Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer
File: BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer (raw, json)
Hash identifier: NqPxQzAqK2xfy4Vcthz9H4WlebTLIiy4KZNDO4HkIXs=
Subject key identifier: BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 77517E1EF8C2B435246D289F6808A437E02E27C3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TINP/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Tue 12 May 2026 01:03:59 +0000
Certificate not after: Tue 11 May 2027 01:08:59 +0000
Subordinate resources: AS: 18049
IP: 27.100.64.0/18
IP: 49.213.128.0/17
IP: 58.99.0.0/17
IP: 61.58.128.0/19
IP: 61.60.224.0/20
IP: 61.67.16.0 -- 61.67.47.255
IP: 103.180.22.0/23
IP: 116.118.128.0/18
IP: 211.73.160.0/19
IP: 2403:5200::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:51:7e:1e:f8:c2:b4:35:24:6d:28:9f:68:08:a4:37:e0:2e:27:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 12 01:03:59 2026 GMT
Not After : May 11 01:08:59 2027 GMT
Subject: CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:21:b8:47:1b:28:36:2f:b6:ed:ed:12:32:
fc:6c:6e:9d:99:c0:11:51:a1:d0:59:f8:08:53:23:
e8:bd:b9:67:fa:a2:99:e7:fa:c9:b0:7b:92:81:b8:
d0:45:e5:20:f7:8c:42:a8:1f:84:a8:e2:09:58:90:
e0:7f:3e:be:53:4d:25:e7:06:b5:0f:63:c4:71:2a:
4a:b5:d6:72:fe:c2:a2:dd:58:b7:1f:33:7a:f4:03:
74:95:77:aa:6e:b5:0f:7f:0f:c8:46:00:1d:9e:82:
e3:40:d8:34:79:e5:a5:6c:4a:21:51:26:e8:a8:58:
a9:8b:f0:79:52:a7:e2:6a:7b:04:5a:32:ad:84:c6:
0e:ad:36:95:25:9b:e2:17:67:a8:48:78:a1:c0:c7:
99:04:38:2d:9f:08:02:67:33:97:ab:94:d9:d6:08:
62:07:cf:3c:47:57:9e:8b:72:a4:6a:d1:51:53:0f:
3c:97:f8:17:25:0b:a6:a2:0a:0b:a8:fa:78:b5:3e:
9a:05:74:e7:e6:e5:e4:51:98:97:9f:1d:e2:af:32:
c4:50:e5:4a:bd:ec:fa:5e:e0:61:da:97:90:e0:fb:
ec:40:da:9f:b8:8a:89:bc:61:33:fe:a1:ff:33:17:
37:fb:da:05:6a:18:d2:e7:2e:16:34:ab:d1:a6:75:
de:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TINP/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.100.64.0/18
49.213.128.0/17
58.99.0.0/17
61.58.128.0/19
61.60.224.0/20
61.67.16.0-61.67.47.255
103.180.22.0/23
116.118.128.0/18
211.73.160.0/19
IPv6:
2403:5200::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18049
Signature Algorithm: sha256WithRSAEncryption
0a:7d:d5:6c:a7:a8:85:bc:6f:e9:fe:eb:2c:14:b4:2d:05:c4:
56:36:27:07:f8:b5:32:43:dc:e3:7b:cd:a2:63:d1:79:f7:2e:
c4:8b:19:d3:42:e7:61:39:51:ce:f0:6a:88:10:46:e7:5d:f3:
99:c3:9d:ce:61:d5:ff:5e:66:bb:24:c7:c9:41:67:8f:6e:b5:
ea:30:77:a0:6b:0c:5a:4c:94:8b:ca:6f:7e:43:78:fa:2a:a0:
6d:48:26:85:45:ae:23:7c:41:7b:ca:f3:c8:f9:f3:d8:a6:66:
f7:c9:7a:09:62:0b:e6:5d:7e:15:65:26:e6:3c:e3:13:b3:6b:
83:a5:fa:54:e5:27:cb:67:4a:c3:45:e8:00:1a:eb:e9:f3:77:
9c:cd:48:5b:83:b2:0f:85:b2:75:46:96:d5:9b:b7:cb:d8:75:
d4:1a:fc:54:d9:d2:81:b3:02:39:6a:5b:d1:0d:bf:7e:1c:60:
c5:4d:85:bc:e8:36:dc:86:bd:f5:6e:49:99:3b:0c:05:24:5a:
5e:f0:61:f2:f0:b5:c6:f4:cb:0a:b1:2d:4d:9e:06:87:7c:c1:
5c:a6:37:f0:5f:82:65:2b:d7:c3:f9:73:11:c2:ff:a9:8d:cf:
e0:59:e2:ce:ba:1a:4d:df:b8:46:ab:b1:68:8d:8c:e1:2f:5f:
e0:c8:ca:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:02:47 2026 by rpki-client