Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer
File: 6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer (raw, json)
Hash identifier: xE2B2SqJJyvcWkdnQwxTWlBmKwF4JTHl8KYo/jpgan8=
Subject key identifier: 6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 2C8C80519EC05A082575AD884210668FBB9555F1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TANET/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Tue 12 May 2026 01:03:50 +0000
Certificate not after: Tue 11 May 2027 01:08:50 +0000
Subordinate resources: AS: 1659
AS: 9916
AS: 17711 -- 17713
AS: 17716 -- 17717
AS: 18047
AS: 18177
AS: 18185
AS: 18420
AS: 38844 -- 38845
AS: 38847 -- 38849
AS: 131146
AS: 131150
IP: 120.96.0.0/11
IP: 163.13.0.0 -- 163.28.255.255
IP: 163.30.0.0 -- 163.32.255.255
IP: 203.64.0.0/16
IP: 203.68.0.0/16
IP: 203.71.0.0 -- 203.72.255.255
IP: 210.59.0.0/17
IP: 210.60.0.0/16
IP: 210.62.64.0/19
IP: 210.62.224.0 -- 210.62.247.255
IP: 210.67.248.0/21
IP: 210.70.0.0 -- 210.71.127.255
IP: 210.240.0.0/16
IP: 210.243.0.0/18
IP: 2001:288::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:8c:80:51:9e:c0:5a:08:25:75:ad:88:42:10:66:8f:bb:95:55:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 12 01:03:50 2026 GMT
Not After : May 11 01:08:50 2027 GMT
Subject: CN=6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:57:ae:59:ad:a7:65:81:66:9c:4d:f6:b6:49:
3c:b5:e5:45:ce:77:48:c3:64:ac:23:b9:7d:fc:f9:
e8:45:19:0b:b1:d4:c1:bd:73:dc:55:87:15:54:9d:
ee:8e:63:45:e4:1c:bb:4e:03:0e:17:8a:72:ef:19:
7b:67:b5:85:b5:dd:32:26:2d:f8:f7:17:43:41:d9:
28:73:a5:8f:b3:13:4e:82:be:78:fd:57:1c:73:90:
25:67:b6:c2:f7:bb:96:e0:37:b7:81:03:51:81:50:
2b:e8:35:b1:44:e7:98:24:0d:62:86:b3:77:0c:3e:
09:2e:ff:c4:29:d2:6e:3d:e9:ef:84:aa:48:13:e8:
a9:e6:a3:3b:35:f6:3c:00:b1:01:bb:e5:26:b1:0a:
cd:fd:e3:e8:06:87:c5:da:62:49:d5:71:b8:75:84:
ce:0f:26:15:5e:74:5a:85:03:2a:fa:b7:67:79:79:
9f:02:4e:7f:89:13:77:fe:6d:da:e8:b6:5e:5a:14:
b9:12:ec:e8:32:b0:34:2b:0d:be:8d:d9:07:57:ea:
55:aa:2b:e1:57:6c:29:ae:a4:16:6b:bb:d3:55:9b:
28:90:86:23:38:cf:22:d3:84:d4:56:9e:f7:87:71:
8c:29:61:f9:eb:34:d2:85:dc:39:21:ea:b3:e8:59:
45:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TANET/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
120.96.0.0/11
163.13.0.0-163.28.255.255
163.30.0.0-163.32.255.255
203.64.0.0/16
203.68.0.0/16
203.71.0.0-203.72.255.255
210.59.0.0/17
210.60.0.0/16
210.62.64.0/19
210.62.224.0-210.62.247.255
210.67.248.0/21
210.70.0.0-210.71.127.255
210.240.0.0/16
210.243.0.0/18
IPv6:
2001:288::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
1659
9916
17711-17713
17716-17717
18047
18177
18185
18420
38844-38845
38847-38849
131146
131150
Signature Algorithm: sha256WithRSAEncryption
19:c7:be:68:91:0a:dc:23:50:8e:45:d8:b7:68:65:b4:ff:e9:
24:65:6d:47:b2:50:5d:1a:a5:79:30:7e:3d:91:68:bf:ec:7e:
13:27:7c:26:db:d1:45:a8:d8:20:69:bb:be:03:5d:95:83:e6:
35:38:49:bb:c6:ad:7c:5d:37:74:26:21:fb:a6:dd:66:30:77:
d2:be:c5:b0:1f:fc:44:86:64:3a:59:86:a2:ad:59:f0:fe:03:
fc:8b:4d:ba:54:0f:73:6d:c8:a8:39:4d:17:fb:a6:fd:9a:0e:
b4:a7:15:da:81:76:05:c8:1e:6e:34:8e:e2:f0:b2:73:97:19:
2c:ea:7a:6c:30:a0:28:bd:c4:2b:de:3a:2f:bd:1f:a7:65:00:
d0:f4:30:6c:c4:6b:ba:07:c9:e9:b5:fa:a2:1f:26:65:05:6c:
15:c7:6b:ea:77:7f:d0:25:e2:76:c9:ed:4b:51:f0:f4:c6:3c:
79:4c:06:eb:20:16:57:a7:6a:b1:cf:56:2e:e5:a4:b5:f6:ec:
40:12:10:4a:c7:e1:e8:0b:0e:c4:21:41:10:df:ae:d6:96:e3:
a5:78:b7:b4:49:af:9a:56:d4:08:ee:6c:44:98:4b:c2:0a:78:
1a:a3:69:00:5c:4f:6b:a6:ca:f7:57:3f:c9:a0:51:5d:ec:42:
01:20:14:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:16:39 2026 by rpki-client