Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/9CF435443DFA11640A4A46810E4972A2EFC22116.cer
File: 9CF435443DFA11640A4A46810E4972A2EFC22116.cer (raw, json)
Hash identifier: JZwS9GIlKqgK/oJq61jvSZQWdQmn9MVzVSxQ3j/FwIU=
Subject key identifier: 9C:F4:35:44:3D:FA:11:64:0A:4A:46:81:0E:49:72:A2:EF:C2:21:16
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 352E926E4C93D71D98B1A5885789E6C039890BDB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/VISIONBAY/0/9CF435443DFA11640A4A46810E4972A2EFC22116.mft
caRepository: rsync://rpkica.twnic.tw/rpki/VISIONBAY/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 16:00:35 +0000
Certificate not after: Mon 10 May 2027 16:05:35 +0000
Subordinate resources: IP: 163.128.120.0/23
IP: 2402:55a0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:2e:92:6e:4c:93:d7:1d:98:b1:a5:88:57:89:e6:c0:39:89:0b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 16:00:35 2026 GMT
Not After : May 10 16:05:35 2027 GMT
Subject: CN=9CF435443DFA11640A4A46810E4972A2EFC22116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:85:e6:2e:4f:b4:40:73:5d:f3:79:2f:e5:75:
84:4a:ab:65:42:3e:ee:a1:94:3b:81:9d:e2:10:0b:
90:6b:70:89:a4:9c:b8:ac:c6:c9:b7:a6:d0:1e:98:
4e:84:bf:b9:d3:ba:7d:b2:85:61:b2:27:f7:aa:39:
ce:f3:81:15:dd:bc:7b:6f:be:d2:fb:42:8a:04:d1:
11:2c:cb:3a:f9:e6:c5:9e:17:47:41:8d:aa:6b:72:
52:04:53:27:f1:56:60:18:2f:ec:50:de:fb:f5:46:
10:32:17:b7:92:e3:f9:d8:cb:7b:80:8e:1f:ea:c5:
c0:2f:4d:a7:5e:9f:bb:20:8d:7c:a9:54:80:43:7e:
af:34:94:cd:18:20:94:88:da:27:6f:99:20:79:21:
9d:8f:08:cd:05:14:e1:74:29:48:2f:3c:43:ed:90:
10:c4:28:2e:f2:30:df:12:d9:f8:25:d9:a0:94:9f:
7f:05:6e:53:4a:d1:e3:0e:40:09:09:c1:b4:93:46:
f1:0c:c7:12:48:87:02:01:5d:d4:6c:66:ba:67:dc:
f4:3c:f2:63:00:82:80:87:ab:bf:eb:72:9e:9a:3b:
48:0e:66:19:40:14:7b:53:82:f0:61:eb:74:00:65:
40:61:df:b6:cd:04:89:3a:20:47:94:e1:b7:85:c0:
c3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
9C:F4:35:44:3D:FA:11:64:0A:4A:46:81:0E:49:72:A2:EF:C2:21:16
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/VISIONBAY/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/VISIONBAY/0/9CF435443DFA11640A4A46810E4972A2EFC22116.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.128.120.0/23
IPv6:
2402:55a0::/32
Signature Algorithm: sha256WithRSAEncryption
7a:9c:da:5f:80:97:3c:79:33:28:14:39:03:41:17:67:be:83:
68:0b:c7:c5:28:8b:b1:73:b6:e7:bf:66:aa:89:cf:e8:da:c3:
ae:9a:59:c6:3b:b2:46:c9:75:87:4b:14:db:02:cb:76:48:76:
54:a4:57:da:be:22:44:50:61:49:3c:d3:2a:08:0a:79:88:7a:
e9:62:8c:2c:14:72:6b:32:ff:0c:11:d8:c8:a2:e9:7f:6c:8e:
af:25:06:55:f0:df:62:cb:27:5a:ff:26:55:dd:48:6b:76:28:
40:a7:3f:ab:3d:3a:72:18:22:60:ca:8a:87:e8:77:7a:a0:20:
c3:2c:ac:24:e3:42:26:a7:0d:4a:08:fd:48:07:08:b8:f2:92:
33:83:fc:6d:b1:79:39:8f:d6:f5:10:ad:b3:33:38:d9:7c:13:
d8:e8:0f:f0:fe:44:7e:37:21:53:36:76:da:1c:3b:2e:45:21:
de:40:1a:4e:a4:3e:ab:1c:fa:3c:9c:b0:48:46:78:e9:0e:3d:
07:24:09:be:6d:1e:5d:1c:9d:19:0c:2b:04:56:f3:df:12:55:
ed:25:68:19:56:78:c5:83:08:4c:96:2b:32:13:f4:21:7e:66:
15:38:ef:5d:8d:03:64:6f:d2:91:89:b3:ce:84:ab:fd:fc:05:
f2:3e:f9:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:48:10 2026 by rpki-client