Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
File: 36jEVIFcMBdFbqO0p9ACE7uFyWU.cer (raw, json)
Hash identifier: 1fSnfUKcnQ07mvEPgWZbSGHQXWBaDBy70/sjxevjUMM=
Subject key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 3CEE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 22 Aug 2025 08:15:06 +0000
Certificate not after: Sat 22 Aug 2026 08:14:28 +0000
Subordinate resources: AS: 18180
AS: 18417 -- 18418
AS: 131621
IP: 61.67.112.0 -- 61.67.121.255
IP: 101.101.101.0/24
IP: 101.102.103.0/24
IP: 103.235.88.0/23
IP: 119.75.240.0/21
IP: 122.128.80.0/24
IP: 122.252.160.0/24
IP: 150.242.100.0/22
IP: 182.173.0.0 -- 182.173.14.255
IP: 203.91.0.0/24
IP: 203.119.3.0/24
IP: 203.119.94.0/24
IP: 2001:dc1::/32
IP: 2001:de4::/48
IP: 2001:44f0::/32
IP: 2404:178::/32
IP: 2407:3d00::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 23 Aug 2025 14:43:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15598 (0x3cee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 22 08:15:06 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:31:45:f2:52:a6:8d:d4:53:d3:e9:75:22:
79:53:cd:54:21:5c:a0:fc:f2:04:38:e8:f6:69:4d:
f6:5b:98:8a:b3:55:13:2f:d5:99:8e:1d:e1:80:f5:
ea:ef:98:65:da:3b:51:cc:c1:11:79:37:db:dc:7e:
72:b6:3b:a6:d7:ca:1c:8b:05:d3:f2:ce:15:fa:32:
bd:9c:dd:da:b3:17:af:c5:62:ed:72:77:e7:fc:09:
27:9b:37:90:18:34:c1:30:25:b2:f3:a9:de:78:5c:
46:be:88:ae:fe:7d:9b:2d:af:aa:33:4e:dc:7e:47:
8e:19:f8:7b:86:36:05:07:b6:c5:4c:5e:67:e2:21:
82:11:9e:0e:42:9b:05:4e:44:8f:f5:71:3c:f8:63:
bd:a6:24:83:4f:a4:16:55:6b:fa:1a:61:a1:68:ab:
9e:45:b1:92:01:4f:b2:85:a0:0d:a6:20:90:26:30:
a6:28:1f:ac:01:ae:ac:52:13:8e:87:2e:bb:d8:b9:
e2:75:20:81:a8:f3:46:91:68:a5:e9:cd:d7:8d:fa:
0f:7f:3d:17:fb:f2:32:38:62:1d:f7:e8:78:bf:ff:
b8:a0:58:0d:f2:3d:18:a3:8c:f8:00:05:f1:61:0b:
37:8a:43:7d:ab:56:6a:3a:32:4d:47:1e:31:15:d3:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18180
18417-18418
131621
sbgp-ipAddrBlock: critical
IPv4:
61.67.112.0-61.67.121.255
101.101.101.0/24
101.102.103.0/24
103.235.88.0/23
119.75.240.0/21
122.128.80.0/24
122.252.160.0/24
150.242.100.0/22
182.173.0.0-182.173.14.255
203.91.0.0/24
203.119.3.0/24
203.119.94.0/24
IPv6:
2001:dc1::/32
2001:de4::/48
2001:44f0::/32
2404:178::/32
2407:3d00::/32
Signature Algorithm: sha256WithRSAEncryption
6a:8a:e0:ff:dc:6c:3a:09:69:54:8e:66:93:79:d7:71:47:76:
ba:65:59:21:52:3d:e0:09:a8:91:92:ec:c6:4d:04:2c:42:e6:
f1:99:8f:cb:e9:84:26:92:9e:4b:a6:11:c6:a1:69:66:4c:9f:
e2:12:fc:9e:7f:de:30:4f:f5:91:98:c6:a7:f0:64:3e:96:03:
6f:06:f4:e3:22:48:11:36:42:a2:5d:3a:74:19:64:84:62:e8:
3f:b0:07:70:c1:f0:76:25:ae:4c:ea:f9:52:48:b4:96:27:8c:
01:15:f1:c2:d8:29:d5:8b:c5:a4:b0:98:be:f7:90:db:5c:04:
42:97:42:9d:eb:c0:51:a7:41:6e:0f:b0:d3:3c:36:57:97:81:
ee:b1:ad:e4:ad:6c:e3:c3:da:d0:93:8e:70:d3:43:56:8d:ec:
13:b5:31:16:35:15:4d:cd:ec:f5:b3:6b:d7:cd:3b:12:08:76:
eb:08:0f:18:11:7f:9f:54:67:91:67:b2:03:7d:f7:7c:a7:3a:
09:36:c1:f3:fd:48:57:ab:15:60:a5:84:e1:9b:4f:8d:c3:58:
e8:d7:5f:26:0d:0a:60:90:eb:f6:7f:2e:fc:f3:a7:72:a5:87:
46:8a:e8:f2:ed:e4:a3:69:55:30:c4:b3:ef:5c:1d:90:fe:98:
18:45:c1:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:08:27 2025 by rpki-client