Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer
File: 9F4621BE2CEB15DD74809D52692588598490FABF.cer (raw, json)
Hash identifier: OMcCZLcz1/ip2WbU0evvpPrBPMMO83fwLq98t+nDdTc=
Subject key identifier: 9F:46:21:BE:2C:EB:15:DD:74:80:9D:52:69:25:88:59:84:90:FA:BF
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 163AEA14259BEEDB4EF26F51991C93D8ED63E3DA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft
caRepository: rsync://rpkica.twnic.tw/rpki/PNI/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:55:54 +0000
Certificate not after: Mon 10 May 2027 16:00:54 +0000
Subordinate resources: AS: 18178
AS: 131642
IP: 103.137.62.0/23
IP: 103.137.246.0/23
IP: 103.148.72.0/23
IP: 103.157.42.0/23
IP: 202.148.222.0/23
IP: 211.76.176.0/23
IP: 2405:cdc0::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:3a:ea:14:25:9b:ee:db:4e:f2:6f:51:99:1c:93:d8:ed:63:e3:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:55:54 2026 GMT
Not After : May 10 16:00:54 2027 GMT
Subject: CN=9F4621BE2CEB15DD74809D52692588598490FABF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7e:66:ab:e4:d6:43:c8:e2:3e:32:78:95:1e:
03:41:fd:15:65:ae:a9:1d:ca:ee:77:b2:ed:53:04:
a0:bd:25:61:00:51:f1:ef:9c:de:d1:60:12:e9:20:
de:7c:17:5f:2e:4a:a8:a0:44:12:0c:97:08:90:c7:
ad:61:59:78:c2:c1:48:76:cb:8e:30:b3:50:83:04:
02:5b:8d:bc:1f:0f:7f:3a:28:9a:05:b1:99:68:27:
19:11:18:70:81:45:61:95:7c:5b:c6:2b:9c:1c:e6:
f9:cd:cd:11:21:5f:ab:7d:a0:ac:48:0e:77:ad:45:
7d:cd:56:5d:2d:76:81:d5:2b:d2:b4:da:db:54:10:
ca:8e:3e:2d:17:0a:ea:91:06:ff:b8:9c:cc:1d:a1:
e6:2f:b8:31:db:70:8b:f4:b6:9b:52:35:bb:72:75:
ef:6b:5a:54:23:3f:3b:2c:53:db:a4:a7:61:24:47:
90:2b:e0:f6:22:07:09:88:dc:c3:54:6a:e5:c7:fa:
a7:f6:14:5d:4a:62:8d:ce:6c:d9:88:19:86:c2:de:
b2:02:c4:de:a8:47:2c:2b:25:cc:60:5f:b2:29:fd:
46:69:3b:40:05:7f:5c:5d:8a:52:a0:79:86:46:2c:
87:2e:c9:ad:f9:b4:da:e7:31:95:d0:8c:1e:d2:a0:
ab:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
9F:46:21:BE:2C:EB:15:DD:74:80:9D:52:69:25:88:59:84:90:FA:BF
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/PNI/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.137.62.0/23
103.137.246.0/23
103.148.72.0/23
103.157.42.0/23
202.148.222.0/23
211.76.176.0/23
IPv6:
2405:cdc0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18178
131642
Signature Algorithm: sha256WithRSAEncryption
81:69:42:19:9c:d0:a7:48:28:4e:4e:1d:5f:20:11:c3:7f:6b:
0e:c9:53:0b:54:87:c4:12:0c:9a:7c:d0:1e:7f:68:6c:02:13:
22:b4:a9:4f:5c:5c:6f:01:65:90:ad:0a:eb:0d:25:70:a2:5e:
af:46:58:f2:b7:f7:c9:5a:b2:e0:1e:d2:0c:87:97:d0:3b:79:
