Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/AAED3548B647C9B95804411BAB19736F229C5A54.cer
File: AAED3548B647C9B95804411BAB19736F229C5A54.cer (raw, json)
Hash identifier: CW1YD/WdzRI93BQgxQboD/sSe+OQk9Cpeee9Nzehb3M=
Subject key identifier: AA:ED:35:48:B6:47:C9:B9:58:04:41:1B:AB:19:73:6F:22:9C:5A:54
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 2D88BAE397952E62070B2C27F2E4808E392F2B5B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/MKY/0/AAED3548B647C9B95804411BAB19736F229C5A54.mft
caRepository: rsync://rpkica.twnic.tw/rpki/MKY/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:48:39 +0000
Certificate not after: Mon 10 May 2027 15:53:39 +0000
Subordinate resources: AS: 7478
IP: 210.244.192.0/19
IP: 211.76.0.0/19
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:88:ba:e3:97:95:2e:62:07:0b:2c:27:f2:e4:80:8e:39:2f:2b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:48:39 2026 GMT
Not After : May 10 15:53:39 2027 GMT
Subject: CN=AAED3548B647C9B95804411BAB19736F229C5A54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f0:61:30:0b:48:36:d4:50:5c:bd:57:30:b8:
c6:e9:9c:ae:c8:8f:5b:c1:7f:f5:01:41:b3:3e:4d:
98:bd:4d:98:d1:9a:b6:33:ab:49:db:71:e3:ce:d1:
4f:4d:da:36:da:0e:84:ee:0b:f1:29:02:0b:94:2f:
b5:01:c3:69:40:50:f8:41:f7:f6:56:7b:fa:a9:7d:
93:fc:e4:b9:c8:d0:a7:7a:9b:61:96:06:64:93:c0:
71:73:0e:e6:c9:22:e6:32:a4:19:f6:6c:9a:98:dc:
37:85:e1:d3:ef:88:37:c7:06:5e:71:6a:f5:86:f4:
1f:04:20:19:05:10:52:da:3e:da:a7:d5:f5:6d:7e:
23:6d:85:2d:91:47:37:5b:ef:ff:72:12:eb:18:ec:
5f:16:a1:5d:36:34:c0:97:9b:4e:65:df:44:69:c6:
0b:c8:4b:95:05:79:63:5e:84:9d:38:f0:5f:34:61:
ec:d7:6b:3b:80:d3:d6:ec:33:80:c9:ac:1c:f6:9a:
df:b6:71:ab:3a:fc:e6:06:8f:0b:fc:f6:bf:f5:c8:
98:6d:33:33:2c:1d:7e:7b:6e:ff:bc:1b:ca:02:ef:
58:f0:df:c8:62:30:8b:87:e9:ea:fe:a9:e8:d4:a0:
df:64:04:60:e7:ce:47:ba:de:0c:ad:dd:55:7c:79:
ff:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
AA:ED:35:48:B6:47:C9:B9:58:04:41:1B:AB:19:73:6F:22:9C:5A:54
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/MKY/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/MKY/0/AAED3548B647C9B95804411BAB19736F229C5A54.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.244.192.0/19
211.76.0.0/19
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7478
Signature Algorithm: sha256WithRSAEncryption
36:c8:5a:64:ee:70:6b:b9:df:e4:57:b1:15:68:9d:a9:61:21:
5f:75:e7:42:49:ad:21:dc:59:bf:94:e6:08:2f:4b:55:1a:3a:
f5:f7:f8:4c:48:df:a1:d6:c7:46:51:14:08:21:41:5e:c6:2b:
38:e0:0b:70:55:5b:f8:b5:33:9a:31:07:2f:7f:1e:e5:f0:d3:
7b:ce:29:2a:01:e5:fe:0a:67:b6:90:49:cf:58:25:c6:a6:81:
27:9c:32:ce:14:1c:6f:42:eb:74:27:48:99:f5:7a:49:4d:dc:
9e:31:37:f9:e6:a3:b9:c9:8c:37:a6:10:63:94:4f:4b:13:94:
65:fc:87:c2:e2:19:13:b4:b3:31:6b:c8:73:02:ba:42:46:c6:
c9:db:c8:84:bc:f4:30:10:fb:d4:63:40:78:27:7b:e2:7d:48:
a7:fc:f9:dd:09:fc:8a:a9:73:2b:6c:90:75:bb:92:39:33:bb:
c3:c0:7d:9d:73:0c:ff:a3:97:64:f8:22:52:02:2f:f0:58:e8:
23:6e:8b:37:fa:8a:8b:5d:1e:9c:1b:68:f8:9f:4c:f0:dc:12:
03:9e:a6:8b:3b:f0:d6:1b:cf:50:4a:9e:ec:fa:c9:7c:2d:da:
96:c8:89:e1:82:55:a4:5a:e3:c0:23:b3:87:80:a7:7c:63:92:
7c:5f:e0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:32:20 2026 by rpki-client