$ rpki-client -vvf rpkica.twnic.tw/rpki/AOTERNET/1/3134342e37392e3233362e302f32332d3234203d3e203138303430.roa File: 3134342e37392e3233362e302f32332d3234203d3e203138303430.roa (raw, json) Hash identifier: mOpy66eNRndunzE6G06U+/veEB8DXbUp/i9Rna0dvIY= Subject key identifier: 6B:B5:34:F8:01:78:32:98:B4:69:6B:C8:AF:C0:3F:4A:C2:E2:FC:FF Certificate issuer: /CN=DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C Certificate serial: 28CD40C2363EC11089109A8092388675D69423C0 Authority key identifier: DB:E0:6A:5F:C5:A5:E2:89:AC:EB:48:7B:50:C5:EC:D3:B6:DE:23:4C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.cer Subject info access: rsync://rpkica.twnic.tw/rpki/AOTERNET/1/3134342e37392e3233362e302f32332d3234203d3e203138303430.roa Signing time: Mon 11 May 2026 17:58:40 +0000 ROA not before: Mon 11 May 2026 17:53:40 +0000 ROA not after: Mon 10 May 2027 17:58:40 +0000 asID: 18040 IP address blocks: 144.79.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.crl rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 01:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:cd:40:c2:36:3e:c1:10:89:10:9a:80:92:38:86:75:d6:94:23:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C Validity Not Before: May 11 17:53:40 2026 GMT Not After : May 10 17:58:40 2027 GMT Subject: CN=6BB534F801783298B4696BC8AFC03F4AC2E2FCFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:26:55:db:d7:6d:77:1d:a8:50:99:6f:52:54: 8e:5a:df:e7:a2:fe:03:c9:eb:ad:ac:3a:60:d0:03: c8:55:1b:fa:2f:4e:f7:9a:7f:ee:69:b4:42:52:e9: da:82:8c:41:ae:1c:ac:18:fc:0d:55:97:c3:de:c0: 7e:a4:9c:65:b7:c6:ee:15:f0:4c:35:4d:92:cc:dc: 2d:95:f6:7d:f1:dc:af:78:4f:ec:2d:b4:e3:0a:dd: 65:c7:e6:aa:2b:f8:ec:1b:82:ce:1b:d4:7c:cc:e1: ae:f8:3c:23:a4:0a:2b:0c:34:c2:59:d5:a2:98:2b: ae:5b:34:85:d6:08:f8:1c:4a:ad:d4:57:61:af:0d: 1d:fe:25:99:6f:25:73:1d:10:4a:12:f6:1e:1b:c5: d7:d2:d6:d7:6f:ee:42:29:d5:ef:7f:3c:73:26:68: 85:0e:78:fb:92:47:93:5f:96:90:ee:66:c7:e7:a3: c0:2f:a8:c6:38:30:5b:c5:7f:fb:fe:65:9f:65:e5: 0f:fa:aa:a6:e0:4c:a0:74:1f:5b:0c:c6:7e:f2:cb: 7a:39:ab:3a:5c:e4:ca:5a:4f:4f:ee:b7:fa:f7:36: bc:11:15:07:81:dd:c8:10:ab:06:0a:4b:52:21:68: 9f:cc:2e:92:0e:cd:5d:87:03:79:3b:45:24:4e:04: 97:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B5:34:F8:01:78:32:98:B4:69:6B:C8:AF:C0:3F:4A:C2:E2:FC:FF X509v3 Authority Key Identifier: keyid:DB:E0:6A:5F:C5:A5:E2:89:AC:EB:48:7B:50:C5:EC:D3:B6:DE:23:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/1/3134342e37392e3233362e302f32332d3234203d3e203138303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.236.0/23 Signature