Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
File: Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer (raw, json)
Hash identifier: GNI7z3TG8kkbxwkbcpm3gk28i4duNCF4EV/RLmnR2eQ=
Subject key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 3B84
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 22 Aug 2025 08:14:49 +0000
Certificate not after: Sat 22 Aug 2026 08:14:28 +0000
Subordinate resources: AS: 131602
IP: 103.252.128.0/22
IP: 114.29.240.0/22
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 23 Aug 2025 23:43:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15236 (0x3b84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 22 08:14:49 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:79:2e:50:85:8b:46:38:50:be:c8:14:29:98:
63:3f:08:af:23:45:52:1d:5c:6e:ee:c2:00:14:4b:
06:56:cd:b5:2e:24:7f:bf:eb:4d:62:1a:83:ef:fa:
94:d9:1d:b5:50:1e:4b:9a:a0:96:b0:e1:de:98:88:
a7:7c:31:10:4b:93:87:84:55:8e:55:c9:f0:94:3a:
8b:84:ab:b8:c5:4f:7d:52:87:57:e4:20:a5:c9:6f:
c1:bd:7b:01:d3:7e:24:9b:59:1b:1b:cb:ea:b2:d4:
b2:b2:68:e3:74:da:0d:22:2e:d5:4f:e2:b5:e6:20:
36:5f:75:bc:59:66:94:53:81:0b:b5:f1:ea:fa:0b:
89:8a:69:c8:5a:cc:37:ee:36:3a:bc:0e:fc:5e:fc:
00:ab:82:fb:ed:34:1c:05:19:aa:6e:45:a3:d1:b2:
61:65:1e:8a:dd:91:14:03:10:cf:84:48:f5:9f:89:
78:14:1d:6a:e0:47:84:b4:4a:73:10:c3:37:60:17:
97:df:ba:f8:af:45:44:23:31:af:83:0b:ae:91:d9:
ab:86:97:09:4f:ab:58:55:0c:08:63:9c:86:a9:8d:
99:83:89:1c:2a:c3:fc:9f:ea:c8:f0:97:36:1a:33:
43:51:84:7d:7b:4d:dc:9f:2c:df:5e:48:10:16:ed:
31:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131602
sbgp-ipAddrBlock: critical
IPv4:
103.252.128.0/22
114.29.240.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:65:c2:45:8a:d1:4f:53:08:2f:3f:fe:d2:88:dd:14:1f:74:
b9:a7:56:0d:90:a0:b8:01:18:b8:c3:e4:a2:ae:5f:2d:06:84:
b1:7d:3a:4a:87:63:6f:f0:62:96:f8:39:26:d6:59:56:02:7b:
0e:91:07:01:38:84:81:e2:73:9d:50:e4:63:93:15:f3:96:41:
d4:c5:e3:e2:60:ef:f6:ba:0f:01:f6:cd:70:c4:6c:50:33:07:
f4:b8:65:60:07:80:d1:2e:c2:3b:f0:14:7b:6d:89:62:c2:87:
b2:d8:3c:42:c4:cb:39:d9:0a:03:a9:19:8e:12:49:ee:a3:81:
1b:a6:aa:a6:72:47:31:82:3a:7f:a4:da:6e:f6:38:6e:8a:9f:
9d:ac:11:f5:41:93:68:57:2c:c9:01:c0:33:74:61:aa:b9:10:
29:5d:74:f7:ec:19:d7:90:e1:e7:23:03:df:cc:b2:2b:b9:72:
47:bf:78:95:01:f5:9e:f3:54:ac:eb:3a:3e:91:99:b0:91:3b:
1b:62:20:a1:53:a6:e9:f6:0f:7d:d4:69:4a:01:72:fc:fb:b6:
74:21:87:64:3b:14:71:1b:a0:fb:a8:73:11:a0:77:47:63:a7:
a4:d7:93:f8:b9:96:57:80:a5:c4:02:06:1c:8d:87:9f:88:8b:
5a:e8:b4:f2
-----BEGIN CERTIFICATE-----
MIIFZzCCBE+gAwIBAgICO4QwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhBMjNBN0M2MzU0NzExOEFBRTQ5N0YwM0UxMzEy
MUM5NkFCMzQ1NDdFMB4XDTI1MDgyMjA4MTQ0OVoXDTI2MDgyMjA4MTQyOFowMzEx
MC8GA1UEAxMoMEVBRTJEMzMxRjJDNDI4MEMxNkFBOEJBRkUxNkZERENDRTM3MTVC
NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALR5LlCFi0Y4UL7IFCmY
Yz8IryNFUh1cbu7CABRLBlbNtS4kf7/rTWIag+/6lNkdtVAeS5qglrDh3piIp3wx
EEuTh4RVjlXJ8JQ6i4SruMVPfVKHV+Qgpclvwb17AdN+JJtZGxvL6rLUsrJo43Ta
DSIu1U/iteYgNl91vFlmlFOBC7Xx6voLiYppyFrMN+42OrwO/F78AKuC++00HAUZ
qm5Fo9GyYWUeit2RFAMQz4RI9Z+JeBQdauBHhLRKcxDDN2AXl9+6+K9FRCMxr4ML
rpHZq4aXCU+rWFUMCGOchqmNmYOJHCrD/J/qyPCXNhozQ1GEfXtN3J8s315IEBbt
Mc8CAwEAAaOCAmwwggJoMB0GA1UdDgQWBBQOri0zHyxCgMFqqLr+Fv3czjcVtDAf
BgNVHSMEGDAWgBSiOnxjVHEYquSX8D4TEhyWqzRUfjAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS9vanA4WTFSeEdLcmtsX0EtRXhJY2xxczBWSDQuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYy
L29qcDhZMVJ4R0tya2xfQS1FeEljbHFzMFZINC5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgdAGCCsGAQUFBwELBIHDMIHAMDUGCCsGAQUFBzAF
hilyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBLzBUBggr
BgEFBQcwCoZIcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hZ
QS9EcTR0TXg4c1FvREJhcWk2X2hiOTNNNDNGYlEubWZ0MDEGCCsGAQUFBzANhiVo
dHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMBoGCCsGAQUFBwEI
AQH/BAswCaAHMAUCAwICEjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAmf8
gAMEAnId8DANBgkqhkiG9w0BAQsFAAOCAQEAamXCRYrRT1MILz/+0ojdFB90uadW
DZCguAEYuMPkoq5fLQaEsX06Sodjb/Bilvg5JtZZVgJ7DpEHATiEgeJznVDkY5MV
85ZB1MXj4mDv9roPAfbNcMRsUDMH9LhlYAeA0S7CO/AUe22JYsKHstg8QsTLOdkK
A6kZjhJJ7qOBG6aqpnJHMYI6f6TabvY4boqfnawR9UGTaFcsyQHAM3RhqrkQKV10
9+wZ15Dh5yMD38yyK7lyR794lQH1nvNUrOs6PpGZsJE7G2IgoVOm6fYPfdRpSgFy
/Pu2dCGHZDsUcRug+6hzEaB3R2OnpNeT+LmWV4ClxAIGHI2Hn4iLWui08g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 21:38:08 2025 by rpki-client