Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.cer
File: C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.cer (raw, json)
Hash identifier: vjH5/wO1ZbT2oYXUPYEX7dE/1ZveDwhbr6p7KQgN4AU=
Subject key identifier: C5:DF:31:D9:EE:B5:DA:72:66:8D:58:FB:8D:B0:E7:5E:3A:D7:BF:93
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 3FD022245AE0EF7E90C06C114416E369DB82F959
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/DWINS/0/C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.mft
caRepository: rsync://rpkica.twnic.tw/rpki/DWINS/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:45:20 +0000
Certificate not after: Mon 10 May 2027 15:50:20 +0000
Subordinate resources: AS: 17416
IP: 43.224.20.0/22
IP: 103.43.48.0/22
IP: 112.213.48.0/20
IP: 211.78.80.0/20
IP: 2405:4d00::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:d0:22:24:5a:e0:ef:7e:90:c0:6c:11:44:16:e3:69:db:82:f9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:45:20 2026 GMT
Not After : May 10 15:50:20 2027 GMT
Subject: CN=C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e7:0d:eb:a1:4c:7f:e9:3f:b7:ba:0e:a0:19:
0e:10:a4:3e:ac:74:0c:29:62:f9:99:2a:c5:b0:fe:
2b:38:7a:0b:a1:5c:31:86:60:14:3d:d6:6b:ab:cc:
40:58:73:88:9a:0d:9d:15:f2:03:c6:f9:c2:94:8e:
97:e6:1f:39:27:25:28:ba:14:32:e4:8a:1f:35:f6:
ab:85:21:f1:32:15:22:65:eb:d6:b6:08:69:b7:c2:
67:ae:d8:52:cc:03:14:63:c3:ff:f9:15:02:f0:a8:
8d:be:fa:07:c8:73:3b:d0:69:21:e8:e2:ed:d4:cc:
ba:e7:d5:e5:84:65:9c:9e:62:bc:21:df:ed:f8:ee:
29:ee:66:c0:63:a0:c1:99:9f:ac:0c:3a:b6:df:42:
9b:1f:03:00:cf:d6:91:f6:ec:90:a4:53:d3:6e:e7:
a7:a3:5e:67:df:89:3e:39:cb:bf:6c:b0:75:1d:dc:
05:bc:d9:3a:84:0d:37:ec:53:13:2b:fc:4e:5a:13:
82:41:ec:26:72:d7:20:4c:30:9e:6f:06:ae:7f:9b:
ee:92:e8:fd:47:84:f8:68:b3:48:cc:e4:46:41:b1:
4a:c0:61:a6:66:f1:9d:00:7a:77:8e:dc:f0:ac:a4:
31:c4:8c:29:66:50:9a:af:f3:e9:2f:ad:0d:12:8e:
36:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
C5:DF:31:D9:EE:B5:DA:72:66:8D:58:FB:8D:B0:E7:5E:3A:D7:BF:93
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/DWINS/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/DWINS/0/C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.224.20.0/22
103.43.48.0/22
112.213.48.0/20
211.78.80.0/20
IPv6:
2405:4d00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17416
Signature Algorithm: sha256WithRSAEncryption
7e:65:1e:29:ce:fd:f3:a7:c5:bd:84:c1:ba:32:5d:41:ed:f3:
af:df:4f:15:fa:9e:f6:f8:1f:65:30:59:9e:93:17:d5:d0:9e:
ae:a5:21:ee:cb:6b:af:80:e3:ea:96:1b:de:0d:13:41:68:f5:
bf:46:18:f8:63:b7:9e:d6:8b:82:4d:23:3d:e4:cf:7e:97:6d:
49:90:0f:da:c0:50:02:a3:a0:33:f7:db:b5:ff:e8:1b:20:b0:
f5:1e:c3:61:2f:9f:66:c1:58:82:2e:20:1a:d0:31:5f:5d:82:
8c:e7:95:6d:ae:36:6f:bf:5c:08:ab:74:f9:a8:d5:e0:69:57:
b6:b2:af:19:2e:8e:7d:ef:8a:5d:e9:f3:69:5b:4b:94:7e:a0:
1e:0a:29:74:22:90:2d:e3:5b:f8:d2:f1:98:af:0d:bf:a0:6a:
60:a5:e5:d4:37:cc:66:a5:cb:64:51:f0:97:21:0e:69:3d:a0:
9a:9a:79:25:45:45:15:d1:5b:1f:6d:35:dc:60:c2:06:3e:39:
aa:47:c4:35:6d:12:0d:7c:9c:71:a2:ca:1e:3c:1c:57:b3:4f:
f2:71:8f:19:70:c2:f2:f5:30:1d:72:93:77:3d:ab:3a:f8:ba:
48:40:db:ea:29:b1:13:90:21:77:c1:c9:2c:fb:bb:e9:6a:cc:
9e:1f:14:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:03:11 2026 by rpki-client