Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/aDMC32pZIOL4OsTvdmVt3OhA9ZM.cer
File: aDMC32pZIOL4OsTvdmVt3OhA9ZM.cer (raw, json)
Hash identifier: eslhc9YxwiK/wFc7vva8jdjonJGa7dv2/fAOopVJvW4=
Subject key identifier: 68:33:02:DF:6A:59:20:E2:F8:3A:C4:EF:76:65:6D:DC:E8:40:F5:93
Authority key identifier: D1:D2:F5:5C:26:DB:28:52:0A:79:96:FF:72:ED:01:04:20:07:98:A2
Certificate issuer: /CN=A91BDB290000/serialNumber=D1D2F55C26DB28520A7996FF72ED0104200798A2
Certificate serial: 1FE9
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD_P/aDMC32pZIOL4OsTvdmVt3OhA9ZM.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD_P/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Thu 29 Jan 2026 07:45:55 +0000
Certificate not after: Wed 27 Jan 2027 15:30:18 +0000
Subordinate resources: IP: 151.158.88.0/23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8169 (0x1fe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000, serialNumber=D1D2F55C26DB28520A7996FF72ED0104200798A2
Validity
Not Before: Jan 29 07:45:55 2026 GMT
Not After : Jan 27 15:30:18 2027 GMT
Subject: CN=683302DF6A5920E2F83AC4EF76656DDCE840F593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b5:dc:72:3a:1e:2c:ab:a4:95:9e:1e:77:fc:
15:5f:ab:4c:84:f2:71:90:59:73:0a:ef:ee:9b:1f:
7f:97:df:be:c3:f7:ae:11:1a:54:28:cf:66:65:04:
e8:63:3b:a2:30:91:a9:9f:cd:d2:4d:92:0c:09:f7:
42:21:40:92:c0:03:22:fb:b3:96:3f:06:67:89:62:
2d:ae:3f:ac:f5:2c:fa:8d:6a:4a:ac:c4:fa:b0:58:
fc:68:6d:72:51:39:4a:aa:31:2d:c4:ea:5f:a8:4e:
88:e1:71:bb:19:52:90:fb:c8:78:7a:26:2a:54:9c:
46:bd:ab:24:a6:2d:0e:5a:f4:a4:02:d7:84:65:97:
f6:2f:93:d9:9c:73:b1:c7:55:99:96:4c:65:7c:ec:
6b:c9:01:a8:61:0b:19:23:48:25:da:c2:c7:82:28:
44:0f:0d:3a:ae:e9:24:49:13:eb:1b:d1:55:0b:23:
f4:9e:6e:99:fb:93:7c:ad:47:91:68:4c:57:5c:2b:
b9:72:c9:fe:39:39:78:68:48:e8:f8:c6:8c:58:d2:
46:2a:a7:de:4c:a8:d8:9c:09:b0:41:b2:6a:2d:02:
13:a1:1a:64:f6:50:7b:dd:05:72:6e:35:d2:f4:cc:
6c:23:c3:03:2c:31:92:ec:13:df:3f:56:80:84:ad:
0c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:33:02:DF:6A:59:20:E2:F8:3A:C4:EF:76:65:6D:DC:E8:40:F5:93
X509v3 Authority Key Identifier:
keyid:D1:D2:F5:5C:26:DB:28:52:0A:79:96:FF:72:ED:01:04:20:07:98:A2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD_P/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD_P/aDMC32pZIOL4OsTvdmVt3OhA9ZM.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
151.158.88.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:76:3f:aa:79:d7:88:c2:a7:b5:07:77:0f:8a:44:f3:13:63:
22:50:57:9a:87:7f:ac:92:45:44:0a:fe:2c:a4:63:49:12:51:
