Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/704404201DFE2DEA001DB9D48001735C8BEE3A0E.cer
File: 704404201DFE2DEA001DB9D48001735C8BEE3A0E.cer (raw, json)
Hash identifier: Ds+3tQhsjx5kHAqtCBcObo+Xem2L7Uj01+omJ+PnmlY=
Subject key identifier: 70:44:04:20:1D:FE:2D:EA:00:1D:B9:D4:80:01:73:5C:8B:EE:3A:0E
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 3F83D9D2F56B4E979EC8B1EA044A8E79CE173113
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/UBBNET/0/704404201DFE2DEA001DB9D48001735C8BEE3A0E.mft
caRepository: rsync://rpkica.twnic.tw/rpki/UBBNET/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Tue 12 May 2026 01:04:19 +0000
Certificate not after: Tue 11 May 2027 01:09:19 +0000
Subordinate resources: AS: 24163 -- 24165
IP: 45.64.32.0/22
IP: 49.158.0.0/15
IP: 61.56.160.0/19
IP: 61.58.96.0/19
IP: 61.60.208.0/20
IP: 61.61.208.0 -- 61.61.239.255
IP: 61.64.0.0/19
IP: 103.225.0.0/22
IP: 114.198.160.0/19
IP: 115.165.192.0/18
IP: 119.77.128.0/17
IP: 122.100.64.0/18
IP: 122.254.0.0/18
IP: 123.0.32.0/19
IP: 124.6.0.0/19
IP: 180.218.0.0/16
IP: 211.76.32.0 -- 211.76.79.255
IP: 2407:4b00::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 May 2026 15:26:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:83:d9:d2:f5:6b:4e:97:9e:c8:b1:ea:04:4a:8e:79:ce:17:31:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 12 01:04:19 2026 GMT
Not After : May 11 01:09:19 2027 GMT
Subject: CN=704404201DFE2DEA001DB9D48001735C8BEE3A0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d2:17:98:f6:90:66:f6:a9:14:d5:ce:0a:ff:
1f:46:f1:92:5e:b0:4a:d2:28:90:3a:ac:25:82:6a:
cb:d0:09:ea:a3:3e:db:28:a0:37:94:ae:dd:96:df:
73:32:d9:41:01:aa:84:19:c4:f4:ff:53:40:19:ec:
a9:31:03:d4:e0:d7:68:2d:38:aa:ec:7a:b5:ab:e7:
99:76:18:ea:88:7c:20:bd:17:81:45:6c:02:e9:77:
1f:2c:60:9c:c9:68:31:ed:6c:b1:51:d0:3a:84:7a:
63:64:20:ab:b7:4e:83:a7:32:83:96:6d:22:0b:16:
14:08:8d:0e:ce:c4:23:cc:21:3c:06:cf:6d:84:8f:
b8:00:c3:82:25:b4:df:19:b2:1b:50:11:14:32:0a:
55:ff:a0:42:53:36:a1:f5:ec:e4:50:d2:16:fb:75:
34:d6:14:7e:c3:02:a2:fb:79:04:80:9d:ab:3c:47:
c4:63:71:cf:b3:eb:7c:bb:0b:21:65:12:b4:de:e5:
28:93:f0:3d:f1:22:56:48:17:0e:fc:70:37:43:49:
2d:ee:74:f6:13:d5:82:fc:3c:a0:93:61:e8:2b:1e:
89:f8:2b:33:21:6c:62:57:f7:bb:71:be:24:7b:0b:
2d:b7:98:09:82:14:ea:9d:fa:c1:46:3d:39:05:ea:
6f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
70:44:04:20:1D:FE:2D:EA:00:1D:B9:D4:80:01:73:5C:8B:EE:3A:0E
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/UBBNET/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/UBBNET/0/704404201DFE2DEA001DB9D48001735C8BEE3A0E.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.64.32.0/22
49.158.0.0/15
61.56.160.0/19
61.58.96.0/19
61.60.208.0/20
61.61.208.0-61.61.239.255
61.64.0.0/19
103.225.0.0/22
114.198.160.0/19
115.165.192.0/18
119.77.128.0/17
122.100.64.0/18
122.254.0.0/18
123.0.32.0/19
124.6.0.0/19
180.218.0.0/16
211.76.32.0-211.76.79.255
IPv6:
2407:4b00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24163-24165
