$ rpki-client -vvf rpkica.twnic.tw/rpki/CJME/1/3135372e32302e3139382e302f32342d3234203d3e20313430323134.roa File: 3135372e32302e3139382e302f32342d3234203d3e20313430323134.roa (raw, json) Hash identifier: sra5TL/z+TPl4yH11V9uosS6My/3wmncjZTTFXrHtmI= Subject key identifier: 55:7C:D3:5E:BC:AA:A3:8B:C3:BD:7C:38:C1:86:35:C0:1F:30:72:B6 Certificate issuer: /CN=809400EAA50A7EB3BAC78EED2B98CD40B809FE9E Certificate serial: 259573980CCD0D44DC435CA472A5C7B3B7EEDB8F Authority key identifier: 80:94:00:EA:A5:0A:7E:B3:BA:C7:8E:ED:2B:98:CD:40:B8:09:FE:9E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/809400EAA50A7EB3BAC78EED2B98CD40B809FE9E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CJME/1/3135372e32302e3139382e302f32342d3234203d3e20313430323134.roa Signing time: Mon 11 May 2026 17:58:49 +0000 ROA not before: Mon 11 May 2026 17:53:49 +0000 ROA not after: Mon 10 May 2027 17:58:49 +0000 asID: 140214 IP address blocks: 157.20.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CJME/1/809400EAA50A7EB3BAC78EED2B98CD40B809FE9E.crl rsync://rpkica.twnic.tw/rpki/CJME/1/809400EAA50A7EB3BAC78EED2B98CD40B809FE9E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/809400EAA50A7EB3BAC78EED2B98CD40B809FE9E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:95:73:98:0c:cd:0d:44:dc:43:5c:a4:72:a5:c7:b3:b7:ee:db:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=809400EAA50A7EB3BAC78EED2B98CD40B809FE9E Validity Not Before: May 11 17:53:49 2026 GMT Not After : May 10 17:58:49 2027 GMT Subject: CN=557CD35EBCAAA38BC3BD7C38C18635C01F3072B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bc:eb:57:c6:70:32:ee:b2:52:27:d5:0b:f5: 60:6e:dd:45:77:16:ab:ed:13:05:36:ce:28:11:24: 8f:4b:c9:48:b5:92:88:96:e2:7f:db:50:f0:04:08: 27:7f:56:f3:8a:a0:f4:6b:7c:dd:79:14:04:35:e4: d6:f1:16:5b:da:81:d5:6d:ec:5f:b7:29:40:6b:03: 48:55:a9:65:28:4b:f3:54:d7:26:12:c8:2a:b5:a6: 63:62:35:3f:0f:39:b3:ed:6b:0d:0d:a7:3c:e0:07: 49:36:bd:c0:c5:d6:b3:86:de:15:07:f1:8b:ec:0a: 8a:d8:94:bb:83:dd:55:c1:24:99:b2:f5:13:96:a4: cc:51:4b:80:c5:73:24:b6:1d:7b:ff:ba:86:48:82: fa:a7:7c:2f:0b:03:d2:30:c1:82:5f:2d:3a:1b:f9: f3:58:ab:65:d2:45:3d:12:3f:e0:fc:ba:c3:7a:f9: c6:3d:22:7a:97:03:b2:f3:e4:6c:47:b4:7f:36:e2: e5:3f:bf:94:fc:c3:8d:45:ba:5d:22:36:0c:31:aa: 7b:f7:09:52:61:20:81:20:82:8d:2c:85:29:e0:a3: 52:8e:6d:a7:8b:70:2d:7f:09:da:f7:4e:44:82:37: 87:e3:09:b4:10:3a:8d:28:12:9b:40:25:7a:42:e8: 1c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:7C:D3:5E:BC:AA:A3:8B:C3:BD:7C:38:C1:86:35:C0:1F:30:72:B6 X509v3 Authority Key Identifier: keyid:80:94:00:EA:A5:0A:7E:B3:BA:C7:8E:ED:2B:98:CD:40:B8:09:FE:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CJME/1/809400EAA50A7EB3BAC78EED2B98CD40B809FE9E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/809400EAA50A7EB3BAC78EED2B98CD40B809FE9E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CJME/1/3135372e32302e3139382e302f32342d3234203d3e20313430323134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.198.