Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
File: lruUtFf52CoptbL9nzpEGImecew.cer (raw, json)
Hash identifier: qkAAmjTccVtG/Xz/PsAsLcgKQO2jzvtqNkm0Sum8pXo=
Subject key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 3BDE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 22 Aug 2025 08:14:54 +0000
Certificate not after: Sat 22 Aug 2026 08:14:28 +0000
Subordinate resources: AS: 4783
IP: 202.39.96.0/20
IP: 210.63.0.0/18
IP: 210.67.0.0/18
IP: 210.67.112.0 -- 210.67.143.255
IP: 2405:a00::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 23 Aug 2025 23:43:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15326 (0x3bde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 22 08:14:54 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:48:b9:72:f5:e0:71:cc:c8:19:3c:4d:08:e2:
8f:ab:ef:a7:78:e1:2d:c3:cb:ff:46:b9:87:75:2a:
89:2d:85:ba:dc:bc:f1:2a:a3:41:aa:31:59:68:22:
61:aa:69:e7:7a:73:fc:f0:c1:76:51:8a:42:61:69:
9e:c2:86:b1:b7:e5:9a:25:9b:25:d1:89:ea:f5:03:
8e:4e:44:05:5f:75:cf:12:f7:41:e3:37:77:a5:c4:
6b:30:69:9a:ec:56:ec:0e:db:51:45:99:a5:8d:18:
4d:70:fd:d9:07:b2:c1:27:23:cd:c6:ba:47:42:d4:
03:c1:db:76:81:08:5c:d8:65:1c:54:d6:6f:d4:fc:
80:54:0b:23:34:d8:0e:37:58:ce:ef:54:e1:6f:a4:
d7:03:7a:9d:53:96:d5:60:bb:2f:74:cb:ef:a9:bf:
33:5e:79:4b:2d:d5:dc:b4:78:bf:5c:66:1d:d9:9b:
9e:4b:da:34:e1:b9:68:6f:42:f6:46:db:7a:f5:42:
cc:72:da:f3:7f:22:0a:8b:ad:e7:1f:19:25:1e:27:
0a:ab:39:a1:a5:50:13:10:fe:88:15:a2:a1:86:5a:
1d:65:c9:64:b2:62:60:dc:f2:2c:95:47:34:a6:33:
cd:3b:57:aa:ac:42:94:31:c3:fd:8d:55:b4:ab:39:
0b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4783
sbgp-ipAddrBlock: critical
IPv4:
202.39.96.0/20
210.63.0.0/18
210.67.0.0/18
210.67.112.0-210.67.143.255
IPv6:
2405:a00::/32
Signature Algorithm: sha256WithRSAEncryption
08:25:ce:96:49:aa:13:0d:1b:a1:72:92:ac:10:88:05:52:88:
b7:91:0d:14:e2:58:5b:3b:a0:14:93:4d:fe:9c:0a:d1:eb:c6:
ef:3a:3c:e5:d7:22:7a:e7:f4:83:82:ed:ad:30:0c:5e:22:e1:
78:bf:78:04:a5:f6:cb:ff:37:07:80:71:6e:28:52:9b:10:0e:
be:30:d6:95:3e:50:81:72:1d:ce:a8:8e:80:3d:74:51:13:77:
a6:d8:20:92:02:dd:79:80:cb:df:b5:1d:0f:60:07:6c:76:09:
3b:67:95:01:6c:a6:4c:1b:c5:8a:cf:25:f1:cd:92:d8:10:5c:
92:9a:2d:54:f7:a3:dc:f9:0b:81:94:7a:bb:bc:4b:a4:70:dd:
7b:6d:9a:7c:b1:74:a6:54:4f:51:59:6c:f7:65:cf:0a:01:4a:
11:cc:b4:42:2d:91:96:5f:a3:12:5d:97:45:59:70:e1:ef:80:
7e:96:2e:3e:b7:1d:82:c6:f1:8b:dc:ed:30:79:eb:75:ee:b4:
f2:02:39:c3:91:69:90:55:0b:22:c9:43:54:2c:99:82:75:8f:
54:b4:ac:9f:4e:31:5f:cb:46:97:13:7d:44:86:a1:ab:90:4b:
47:3f:20:d2:18:eb:29:e3:3f:12:2d:97:5c:ef:3a:78:37:87:
53:0a:d4:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:31:03 2025 by rpki-client