAofSAsOa+Ph+dd4hrmtJzkkEhqg8C4Ddk1zvHLqLY= Subject key identifier: 10:63:7D:D4:3C:0C:29:CF:40:47:86:35:26:4B:40:BB:26:F4:D7:E3 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 1BF12C74A5C7FD5E5BEB03C442E310E441E22F72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/TPEFUBON/0/10637DD43C0C29CF40478635264B40BB26F4D7E3.mft caRepository: rsync://rpkica.twnic.tw/rpki/TPEFUBON/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Wed 20 May 2026 09:24:34 +0000 Certificate not after: Wed 19 May 2027 09:29:34 +0000 Subordinate resources: IP: 2402:5da0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f1:2c:74:a5:c7:fd:5e:5b:eb:03:c4:42:e3:10:e4:41:e2:2f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 20 09:24:34 2026 GMT Not After : May 19 09:29:34 2027 GMT Subject: CN=10637DD43C0C29CF40478635264B40BB26F4D7E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:96:3e:ff:0e:a6:60:cb:7a:6d:b1:1b:0e:25: bf:51:f1:68:ea:9c:7a:eb:ef:3e:b9:2d:2c:0e:6d: 97:3a:e8:29:97:6a:91:b5:c4:77:41:a8:7b:ca:30: f0:2e:e6:1f:e5:9f:cb:e5:28:8b:71:68:b3:65:70: 94:df:ce:6a:52:dd:e3:d7:f6:54:1b:c9:e6:f2:96: 42:1c:f2:cd:77:11:23:11:8f:cf:5d:89:56:81:a1: a1:26:e3:9e:e7:ad:eb:78:ab:f4:b3:fa:e3:7f:b7: 5e:aa:44:72:5e:22:82:75:f2:1e:68:9a:f1:d1:58: 27:f7:99:5f:35:22:eb:0a:ff:51:1c:57:30:3b:5d: b5:ee:26:24:2a:79:13:af:95:a8:fa:3b:bd:07:fc: 87:50:d8:7c:b6:d7:e2:b5:ae:01:80:c2:61:e7:99: 1c:05:c2:f1:32:36:5c:71:07:73:d5:7e:15:49:0b: e3:44:e2:38:f4:44:64:e1:a5:4d:40:74:c3:05:ec: 3e:16:42:a5:11:6b:46:a6:db:38:60:e4:ea:2e:f2: de:f8:6c:64:35:e9:50:03:57:c7:16:3a:f2:2a:1f: c6:93:79:b4:ec:ef:0c:74:a5:0b:e8:32:5c:36:65: 44:ac:b8:34:22:b0:c0:20:c9:d7:41:eb:ef:1a:fe: bb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 10:63:7D:D4:3C:0C:29:CF:40:47:86:35:26:4B:40:BB:26:F4:D7:E3 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TPEFUBON/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TPEFUBON/0/10637DD43C0C29CF40478635264B40BB26F4D7E3.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5da0::/32 Signature Algorithm: sha256WithRSAEncryption 48:e6:49:c6:8f:c4:fa:d5:44:98:74:9f:6f:db:41:c9:c5:0e: 5d:8b:2e:f4:93:26:c1:ff:38:30:76:a9:25:c3:2d:7e:6d:8b: 0c:5d:59:09:2c:99:72:6b:3c:fb:5e:f9:d7:80:ea:54:59:0f: e6:e1:72:32:c0:32:dd:57:93:4f:a9:1b:b4:9e:32:e6:75:76: af:d9:19:13:2a:0d:b8:8b:be:09:15:46:3d:da:db:6c:32:5b: b3:10:54:e1:3f:4a:8b:1d:4c:1c:99:9c:ee:7c:5e:de:36:dd: 8c:0f:c0:fe:86:32:18:fb:bd:14:0c:75:90:78:03:ad:79:c9: f4:90:63:1c:d9:89:76:be:2a:91:7a:cb:96:66:48:ba:c0:b2: 5f:e8:d0:c8:d4:b6:73:b3:47:b8:9c:76:79:cf:81:bc:15:9f: 32:de:f0:17:7c:08:6a:f8:2c:3a:69:29:a5:81:9e:51:49:02: 72:7a:e8:b6:17:16:21:8d:95:39:2d:12:ba:0e:b5:08:22:47: f1:5d:79:f7:f0:f5:2f:7e:a4:65:5b:f3:67:3b:83:ea:f5:c5: d2:63:5a:1e:bd:c8:bf:61:01:e2:12:2a:57:70:32:37:0f:53: 6e:f2:3e:cd:6a:ef:5f:86:3f:2a:67:67:02:62:27:13:45:a6: eb:61:81:00 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUG/EsdKXH/V5b6wPEQuMQ5EHiL3IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUyMDA5MjQzNFoX DTI3MDUxOTA5MjkzNFowMzExMC8GA1UEAxMoMTA2MzdERDQzQzBDMjlDRjQwNDc4 NjM1MjY0QjQwQkIyNkY0RDdFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANOWPv8OpmDLem2xGw4lv1HxaOqceuvvPrktLA5tlzroKZdqkbXEd0Goe8ow 8C7mH+Wfy+Uoi3Fos2VwlN/OalLd49f2VBvJ5vKWQhzyzXcRIxGPz12JVoGhoSbj nuet63ir9LP643+3XqpEcl4ignXyHmia8dFYJ/eZXzUi6wr/URxXMDtdte4mJCp5 E6+VqPo7vQf8h1DYfLbX4rWuAYDCYeeZHAXC8TI2XHEHc9V+FUkL40TiOPREZOGl TUB0wwXsPhZCpRFrRqbbOGDk6i7y3vhsZDXpUANXxxY68iofxpN5tOzvDHSlC+gy XDZlRKy4NCKwwCDJ10Hr7xr+u70CAwEAAaOCAmswggJnMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBBjfdQ8DCnPQEeGNSZLQLsm9NfjMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHhBggrBgEFBQcBCwSB1DCB0TA0Bggr BgEFBQcwBYYocnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UUEVGVUJPTi8w LzBgBggrBgEFBQcwCoZUcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UUEVG VUJPTi8wLzEwNjM3REQ0M0MwQzI5Q0Y0MDQ3ODYzNTI2NEI0MEJCMjZGNEQ3RTMu bWZ0MDcGCCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUH AQcBAf8EETAPMA0EAgACMAcDBQAkAl2gMA0GCSqGSIb3DQEBCwUAA4IBAQBI5knG j8T61USYdJ9v20HJxQ5diy70kybB/zgwdqklwy1+bYsMXVkJLJlyazz7XvnXgOpU WQ/m4XIywDLdV5NPqRu0njLmdXav2RkTKg24i74JFUY92ttsMluzEFThP0qLHUwc mZzufF7eNt2MD8D+hjIY+70UDHWQeAOtecn0kGMc2Yl2viqResuWZki6wLJf6NDI 1LZzs0e4nHZ5z4G8FZ8y3vAXfAhq+Cw6aSmlgZ5RSQJyeui2FxYhjZU5LRK6DrUI IkfxXXn38PUvfqRlW/NnO4Pq9cXSY1oevci/YQHiEipXcDI3D1Nu8j7Nau9fhj8q Z2cCYicTRabrYYEA -----END CERTIFICATE-----Generated at Sat Jun 13 07:56:31 2026 by rpki-client