Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer
File: 2C4838ED872E38E97456B74C33E4178C4E1253A2.cer (raw, json)
Hash identifier: yjibSqOcLR0NOSJwV8Kk4NZrbEoo0uTA2tOpY5JBAwM=
Subject key identifier: 2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 18737A1DC097886D414B116EF206DAE325A95A89
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.mft
caRepository: rsync://rpkica.twnic.tw/rpki/NCHC/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:48:56 +0000
Certificate not after: Mon 10 May 2027 15:53:56 +0000
Subordinate resources: AS: 7539
AS: 9681
AS: 18414
IP: 103.160.220.0/23
IP: 211.73.64.0/21
IP: 211.79.48.0/20
IP: 2001:c58::/32
IP: 2001:e10::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 22:17:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:73:7a:1d:c0:97:88:6d:41:4b:11:6e:f2:06:da:e3:25:a9:5a:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:48:56 2026 GMT
Not After : May 10 15:53:56 2027 GMT
Subject: CN=2C4838ED872E38E97456B74C33E4178C4E1253A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6c:3d:1d:dd:84:5f:19:5b:96:f0:72:84:36:
f5:84:0b:06:c2:15:b3:f1:e3:3e:f0:56:a0:b8:a9:
74:c7:6a:c7:0e:9c:e0:78:61:62:52:0f:79:0d:d8:
d8:25:6d:cd:2c:db:ed:0c:c6:e4:77:75:4c:d8:9b:
8a:e6:f8:5a:99:37:7a:dc:1c:27:63:d5:b7:99:d1:
7a:7e:46:c9:2f:83:5d:a6:19:38:83:1a:60:56:f0:
c5:ca:76:7e:4f:dc:11:c7:18:0b:f9:59:c0:97:49:
2c:08:1b:b7:f0:70:e5:db:40:7b:77:cb:f3:51:5d:
72:41:70:56:9f:9e:f3:e9:15:94:f3:d2:d5:aa:10:
b9:bf:2c:42:b3:63:9a:d4:a6:a2:c9:11:62:f1:20:
13:52:5f:b0:1d:68:dd:c8:7f:06:32:c4:20:43:51:
c3:71:95:71:98:ff:47:97:1c:02:b8:a5:9c:4a:c0:
1c:ea:e8:09:eb:57:a1:b1:cc:ba:46:1a:90:f4:dd:
60:0d:ab:3e:32:e7:65:1e:b0:d5:76:34:e0:9b:e2:
a4:fc:96:d9:ef:e2:aa:d8:df:c6:9b:64:17:a5:7a:
dd:e3:79:34:6f:c9:b2:8b:64:1b:78:d2:89:c1:d4:
27:71:92:6e:42:93:4e:a9:bb:e2:9a:41:c7:9e:4f:
41:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.220.0/23
211.73.64.0/21
211.79.48.0/20
IPv6:
2001:c58::/32
2001:e10::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7539
9681
18414
Signature Algorithm: sha256WithRSAEncryption
2c:82:9d:fc:af:52:f1:17:41:08:aa:8a:a6:ad:44:92:28:f4:
9b:04:b9:1d:ed:73:b4:74:71:19:ce:65:e0:74:9e:d4:93:8c:
37:f4:1f:66:fa:c9:6f:6f:fc:13:05:f3:04:fe:29:f2:73:db:
11:10:05:b7:7a:7d:fb:47:7b:3c:ba:48:f9:7f:fc:60:34:58:
71:8c:69:7e:ff:c3:ea:08:8c:bc:9f:35:eb:1e:2a:c1:19:09:
33:e6:72:d3:cf:ed:86:b5:61:f8:e2:22:6a:74:8e:25:ff:28:
