Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer
File: 71FA20FC269CE9805B2C67E59B357AA684246D10.cer (raw, json)
Hash identifier: Og+wofn+dvSXSamF6PTrcI9cPvM6z9+v+h0ErxfWF3w=
Subject key identifier: 71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 556C75C196BCE4EA50A124E94AEC648BEA63EEAA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft
caRepository: rsync://rpkica.twnic.tw/rpki/FET/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:45:40 +0000
Certificate not after: Mon 10 May 2027 15:50:40 +0000
Subordinate resources: AS: 7482
AS: 9311
AS: 9674
AS: 17709
AS: 18412
AS: 24154 -- 24155
AS: 131142
AS: 131591
AS: 131594
IP: 27.51.0.0 -- 27.53.255.255
IP: 27.240.0.0/13
IP: 39.8.0.0/13
IP: 43.240.104.0/22
IP: 60.244.0.0/16
IP: 61.20.0.0/16
IP: 101.136.0.0/14
IP: 103.36.116.0/22
IP: 103.122.148.0/22
IP: 103.231.48.0/22
IP: 106.64.0.0/15
IP: 110.24.0.0/13
IP: 114.140.0.0/16
IP: 118.231.0.0/16
IP: 124.218.0.0 -- 124.219.127.255
IP: 202.178.128.0/17
IP: 203.79.128.0/17
IP: 203.201.32.0/20
IP: 203.207.32.0/20
IP: 210.58.0.0/16
IP: 210.63.192.0/18
IP: 210.85.0.0/16
IP: 210.200.0.0 -- 210.202.55.255
IP: 210.202.64.0 -- 210.203.127.255
IP: 210.241.192.0/19
IP: 211.73.128.0/19
IP: 211.76.96.0/20
IP: 211.77.0.0/16
IP: 218.34.0.0/15
IP: 218.184.0.0/16
IP: 218.187.0.0/16
IP: 219.91.0.0/17
IP: 222.156.0.0/15
IP: 222.250.0.0 -- 222.251.127.255
IP: 223.22.0.0/15
IP: 2001:f10::/32
IP: 2400:fc80::/32
IP: 2401:e180::/32
IP: 2404::/26
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:6c:75:c1:96:bc:e4:ea:50:a1:24:e9:4a:ec:64:8b:ea:63:ee:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:45:40 2026 GMT
Not After : May 10 15:50:40 2027 GMT
Subject: CN=71FA20FC269CE9805B2C67E59B357AA684246D10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:25:fe:3a:52:80:9b:41:8c:9d:a6:5e:ab:07:
22:05:68:5b:6f:57:72:16:d7:e6:ce:d0:8c:99:8f:
f8:ec:66:60:33:7c:5b:29:1e:9d:69:cf:2c:c0:7c:
64:b4:f9:41:7e:ba:76:26:b6:58:fc:06:11:c2:79:
1a:47:81:fb:cd:c5:e7:32:0d:e1:9b:e3:d4:c2:d1:
7c:42:51:4c:ca:ec:32:c9:5e:19:7d:a9:83:52:b5:
c0:21:0d:a5:54:20:e2:e5:7d:c0:e2:82:f2:fa:74:
9d:03:78:8e:f1:21:07:12:d1:87:09:a9:1c:a9:78:
17:90:5d:cb:d3:e8:f9:3d:d0:fe:70:15:27:08:7d:
04:43:9d:a1:a7:1a:a7:75:04:88:23:79:5e:62:97:
a4:aa:28:aa:80:12:29:a0:b0:0c:2f:fa:cc:0f:09:
67:57:42:30:d8:59:1d:9d:c0:f4:1b:00:ae:c3:c3:
73:f5:62:b5:54:f8:f5:eb:8b:24:4b:79:fe:a6:86:
4e:97:34:cb:3f:63:5b:16:4a:3c:78:2e:80:fb:2c:
46:53:d5:2a:c3:dd:ae:89:15:0d:18:00:17:dc:5c:
17:7b:74:3b:e7:6b:1c:60:60:40:94:e1:05:06:83:
f8:68:cb:87:f1:85:a2:b5:05:e8:93:53:f1:6e:13:
f5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/FET/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.51.0.0-27.53.255.255
27.240.0.0/13
39.8.0.0/13
43.240.104.0/22
60.244.0.0/16
61.20.0.0/16
101.136.0.0/14
103.36.116.0/22
103.122.148.0/22
103.231.48.0/22
106.64.0.0/15
110.24.0.0/13
114.140.0.0/16
118.231.0.0/16
124.218.0.0-124.219.127.255
202.178.128.0/17
203.79.128.0/17
203.201.32.0/20
203.207.32.0/20
210.58.0.0/16
210.63.192.0/18
210.85.0.0/16
210.200.0.0-210.202.55.255
210.202.64.0-210.203.127.255
210.241.192.0/19
211.73.128.0/19
211.76.96.0/20
211.77.0.0/16
218.34.0.0/15
218.184.0.0/16
218.187.0.0/16
219.91.0.0/17
222.156.0.0/15
222.250.0.0-222.251.127.255
223.22.0.0/15
IPv6:
2001:f10::/32