Algorithm: sha256WithRSAEncryption cd:4a:49:9f:d9:41:c2:64:06:27:ed:3f:47:61:ba:a0:3c:aa: 76:f8:85:91:e7:f7:09:38:50:d6:63:1d:39:3d:ce:63:39:7a: ca:9b:19:db:68:01:f6:77:53:97:ca:28:87:4e:09:0e:86:4a: 70:f2:53:da:3e:55:51:61:e8:9c:74:a1:68:20:29:02:0b:b8: 79:ff:fb:14:56:e0:fd:ba:9d:b1:51:bb:de:71:d5:3c:3d:ab: 0e:3b:ed:c9:e1:64:ff:41:53:86:58:23:8a:ef:38:43:0b:03: 22:fd:1d:03:0e:ed:60:c0:df:f1:3c:5c:58:38:c5:fd:6f:9c: 44:6f:53:f3:a2:11:02:8b:da:32:3d:de:d4:ce:13:e2:48:75: aa:83:0a:ad:b8:5f:0f:db:6f:42:62:97:10:d9:9f:00:8a:73: da:f2:7a:c7:92:fa:f5:04:0e:6d:04:43:09:58:f2:a7:05:d1: cd:5d:35:43:88:04:7a:22:9e:43:8f:4e:2d:4b:25:d1:e6:cc: 80:d0:3d:77:72:45:30:42:47:be:af:bd:8a:91:00:e5:1b:ff: 72:14:3e:80:87:b1:ce:c0:30:c0:a1:e0:ea:9c:6a:e9:e3:f6: e2:f5:57:e6:52:a0:3b:b6:86:e4:d4:4e:ef:85:81:bc:c7:77: be:da:96:33 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKM1AwjY+wRCJEJqAkjiGddaUI8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFMDZBNUZDNUE1RTI4OUFDRUI0ODdCNTBDNUVDRDNC NkRFMjM0QzAeFw0yNjA1MTExNzUzNDBaFw0yNzA1MTAxNzU4NDBaMDMxMTAvBgNV BAMTKDZCQjUzNEY4MDE3ODMyOThCNDY5NkJDOEFGQzAzRjRBQzJFMkZDRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8JlXb1213HahQmW9SVI5a3+ei /gPJ662sOmDQA8hVG/ovTveaf+5ptEJS6dqCjEGuHKwY/A1Vl8PewH6knGW3xu4V 8Ew1TZLM3C2V9n3x3K94T+wttOMK3WXH5qor+Owbgs4b1HzM4a74PCOkCisMNMJZ 1aKYK65bNIXWCPgcSq3UV2GvDR3+JZlvJXMdEEoS9h4bxdfS1tdv7kIp1e9/PHMm aIUOePuSR5NflpDuZsfno8AvqMY4MFvFf/v+ZZ9l5Q/6qqbgTKB0H1sMxn7yy3o5 qzpc5MpaT0/ut/r3NrwRFQeB3cgQqwYKS1IhaJ/MLpIOzV2HA3k7RSROBJcrAgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQUa7U0+AF4Mpi0aWvIr8A/SsLi/P8wHwYDVR0j BBgwFoAU2+BqX8Wl4oms60h7UMXs07beI0wwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQU9URVJO RVQvMS9EQkUwNkE1RkM1QTVFMjg5QUNFQjQ4N0I1MEM1RUNEM0I2REUyMzRDLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8wL0RCRTA2QTVGQzVBNUUyODlBQ0VCNDg3QjUw QzVFQ0QzQjZERTIzNEMuY2VyMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcwC4Zi cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9BT1RFUk5FVC8xLzMxMzQzNDJl MzczOTJlMzIzMzM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZBP7DANBgkqhkiG9w0BAQsFAAOCAQEAzUpJn9lBwmQGJ+0/R2G6 oDyqdviFkef3CThQ1mMdOT3OYzl6ypsZ22gB9ndTl8ooh04JDoZKcPJT2j5VUWHo nHShaCApAgu4ef/7FFbg/bqdsVG73nHVPD2rDjvtyeFk/0FThlgjiu84QwsDIv0d Aw7tYMDf8TxcWDjF/W+cRG9T86IRAovaMj3e1M4T4kh1qoMKrbhfD9tvQmKXENmf AIpz2vJ6x5L69QQObQRDCVjypwXRzV01Q4gEeiKeQ49OLUsl0ebMgNA9d3JFMEJH vq+9ipEA5Rv/chQ+gIexzsAwwKHg6pxq6eP24vVX5lKgO7aG5NRO74WBvMd3vtqW Mw== -----END CERTIFICATE-----Generated at Wed May 13 00:31:44 2026 by rpki-client