Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/1582E29418E8AD21D7B539F9C2F0A5C758E53551.cer
File: 1582E29418E8AD21D7B539F9C2F0A5C758E53551.cer (raw, json)
Hash identifier: 2sJGVuL8xotTl7dw2qXK49+JHvlZHxcvxokOGYn8K7w=
Subject key identifier: 15:82:E2:94:18:E8:AD:21:D7:B5:39:F9:C2:F0:A5:C7:58:E5:35:51
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 29BFC880918C4A9DCD8195701206FC2B4EBC1729
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/NKCATV/0/1582E29418E8AD21D7B539F9C2F0A5C758E53551.mft
caRepository: rsync://rpkica.twnic.tw/rpki/NKCATV/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:49:12 +0000
Certificate not after: Mon 10 May 2027 15:54:12 +0000
Subordinate resources: IP: 103.25.232.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:bf:c8:80:91:8c:4a:9d:cd:81:95:70:12:06:fc:2b:4e:bc:17:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:49:12 2026 GMT
Not After : May 10 15:54:12 2027 GMT
Subject: CN=1582E29418E8AD21D7B539F9C2F0A5C758E53551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b5:55:c9:05:40:3f:71:b8:eb:38:6d:da:cb:
36:0a:e7:1c:0d:c5:c1:94:ad:4b:af:9c:ef:7d:a2:
0d:63:18:7b:cd:53:d5:92:db:46:88:97:79:09:10:
95:80:ba:bd:1c:63:a5:7c:a7:53:42:b5:13:de:b4:
01:b5:46:76:d4:4b:7e:b7:3d:6c:ad:22:cb:87:94:
da:6f:ff:19:73:39:ab:34:81:6f:ae:bb:fb:30:44:
68:7e:30:7a:15:04:ff:e3:ef:e0:5f:12:d3:a7:1a:
b6:30:8d:24:07:a2:3f:a2:b8:aa:a7:56:47:e3:92:
d7:99:f4:8f:5c:a0:82:e5:14:9a:68:64:46:43:5c:
58:06:b9:ee:05:3b:f1:52:a4:9b:0d:cf:4e:08:c9:
17:79:c8:cd:a2:76:14:a8:6d:8d:37:f1:63:5d:fe:
b6:ba:cf:d7:da:ae:c2:aa:b0:35:5c:51:d6:e5:fd:
7b:5e:45:d7:bf:80:e5:6d:d7:e5:49:12:5a:50:f6:
cd:89:72:d1:1d:49:f2:88:a6:28:4b:50:c3:2c:91:
13:96:d4:be:5f:65:dd:b0:f7:10:f7:9a:20:d9:03:
0b:0e:f4:9d:f8:e5:36:a8:93:b3:60:e3:53:bf:71:
17:f9:07:2f:96:34:43:ac:59:c8:54:17:e9:24:87:
de:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
15:82:E2:94:18:E8:AD:21:D7:B5:39:F9:C2:F0:A5:C7:58:E5:35:51
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/NKCATV/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/NKCATV/0/1582E29418E8AD21D7B539F9C2F0A5C758E53551.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.25.232.0/22
Signature Algorithm: sha256WithRSAEncryption
48:d4:7f:89:01:77:f8:c8:00:51:df:b9:e6:55:9f:9d:23:60:
0f:25:45:65:7e:c0:a6:5e:ab:35:7d:4c:75:77:04:bb:85:ae:
e3:e7:24:e4:46:1c:7b:d6:1c:2f:0b:b9:c4:b1:d1:e0:c8:f8:
87:08:94:6a:b3:f9:cb:94:a1:95:37:70:62:4d:ea:c1:ec:71:
ee:1e:95:d1:7d:05:9d:d2:28:c2:00:f9:54:47:16:e7:5b:01:
bc:82:1c:f7:b3:06:b4:0d:99:66:6d:23:3e:20:f5:94:de:de:
57:fc:63:5b:47:25:d9:7e:0d:eb:1e:63:44:dd:a3:a4:b0:81:
9b:45:e3:9f:83:59:6c:55:37:f1:e5:7c:62:82:99:13:b4:a3:
b1:ae:e9:2d:11:e1:45:42:e3:67:70:a9:8d:19:43:75:7e:3c:
be:1b:5a:aa:72:41:a6:c7:ce:af:c9:53:71:cd:65:d0:52:0f:
f4:e8:74:06:e2:ad:66:61:6a:6b:87:b8:87:10:f0:96:a7:17:
e9:3f:a1:9d:19:79:fc:08:da:e2:fd:7b:20:24:ed:59:bc:69:
0c:e2:98:96:ec:8b:61:ea:d2:90:83:ac:bb:18:0a:96:14:48:
ae:6d:70:30:16:ec:85:4d:35:84:46:9c:db:e4:66:b6:b5:0c:
c7:05:10:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:59:46 2026 by rpki-client