Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer
File: 866155EC56EF0A61BC489259EA6B444F2596FF9E.cer (raw, json)
Hash identifier: DXCvUIBG3aRQEuXi3iLqtkmrr3/g8UMxPVyM10iLUlI=
Subject key identifier: 86:61:55:EC:56:EF:0A:61:BC:48:92:59:EA:6B:44:4F:25:96:FF:9E
Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Certificate serial: 7108B862F025B9FC15ABA46FA482929857A847BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNTT/0/
Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 16:00:10 +0000
Certificate not after: Mon 10 May 2027 16:05:10 +0000
Subordinate resources: AS: 18425
IP: 61.58.32.0/20
IP: 103.243.248.0/22
IP: 122.255.80.0/20
IP: 150.129.96.0/22
IP: 2001:d40::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 May 2026 15:26:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:08:b8:62:f0:25:b9:fc:15:ab:a4:6f:a4:82:92:98:57:a8:47:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D
Validity
Not Before: May 11 16:00:10 2026 GMT
Not After : May 10 16:05:10 2027 GMT
Subject: CN=866155EC56EF0A61BC489259EA6B444F2596FF9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:57:5f:35:55:19:73:43:27:b5:07:d6:8b:a1:
0b:00:30:1d:ea:a7:71:a7:79:f9:95:35:c3:ca:5e:
93:16:48:24:0e:e7:a2:3d:05:d3:84:e7:c0:69:13:
3b:73:bd:99:53:05:88:11:34:64:d6:f4:f4:82:d6:
09:8a:17:bb:6b:e8:a1:88:a4:20:87:91:15:fa:3c:
04:47:98:09:96:7f:0f:95:dc:bd:89:e3:62:ad:6f:
1a:70:4a:03:e5:fb:73:85:93:2e:cd:08:d2:43:c8:
c6:40:f6:7e:c2:de:80:97:95:43:c3:3c:1c:d2:bd:
92:a7:b7:35:53:c9:ab:9a:66:c8:e8:c4:ec:e7:38:
74:fa:fa:7c:0a:0a:00:a1:fd:ae:ed:95:b2:70:ca:
bf:52:31:a5:c1:db:60:6d:3b:0d:15:6f:93:3d:13:
9c:b2:e4:2d:39:8a:4e:c5:7b:22:83:4c:43:2c:e9:
1e:51:48:fc:5b:e0:1a:0f:cb:15:a3:48:be:69:64:
bb:2f:7b:e5:ff:1f:30:c3:66:ef:c8:8b:05:da:12:
3c:df:ff:d7:f8:d5:b1:41:77:41:8e:c6:60:a9:6d:
b2:5b:c5:c4:af:ec:c1:32:f7:ca:21:dd:ff:fd:41:
68:5a:e4:f2:5a:f2:ed:a3:a8:1a:2a:b2:10:75:81:
99:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
86:61:55:EC:56:EF:0A:61:BC:48:92:59:EA:6B:44:4F:25:96:FF:9E
X509v3 Authority Key Identifier:
keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNTT/0/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
61.58.32.0/20
103.243.248.0/22
122.255.80.0/20
150.129.96.0/22
IPv6:
2001:d40::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18425
Signature Algorithm: sha256WithRSAEncryption
2e:e4:50:c5:76:41:d7:56:a8:42:42:6a:ed:a1:2c:f5:fc:03:
57:2f:98:f9:26:ab:2c:38:87:63:7c:ac:0b:f7:66:dd:8d:9a:
29:18:70:29:1d:07:41:26:7e:9a:ad:a8:fd:8f:c4:28:57:2e:
a6:40:89:ac:cb:04:46:0a:e3:29:88:d2:ea:c3:c0:df:cd:32:
