Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer
File: 72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer (raw, json)
Hash identifier: ZLuP12267cvY0QwvGzyaRHttAISkP9IWaPQnEdclw/c=
Subject key identifier: 72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 3D2EB8AE4B7F2465EB35F63A02F36B2726C890E9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.mft
caRepository: rsync://rpkica.twnic.tw/rpki/HYA/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 15:46:48 +0000
Certificate not after: Mon 10 May 2027 15:51:48 +0000
Subordinate resources: AS: 131602
IP: 103.252.128.0/22
IP: 114.29.240.0/22
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 May 2026 15:26:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:2e:b8:ae:4b:7f:24:65:eb:35:f6:3a:02:f3:6b:27:26:c8:90:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 15:46:48 2026 GMT
Not After : May 10 15:51:48 2027 GMT
Subject: CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3d:1d:ec:47:b7:e7:c7:f3:8f:f0:42:c7:ec:
13:7c:b3:77:43:d2:21:f9:15:6d:b7:05:5c:0a:ea:
e0:9f:5d:c1:b8:6a:21:30:c7:90:ac:bd:d0:49:16:
14:6f:e4:5a:39:23:b8:9f:f2:7c:0c:7a:90:76:6f:
a0:01:15:16:84:e5:a9:23:f0:3c:2e:fd:1c:4a:1a:
06:96:41:38:5f:90:c0:cc:15:5e:77:ba:ff:4a:d9:
8f:4b:e1:5a:01:3c:32:1c:aa:89:58:c2:e0:61:c8:
ee:6b:f7:5c:56:63:f4:4a:2d:8b:a6:21:d3:a3:41:
87:c0:1d:7e:a3:4f:c4:c9:d8:7a:06:22:c9:2b:4f:
6c:be:9a:ea:09:bf:f4:66:31:e8:9d:6d:6a:ec:0d:
bf:cb:49:ae:1b:9d:b4:62:96:db:ff:cf:76:9b:73:
9b:27:6a:4a:d6:54:38:69:57:ff:44:33:23:6a:da:
1f:68:77:d8:62:11:98:88:93:34:c3:36:b6:70:e9:
7f:9d:b7:09:b7:6c:d5:66:b0:5b:60:d6:e3:df:b5:
bf:5f:1f:d0:c1:4e:26:8d:70:fc:b5:0d:af:4a:e1:
f6:ea:b4:21:c0:fa:1e:8c:6c:f0:82:b9:41:fe:41:
ab:33:e0:f1:d2:4c:3f:ad:f4:ab:77:58:79:ed:5c:
46:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/HYA/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.252.128.0/22
114.29.240.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131602
Signature Algorithm: sha256WithRSAEncryption
20:79:fa:42:6b:87:cf:be:3b:9c:32:45:a6:91:54:53:61:1b:
e3:32:d4:b0:e9:6d:88:d2:61:08:f5:dd:71:1c:86:0e:74:91:
3a:c9:07:56:1a:5d:3f:a6:3d:ed:be:18:9a:6c:87:bb:f9:7a:
78:51:0e:61:78:0b:b5:a2:fe:48:e0:cd:12:13:9a:d9:00:41:
d0:bc:24:82:68:b0:c7:61:19:43:dd:36:66:71:ea:13:75:19:
b4:e8:9c:4e:44:7a:bf:19:1f:cc:66:3a:bb:5c:8c:0e:ff:8b:
71:6e:cb:bf:dd:3c:27:b0:6e:d8:7b:e0:d3:6a:ae:4f:7c:91:
f7:83:17:83:b3:d1:0f:ed:05:a5:bc:76:8c:28:6e:79:a7:df:
38:ef:04:a1:9b:12:5d:c8:10:d7:25:1a:58:69:9a:ed:9e:35:
4f:49:09:ed:22:bf:0c:cb:a1:57:72:fc:08:7f:1a:55:d0:96:
c6:7d:47:61:fb:18:cd:85:ef:06:e5:53:f6:bd:28:48:ef:63:
6e:e6:07:1f:6d:d6:c0:c9:9b:08:50:ab:40:a5:69:99:da:1f:
1b:db:8c:a4:aa:02:a0:df:75:53:84:8f:80:a9:4b:51:b4:8f:
4c:14:23:7d:f8:6a:9a:41:b6:7f:7b:2f:8c:5c:80:f5:a1:f1:
79:0b:12:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:58:00 2026 by rpki-client