c9:d0:8a:a3:6f:0d:d6:7f:7f:d9:cf:17:c0:7d:e2:da:75:81:
47:93:9c:c1:dc:db:a8:02:b0:7b:55:38:80:5b:c8:0d:bc:7b:
aa:f9:be:04:97:e6:77:93:c0:27:b7:3d:d1:1d:ed:3b:00:9f:
5a:6e:68:1b:a1:48:c4:4c:71:47:f6:09:06:dd:f8:53:64:0f:
ae:35:09:e8:90:c5:29:b7:a7:e0:aa:f4:f7:ae:7b:09:8f:2c:
7e:92:64:58:b0:49:91:fc:13:d0:29:d7:0d:88:8e:0e:e7:a9:
28:12:eb:a0:9b:72:b9:26:4e:2f:fd:2a:14:74:b6:c7:4b:86:
8e:e2:c5:da:3a:b1:41:0e:54:b9:c7:2b:d5:6c:22:b3:09:03:
15:ea:25:14:bb:ef:3c:62:f1:f5:c6:01:5f:0e:0b:6d:28:a3:
2a:07:e8:cb:c0:ca:9c:5d:96:9e:2b:5c:9a:99:a5:0f:25:5a:
04:d5:a6:ac:ca:b5:76:23:60:d1:0d:4a:9b:7f:20:d3:e0:fa:
24:f4:62:e6:ca:b0:ec:e7:3c:d4:c3:23:e7:7f:58:78:91:d8:
06:86:44:22
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgICH+kwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QkRCMjkwMDAwMTEwLwYDVQQFEyhEMUQyRjU1QzI2REIyODUyMEE3OTk2RkY3MkVE
MDEwNDIwMDc5OEEyMB4XDTI2MDEyOTA3NDU1NVoXDTI3MDEyNzE1MzAxOFowMzEx
MC8GA1UEAxMoNjgzMzAyREY2QTU5MjBFMkY4M0FDNEVGNzY2NTZERENFODQwRjU5
MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMu13HI6HiyrpJWeHnf8
FV+rTITycZBZcwrv7psff5ffvsP3rhEaVCjPZmUE6GM7ojCRqZ/N0k2SDAn3QiFA
ksADIvuzlj8GZ4liLa4/rPUs+o1qSqzE+rBY/GhtclE5SqoxLcTqX6hOiOFxuxlS
kPvIeHomKlScRr2rJKYtDlr0pALXhGWX9i+T2ZxzscdVmZZMZXzsa8kBqGELGSNI
JdrCx4IoRA8NOq7pJEkT6xvRVQsj9J5umfuTfK1HkWhMV1wruXLJ/jk5eGhI6PjG
jFjSRiqn3kyo2JwJsEGyai0CE6EaZPZQe90Fcm410vTMbCPDAywxkuwT3z9WgISt
DEcCAwEAAaOCAlgwggJUMB0GA1UdDgQWBBRoMwLfalkg4vg6xO92ZW3c6ED1kzAf
BgNVHSMEGDAWgBTR0vVcJtsoUgp5lv9y7QEEIAeYojAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8wZEwxWENiYktGSUtlWmJfY3UwQkJDQUhtS0kuY3Js
MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj
Lm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3QzcyRkQxRkYy
LzBkTDFYQ2JiS0ZJS2VaYl9jdTBCQkNBSG1LSS5jZXIwDwYDVR0TAQH/BAUwAwEB
/zAOBgNVHQ8BAf8EBAMCAQYwgd4GCCsGAQUFBwELBIHRMIHOMDwGCCsGAQUFBzAF
hjByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR01JQ0xPVURf
UC8wWwYIKwYBBQUHMAqGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9HTUlDTE9VRF9QL2FETUMzMnBaSU9MNE9zVHZkbVZ0M09oQTlaTS5tZnQw
MQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGXnlgwDQYJKoZIhvcNAQEL
BQADggEBAF52P6p514jCp7UHdw+KRPMTYyJQV5qHf6ySRUQK/iykY0kSUcnQiqNv
DdZ/f9nPF8B94tp1gUeTnMHc26gCsHtVOIBbyA28e6r5vgSX5neTwCe3PdEd7TsA
n1puaBuhSMRMcUf2CQbd+FNkD641CeiQxSm3p+Cq9PeuewmPLH6SZFiwSZH8E9Ap
1w2Ijg7nqSgS66CbcrkmTi/9KhR0tsdLho7ixdo6sUEOVLnHK9VsIrMJAxXqJRS7
7zxi8fXGAV8OC20ooyoH6MvAypxdlp4rXJqZpQ8lWgTVpqzKtXYjYNENSpt/INPg
+iT0YubKsOznPNTDI+d/WHiR2AaGRCI=
-----END CERTIFICATE-----
Generated at Mon Mar 2 08:21:59 2026 by rpki-client