Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/86F4E64E2855B2FD00FEE492F6FB82D7ED5C4619.cer
File: 86F4E64E2855B2FD00FEE492F6FB82D7ED5C4619.cer (raw, json)
Hash identifier: zfDIJ900orL/Jl9b4SakrRrK1bcNlj+0HyCfwLQldY4=
Subject key identifier: 86:F4:E6:4E:28:55:B2:FD:00:FE:E4:92:F6:FB:82:D7:ED:5C:46:19
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 4A8D10FB36DEFC9DBFB6986E24A92A92F4BF1C92
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TAIWANMOBILE/0/86F4E64E2855B2FD00FEE492F6FB82D7ED5C4619.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TAIWANMOBILE/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:57:33 +0000
Certificate not after: Mon 10 May 2027 16:02:33 +0000
Subordinate resources: AS: 24157 -- 24158
AS: 131614
AS: 131647 -- 131650
IP: 1.200.0.0/16
IP: 43.240.108.0/22
IP: 43.255.88.0/22
IP: 43.255.180.0/22
IP: 101.8.0.0/13
IP: 103.2.216.0/22
IP: 103.5.32.0/22
IP: 103.239.60.0/22
IP: 110.50.128.0/18
IP: 112.78.64.0/19
IP: 115.80.0.0/14
IP: 116.89.128.0/20
IP: 117.19.0.0/16
IP: 123.99.0.0/18
IP: 124.29.128.0/18
IP: 180.204.0.0/14
IP: 180.217.0.0/16
IP: 202.144.208.0/20
IP: 2401:7080::/32
IP: 2402:7500::/32
IP: 2403:c300::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:8d:10:fb:36:de:fc:9d:bf:b6:98:6e:24:a9:2a:92:f4:bf:1c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:57:33 2026 GMT
Not After : May 10 16:02:33 2027 GMT
Subject: CN=86F4E64E2855B2FD00FEE492F6FB82D7ED5C4619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fc:48:9f:2a:ad:62:a6:44:5e:cd:8a:35:4f:
ae:4c:62:59:84:37:32:ac:24:18:37:26:0a:35:ad:
43:c2:d4:57:01:f7:0b:e2:71:a9:4f:b1:67:c0:76:
e4:c1:9a:fb:9e:1b:e9:02:94:d2:c6:8c:b3:a6:5c:
3f:1e:fb:55:30:ad:be:5d:84:2f:e9:69:a3:67:09:
cf:fb:cf:6a:7a:c8:28:1d:58:c6:24:23:8f:43:c1:
a0:bf:9f:3b:6a:14:23:76:d6:7f:ed:49:8c:78:f0:
8d:ef:91:f1:03:f4:aa:d2:6b:d5:26:14:ac:55:5d:
d8:32:f9:db:e0:f4:01:d9:44:a1:42:50:65:40:87:
96:31:27:03:5d:28:ca:16:11:1c:f4:86:09:b0:3d:
95:5c:32:9b:d5:ca:27:a0:82:17:87:f1:e3:2f:92:
2c:40:bb:ac:4b:b3:4c:f0:ff:dd:16:31:0f:4e:16:
c6:56:b7:01:0e:e5:a7:ae:a5:69:75:0e:0a:38:b9:
ba:d9:09:6f:c8:4f:b2:a0:46:86:1e:18:67:34:66:
8c:da:e6:18:3b:35:72:42:fa:27:52:82:30:e6:19:
88:1f:54:6a:7e:55:9b:47:15:b6:58:fb:3e:39:e2:
47:f5:21:db:0d:70:02:96:9b:34:74:b9:bf:47:73:
64:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
86:F4:E6:4E:28:55:B2:FD:00:FE:E4:92:F6:FB:82:D7:ED:5C:46:19
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TAIWANMOBILE/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TAIWANMOBILE/0/86F4E64E2855B2FD00FEE492F6FB82D7ED5C4619.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.200.0.0/16
43.240.108.0/22
43.255.88.0/22
43.255.180.0/22
101.8.0.0/13
103.2.216.0/22
103.5.32.0/22
103.239.60.0/22
110.50.128.0/18
112.78.64.0/19
115.80.0.0/14
116.89.128.0/20
117.19.0.0/16
123.99.0.0/18
124.29.128.0/18
180.204.0.0/14
180.217.0.0/16
202.144.208.0/20
IPv6:
2401:7080::/32
2402:7500::/32
2403:c300::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24157-24158
131614
131647-131650
Signature Algorithm: sha256WithRSAEncryption
b1:b8:ea:f9:49:6b:f9:f9:03:5a:fe:e0:ef:4b:51:99:04:75:
ad:b7:4e:4d:f5:1d:93:b6:63:3c:33:03:2f:2d:f0:94:f2:94:
c4:62:8c:74:81:e2:9b:09:de:e7:15:cf:74:7d:08:cd:e5:b2:
52:d7:bf:14:a1:dd:b6:5e:d1:92:80:e3:b3:cb:74:6d:12:2f:
95:58:17:2a:ac:01:80:0a:37:57:50:b4:db:c7:b4:b7:bb:d4:
cb:c6:d6:8c:4c:ce:c1:ec:31:cc:d0:59:fb:85:36:f1:b3:51:
95:df:8c:01:94:d0:9c:7c:12:73:65:3d:0e:80:c3:70:07:76:
79:44:5d:14:78:bc:42:cc:b8:36:f2:7a:09:a2:ec:d4:6a:f5:
a9:92:6c:14:0d:da:8e:da:27:7a:ae:43:98:8c:a4:9c:4f:1e:
d5:16:43:6c:87:40:c4:cd:bd:cb:3c:13:4e:c5:d1:62:60:40:
94:dc:71:0a:ce:14:d5:be:86:c6:a7:e5:da:98:6f:69:72:5c:
c9:c9:21:42:09:22:71:3f:2e:9b:c2:87:a3:19:75:ef:83:2a:
d1:3f:96:cf:a9:b4:ff:7b:29:35:65:bb:c9:13:d6:79:71:20:
d0:ef:6d:c8:09:ea:71:a8:22:89:8b:0d:03:8d:b3:6f:10:66:
2f:9f:72:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:03:50 2026 by rpki-client