Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.cer
File: 1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.cer (raw, json)
Hash identifier: 9xNTqGD4bOW4SiUuqn9Y0zTHnzpURcWw9PcF/S/zQAw=
Subject key identifier: 1B:F4:19:77:3D:1E:15:EE:FD:6C:A2:BB:4E:50:DB:EF:74:AB:96:94
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 55BD3F02DA445D3B839F113483BCE1388BBCE9CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/KKCO/0/1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.mft
caRepository: rsync://rpkica.twnic.tw/rpki/KKCO/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:47:28 +0000
Certificate not after: Mon 10 May 2027 15:52:28 +0000
Subordinate resources: AS: 131645
IP: 103.134.120.0/22
IP: 202.123.126.0/23
IP: 202.148.208.0/23
IP: 2404:63c0::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:bd:3f:02:da:44:5d:3b:83:9f:11:34:83:bc:e1:38:8b:bc:e9:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:47:28 2026 GMT
Not After : May 10 15:52:28 2027 GMT
Subject: CN=1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:a3:59:a4:3e:00:41:d9:9d:bc:36:e2:4b:
61:04:8b:05:fc:32:e4:33:88:6d:26:c8:5d:50:bd:
f5:35:fa:bf:20:fc:ec:47:46:bd:e6:e7:0c:38:81:
59:aa:62:b1:b7:cf:ae:e8:30:22:81:e3:6e:2d:0c:
c8:0b:be:c2:06:91:3a:89:79:b0:09:c2:8b:08:38:
15:91:50:f3:08:da:76:ea:01:ee:49:d4:4f:0a:52:
b9:08:1a:c1:df:f9:4e:17:06:ef:e2:2c:0b:9b:17:
20:1c:b3:25:c7:63:78:04:0b:4a:2a:a3:c6:f1:ab:
aa:8c:2b:73:4f:32:7d:a9:08:af:14:88:31:e0:0f:
fa:9a:42:80:a8:bd:a3:ac:76:b3:71:d7:c5:1b:4c:
7b:e8:78:88:bd:8c:0a:79:d0:2e:81:85:82:97:10:
7f:99:1e:b1:34:50:c6:b6:70:e4:44:d4:3a:56:d1:
6f:ad:db:c5:3e:d6:1b:14:cf:47:8d:7f:16:27:05:
41:ff:b2:ca:fb:1e:08:39:fe:23:33:d4:e8:7d:a3:
a6:02:5f:56:58:2e:e9:e5:a4:91:12:8b:9e:56:46:
39:3a:83:46:76:9f:16:c9:f5:d9:e8:67:6b:f9:4b:
62:2d:cb:cf:05:7d:1f:62:a9:74:20:a5:ad:a0:3a:
1d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
1B:F4:19:77:3D:1E:15:EE:FD:6C:A2:BB:4E:50:DB:EF:74:AB:96:94
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/KKCO/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/KKCO/0/1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.134.120.0/22
202.123.126.0/23
202.148.208.0/23
IPv6:
2404:63c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131645
Signature Algorithm: sha256WithRSAEncryption
6d:1b:b3:69:d5:64:f9:50:1b:df:31:db:e0:cc:f9:4d:fe:b1:
44:ac:f7:4f:ab:ac:e9:73:35:4e:b4:bf:97:63:4e:2a:15:a8:
5b:03:f4:34:12:93:90:e4:af:12:63:74:5e:3c:9e:e9:0d:a5:
83:9b:07:50:1c:11:58:f6:df:91:57:9e:9a:ed:11:f7:5c:2e:
57:fa:c4:42:97:b8:bc:83:f7:14:e2:8d:df:9c:3b:83:80:4f:
9f:3b:57:b7:3a:24:58:51:f5:0c:26:8a:1b:f6:37:84:4e:8e:
f0:fc:22:bc:58:6d:0d:4b:1f:1b:1b:5c:d1:e8:96:fe:53:07:
20:fb:a4:a6:51:00:31:66:74:9a:21:b4:e9:05:87:eb:37:ab:
c3:81:f5:37:d6:f9:a3:89:aa:50:9c:a7:ba:6f:18:8f:60:80:
a1:f1:ee:bf:ac:2a:24:54:39:df:99:b1:67:39:59:3a:b1:85:
99:38:e6:ef:40:4e:4e:6e:8d:c1:c0:04:00:da:79:fb:b3:9b:
b7:56:cb:de:46:eb:c1:fc:e5:c1:6a:c0:37:10:07:16:d0:23:
49:00:cc:77:a0:4a:ac:38:3d:14:19:c1:6c:90:21:21:7b:d1:
8b:ac:90:99:f9:3a:d7:bd:d1:fb:f9:03:af:a0:b4:bd:ae:c8:
ec:35:99:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:32:34 2026 by rpki-client