Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.cer
File: 3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.cer (raw, json)
Hash identifier: NKHExLbv6maT+2wYa0C1/GiLv20J+jvf0cAcgNTzdDw=
Subject key identifier: 34:42:A3:43:01:CC:61:0C:F2:72:F7:65:AB:BA:FC:9E:D1:F4:A9:BE
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 5AC9BC40A92F2073207B87AC2343E7435D1A6345
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/UNIGATE/0/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.mft
caRepository: rsync://rpkica.twnic.tw/rpki/UNIGATE/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 16:00:18 +0000
Certificate not after: Mon 10 May 2027 16:05:18 +0000
Subordinate resources: IP: 103.123.140.0/22
IP: 103.123.252.0/22
IP: 103.124.40.0/22
IP: 103.124.148.0/22
IP: 103.124.176.0/22
IP: 103.130.0.0/22
IP: 103.130.92.0 -- 103.130.99.255
IP: 2403:a3c0::/32
IP: 2403:ad40::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:c9:bc:40:a9:2f:20:73:20:7b:87:ac:23:43:e7:43:5d:1a:63:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 16:00:18 2026 GMT
Not After : May 10 16:05:18 2027 GMT
Subject: CN=3442A34301CC610CF272F765ABBAFC9ED1F4A9BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:73:22:18:63:3f:8d:91:25:e8:a4:9d:b4:04:
ff:ce:99:7a:8c:d7:d2:9d:79:71:21:69:22:ba:74:
63:01:a6:c1:ec:94:e4:0f:9e:97:67:a6:f1:2e:c6:
19:fa:a6:1c:a6:48:cc:7f:5f:d0:f7:b5:7e:e5:00:
b9:83:fe:97:0a:83:c9:b4:80:99:10:b2:ba:f0:3a:
92:66:af:3b:ec:fd:fc:e5:3d:ec:c8:eb:b2:88:95:
da:ab:f6:b1:b9:06:73:81:57:ef:2d:f7:67:b7:b8:
3f:71:75:a8:08:2f:7d:11:69:98:7f:8c:0f:f5:4d:
47:7f:6a:6d:a4:df:e1:cb:ed:82:ec:54:c8:84:e6:
b3:8f:a3:d6:86:65:b6:6f:6a:64:87:b6:5d:16:eb:
5f:79:48:3b:67:92:08:8d:96:18:22:d9:11:32:c1:
57:c6:30:53:06:5a:72:47:c7:e0:e4:d1:e3:dd:d7:
d9:de:57:74:72:73:c3:c9:4d:e0:50:74:20:e4:af:
37:b0:24:58:50:d5:2d:ae:c0:71:af:2a:84:21:b0:
be:35:04:3c:61:de:ec:31:8c:cd:9f:9f:c7:3d:fa:
4e:5b:f4:3b:60:41:bd:4d:fc:84:ed:3b:c1:19:0b:
3d:a1:2c:d5:17:0e:90:51:15:9f:7c:d2:ba:32:56:
e1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
34:42:A3:43:01:CC:61:0C:F2:72:F7:65:AB:BA:FC:9E:D1:F4:A9:BE
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/UNIGATE/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/UNIGATE/0/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.123.140.0/22
103.123.252.0/22
103.124.40.0/22
103.124.148.0/22
103.124.176.0/22
103.130.0.0/22
103.130.92.0-103.130.99.255
IPv6:
2403:a3c0::/32
2403:ad40::/32
Signature Algorithm: sha256WithRSAEncryption
b4:d7:0b:b5:db:d4:08:1e:86:3c:83:58:da:12:a6:e2:42:3b:
ce:b7:89:d0:66:ea:75:dc:3b:c1:04:92:02:21:3a:f3:5c:c3:
3b:60:1a:11:eb:96:c9:2e:d2:a7:55:b3:db:3a:c0:69:ae:f1:
61:21:60:26:e7:83:4c:de:e9:35:00:d4:4e:53:25:2e:be:ef:
c5:e9:f5:b5:4b:ab:5c:f0:f5:65:3e:23:22:8f:f3:2f:76:0e:
4d:90:4f:92:77:18:c6:1c:09:5f:95:ef:cb:aa:26:34:51:2e:
d4:22:26:33:08:dc:3e:12:03:45:72:71:4c:ec:55:21:6c:66:
0d:d9:2e:87:8d:0f:6a:56:af:99:3a:ad:7f:74:d3:21:d1:44:
ae:79:4d:06:f8:36:01:54:5d:7c:9f:49:94:40:27:1f:b9:04:
af:f2:6c:cc:1a:4a:b6:0f:d4:9b:ae:f9:06:7d:02:00:9d:94:
80:38:b4:01:a8:14:d6:54:07:06:5c:76:3a:b3:d4:8b:35:ae:
25:d0:f2:6f:d2:ce:b5:09:49:76:37:1b:7f:54:f9:34:d9:f3:
d4:d9:64:a2:6d:3d:2c:70:61:ae:c7:25:4c:f9:e8:96:18:4d:
35:28:79:f0:f0:b0:cf:e5:a5:19:26:36:da:d4:3e:47:93:28:
ca:a7:fa:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:16:34 2026 by rpki-client