Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/A0D42927AB9ABEBE41482F06D20E1FCEBC4EC623.cer
File: A0D42927AB9ABEBE41482F06D20E1FCEBC4EC623.cer (raw, json)
Hash identifier: xmkdcfEIhfk/AsCkJILcUAXlizk+Uk/6Ivvu85BkJHc=
Subject key identifier: A0:D4:29:27:AB:9A:BE:BE:41:48:2F:06:D2:0E:1F:CE:BC:4E:C6:23
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 0633A6ADB989F5FC7588AE8606B779EEB5B2CA13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/FPG/0/A0D42927AB9ABEBE41482F06D20E1FCEBC4EC623.mft
caRepository: rsync://rpkica.twnic.tw/rpki/FPG/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:45:48 +0000
Certificate not after: Mon 10 May 2027 15:50:48 +0000
Subordinate resources: AS: 131655 -- 131656
IP: 103.138.92.0/23
IP: 2404:c740::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:33:a6:ad:b9:89:f5:fc:75:88:ae:86:06:b7:79:ee:b5:b2:ca:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:45:48 2026 GMT
Not After : May 10 15:50:48 2027 GMT
Subject: CN=A0D42927AB9ABEBE41482F06D20E1FCEBC4EC623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e4:d0:6a:21:73:fa:d3:9e:7f:5b:5d:b7:1a:
2f:80:c4:6b:be:b1:2b:b8:e1:55:7d:5e:46:f3:05:
d4:30:fc:b0:a4:05:df:09:d3:6f:a7:76:25:32:2f:
58:a7:01:99:fd:54:e7:70:f4:74:bf:fd:2c:e2:77:
44:14:37:8b:fc:06:7a:55:82:76:52:05:62:4e:26:
82:d3:e2:ad:0a:2b:32:c5:d3:30:a5:17:fc:67:9a:
ba:3b:46:aa:68:20:65:5a:4c:c3:2e:a2:15:cf:c1:
3e:52:dc:9d:c7:23:67:21:6b:f4:ea:1c:b9:8c:8b:
bf:5f:f6:4a:80:da:0e:1a:31:f1:1e:13:9f:e8:1e:
91:7a:73:e0:cc:6d:7a:0e:c3:fc:83:aa:fa:46:ce:
d6:a9:be:9a:29:67:4a:85:f3:c0:a7:ee:26:05:4c:
37:17:a0:0b:3a:21:33:20:d0:91:3f:28:f7:82:67:
1f:cf:7d:6b:6a:2b:d8:ca:c3:67:72:47:ad:ad:79:
13:69:95:56:c9:a6:7a:9c:f7:5a:a6:a5:52:35:48:
dc:40:b8:37:82:ed:1a:a4:0d:f3:83:d3:cd:ec:8c:
bd:b8:08:e9:99:8f:44:69:49:fe:28:e4:bb:54:0b:
cc:8f:51:12:68:ad:62:80:2b:39:58:b9:e8:75:19:
86:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
A0:D4:29:27:AB:9A:BE:BE:41:48:2F:06:D2:0E:1F:CE:BC:4E:C6:23
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/FPG/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/FPG/0/A0D42927AB9ABEBE41482F06D20E1FCEBC4EC623.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.138.92.0/23
IPv6:
2404:c740::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131655-131656
Signature Algorithm: sha256WithRSAEncryption
55:47:a4:b6:b2:86:3a:ca:7a:46:cc:bc:46:a5:f1:26:93:a2:
67:83:c8:d4:78:c6:ea:84:e0:53:70:bc:66:9a:ed:33:70:62:
39:59:e5:80:7a:f7:4a:4d:04:c1:7f:20:36:36:98:c5:98:7c:
c3:75:1e:21:83:94:c7:f2:4a:ab:a7:25:78:0c:44:cb:aa:70:
d4:24:8f:c1:15:fe:bf:2c:68:0c:91:a0:a5:32:c7:92:98:60:
15:e0:8d:db:76:68:20:5e:2a:a5:bc:13:58:a2:cc:af:17:f6:
35:9f:d4:be:58:2d:df:61:d5:8f:f9:64:05:91:7d:df:bf:f7:
57:c9:9e:07:94:5b:b3:eb:00:ca:b6:70:87:24:8d:77:8c:9f:
fe:cd:f7:4b:93:ca:a6:dc:cd:71:8d:39:85:b1:76:23:bd:b7:
03:0a:9f:77:7b:25:3a:1b:ec:b8:16:c9:60:7f:1a:6c:4b:a1:
e8:f0:99:4f:de:a2:85:b7:cb:2c:3f:41:6d:fb:ec:89:7e:2d:
48:bd:7a:0c:70:a2:6a:c6:79:38:90:c6:2a:08:17:ec:48:da:
4e:e5:44:d1:86:fa:28:97:37:fd:7b:b6:73:1a:d7:70:1d:7e:
90:72:99:7e:55:c5:6c:42:23:07:57:af:26:03:a1:d5:2d:8d:
2e:26:53:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:16:44 2026 by rpki-client