Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
File: 36jEVIFcMBdFbqO0p9ACE7uFyWU.cer (raw, json)
Hash identifier: 2cFO+bHOnEtelJvES5pb7JZv0MG0HraTux/ElwSkK9Q=
Subject key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 3D66
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Thu 28 Aug 2025 08:14:05 +0000
Certificate not after: Sat 22 Aug 2026 08:14:28 +0000
Subordinate resources: AS: 18180
AS: 18417 -- 18418
AS: 131621
IP: 61.67.112.0 -- 61.67.121.255
IP: 101.101.101.0/24
IP: 101.102.103.0/24
IP: 103.235.88.0/23
IP: 119.75.240.0/21
IP: 122.128.80.0/24
IP: 122.252.160.0/24
IP: 150.242.100.0/22
IP: 182.173.0.0 -- 182.173.14.255
IP: 203.55.118.0/24
IP: 203.91.0.0/24
IP: 203.119.3.0/24
IP: 203.119.94.0/24
IP: 2001:dc1::/32
IP: 2001:de4::/48
IP: 2001:44f0::/32
IP: 2404:178::/32
IP: 2407:3d00::/32
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 06 Sep 2025 05:46:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15718 (0x3d66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Aug 28 08:14:05 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:31:45:f2:52:a6:8d:d4:53:d3:e9:75:22:
79:53:cd:54:21:5c:a0:fc:f2:04:38:e8:f6:69:4d:
f6:5b:98:8a:b3:55:13:2f:d5:99:8e:1d:e1:80:f5:
ea:ef:98:65:da:3b:51:cc:c1:11:79:37:db:dc:7e:
72:b6:3b:a6:d7:ca:1c:8b:05:d3:f2:ce:15:fa:32:
bd:9c:dd:da:b3:17:af:c5:62:ed:72:77:e7:fc:09:
27:9b:37:90:18:34:c1:30:25:b2:f3:a9:de:78:5c:
46:be:88:ae:fe:7d:9b:2d:af:aa:33:4e:dc:7e:47:
8e:19:f8:7b:86:36:05:07:b6:c5:4c:5e:67:e2:21:
82:11:9e:0e:42:9b:05:4e:44:8f:f5:71:3c:f8:63:
bd:a6:24:83:4f:a4:16:55:6b:fa:1a:61:a1:68:ab:
9e:45:b1:92:01:4f:b2:85:a0:0d:a6:20:90:26:30:
a6:28:1f:ac:01:ae:ac:52:13:8e:87:2e:bb:d8:b9:
e2:75:20:81:a8:f3:46:91:68:a5:e9:cd:d7:8d:fa:
0f:7f:3d:17:fb:f2:32:38:62:1d:f7:e8:78:bf:ff:
b8:a0:58:0d:f2:3d:18:a3:8c:f8:00:05:f1:61:0b:
37:8a:43:7d:ab:56:6a:3a:32:4d:47:1e:31:15:d3:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18180
18417-18418
131621
sbgp-ipAddrBlock: critical
IPv4:
61.67.112.0-61.67.121.255
101.101.101.0/24
101.102.103.0/24
103.235.88.0/23
119.75.240.0/21
122.128.80.0/24
122.252.160.0/24
150.242.100.0/22
182.173.0.0-182.173.14.255
203.55.118.0/24
203.91.0.0/24
203.119.3.0/24
203.119.94.0/24
IPv6:
2001:dc1::/32
2001:de4::/48
2001:44f0::/32
2404:178::/32
2407:3d00::/32
Signature Algorithm: sha256WithRSAEncryption
6f:f2:86:7f:2f:7d:c8:86:ab:6d:08:5b:6a:40:d1:ea:0e:65:
a3:5e:24:0d:f3:cf:e7:a1:24:a9:b3:50:3e:a6:4b:c0:ca:65:
3e:3b:4c:4a:c9:82:61:fd:95:cb:e3:f0:fc:5b:36:ac:ea:48:
de:13:71:5f:54:cf:04:c7:8e:45:ba:c6:e0:0c:77:f4:ff:6b:
75:61:82:0b:b7:1f:56:8c:92:c7:28:9a:67:f3:c1:fd:f4:a9:
c7:9d:70:78:7f:e3:fd:f0:79:5a:b9:7f:a3:71:4c:8d:0f:28:
d7:9a:14:47:8c:67:4c:22:39:57:2c:1c:d0:1f:a1:72:a3:7b:
9c:0d:21:7d:02:d1:cd:4a:dd:a4:50:97:52:12:40:a9:74:cf:
e0:7b:ec:22:2a:66:0e:ab:b7:38:b4:93:ef:a1:67:83:8f:00:
dc:8a:34:9b:0d:1b:d2:8c:84:fe:e5:81:f9:59:9c:04:3e:1d:
46:8f:28:1c:85:7c:e3:0a:43:f6:99:0f:bc:5d:3e:9d:4f:a5:
8d:9f:07:8b:3f:ea:07:d0:c2:d9:e8:f1:46:11:40:09:3c:22:
6c:80:a5:fa:f0:65:6a:f7:f0:90:ed:7a:0a:b7:fa:47:70:f8:
06:dd:17:f1:cd:c3:8d:94:d3:bb:db:7e:c9:f8:6d:71:16:17:
72:ea:22:0f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Sep 6 04:29:55 2025 by rpki-client