76:1f:4e:18:02:66:71:92:ef:8f:eb:de:98:36:e5:ea:7f:8a:
33:1d:77:6f:57:bd:c5:17:48:33:d6:8d:81:6d:53:f1:88:bd:
e2:ea:be:4d:52:fa:da:49:7b:75:6b:c4:47:b7:f6:15:5b:64:
76:ac:f1:ad:7e:48:c4:d2:b6:aa:bb:b8:69:ac:17:21:80:18:
64:0b:af:cd:0f:a5:ce:a1:b8:c2:a7:4f:9c:0b:e7:50:8c:61:
bd:9e:ce:ed:eb:24:a7:65:70:b6:75:80:70:4d:95:a5:81:7a:
2c:e7:8b:0f:8b:c9:d6:28:d7:c4:26:4c:d1:83:05:37:5c:fc:
c5:f0:57:49:4c:98:b5:58:28:41:07:8e:1b:1a:cb:bb:e0:d7:
15:52:56:8a:2e:a1:b1:a7:0b:c0:e5:6e:d3:44:f4:13:e6:4b:
e3:65:cf:97:10:68:a2:d6:35:0b:dd:de:ed:80:a3:fc:02:03:
e0:80:f9:5e
-----BEGIN CERTIFICATE-----
MIIFrTCCBJWgAwIBAgIUcQi4YvAlufwVq6RvpIKSmFeoR7wwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2
NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE2MDAxMFoX
DTI3MDUxMDE2MDUxMFowMzExMC8GA1UEAxMoODY2MTU1RUM1NkVGMEE2MUJDNDg5
MjU5RUE2QjQ0NEYyNTk2RkY5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKdXXzVVGXNDJ7UH1ouhCwAwHeqncad5+ZU1w8pekxZIJA7noj0F04TnwGkT
O3O9mVMFiBE0ZNb09ILWCYoXu2vooYikIIeRFfo8BEeYCZZ/D5XcvYnjYq1vGnBK
A+X7c4WTLs0I0kPIxkD2fsLegJeVQ8M8HNK9kqe3NVPJq5pmyOjE7Oc4dPr6fAoK
AKH9ru2VsnDKv1IxpcHbYG07DRVvkz0TnLLkLTmKTsV7IoNMQyzpHlFI/FvgGg/L
FaNIvmlkuy975f8fMMNm78iLBdoSPN//1/jVsUF3QY7GYKltslvFxK/swTL3yiHd
//1BaFrk8lry7aOoGiqyEHWBmWkCAwEAAaOCAqAwggKcMA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFIZhVexW7wphvEiSWeprRE8llv+eMB8GA1UdIwQYMBaAFNpj
JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg
V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz
MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha
MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHbBggrBgEFBQcBCwSBzjCByzAxBggr
BgEFBQcwBYYlcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05UVC8wLzBd
BggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05UVC8w
Lzg2NjE1NUVDNTZFRjBBNjFCQzQ4OTI1OUVBNkI0NDRGMjU5NkZGOUUubWZ0MDcG
CCsGAQUFBzANhitodHRwczovL3JyZHAudHduaWMudHcvcnJkcC9ub3RpZmljYXRp
b24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwQAYIKwYBBQUHAQcBAf8E
MTAvMB4EAgABMBgDBAQ9OiADBAJn8/gDBAR6/1ADBAKWgWAwDQQCAAIwBwMFACAB
DUAwGQYIKwYBBQUHAQgBAf8ECjAIoAYwBAICR/kwDQYJKoZIhvcNAQELBQADggEB
AC7kUMV2QddWqEJCau2hLPX8A1cvmPkmqyw4h2N8rAv3Zt2NmikYcCkdB0Emfpqt
qP2PxChXLqZAiazLBEYK4ymI0urDwN/NMnYfThgCZnGS74/r3pg25ep/ijMdd29X
vcUXSDPWjYFtU/GIveLqvk1S+tpJe3VrxEe39hVbZHas8a1+SMTStqq7uGmsFyGA
GGQLr80Ppc6huMKnT5wL51CMYb2ezu3rJKdlcLZ1gHBNlaWBeizniw+LydYo18Qm
TNGDBTdc/MXwV0lMmLVYKEEHjhsay7vg1xVSVoouobGnC8DlbtNE9BPmS+Nlz5cQ
aKLWNQvd3u2Ao/wCA+CA+V4=
-----END CERTIFICATE-----
Generated at Wed May 13 19:58:01 2026 by rpki-client