Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.cer
File: 275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.cer (raw, json)
Hash identifier: gfHQL3qLfBUEkhVBJ9Xue5Q1u4Ye5Up1Mc6XdgXGKmY=
Subject key identifier: 27:57:46:BB:13:7C:E7:30:FB:0C:AA:28:AA:E5:7D:4E:DE:0A:1E:99
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 301E1789BB54D950971567C2B5E123C6B3EC3832
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNIC/0/275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNIC/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:58:15 +0000
Certificate not after: Mon 10 May 2027 16:03:15 +0000
Subordinate resources: AS: 17718
AS: 18180
AS: 18417 -- 18418
AS: 131621
AS: 131644
IP: 61.67.121.0/24
IP: 101.101.101.0/24
IP: 101.102.103.0/24
IP: 103.235.88.0/23
IP: 119.75.240.0 -- 119.75.245.255
IP: 122.128.80.0/24
IP: 122.252.160.0/24
IP: 150.242.100.0/22
IP: 182.173.0.0 -- 182.173.14.255
IP: 203.91.0.0/24
IP: 203.119.3.0/24
IP: 203.119.94.0/24
IP: 2001:dc1::/32
IP: 2001:de4::/48
IP: 2001:44f0::/32
IP: 2404:178::/32
IP: 2407:3d00::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 May 2026 15:26:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:1e:17:89:bb:54:d9:50:97:15:67:c2:b5:e1:23:c6:b3:ec:38:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:58:15 2026 GMT
Not After : May 10 16:03:15 2027 GMT
Subject: CN=275746BB137CE730FB0CAA28AAE57D4EDE0A1E99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:25:e1:36:9d:4b:d1:eb:f5:57:57:ec:3c:72:
04:9a:82:89:81:c8:ba:c1:f3:a1:fe:87:c3:ea:ab:
b5:15:56:13:50:0c:08:8e:9a:14:74:6d:0e:f4:fc:
af:ae:66:e2:69:ed:b2:a3:07:e1:ae:fe:66:e0:47:
62:31:03:4e:74:ee:fe:5a:59:c8:ca:57:5a:2b:35:
6a:f6:52:e7:cd:4c:fd:d0:40:a0:d5:53:6e:ee:81:
6c:19:f9:e5:95:be:d0:3d:fa:fe:78:5a:fd:98:28:
29:a1:52:a4:35:44:df:bd:62:34:85:64:4f:59:df:
f3:36:3c:43:79:9c:3a:af:38:a3:96:1e:57:33:59:
50:38:6e:dc:0a:dc:df:1a:50:27:19:9b:80:44:ca:
df:08:6a:b9:55:b9:ed:f3:1c:bd:45:ab:7e:96:ed:
1d:ca:78:67:d0:f4:4b:3a:cc:b6:f5:c5:e4:ce:4f:
5f:25:68:fc:1d:8e:93:c5:cb:61:aa:63:a8:7f:23:
19:c4:55:de:43:b1:e2:f6:e8:53:6d:26:b8:8f:9b:
c5:1d:a8:e0:c5:84:43:71:99:f6:4d:9b:84:ad:3e:
86:43:d1:31:a2:6a:ea:5b:91:a7:2d:48:2e:e6:79:
3d:a7:94:f6:38:54:4c:67:e8:5d:a1:68:5e:60:8f:
02:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
27:57:46:BB:13:7C:E7:30:FB:0C:AA:28:AA:E5:7D:4E:DE:0A:1E:99
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNIC/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNIC/0/275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
61.67.121.0/24
101.101.101.0/24
101.102.103.0/24
103.235.88.0/23
119.75.240.0-119.75.245.255
122.128.80.0/24
122.252.160.0/24
150.242.100.0/22
182.173.0.0-182.173.14.255
203.91.0.0/24
203.119.3.0/24
203.119.94.0/24
IPv6:
2001:dc1::/32
2001:de4::/48
2001:44f0::/32
2404:178::/32
2407:3d00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17718
18180
18417-18418
131621
131644
Signature Algorithm: sha256WithRSAEncryption
72:97:5d:93:9f:00:39:3e:3d:13:58:7d:8e:1e:a2:69:a9:ef:
27:9b:e2:d4:76:01:47:a0:c4:64:d7:04:a7:36:aa:cc:15:14:
a3:fb:6c:43:d4:dc:6e:c8:82:f4:d0:28:4d:86:d3:41:90:89:
95:c2:7f:f7:d5:73:1d:55:11:1d:ce:1b:da:93:8e:88:2b:dc:
cc:7d:96:b1:27:f6:39:b8:27:5d:eb:71:47:40:90:a7:34:6c:
70:a2:b6:79:44:8b:51:05:3c:22:68:57:82:36:5b:70:e0:c4:
28:00:68:7a:dd:bb:19:5d:a9:d5:bb:1b:aa:7f:72:a2:5e:2a:
ec:45:21:14:08:da:50:07:0f:21:12:b0:cf:c4:3e:08:df:82:
27:b2:ed:a5:f3:f6:5a:5b:75:89:1f:9a:61:a0:6f:6f:78:6b:
59:91:a2:87:74:e0:db:cb:59:71:8c:bd:a0:e1:2b:3d:2c:84:
4c:fd:f4:04:00:53:02:00:1a:75:ab:bf:c1:8e:ca:c9:3d:c6:
65:66:c1:f3:2d:ac:db:ac:79:b3:0a:7e:56:bb:b8:43:72:cb:
44:6e:16:c4:b6:5c:d2:d2:80:95:c5:93:27:83:4d:68:10:37:
83:2f:1d:76:a4:00:49:16:7c:bf:58:35:ef:8f:be:53:d8:75:
00:bc:ac:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:58:25 2026 by rpki-client