Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/8E72F95D12197A83EB3E4E8DDB385B148EAA04FF.cer
File: 8E72F95D12197A83EB3E4E8DDB385B148EAA04FF.cer (raw, json)
Hash identifier: 74bZ0E+PVsYfw+y8RfFn7jQGv6ubTLaEEvU8VeeenzQ=
Subject key identifier: 8E:72:F9:5D:12:19:7A:83:EB:3E:4E:8D:DB:38:5B:14:8E:AA:04:FF
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 3E8FA3AF5CF37F2D2397406E21ADCBAB2B109EF2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/RAID/0/8E72F95D12197A83EB3E4E8DDB385B148EAA04FF.mft
caRepository: rsync://rpkica.twnic.tw/rpki/RAID/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:56:08 +0000
Certificate not after: Mon 10 May 2027 16:01:08 +0000
Subordinate resources: AS: 18423
IP: 103.156.242.0/23
IP: 211.79.104.0/23
IP: 2406:9040::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:8f:a3:af:5c:f3:7f:2d:23:97:40:6e:21:ad:cb:ab:2b:10:9e:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:56:08 2026 GMT
Not After : May 10 16:01:08 2027 GMT
Subject: CN=8E72F95D12197A83EB3E4E8DDB385B148EAA04FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2e:a9:74:a6:1d:09:9b:f9:42:de:a8:12:39:
e3:7e:da:8d:b5:a7:95:3d:78:3c:04:ce:63:7c:d3:
f0:3b:72:15:ec:bd:c9:85:e8:c8:ef:a7:a2:6f:d8:
34:37:f0:0a:30:c5:3e:db:28:f3:58:a3:dd:92:e3:
e8:00:1b:b0:b3:30:1d:6d:d4:fc:13:4e:9c:78:5f:
17:50:f6:7c:95:ee:09:be:c9:4d:f8:80:ba:73:d6:
2d:80:1c:e9:13:24:23:0f:2e:79:5a:0b:f1:3a:b2:
e7:e8:b7:4c:94:57:17:d1:59:5c:61:e6:ed:42:83:
68:82:8b:ad:51:a0:38:e8:ca:f2:00:42:34:ec:15:
4b:88:e0:c9:0a:b9:d0:a3:a9:d4:3e:d8:06:ac:71:
73:ac:ec:f0:aa:1c:2f:02:19:c2:47:c8:c3:78:dd:
1c:8c:f1:61:51:09:e6:50:85:ae:40:e6:e1:8f:dd:
ea:b2:59:ef:cc:a6:08:29:1b:23:27:e9:45:f4:b2:
a2:51:bd:f0:90:2b:db:ac:f8:e7:5f:f1:ef:ea:fd:
e5:81:4f:ee:3c:64:2a:bb:64:7a:60:0d:85:8e:e1:
a8:85:a4:05:50:31:31:23:67:f1:10:f5:e2:a3:1c:
c2:09:84:d8:be:de:18:1a:5b:e4:84:37:ae:c5:63:
8d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
8E:72:F9:5D:12:19:7A:83:EB:3E:4E:8D:DB:38:5B:14:8E:AA:04:FF
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/RAID/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/RAID/0/8E72F95D12197A83EB3E4E8DDB385B148EAA04FF.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.156.242.0/23
211.79.104.0/23
IPv6:
2406:9040::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18423
Signature Algorithm: sha256WithRSAEncryption
6f:4a:5d:4c:6a:df:73:20:6e:fb:4d:e6:85:b6:ab:0e:eb:1b:
8b:29:f3:d8:39:57:c4:83:c7:8d:f6:38:c9:55:90:c4:70:4d:
6e:a9:e4:01:d4:19:27:70:35:97:71:c8:ea:c1:2e:0c:76:af:
ea:35:1e:eb:39:c6:74:ae:04:ce:e4:b4:9f:41:44:ea:8d:c1:
95:58:6c:81:14:6c:50:ec:4f:93:a4:50:1c:1e:76:6f:ec:b2:
20:16:5d:f3:06:20:16:d8:58:3a:f3:46:ea:6f:17:9a:ec:71:
d1:cf:04:82:f3:91:7b:9f:44:39:8c:83:2d:26:fe:00:f1:73:
c1:4e:01:e9:57:c5:78:40:7f:3e:6c:75:5c:3c:1c:f0:3b:6d:
18:9f:bb:de:d2:e2:97:4e:1b:cb:45:9d:34:14:44:40:e9:18:
4f:56:15:b3:29:39:2e:fd:e5:92:e0:40:fe:d0:88:8e:c4:74:
6f:cf:a8:8a:53:a7:0b:31:97:57:f7:99:0c:30:84:b8:9c:dc:
86:2b:9c:8b:63:d9:8a:dc:f2:3b:a4:b6:bb:a8:5e:8d:c9:72:
00:31:6c:68:2e:e3:b5:41:e4:41:b6:f6:30:f1:ff:78:e7:89:
29:c8:eb:4c:9f:d6:3d:62:16:5f:bf:b0:36:5b:44:44:35:a1:
92:8a:5b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:15:50 2026 by rpki-client