$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.cer File: E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.cer (raw, json) Hash identifier: RfD3u6/FNfQ9OYw3Gn28lITSMZ+jUAad4dfZuXxmqIM= Subject key identifier: E6:8C:4C:10:30:29:B8:41:42:A5:CA:B3:EF:B8:52:FD:C1:A3:9B:B0 Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 212E0623AD161C3A4BE31ED7BD1D7360D791C678 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/DOWTEK/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.mft caRepository: rsync://rpkica.twnic.tw/rpki/DOWTEK/1/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Thu 11 Jun 2026 08:34:46 +0000 Certificate not after: Thu 10 Jun 2027 08:39:46 +0000 Subordinate resources: IP: 2402:6420::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2e:06:23:ad:16:1c:3a:4b:e3:1e:d7:bd:1d:73:60:d7:91:c6:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: Jun 11 08:34:46 2026 GMT Not After : Jun 10 08:39:46 2027 GMT Subject: CN=E68C4C103029B84142A5CAB3EFB852FDC1A39BB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:13:76:5b:b6:d7:f9:9f:69:b7:15:ce:1c:c4: f6:71:24:a5:59:ee:1f:ba:bc:35:1c:45:66:46:06: 40:34:c7:30:d3:5e:a0:1e:b3:ce:5f:3e:17:b8:10: a3:5f:27:f6:6b:86:7a:b1:1a:52:b1:bd:cf:b1:10: e7:3d:f9:6b:21:7d:9c:05:7d:49:25:4b:f1:89:69: c1:22:9e:a9:69:3d:12:78:dc:29:3b:8b:09:46:9f: fa:e4:57:21:77:1d:b2:08:a4:5a:18:67:b4:33:ce: 33:7f:6e:b2:a9:69:d9:8c:72:b7:85:aa:9a:22:26: 03:ff:59:30:e2:a6:71:58:4d:17:21:a6:d7:96:94: 74:85:2f:f5:23:59:c5:12:d5:2b:33:6f:e2:61:fb: d7:0a:90:49:8d:85:a4:3d:ef:ae:c9:d1:48:1d:85: e3:91:ff:54:07:80:40:86:6c:52:a6:82:e7:3d:a4: 95:ac:55:10:5f:c1:c5:0f:34:c6:d8:d6:21:b5:50: bc:cc:6a:bd:cc:dd:41:a6:04:5c:64:a4:6d:04:65: 4b:54:27:ea:3f:c8:67:f1:34:e5:53:12:4c:27:db: 86:b8:03:36:d1:6e:70:b6:15:3c:02:43:2c:45:46: 48:70:00:5a:be:ab:90:0d:8a:3f:83:d1:70:ab:ca: 79:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E6:8C:4C:10:30:29:B8:41:42:A5:CA:B3:EF:B8:52:FD:C1:A3:9B:B0 X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/1/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6420::/32 Signature Algorithm: sha256WithRSAEncryption 01:a8:3c:28:57:3e:39:e4:f3:5b:22:89:f9:fb:6d:65:aa:b0: 6b:c0:39:e5:22:86:00:dd:0e:05:89:16:fe:a9:19:66:e8:30: 26:7a:c8:2c:10:49:ab:db:24:ec:fb:19:58:8a:52:a8:87:de: c6:ad:29:16:c5:c7:aa:1d:0f:a9:db:2c:da:98:d7:32:41:a4: 9b:39:72:1b:f6:53:3f:08:40:d0:01:91:61:0c:8a:a9:55:93: 02:4f:d6:7d:65:b4:36:fc:d1:c2:6c:0e:dd:f9:b0:bd:4c:76: 04:b6:a5:fa:b8:24:ea:14:2d:7b:c2:2c:95:74:8a:a0:53:52: 60:4d:75:3e:11:f5:17:3e:7d:eb:b3:d9:20:f3:af:0a:af:d7: 3f:e2:2b:86:7f:5d:49:fa:35:e7:73:2a:d1:2a:3b:10:16:d5: 83:1e:98:db:ae:63:17:95:68:e2:40:c6:c4:48:2f:71:04:36: 75:7a:18:2b:55:90:78:87:9d:8b:30:89:2d:aa:44:87:06:0f: 98:98:30:69:e4:d2:b3:13:34:b0:d2:03:f9:c5:b2:15:69:3f: c5:91:81:3b:69:b2:f3:e1:3b:31:70:96:bd:2d:4b:c5:4d:72: df:42:59:84:12:09:09:c0:dc:8a:67:2b:17:a7:02:fa:ac:a0: 01:5d:f4:db -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgIUIS4GI60WHDpL4x7XvR1zYNeRxngwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDYxMTA4MzQ0NloX DTI3MDYxMDA4Mzk0NlowMzExMC8GA1UEAxMoRTY4QzRDMTAzMDI5Qjg0MTQyQTVD QUIzRUZCODUyRkRDMUEzOUJCMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQTdlu21/mfabcVzhzE9nEkpVnuH7q8NRxFZkYGQDTHMNNeoB6zzl8+F7gQ o18n9muGerEaUrG9z7EQ5z35ayF9nAV9SSVL8YlpwSKeqWk9EnjcKTuLCUaf+uRX IXcdsgikWhhntDPOM39usqlp2Yxyt4WqmiImA/9ZMOKmcVhNFyGm15aUdIUv9SNZ xRLVKzNv4mH71wqQSY2FpD3vrsnRSB2F45H/VAeAQIZsUqaC5z2klaxVEF/BxQ80 xtjWIbVQvMxqvczdQaYEXGSkbQRlS1Qn6j/IZ/E05VMSTCfbhrgDNtFucLYVPAJD LEVGSHAAWr6rkA2KP4PRcKvKecsCAwEAAaOCAmcwggJjMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOaMTBAwKbhBQqXKs++4Uv3Bo5uwMB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ET1dURUsvMS8w XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XVEVL LzEvRTY4QzRDMTAzMDI5Qjg0MTQyQTVDQUIzRUZCODUyRkRDMUEzOUJCMC5tZnQw NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB /wQRMA8wDQQCAAIwBwMFACQCZCAwDQYJKoZIhvcNAQELBQADggEBAAGoPChXPjnk 81siifn7bWWqsGvAOeUihgDdDgWJFv6pGWboMCZ6yCwQSavbJOz7GViKUqiH3sat KRbFx6odD6nbLNqY1zJBpJs5chv2Uz8IQNABkWEMiqlVkwJP1n1ltDb80cJsDt35 sL1MdgS2pfq4JOoULXvCLJV0iqBTUmBNdT4R9Rc+feuz2SDzrwqv1z/iK4Z/XUn6 NedzKtEqOxAW1YMemNuuYxeVaOJAxsRIL3EENnV6GCtVkHiHnYswiS2qRIcGD5iY MGnk0rMTNLDSA/nFshVpP8WRgTtpsvPhOzFwlr0tS8VNct9CWYQSCQnA3IpnKxen AvqsoAFd9Ns= -----END CERTIFICATE-----Generated at Sat Jun 13 10:18:36 2026 by rpki-client