Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer
File: 56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer (raw, json)
Hash identifier: 01JMM3a26EgPw0B0xtNNh6RCFv6CopL2iimv3VPCkNo=
Subject key identifier: 56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 534B5A76743C172EAC433FF857A4C10E536BA487
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TIH/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:57:46 +0000
Certificate not after: Mon 10 May 2027 16:02:46 +0000
Subordinate resources: AS: 131639
IP: 103.129.144.0/22
IP: 2403:7f40::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:4b:5a:76:74:3c:17:2e:ac:43:3f:f8:57:a4:c1:0e:53:6b:a4:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:57:46 2026 GMT
Not After : May 10 16:02:46 2027 GMT
Subject: CN=56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b7:80:d5:98:f6:75:14:f2:2a:a9:5b:5f:cd:
dc:a4:93:6d:f5:b8:de:6a:87:e5:79:de:1f:25:5e:
f9:c4:ae:62:27:5c:61:bd:dc:e4:d1:b0:c2:13:8b:
8a:42:56:0d:b1:fc:cb:bf:77:36:d2:f2:2b:e8:2f:
53:63:a2:f7:81:cf:d6:0a:5a:5b:b0:19:44:19:f6:
27:b6:38:4d:04:56:ce:ac:1c:cb:97:d1:30:83:c3:
be:77:4b:5a:13:a1:6e:b1:5b:22:f2:7d:72:c5:73:
4c:04:22:7d:95:1e:f8:3a:3d:ae:32:2b:18:6c:d4:
71:46:14:43:f3:8f:a9:4d:47:84:3d:c7:fd:73:9b:
e2:f3:54:b2:d7:d3:d5:12:7b:75:1c:89:39:94:f3:
68:7b:d1:ea:20:43:88:f6:79:fd:13:49:8c:1c:90:
32:14:ee:7e:cd:90:22:a8:95:cb:2a:8b:db:b6:1e:
68:e3:ed:6d:e9:a0:66:ac:f2:f6:8b:9c:4f:b5:a3:
62:02:84:07:a4:a5:87:52:3d:12:1f:58:7f:83:9b:
9a:de:48:2b:2e:61:6f:56:88:1c:cf:54:db:5f:b3:
87:39:2c:08:da:a6:81:95:fe:4b:c7:b7:7b:e5:a0:
0a:54:be:36:44:4c:f1:44:de:b2:b1:50:6f:b5:d5:
78:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TIH/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.129.144.0/22
IPv6:
2403:7f40::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131639
Signature Algorithm: sha256WithRSAEncryption
a3:5e:5f:72:76:05:6b:b9:62:89:fe:c2:64:9b:f5:0a:f8:84:
96:c5:e5:1c:15:8c:98:54:06:2f:9d:e1:78:d3:25:bb:6a:89:
ec:99:7a:cb:9f:a6:6a:e9:6a:ae:50:d1:0a:1d:df:71:b9:83:
e0:1d:21:53:dc:b9:47:7d:4c:f2:8d:d3:47:f4:f2:89:a4:ba:
0d:86:a6:58:7a:7f:c9:11:e5:f1:ec:d0:6b:10:75:bb:69:e7:
0a:88:60:89:cc:e2:ac:ba:99:9e:dc:22:98:3e:db:6d:20:a4:
c8:50:54:31:42:f7:55:46:9d:dd:3e:57:3b:df:d9:f7:f5:7b:
0f:c7:f8:b0:13:7d:9c:1a:dc:92:c9:d1:a2:7e:0c:cc:88:20:
c9:47:68:a2:ea:f5:ce:8d:88:6c:69:53:fe:a4:1d:16:06:71:
4e:ef:21:82:71:fa:75:79:ea:ea:ff:e6:c1:d2:a6:e1:69:37:
2b:c0:9d:85:69:5c:cc:6b:c6:28:d9:f6:3e:79:ef:0f:8f:2a:
d4:7c:31:ce:86:59:62:dd:26:34:5c:12:25:46:fb:1f:b4:3d:
19:c8:b3:49:41:d0:dc:3d:04:33:e3:f1:37:5d:10:1c:a8:27:
34:e4:c9:6b:d2:19:8a:ee:b1:65:59:d7:3f:01:9a:a8:1a:f9:
27:6d:83:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:53:18 2026 by rpki-client