Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer
File: B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer (raw, json)
Hash identifier: OpKEOKnCc8M0s3MYUrLwQ/nGFS+goXarZcmPioORkb0=
Subject key identifier: B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 4E711477622BB5C86BA0D9D5FA434290FB0FCD1B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/DONGFONG/0/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.mft
caRepository: rsync://rpkica.twnic.tw/rpki/DONGFONG/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:45:14 +0000
Certificate not after: Mon 10 May 2027 15:50:14 +0000
Subordinate resources: AS: 18046
IP: 61.65.224.0/19
IP: 103.234.76.0/22
IP: 116.50.32.0/20
IP: 150.107.56.0/22
IP: 2401:1780::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:71:14:77:62:2b:b5:c8:6b:a0:d9:d5:fa:43:42:90:fb:0f:cd:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:45:14 2026 GMT
Not After : May 10 15:50:14 2027 GMT
Subject: CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7b:e6:f7:86:bb:cd:8c:fd:9f:90:2a:27:2c:
86:38:0a:a3:08:bf:67:77:43:0c:2c:2d:75:08:da:
05:4c:d1:6d:13:1a:20:19:1d:58:7b:85:80:06:48:
10:e7:71:ff:62:3e:74:1f:67:26:04:d2:77:92:f2:
75:4c:bc:e6:f4:84:3b:a7:9d:c0:10:f0:00:b9:4d:
ec:cf:21:98:09:e2:6d:38:4d:7a:07:5f:4e:8e:45:
36:00:97:86:33:30:8f:35:0c:1e:d1:e7:3e:3a:d8:
4a:84:fc:64:77:86:52:86:2b:a6:6c:84:0e:ca:ea:
6c:10:fc:a7:61:7a:5a:2c:13:ac:8f:0c:ce:78:03:
b5:7b:34:b8:d0:aa:ad:15:44:d0:fe:86:62:81:34:
44:26:30:3d:e0:1e:d4:6d:8c:69:ed:b0:bc:26:8e:
58:bd:f2:4e:df:d0:32:91:cb:06:83:aa:89:7a:1a:
a0:77:30:ca:3d:aa:cb:82:50:a5:cb:82:da:95:66:
f8:86:37:45:99:c2:57:52:c8:fb:c2:63:8f:4c:7a:
50:94:71:0c:c6:a8:cb:9a:85:4f:f1:d0:c6:3d:c7:
b2:ee:c3:ea:57:16:0e:72:be:86:5a:35:e2:15:47:
d4:a1:4c:7c:d1:b1:ae:04:fd:b2:93:c9:92:d7:03:
10:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
61.65.224.0/19
103.234.76.0/22
116.50.32.0/20
150.107.56.0/22
IPv6:
2401:1780::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18046
Signature Algorithm: sha256WithRSAEncryption
1d:f2:ac:0e:d3:6f:3e:70:ee:d5:5a:71:f3:19:06:b2:80:98:
7c:81:74:b2:72:1e:74:e8:30:2b:e8:96:79:65:9c:f5:f7:2d:
53:06:65:b7:bf:b9:4e:0d:8d:4a:11:05:f6:64:2a:af:ac:28:
50:8e:dc:c7:6a:f2:c4:9b:db:7f:76:2b:b3:56:1c:d7:be:a3:
de:d7:34:c3:9d:0f:60:d7:3a:9e:03:18:9a:69:e7:b9:35:d1:
15:b4:16:55:a7:8e:00:0c:fa:76:30:9a:3a:e5:f1:1a:fc:71:
d2:ae:c9:01:8a:8d:18:dd:cf:59:9e:e6:8c:e3:ac:89:9e:b6:
44:82:0e:1b:b1:e2:76:51:7a:12:06:85:a1:bd:34:8f:24:55:
cf:bd:ca:37:1f:31:54:d6:de:7d:6d:e9:90:23:91:c8:ac:2e:
4e:13:a4:8d:f4:6f:5d:2c:3d:d2:20:e3:11:1d:5e:94:c8:68:
96:f2:43:1c:0a:21:2e:e8:99:1d:40:02:c4:c8:0c:20:b4:43:
d9:08:9c:e9:d9:19:f3:f4:54:2d:e5:db:ba:21:34:06:f6:3c:
d9:8b:04:b3:cb:ec:91:69:11:01:3d:06:8d:c5:d0:5b:29:7d:
46:a6:64:9b:2c:c6:89:8e:c9:ac:43:1f:b6:80:a7:96:92:a0:
ea:12:9b:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:03:07 2026 by rpki-client