Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer
File: F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer (raw, json)
Hash identifier: bMl25ugMQO6+S2Skl8RLYlzz+xNohzvYODPq5+UsoAw=
Subject key identifier: F1:F9:1D:03:CF:9C:05:D5:D5:B1:A7:B5:82:34:67:72:75:AD:A1:A8
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 1CB11F3EEFC378D765CFC12751B0E5C3F4902807
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft
caRepository: rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:55:34 +0000
Certificate not after: Mon 10 May 2027 16:00:34 +0000
Subordinate resources: IP: 103.131.148.0/23
IP: 2400:f520::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:b1:1f:3e:ef:c3:78:d7:65:cf:c1:27:51:b0:e5:c3:f4:90:28:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:55:34 2026 GMT
Not After : May 10 16:00:34 2027 GMT
Subject: CN=F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:78:f6:b4:33:2e:fa:93:9d:aa:76:50:01:31:
53:25:f7:53:8f:42:76:4f:c6:9b:6d:ef:7c:67:8a:
4b:f2:43:c1:2d:23:e9:4c:a0:59:80:f6:4c:05:36:
b2:df:df:51:ef:bd:69:94:e6:66:f1:a2:02:22:36:
8a:00:55:5d:af:ff:8c:89:19:0f:68:7e:e6:27:59:
c2:6b:43:68:ef:86:b6:6f:b5:bd:4f:3a:83:f3:9c:
1c:15:5e:65:76:39:f2:7b:64:58:3e:d5:8d:09:b8:
73:3e:64:ee:f8:2f:bf:c1:b0:66:66:0d:92:2a:68:
fc:a3:6f:80:7e:95:82:11:37:bf:7d:6c:91:f8:cd:
fa:7b:4d:8f:48:49:43:50:8c:b1:ec:22:94:34:c3:
af:2d:1d:bf:70:73:b1:14:ee:96:a0:62:8d:97:f1:
81:41:d2:b9:f2:3e:35:c7:da:d5:03:c1:64:9e:43:
46:aa:0a:24:fc:eb:c9:73:ee:e8:d2:46:2e:37:80:
4c:f5:cd:1c:4d:7b:a8:7e:3d:62:a9:d8:93:d9:45:
d3:72:2a:81:a8:13:b1:08:dc:bc:d6:6c:34:cc:d1:
ac:74:9e:2e:9c:d5:e8:bc:45:70:45:42:1a:f0:a7:
3b:89:1b:5b:40:ab:7c:31:32:5a:74:40:f7:de:25:
d5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
F1:F9:1D:03:CF:9C:05:D5:D5:B1:A7:B5:82:34:67:72:75:AD:A1:A8
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.131.148.0/23
IPv6:
2400:f520::/32
Signature Algorithm: sha256WithRSAEncryption
16:a3:42:bd:b8:dc:16:89:3a:0e:60:74:a5:e2:0a:8d:bf:57:
bb:60:3b:97:07:74:f2:48:bb:ed:d8:60:ed:a3:1c:54:e9:58:
8b:3c:cc:f3:26:30:41:fa:ed:d1:f1:78:6d:fa:28:db:2d:4b:
a9:99:3b:0b:6e:8e:5f:01:47:ef:22:39:c2:7f:fa:f8:15:b3:
68:45:37:7c:c9:b6:0d:35:7b:9c:00:49:8b:a3:70:1b:73:71:
e0:63:f2:b4:ce:f3:92:d0:9c:87:e8:6c:1f:a4:12:dd:5f:83:
40:d7:89:a1:81:24:f6:e3:0f:c1:4f:56:62:f4:d2:c5:1a:27:
1b:33:5c:7e:ac:cf:5b:ed:92:47:92:5b:08:46:52:0e:15:9f:
dc:c5:67:ea:2e:d4:29:81:51:77:07:5f:0d:36:a9:35:98:be:
3d:db:30:2a:f7:42:c3:f2:83:3c:97:a9:98:2c:13:c9:72:88:
d2:55:64:6a:e5:61:24:b9:5e:df:7d:34:f5:9a:52:ec:cc:f2:
54:1f:b6:cf:ba:3c:91:77:56:75:26:3d:53:5b:88:65:d0:43:
00:55:2e:5e:70:7b:58:9b:15:9d:bf:7e:07:73:fa:c8:14:dd:
24:c2:e5:bb:f4:4a:26:f8:61:80:72:57:17:0e:eb:da:55:81:
83:22:98:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:15:35 2026 by rpki-client