Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer
File: 2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer (raw, json)
Hash identifier: EXaiYJPqc4vwNafeXBbx/8b6R7eh8kf7TCklL/BH9xY=
Subject key identifier: 2D:58:FB:0A:D6:CB:4C:FD:F7:36:47:91:D1:43:5A:D4:8C:67:5D:22
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 2EDB855247D9D8B0FC8ED438A1718A764BADD0CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft
caRepository: rsync://rpkica.twnic.tw/rpki/NTCL/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:49:23 +0000
Certificate not after: Mon 10 May 2027 15:54:23 +0000
Subordinate resources: AS: 131654
IP: 103.140.232.0/23
IP: 2405:740::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:db:85:52:47:d9:d8:b0:fc:8e:d4:38:a1:71:8a:76:4b:ad:d0:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:49:23 2026 GMT
Not After : May 10 15:54:23 2027 GMT
Subject: CN=2D58FB0AD6CB4CFDF7364791D1435AD48C675D22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8f:4f:30:8f:d8:f8:97:fb:19:04:ed:7b:bf:
f3:23:91:6b:54:bf:e7:bc:4a:cb:9f:a4:4f:da:fd:
b5:ca:9c:aa:fb:ef:19:0c:b0:c4:a4:a7:9b:e7:98:
95:ed:b7:d1:ca:43:9d:a4:3a:79:fb:e0:92:3a:ee:
5c:ea:f2:c2:6e:e8:82:8c:c6:ec:06:60:26:63:73:
76:68:ae:2f:a6:a7:90:2e:32:34:19:d8:b3:41:0c:
b4:26:4e:9e:5d:a8:a3:e1:81:d8:06:14:96:c0:1d:
62:78:2f:c1:06:03:2e:65:ea:8b:c3:4b:ee:f6:85:
df:19:a6:1f:0a:8a:87:74:3d:f6:f5:b0:03:1c:c4:
13:ff:81:96:d9:1c:c6:6d:fb:f0:76:bc:70:b6:e3:
ff:76:e3:e6:8f:e4:99:32:d6:81:c7:9e:df:63:1a:
01:7e:47:50:f7:46:20:24:8c:5e:55:22:22:17:32:
77:01:73:f0:e7:96:b4:80:1a:02:28:92:b7:31:a0:
f0:d5:9a:f3:21:dd:8c:b9:6f:65:ab:13:91:e2:63:
e2:17:44:44:63:20:52:73:fb:fd:f8:dd:1a:63:6c:
1c:b1:e3:e1:23:8c:39:0b:de:0d:0e:d1:89:c4:fb:
22:74:41:a6:86:09:70:bf:31:2d:b5:bc:cb:9a:ca:
e5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
2D:58:FB:0A:D6:CB:4C:FD:F7:36:47:91:D1:43:5A:D4:8C:67:5D:22
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/NTCL/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.140.232.0/23
IPv6:
2405:740::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131654
Signature Algorithm: sha256WithRSAEncryption
22:33:df:cc:89:13:16:fc:e5:3d:f4:cd:be:09:59:3c:79:d0:
62:ac:6a:8c:3e:f2:16:7a:f5:86:92:1b:43:6d:72:61:e7:63:
66:43:1c:52:79:24:3a:13:1c:0f:18:ce:ea:4a:9b:c1:b9:6c:
16:8b:0e:67:2a:dc:d2:2d:49:e4:f4:e3:10:91:7b:a5:5b:1a:
02:07:b3:d4:5f:5c:dc:56:68:1a:7b:cf:9f:8b:ac:5c:d1:15:
4a:be:00:b0:69:17:49:ab:3c:68:9a:62:a9:58:30:f9:d9:6d:
cc:40:0e:ba:1e:c9:5a:b7:ab:f9:93:53:91:a6:2f:f9:ac:ca:
51:d0:d3:16:2c:4f:39:1e:5c:75:19:32:4b:04:f4:de:0d:30:
29:39:53:8a:c7:b1:29:be:bc:5c:5a:50:01:84:60:d8:de:8d:
6d:2c:85:66:11:6e:46:af:75:93:03:ca:86:4b:f3:e0:49:5d:
42:6a:89:f2:c2:8c:da:fd:4d:4e:2b:6e:0a:23:12:fd:d2:3e:
2c:c7:18:69:ff:29:74:c7:1d:95:91:ff:f1:86:fc:56:d9:83:
14:8e:0a:d8:21:9a:06:a0:4c:98:23:db:b3:7d:f7:57:d7:0e:
b7:aa:d2:8a:7d:6c:5a:df:de:30:2f:ae:e7:86:9b:91:b8:18:
50:06:bd:95
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue May 12 22:02:57 2026 by rpki-client