Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer
File: T6amplWgxCuZx-IIfr70RKy1ZJM.cer (raw, json)
Hash identifier: 96FTvgRweouisQ45hEvTrjdJgS+699XeqFyUmWuoMBU=
Subject key identifier: 4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 3EA8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Thu 23 Oct 2025 06:25:49 +0000
Certificate not after: Sat 22 Aug 2026 08:14:28 +0000
Subordinate resources: IP: 103.152.220.0/23
IP: 202.148.210.0/23
IP: 223.26.4.0/23
IP: 2406:2fc0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16040 (0x3ea8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Oct 23 06:25:49 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=4FA6A6A655A0C42B99C7E2087EBEF444ACB56493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:64:fd:3b:66:5b:11:17:b5:43:a5:52:ab:e8:
74:e9:2b:42:0f:fe:6a:08:a6:0e:71:7d:58:fd:be:
ac:e9:58:64:81:41:95:5d:58:d4:f8:ee:f0:48:f8:
4b:06:d8:1e:33:62:7e:06:a5:7e:c4:82:37:05:29:
97:fd:04:0c:98:75:3b:63:95:bc:87:bf:14:cd:94:
0c:57:4c:ed:56:04:b6:2b:aa:44:ae:24:20:35:44:
59:cc:63:c6:01:5b:43:cc:44:a8:5c:e2:aa:12:d7:
50:b6:c2:ac:f6:a7:b9:79:ab:5e:ad:0b:e5:d1:6a:
e6:fb:62:67:a8:3a:1a:42:ce:fa:9b:20:13:6f:4b:
3f:e6:c9:e8:07:9d:f0:a5:e5:16:80:5d:42:65:3a:
a3:19:98:7f:40:9d:bc:dd:47:36:ba:9d:a5:56:9f:
5f:02:de:60:24:d7:79:22:3d:7d:ed:1d:19:94:c9:
96:0e:9a:c7:1b:f0:44:ac:33:8d:d3:b5:de:44:f3:
89:bc:3b:74:44:4d:c1:26:01:8b:1f:59:cb:60:7e:
00:34:40:cb:a2:21:e5:16:23:ae:97:9d:18:e9:d9:
8f:d5:1f:92:a7:07:52:76:ae:0f:7c:f1:0d:76:62:
5e:ac:72:67:14:53:79:52:26:7e:12:15:d0:76:95:
0f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.220.0/23
202.148.210.0/23
223.26.4.0/23
IPv6:
2406:2fc0::/32
Signature Algorithm: sha256WithRSAEncryption
26:0a:9d:15:c5:5b:9a:96:1a:66:b8:5f:08:bf:5b:ec:27:5f:
4d:89:8f:c9:4a:41:c6:64:5b:2e:fa:74:22:f7:1d:31:39:1e:
61:c3:75:b8:49:56:61:51:7b:7f:cb:65:a3:2c:38:e1:b1:5c:
77:c8:76:27:f0:e3:1b:6f:51:c7:31:b7:fe:14:53:88:6c:f4:
fe:89:93:59:49:e1:d9:fc:d9:17:a4:26:05:c2:9e:94:5f:93:
31:3f:f6:f1:30:81:12:60:26:57:dd:89:24:a7:e3:c1:7a:1c:
80:11:1d:ea:a9:81:d0:c0:4f:c1:13:72:5d:0b:53:d0:0c:18:
5c:05:8f:f5:8a:ac:bd:a9:91:96:57:d8:5c:69:a5:5c:fc:5c:
61:a0:99:12:21:10:4a:40:10:04:4c:c8:81:f6:c1:ef:26:c4:
a8:b7:d8:eb:cb:36:97:3d:ab:4f:4f:32:8f:b8:7b:55:c0:0e:
09:2c:03:c8:d1:16:83:1e:1a:92:a0:c7:0a:58:5d:3a:6b:c4:
dc:a1:a8:15:4a:6d:5e:9b:a0:36:8b:d4:f5:85:6a:bd:95:ca:
18:ed:e0:ae:ec:fc:79:b2:ac:f0:99:33:ec:ac:2a:e6:62:3e:
f7:e8:3c:14:bb:f1:e3:83:87:66:4a:c8:17:c9:b8:8a:bf:8f:
da:aa:86:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 13:06:04 2025 by rpki-client