$ rpki-client -vvf rpkica.twnic.tw/rpki/BRICKSINC/0/3130332e35312e39302e302f32332d3332203d3e20313331363537.roa File: 3130332e35312e39302e302f32332d3332203d3e20313331363537.roa (raw, json) Hash identifier: 6/l/GHeRi+L26SSSmyoeIRzt/9QvcP9wUHNuiJTW0HI= Subject key identifier: 1A:76:D1:15:A9:98:B2:F0:58:9B:74:89:77:57:5F:1B:C2:4C:CF:23 Certificate issuer: /CN=AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B Certificate serial: 2A04170C132075899B318BC447E93E7B3D8F7398 Authority key identifier: AB:38:88:A4:E1:63:E2:BC:E7:6E:A9:86:E3:C3:F2:FD:DE:D8:8E:1B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BRICKSINC/0/3130332e35312e39302e302f32332d3332203d3e20313331363537.roa Signing time: Mon 11 May 2026 17:26:50 +0000 ROA not before: Mon 11 May 2026 17:21:50 +0000 ROA not after: Mon 10 May 2027 17:26:50 +0000 asID: 131657 IP address blocks: 103.51.90.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BRICKSINC/0/AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.crl rsync://rpkica.twnic.tw/rpki/BRICKSINC/0/AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:04:17:0c:13:20:75:89:9b:31:8b:c4:47:e9:3e:7b:3d:8f:73:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B Validity Not Before: May 11 17:21:50 2026 GMT Not After : May 10 17:26:50 2027 GMT Subject: CN=1A76D115A998B2F0589B748977575F1BC24CCF23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:63:74:50:7b:88:c0:06:5b:29:9e:3e:c0:63: f5:82:37:0c:e6:42:2b:5d:66:9c:6f:92:8f:b8:22: fd:00:dc:0f:9f:94:b9:be:4b:01:1a:55:0e:de:24: 4e:0b:c7:ae:52:b0:9a:c4:42:af:b4:2c:4c:cb:83: 7d:69:0e:5e:16:27:85:06:70:86:b4:82:cc:0b:0b: b1:6a:d3:15:4f:fd:f5:3b:89:4a:0b:13:73:cd:10: cd:ab:41:91:b9:ad:7b:65:5a:b8:83:45:e0:f1:db: ee:97:a9:61:53:6e:75:d5:7f:93:fe:72:56:72:93: cc:d4:c1:18:de:1b:7d:ab:97:d2:97:3c:62:ad:89: 30:4a:c0:fa:41:1f:43:a6:d9:10:18:e1:03:a9:1e: 40:9e:f6:b9:5c:e2:76:e2:1a:ab:63:d8:15:51:d5: 66:c3:cf:68:d9:04:2e:05:5b:75:b0:62:1c:fa:63: 04:62:a8:ab:6c:87:58:aa:9c:08:db:b2:71:aa:ae: 77:c0:b9:1f:5a:a2:3c:85:c3:83:a4:cd:9c:94:29: 8b:b1:92:f1:3c:72:a4:9f:77:44:81:cd:97:35:b3: ff:54:18:0c:14:fb:42:b8:8c:80:45:4d:69:47:e9: 55:ed:73:78:f2:c4:4a:3f:66:cf:c6:b2:78:5a:2c: 54:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:76:D1:15:A9:98:B2:F0:58:9B:74:89:77:57:5F:1B:C2:4C:CF:23 X509v3 Authority Key Identifier: keyid:AB:38:88:A4:E1:63:E2:BC:E7:6E:A9:86:E3:C3:F2:FD:DE:D8:8E:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BRICKSINC/0/AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/AB3888A4E163E2BCE76EA986E3C3F2FDDED88E1B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BRICKSINC/0/3130332e35312e39302e302f32332d3332203d3e20313331363537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.51.90.