Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/432734F40920205CA6443A3B99308DD718E70D42.cer
File: 432734F40920205CA6443A3B99308DD718E70D42.cer (raw, json)
Hash identifier: ncsqdnHO+avtdO3Lx7LXgqVVu7ZI8OZ/AOcSIWqRe5w=
Subject key identifier: 43:27:34:F4:09:20:20:5C:A6:44:3A:3B:99:30:8D:D7:18:E7:0D:42
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 4A39661B05F562D4FA108CADE7B3E14B33BF5CF4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWDS/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:58:11 +0000
Certificate not after: Mon 10 May 2027 16:03:11 +0000
Subordinate resources: AS: 18041
AS: 38855
AS: 131668
IP: 103.147.22.0/23
IP: 211.76.180.0/23
IP: 2405:a640::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:39:66:1b:05:f5:62:d4:fa:10:8c:ad:e7:b3:e1:4b:33:bf:5c:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:58:11 2026 GMT
Not After : May 10 16:03:11 2027 GMT
Subject: CN=432734F40920205CA6443A3B99308DD718E70D42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8c:81:fb:c2:91:a3:c2:19:69:7b:e9:cc:3f:
8e:ec:7d:14:5f:b3:7d:67:f9:e7:95:4f:f4:c1:f5:
c2:85:79:8d:9b:4a:fe:9c:f5:47:df:3e:dd:a1:dc:
cf:3c:9b:3b:ae:f3:c4:c4:3f:fc:1c:18:95:16:12:
d8:59:f9:c2:f2:26:4f:23:52:2c:5b:67:01:82:1b:
a6:d5:e5:2c:d8:e0:ed:1b:0e:02:51:4d:32:23:21:
34:22:48:5f:3a:1e:e7:40:4f:5a:e4:1b:9a:82:ec:
7f:5d:8f:f2:0d:a3:f2:f2:a5:7c:b7:e9:40:fe:c2:
0e:c5:a5:17:19:ae:4d:08:4a:ef:fd:e4:a6:96:b7:
ef:2f:43:7d:94:db:30:b6:e9:5b:bf:f3:24:bd:de:
69:8f:fc:6d:16:e1:58:c9:c2:58:b8:51:f1:da:9b:
83:32:1e:2f:4c:14:c2:99:db:b6:70:fb:ae:75:fb:
45:d2:dc:0f:b4:6c:08:df:7e:8b:7f:26:65:dc:5d:
5d:2d:08:27:b7:66:09:ae:77:02:50:d9:d5:66:89:
cd:c1:ea:3c:79:41:77:61:17:a1:39:7e:e8:94:2f:
13:b0:71:c4:21:25:1e:a4:9e:b4:12:90:74:a8:7b:
6f:af:9c:71:94:11:21:1a:7f:c2:b4:1d:95:35:a9:
8b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
43:27:34:F4:09:20:20:5C:A6:44:3A:3B:99:30:8D:D7:18:E7:0D:42
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWDS/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.22.0/23
211.76.180.0/23
IPv6:
2405:a640::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18041
38855
131668
Signature Algorithm: sha256WithRSAEncryption
8a:04:b4:3d:e0:13:74:63:c8:db:62:4e:07:c4:14:26:ce:06:
e7:06:88:57:67:33:f3:a9:a1:bf:7a:a4:a9:c0:57:49:f8:8c:
f2:4e:cb:53:d0:aa:bb:93:bb:89:7b:6f:f2:cd:5f:8c:49:c2:
31:2e:0b:76:b2:b7:78:38:c9:a1:49:ba:49:be:7b:28:15:ca:
5d:84:92:99:6c:4d:0a:20:25:76:ce:d1:d3:f0:d5:55:2a:4a:
b5:2f:2c:25:80:34:65:75:48:b5:9f:45:02:37:06:5c:49:a3:
45:72:7b:98:0d:4d:31:bd:7f:b4:84:4f:03:41:79:cf:24:3d:
57:ca:bb:b1:c6:a0:b7:67:d2:3f:62:e5:d7:95:fd:ec:7b:59:
8d:3e:dd:ca:aa:1b:85:79:42:14:14:52:55:10:4b:38:7d:cb:
e7:2b:0e:1d:4e:e0:7b:62:46:bb:81:2d:da:c2:87:19:5a:87:
91:c8:b6:b8:af:68:9e:a9:a9:dc:d4:46:2f:4c:97:dd:d4:f3:
c8:51:0f:33:56:02:db:6b:17:58:d0:88:20:a4:3d:f5:82:7a:
af:9f:db:5d:11:f1:73:b8:53:8a:ef:d0:e9:f7:95:4a:3e:bd:
18:1c:fb:3a:0d:1d:f5:9f:9d:99:9b:00:2c:0b:38:a7:5b:7c:
5f:93:7a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:35:10 2026 by rpki-client