Signature Algorithm: sha256WithRSAEncryption
69:dc:98:60:c6:92:0b:23:9b:05:af:fe:aa:b9:5d:0e:9e:e3:
67:6c:5b:db:88:cf:52:f7:25:de:62:f7:0e:4a:e6:db:f4:ef:
56:d1:3d:f2:e2:3a:c0:b6:10:d6:15:c8:e6:96:c2:42:c4:dd:
bc:04:7f:1c:07:6d:8d:73:2c:a5:89:0c:cb:1a:ca:0f:e1:78:
03:06:69:a0:09:d5:94:af:f5:dd:db:a0:ce:32:3e:71:00:7d:
5a:d2:98:7b:c0:0a:01:7e:10:50:d2:ef:a8:ec:e1:ae:10:3d:
da:13:fc:55:fe:06:dc:63:82:53:5f:98:7c:17:6c:86:9c:68:
10:46:b2:8d:16:ac:6e:b7:13:92:e0:ea:43:bd:46:67:74:46:
e0:c0:32:04:d3:f3:0b:6e:d6:23:1d:e2:ba:86:eb:54:f1:b6:
e5:02:57:03:e1:7d:e6:1a:9b:a5:07:47:c5:7b:a1:88:1c:a3:
bd:58:d4:db:50:d5:8c:52:0a:1e:aa:9b:68:cb:3f:29:5b:22:
a2:0c:be:ce:0f:f7:c4:74:af:54:bc:56:e0:08:e9:53:e6:a0:
ec:d8:0f:37:70:6e:38:e1:e2:7a:91:1f:8f:a4:19:9b:cb:2b:
86:6d:d1:ce:82:84:3d:a5:33:22:28:03:4f:93:ce:55:46:de:
e0:04:0b:18
-----BEGIN CERTIFICATE-----
MIIGFDCCBPygAwIBAgIUP4PZ0vVrTpeeyLHqBEqOec4XMRMwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2
NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMjAxMDQxOVoX
DTI3MDUxMTAxMDkxOVowMzExMC8GA1UEAxMoNzA0NDA0MjAxREZFMkRFQTAwMURC
OUQ0ODAwMTczNUM4QkVFM0EwRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOLSF5j2kGb2qRTVzgr/H0bxkl6wStIokDqsJYJqy9AJ6qM+2yigN5Su3Zbf
czLZQQGqhBnE9P9TQBnsqTED1ODXaC04qux6tavnmXYY6oh8IL0XgUVsAul3Hyxg
nMloMe1ssVHQOoR6Y2Qgq7dOg6cyg5ZtIgsWFAiNDs7EI8whPAbPbYSPuADDgiW0
3xmyG1ARFDIKVf+gQlM2ofXs5FDSFvt1NNYUfsMCovt5BICdqzxHxGNxz7PrfLsL
IWUStN7lKJPwPfEiVkgXDvxwN0NJLe509hPVgvw8oJNh6CseifgrMyFsYlf3u3G+
JHsLLbeYCYIU6p36wUY9OQXqbzECAwEAAaOCAwcwggMDMA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFHBEBCAd/i3qAB251IABc1yL7joOMB8GA1UdIwQYMBaAFNpj
JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg
V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz
MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha
MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHdBggrBgEFBQcBCwSB0DCBzTAyBggr
BgEFBQcwBYYmcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9VQkJORVQvMC8w
XgYIKwYBBQUHMAqGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVUJCTkVU
LzAvNzA0NDA0MjAxREZFMkRFQTAwMURCOUQ0ODAwMTczNUM4QkVFM0EwRS5tZnQw
NwYIKwYBBQUHMA2GK2h0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmaWNh
dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBngYIKwYBBQUHAQcB
Af8EgY4wgYswegQCAAEwdAMEAi1AIAMDATGeAwQFPTigAwQFPTpgAwQEPTzQMAwD
BAQ9PdADBAQ9PeADBAU9QAADBAJn4QADBAVyxqADBAZzpcADBAd3TYADBAZ6ZEAD
BAZ6/gADBAV7ACADBAV8BgADAwC02jAMAwQF00wgAwQE00xAMA0EAgACMAcDBQAk
B0sAMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAowCAICXmMCAl5lMA0GCSqGSIb3DQEB
CwUAA4IBAQBp3JhgxpILI5sFr/6quV0OnuNnbFvbiM9S9yXeYvcOSubb9O9W0T3y
4jrAthDWFcjmlsJCxN28BH8cB22NcyyliQzLGsoP4XgDBmmgCdWUr/Xd26DOMj5x
AH1a0ph7wAoBfhBQ0u+o7OGuED3aE/xV/gbcY4JTX5h8F2yGnGgQRrKNFqxutxOS
4OpDvUZndEbgwDIE0/MLbtYjHeK6hutU8bblAlcD4X3mGpulB0fFe6GIHKO9WNTb
UNWMUgoeqptoyz8pWyKiDL7OD/fEdK9UvFbgCOlT5qDs2A83cG444eJ6kR+PpBmb
yyuGbdHOgoQ9pTMiKANPk85VRt7gBAsY
-----END CERTIFICATE-----
Generated at Wed May 13 19:57:48 2026 by rpki-client