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:a6:eb:89:a9:88:9a:e1:5d:78:d9:ce:ae:09:99:ab:3d:01: ac:fb:b5:fb:2e:18:91:68:6c:bb:f8:5f:88:aa:35:ef:d4:df: ef:ed:9d:ec:1c:5b:7c:4f:e5:e3:9c:d6:80:fe:b6:e1:33:b2: 95:a5:c6:79:e5:77:5c:6f:f7:9d:51:03:af:80:95:ad:36:bc: c5:28:9e:8f:31:cd:92:c5:d2:e0:81:37:12:7e:63:bc:f3:28: bb:26:7d:e7:94:a6:3f:05:d1:d7:c1:05:7a:5d:0d:a4:20:9c: b5:3c:34:b6:a2:78:da:20:47:8e:4c:6b:9d:98:cd:2e:f3:26: d0:3a:1c:30:e1:22:53:11:f4:98:74:cf:4d:35:76:ae:d1:7d: cc:55:ee:ce:85:fb:e3:ef:0a:0f:5b:60:11:39:1a:21:ff:68: e7:50:a8:89:6d:d5:14:79:dd:0b:ef:c5:4e:6f:6f:5e:98:f6: 95:4c:95:5f:19:1e:c8:25:4d:15:78:7e:2d:f7:db:9c:c3:d6: 9d:12:f3:e2:3f:c8:d1:e6:be:1d:2e:83:8f:99:f9:d2:0d:56: a7:a0:ab:72:49:8e:17:dc:3f:24:58:79:30:dc:bc:7b:be:8d: 10:3d:e9:a7:ca:f2:54:fa:47:fe:f6:e6:dc:46:8c:60:19:83: c9:5e:18:01 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUJZVzmAzNDUTcQ1ykcqXHs7fu248wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODA5NDAwRUFBNTBBN0VCM0JBQzc4RUVEMkI5OENENDBC ODA5RkU5RTAeFw0yNjA1MTExNzUzNDlaFw0yNzA1MTAxNzU4NDlaMDMxMTAvBgNV BAMTKDU1N0NEMzVFQkNBQUEzOEJDM0JEN0MzOEMxODYzNUMwMUYzMDcyQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpvOtXxnAy7rJSJ9UL9WBu3UV3 FqvtEwU2zigRJI9LyUi1koiW4n/bUPAECCd/VvOKoPRrfN15FAQ15NbxFlvagdVt 7F+3KUBrA0hVqWUoS/NU1yYSyCq1pmNiNT8PObPtaw0NpzzgB0k2vcDF1rOG3hUH 8YvsCorYlLuD3VXBJJmy9ROWpMxRS4DFcyS2HXv/uoZIgvqnfC8LA9IwwYJfLTob +fNYq2XSRT0SP+D8usN6+cY9InqXA7Lz5GxHtH824uU/v5T8w41Ful0iNgwxqnv3 CVJhIIEggo0shSngo1KObaeLcC1/Cdr3TkSCN4fjCbQQOo0oEptAJXpC6ByjAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUVXzTXryqo4vDvXw4wYY1wB8wcrYwHwYDVR0j BBgwFoAUgJQA6qUKfrO6x47tK5jNQLgJ/p4wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0pNRS8x LzgwOTQwMEVBQTUwQTdFQjNCQUM3OEVFRDJCOThDRDQwQjgwOUZFOUUuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzAvODA5NDAwRUFBNTBBN0VCM0JBQzc4RUVEMkI5OENE NDBCODA5RkU5RS5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NKTUUvMS8zMTM1MzcyZTMyMzAyZTMx MzkzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzMDMyMzEzNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAJ0UxjANBgkqhkiG9w0BAQsFAAOCAQEAPKbriamImuFdeNnOrgmZqz0BrPu1 +y4YkWhsu/hfiKo179Tf7+2d7BxbfE/l45zWgP624TOylaXGeeV3XG/3nVEDr4CV rTa8xSiejzHNksXS4IE3En5jvPMouyZ955SmPwXR18EFel0NpCCctTw0tqJ42iBH jkxrnZjNLvMm0DocMOEiUxH0mHTPTTV2rtF9zFXuzoX74+8KD1tgETkaIf9o51Co iW3VFHndC+/FTm9vXpj2lUyVXxkeyCVNFXh+LffbnMPWnRLz4j/I0ea+HS6Dj5n5 0g1Wp6CrckmOF9w/JFh5MNy8e76NED3pp8ryVPpH/vbm3EaMYBmDyV4YAQ== -----END CERTIFICATE-----Generated at Wed May 13 05:36:42 2026 by rpki-client