6e:68:8f:0d:9a:21:b8:b2:bb:0c:e9:42:f7:01:7f:5c:39:9b:
33:45:bc:43:fe:ae:bc:b8:55:13:47:c9:be:c5:dc:39:dc:b3:
bb:b4:6f:15:6e:27:75:e2:1b:af:85:78:6f:7c:a4:51:8d:f8:
b1:a1:f5:65:21:a8:62:42:54:2b:98:ad:81:96:0b:c2:e4:7d:
24:35:c9:26:a5:47:7a:0a:c8:58:82:20:ff:55:db:1e:e9:ce:
4f:0b:68:39:82:e9:71:3e:c1:2f:5b:f1:76:1b:6a:89:55:1c:
fa:df:94:c9:9d:e9:7c:5f:31:63:23:23:05:dc:86:a4:f5:f9:
53:79:91:10:b0:11:35:d4:cb:76:1d:7e:dd:ec:f9:cb:43:65:
47:06:81:18:78:ac:75:24:0a:80:07:7d:77:d5:bf:04:64:35:
4f:56:d1:36:06:0a:90:f6:d6:38:d8:2f:18:f4:e4:33:2a:f9:
31:6c:e1:a9
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIUFjrqFCWb7ttO8m9RmRyT2O1j49owDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2
NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTU1NFoX
DTI3MDUxMDE2MDA1NFowMzExMC8GA1UEAxMoOUY0NjIxQkUyQ0VCMTVERDc0ODA5
RDUyNjkyNTg4NTk4NDkwRkFCRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANt+Zqvk1kPI4j4yeJUeA0H9FWWuqR3K7ney7VMEoL0lYQBR8e+c3tFgEukg
3nwXXy5KqKBEEgyXCJDHrWFZeMLBSHbLjjCzUIMEAluNvB8PfzoomgWxmWgnGREY
cIFFYZV8W8YrnBzm+c3NESFfq32grEgOd61Ffc1WXS12gdUr0rTa21QQyo4+LRcK
6pEG/7iczB2h5i+4Mdtwi/S2m1I1u3J172taVCM/OyxT26SnYSRHkCvg9iIHCYjc
w1Rq5cf6p/YUXUpijc5s2YgZhsLesgLE3qhHLCslzGBfsin9Rmk7QAV/XF2KUqB5
hkYshy7Jrfm02ucxldCMHtKgq0sCAwEAAaOCAq0wggKpMA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFJ9GIb4s6xXddICdUmkliFmEkPq/MB8GA1UdIwQYMBaAFNpj
JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg
V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz
MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha
MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHXBggrBgEFBQcBCwSByjCBxzAvBggr
BgEFBQcwBYYjcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9QTkkvMC8wWwYI
KwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUE5JLzAvOUY0
NjIxQkUyQ0VCMTVERDc0ODA5RDUyNjkyNTg4NTk4NDkwRkFCRi5tZnQwNwYIKwYB
BQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNhdGlvbi54
bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBMBggrBgEFBQcBBwEB/wQ9MDsw
KgQCAAEwJAMEAWeJPgMEAWeJ9gMEAWeUSAMEAWedKgMEAcqU3gMEAdNMsDANBAIA
AjAHAwUAJAXNwDAeBggrBgEFBQcBCAEB/wQPMA2gCzAJAgJHAgIDAgI6MA0GCSqG
SIb3DQEBCwUAA4IBAQCBaUIZnNCnSChOTh1fIBHDf2sOyVMLVIfEEgyafNAef2hs
AhMitKlPXFxvAWWQrQrrDSVwol6vRljyt/fJWrLgHtIMh5fQO3luaI8NmiG4srsM
6UL3AX9cOZszRbxD/q68uFUTR8m+xdw53LO7tG8Vbid14huvhXhvfKRRjfixofVl
IahiQlQrmK2BlgvC5H0kNckmpUd6CshYgiD/Vdse6c5PC2g5gulxPsEvW/F2G2qJ
VRz635TJnel8XzFjIyMF3Iak9flTeZEQsBE11Mt2HX7d7PnLQ2VHBoEYeKx1JAqA
B3131b8EZDVPVtE2BgqQ9tY42C8Y9OQzKvkxbOGp
-----END CERTIFICATE-----
Generated at Tue May 12 22:31:52 2026 by rpki-client