Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/28110DE86B5C0A286A9B3545A4369B11A7480010.cer
File: 28110DE86B5C0A286A9B3545A4369B11A7480010.cer (raw, json)
Hash identifier: DsW7QxrullKwucj3ev6InFG9eHYOUu5CidJSe5R6XTg=
Subject key identifier: 28:11:0D:E8:6B:5C:0A:28:6A:9B:35:45:A4:36:9B:11:A7:48:00:10
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 2BA2D7AAFD846B029CCBE3947180636095F78CA4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/STWN/0/28110DE86B5C0A286A9B3545A4369B11A7480010.mft
caRepository: rsync://rpkica.twnic.tw/rpki/STWN/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:57:14 +0000
Certificate not after: Mon 10 May 2027 16:02:14 +0000
Subordinate resources: AS: 24156
IP: 203.84.144.0/21
IP: 2404:6200::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 May 2026 15:26:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:a2:d7:aa:fd:84:6b:02:9c:cb:e3:94:71:80:63:60:95:f7:8c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:57:14 2026 GMT
Not After : May 10 16:02:14 2027 GMT
Subject: CN=28110DE86B5C0A286A9B3545A4369B11A7480010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e3:25:1e:68:cf:1f:5a:09:c5:4d:c0:46:56:
77:46:9c:44:44:1d:cc:91:15:1e:ee:f1:08:04:4b:
d5:a5:08:e6:32:99:6b:90:d5:d1:9f:74:23:b8:4d:
c5:b7:c1:f4:4b:8e:79:8e:b6:ff:8a:cb:55:b7:4a:
4e:34:66:5d:39:11:0d:08:03:fe:e5:80:dd:b3:aa:
38:97:e4:5e:f1:06:21:25:b0:be:d9:1a:59:d8:fe:
0d:54:a9:3a:f0:7a:38:76:ec:6a:01:b7:c4:3d:b5:
c4:d7:45:17:82:a0:2e:0d:14:e2:57:34:25:e3:c4:
38:4d:47:98:70:80:6f:e0:3c:31:71:eb:42:ae:a2:
08:1d:9a:1d:f5:48:cd:ba:e2:bf:8d:41:b5:09:9c:
6d:00:58:0e:2d:e9:8d:54:8a:b7:78:6a:aa:ed:a7:
ff:64:44:40:62:bb:dd:c4:81:46:e2:ef:b3:9f:d1:
a5:63:4d:8c:a5:00:9e:9a:2b:32:6d:c1:b6:c4:10:
23:5d:9a:8a:3a:92:08:50:fe:9b:d3:3a:1a:e2:aa:
86:d3:6c:84:da:2b:0b:d3:8d:58:65:b9:f6:25:2e:
e7:c1:e6:36:40:31:02:b7:80:a6:5d:4b:17:c3:77:
7d:e9:eb:ad:5a:68:b2:50:90:ef:6f:0d:38:58:87:
9e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
28:11:0D:E8:6B:5C:0A:28:6A:9B:35:45:A4:36:9B:11:A7:48:00:10
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/STWN/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/STWN/0/28110DE86B5C0A286A9B3545A4369B11A7480010.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.84.144.0/21
IPv6:
2404:6200::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24156
Signature Algorithm: sha256WithRSAEncryption
a0:8e:c1:e5:bf:1c:2b:a5:6d:a9:20:57:85:c2:08:7a:62:d9:
5d:a0:87:f2:dd:a9:53:1f:51:45:68:64:e7:32:38:7b:f1:1f:
49:72:e5:e4:11:99:b6:6b:7c:c3:c8:b3:61:03:41:14:0a:0e:
f8:57:9f:b6:46:07:e1:a4:c6:25:00:8b:2b:f0:f5:9b:c4:35:
b3:36:49:7e:21:0a:1b:03:c5:0b:47:b4:46:38:a7:38:19:15:
a0:d3:8a:69:da:b9:77:b6:cc:81:03:e7:79:14:ed:64:18:02:
50:ea:4b:e9:1c:68:bb:17:f6:e7:e7:76:a8:e1:a7:dd:1b:2f:
56:c8:8d:35:95:6b:b5:f4:9f:26:9d:b0:98:ea:30:48:17:1f:
b0:c3:02:58:83:f9:1f:ee:a2:48:e2:4b:f0:a4:1f:25:b1:9b:
1f:77:31:90:5a:43:a3:43:87:e5:00:b6:25:24:de:7c:59:2e:
45:40:38:e0:92:e2:db:46:7a:d5:71:b0:3d:40:46:35:7c:88:
5d:2e:57:bb:6b:30:8b:55:63:df:25:e4:79:45:d3:b2:ce:4d:
eb:7c:b8:40:4e:f6:ff:89:10:44:52:e5:92:20:0b:32:74:dd:
e3:8a:7c:85:46:a2:99:e7:0f:92:55:c3:db:57:10:e5:94:ef:
c9:87:ab:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:58:10 2026 by rpki-client