d0:53:ea:97:23:3f:7c:d1:0f:4f:c3:b1:e6:35:26:c4:c4:54:
99:2f:f1:f0:cb:f2:99:79:33:b9:a8:f3:9b:84:11:7a:84:28:
76:f5:af:d7:64:b7:0b:1d:7a:60:85:15:63:69:3d:df:b7:2e:
a2:0b:49:f5:7b:38:48:56:d0:d6:dc:12:89:13:45:8b:e7:f9:
0b:5d:59:91:0d:e3:d5:fa:51:29:3a:95:75:f2:da:70:dd:bb:
90:89:5d:c9:be:6d:b5:12:9b:98:18:fc:9c:1f:f5:82:06:73:
01:27:14:31:64:f5:b2:82:73:d9:e2:3f:b8:aa:3e:fc:37:8f:
07:6f:bd:75:4e:ea:0f:f7:2f:37:15:72:ab:a8:86:03:ea:fa:
b3:b5:2f:5e
-----BEGIN CERTIFICATE-----
MIIFtDCCBJygAwIBAgIUGHN6HcCXiG1BSxFu8gba4yWpWokwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2
NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDg1NloX
DTI3MDUxMDE1NTM1NlowMzExMC8GA1UEAxMoMkM0ODM4RUQ4NzJFMzhFOTc0NTZC
NzRDMzNFNDE3OEM0RTEyNTNBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALtsPR3dhF8ZW5bwcoQ29YQLBsIVs/HjPvBWoLipdMdqxw6c4HhhYlIPeQ3Y
2CVtzSzb7QzG5Hd1TNibiub4Wpk3etwcJ2PVt5nRen5GyS+DXaYZOIMaYFbwxcp2
fk/cEccYC/lZwJdJLAgbt/Bw5dtAe3fL81FdckFwVp+e8+kVlPPS1aoQub8sQrNj
mtSmoskRYvEgE1JfsB1o3ch/BjLEIENRw3GVcZj/R5ccArilnErAHOroCetXobHM
ukYakPTdYA2rPjLnZR6w1XY04JvipPyW2e/iqtjfxptkF6V63eN5NG/JsotkG3jS
icHUJ3GSbkKTTqm74ppBx55PQQECAwEAAaOCAqcwggKjMA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFCxIOO2HLjjpdFa3TDPkF4xOElOiMB8GA1UdIwQYMBaAFNpj
JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg
V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz
MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha
MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHZBggrBgEFBQcBCwSBzDCByTAwBggr
BgEFBQcwBYYkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9OQ0hDLzAvMFwG
CCsGAQUFBzAKhlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSEMvMC8y
QzQ4MzhFRDg3MkUzOEU5NzQ1NkI3NEMzM0U0MTc4QzRFMTI1M0EyLm1mdDA3Bggr
BgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZpY2F0aW9u
LnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIw
MDAYBAIAATASAwQBZ6DcAwQD00lAAwQE008wMBQEAgACMA4DBQAgAQxYAwUAIAEO
EDAhBggrBgEFBQcBCAEB/wQSMBCgDjAMAgIdcwICJdECAkfuMA0GCSqGSIb3DQEB
CwUAA4IBAQAsgp38r1LxF0EIqoqmrUSSKPSbBLkd7XO0dHEZzmXgdJ7Uk4w39B9m
+slvb/wTBfME/inyc9sREAW3en37R3s8ukj5f/xgNFhxjGl+/8PqCIy8nzXrHirB
GQkz5nLTz+2GtWH44iJqdI4l/yjQU+qXIz980Q9Pw7HmNSbExFSZL/Hwy/KZeTO5
qPObhBF6hCh29a/XZLcLHXpghRVjaT3fty6iC0n1ezhIVtDW3BKJE0WL5/kLXVmR
DePV+lEpOpV18tpw3buQiV3Jvm21EpuYGPycH/WCBnMBJxQxZPWygnPZ4j+4qj78
N48Hb711TuoP9y83FXKrqIYD6vqztS9e
-----END CERTIFICATE-----
Generated at Wed May 13 03:59:10 2026 by rpki-client