2400:fc80::/32
2401:e180::/32
2404::/26
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7482
9311
9674
17709
18412
24154-24155
131142
131591
131594
Signature Algorithm: sha256WithRSAEncryption
5a:63:6d:7e:e5:07:18:a2:74:0e:ef:76:b3:de:b1:19:0d:83:
ae:e4:8a:67:91:24:b3:42:80:d0:de:a4:7f:f2:2c:30:20:ff:
1a:f9:21:a4:ec:6c:3e:46:f3:97:ae:7d:b9:68:e8:74:aa:f7:
c1:2a:fb:96:73:87:88:bb:40:3f:12:d4:cb:e9:d3:0d:35:78:
3c:bc:19:95:0e:27:bb:ac:46:05:89:a1:ab:7d:a5:5f:ce:43:
e2:b4:88:3e:a4:ea:f1:93:20:56:df:7c:10:4d:15:d1:dd:b6:
61:b8:ac:3c:ee:8b:1b:e3:11:09:f5:14:29:1b:2a:d0:9b:63:
e4:de:49:39:44:52:19:48:b9:f8:8a:2e:61:5d:2b:66:78:62:
b9:f6:c5:7c:0e:cc:4c:d6:cf:fc:a5:90:9c:50:11:9d:0e:0d:
d3:12:7c:8a:d5:e9:7c:e4:1b:37:48:55:bc:27:4e:b1:92:bb:
fa:16:22:dd:61:5b:e4:8f:5c:63:7d:97:9a:2a:98:75:97:b1:
fa:d1:8d:ba:7e:52:77:ec:87:8e:e5:fb:97:b4:57:70:85:e2:
15:a9:c9:09:99:e7:43:a4:f7:b0:9f:6b:12:0d:6e:d9:38:a5:
fa:f4:97:17:4e:d9:24:db:02:e8:c9:96:dc:b7:2a:f2:4a:35:
c9:64:86:41
-----BEGIN CERTIFICATE-----
MIIGuzCCBaOgAwIBAgIUVWx1wZa85OpQoSTpSuxki+pj7qowDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2
NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NDU0MFoX
DTI3MDUxMDE1NTA0MFowMzExMC8GA1UEAxMoNzFGQTIwRkMyNjlDRTk4MDVCMkM2
N0U1OUIzNTdBQTY4NDI0NkQxMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL4l/jpSgJtBjJ2mXqsHIgVoW29XchbX5s7QjJmP+OxmYDN8WykenWnPLMB8
ZLT5QX66dia2WPwGEcJ5GkeB+83F5zIN4Zvj1MLRfEJRTMrsMsleGX2pg1K1wCEN
pVQg4uV9wOKC8vp0nQN4jvEhBxLRhwmpHKl4F5Bdy9Po+T3Q/nAVJwh9BEOdoaca
p3UEiCN5XmKXpKooqoASKaCwDC/6zA8JZ1dCMNhZHZ3A9BsArsPDc/VitVT49euL
JEt5/qaGTpc0yz9jWxZKPHgugPssRlPVKsPdrokVDRgAF9xcF3t0O+drHGBgQJTh
BQaD+GjLh/GForUF6JNT8W4T9asCAwEAAaOCA64wggOqMA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFHH6IPwmnOmAWyxn5Zs1eqaEJG0QMB8GA1UdIwQYMBaAFNpj
JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg
V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz
MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha
MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr
BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9GRVQvMC8wWwYI
KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAvNzFG
QTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4NDI0NkQxMC5tZnQwNwYIKwYB
BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54
bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCCAScGCCsGAQUFBwEHAQH/BIIB
FjCCARIwgesEAgABMIHkMAoDAwAbMwMDARs0AwMDG/ADAwMnCAMEAivwaAMDADz0
AwMAPRQDAwJliAMEAmckdAMEAmd6lAMEAmfnMAMDAWpAAwMDbhgDAwByjAMDAHbn
MAsDAwF82gMEB3zbAAMEB8qygAMEB8tPgAMEBMvJIAMEBMvPIAMDANI6AwQG0j/A
AwMA0lUwCwMDA9LIAwQD0sowMAwDBAbSykADBAfSywADBAXS8cADBAXTSYADBATT
TGADAwDTTQMDAdoiAwMA2rgDAwDauwMEB9tbAAMDAd6cMAsDAwHe+gMEB977AAMD
Ad8WMCIEAgACMBwDBQAgAQ8QAwUAJAD8gAMFACQB4YADBQYkBAAAMEIGCCsGAQUF
BwEIAQH/BDMwMaAvMC0CAh06AgIkXwICJcoCAkUtAgJH7DAIAgJeWgICXlsCAwIA
RgIDAgIHAgMCAgowDQYJKoZIhvcNAQELBQADggEBAFpjbX7lBxiidA7vdrPesRkN
g67kimeRJLNCgNDepH/yLDAg/xr5IaTsbD5G85eufblo6HSq98Eq+5Zzh4i7QD8S
1Mvp0w01eDy8GZUOJ7usRgWJoat9pV/OQ+K0iD6k6vGTIFbffBBNFdHdtmG4rDzu
ixvjEQn1FCkbKtCbY+TeSTlEUhlIufiKLmFdK2Z4Yrn2xXwOzEzWz/ylkJxQEZ0O
DdMSfIrV6XzkGzdIVbwnTrGSu/oWIt1hW+SPXGN9l5oqmHWXsfrRjbp+Unfsh47l
+5e0V3CF4hWpyQmZ50Ok97CfaxINbtk4pfr0lxdO2STbAujJlty3KvJKNclkhkE=
-----END CERTIFICATE-----
Generated at Wed May 13 01:35:35 2026 by rpki-client