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:d0:20:79:26:eb:a7:e7:58:22:53:19:85:d8:26:49:73:dd: a8:99:c9:f5:30:5e:c9:15:b7:3b:1d:63:a4:25:2b:30:75:45: 12:c6:60:59:ee:6c:2d:19:c3:17:ff:3d:bb:2c:90:98:a5:af: 30:db:6b:80:6a:e3:6c:10:b7:00:b3:d7:ed:ab:d3:7c:0b:51: 05:6f:6f:06:c6:90:c7:c5:28:59:c3:62:f8:c6:47:81:a2:27: af:2b:2c:b9:e9:a4:af:3a:02:c6:96:5e:7b:2c:c8:76:74:91: a9:77:14:d4:3c:c8:8a:65:07:1b:16:1b:fc:8f:ac:5e:3d:88: c3:0d:f9:e6:f3:9a:37:30:24:99:19:c7:fe:e2:ce:78:2c:65: 31:58:10:75:50:8f:ac:1a:a4:eb:a1:c7:e9:f2:ff:c7:ad:f9: 56:3b:be:92:19:23:1a:99:fd:8f:3a:d5:3f:10:93:c3:29:c2: 56:e3:99:65:f4:d9:36:93:f6:34:81:dd:85:d6:3e:fd:5c:4f: 5a:2b:d7:ab:50:62:a7:1f:67:e7:7b:ba:1f:38:91:9c:a1:8c: 3b:88:40:55:73:db:05:d0:33:50:41:af:c4:47:b9:6c:6d:0d: 4f:ac:fe:b8:a0:51:aa:e7:32:aa:f8:28:f3:5f:ce:6f:db:83: 06:de:c8:4d -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUKgQXDBMgdYmbMYvER+k+ez2Pc5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUIzODg4QTRFMTYzRTJCQ0U3NkVBOTg2RTNDM0YyRkRE RUQ4OEUxQjAeFw0yNjA1MTExNzIxNTBaFw0yNzA1MTAxNzI2NTBaMDMxMTAvBgNV BAMTKDFBNzZEMTE1QTk5OEIyRjA1ODlCNzQ4OTc3NTc1RjFCQzI0Q0NGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOY3RQe4jABlspnj7AY/WCNwzm QitdZpxvko+4Iv0A3A+flLm+SwEaVQ7eJE4Lx65SsJrEQq+0LEzLg31pDl4WJ4UG cIa0gswLC7Fq0xVP/fU7iUoLE3PNEM2rQZG5rXtlWriDReDx2+6XqWFTbnXVf5P+ clZyk8zUwRjeG32rl9KXPGKtiTBKwPpBH0Om2RAY4QOpHkCe9rlc4nbiGqtj2BVR 1WbDz2jZBC4FW3WwYhz6YwRiqKtsh1iqnAjbsnGqrnfAuR9aojyFw4OkzZyUKYux kvE8cqSfd0SBzZc1s/9UGAwU+0K4jIBFTWlH6VXtc3jyxEo/Zs/GsnhaLFRbAgMB AAGjggHpMIIB5TAdBgNVHQ4EFgQUGnbRFamYsvBYm3SJd1dfG8JMzyMwHwYDVR0j BBgwFoAUqziIpOFj4rznbqmG48Py/d7YjhswDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQlJJQ0tT SU5DLzAvQUIzODg4QTRFMTYzRTJCQ0U3NkVBOTg2RTNDM0YyRkRERUQ4OEUxQi5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9BQjM4ODhBNEUxNjNFMkJDRTc2RUE5ODZF M0MzRjJGRERFRDg4RTFCLmNlcjB/BggrBgEFBQcBCwRzMHEwbwYIKwYBBQUHMAuG Y3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQlJJQ0tTSU5DLzAvMzEzMDMz MmUzNTMxMmUzOTMwMmUzMDJmMzIzMzJkMzMzMjIwM2QzZTIwMzEzMzMxMzYzNTM3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQBZzNaMA0GCSqGSIb3DQEBCwUAA4IBAQA70CB5Juun51giUxmF 2CZJc92omcn1MF7JFbc7HWOkJSswdUUSxmBZ7mwtGcMX/z27LJCYpa8w22uAauNs ELcAs9ftq9N8C1EFb28GxpDHxShZw2L4xkeBoievKyy56aSvOgLGll57LMh2dJGp dxTUPMiKZQcbFhv8j6xePYjDDfnm85o3MCSZGcf+4s54LGUxWBB1UI+sGqTrocfp 8v/HrflWO76SGSMamf2POtU/EJPDKcJW45ll9Nk2k/Y0gd2F1j79XE9aK9erUGKn H2fne7ofOJGcoYw7iEBVc9sF0DNQQa/ER7lsbQ1PrP64oFGq5zKq+CjzX85v24MG 3shN -----END CERTIFICATE-----Generated at Wed May 13 05:54:35 2026 by rpki-client