$ rpki-client -vvf rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231322e302f32322d3234203d3e20313331363239.roa File: 3130332e3131392e3231322e302f32322d3234203d3e20313331363239.roa (raw, json) Hash identifier: eXsmebarUaems23bSj2ZcVD8dLS2085WCpxoaq88x4M= Subject key identifier: B7:FC:03:5D:43:BE:9A:02:F0:33:5C:4B:66:D1:29:86:30:70:12:83 Certificate issuer: /CN=3D576C4841082805B3CDBD7337F3963A8833174B Certificate serial: 3BD468F285B8302DDE114F208EEA9A0F3DB8AFE7 Authority key identifier: 3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231322e302f32322d3234203d3e20313331363239.roa Signing time: Mon 11 May 2026 17:05:52 +0000 ROA not before: Mon 11 May 2026 17:00:52 +0000 ROA not after: Mon 10 May 2027 17:05:52 +0000 asID: 131629 IP address blocks: 103.119.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:d4:68:f2:85:b8:30:2d:de:11:4f:20:8e:ea:9a:0f:3d:b8:af:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D576C4841082805B3CDBD7337F3963A8833174B Validity Not Before: May 11 17:00:52 2026 GMT Not After : May 10 17:05:52 2027 GMT Subject: CN=B7FC035D43BE9A02F0335C4B66D1298630701283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:81:12:6f:57:7c:25:86:64:5e:62:4b:be: d9:96:ff:2a:c4:fa:41:dd:63:27:e9:f5:f9:9d:85: ac:6f:9f:b5:d0:bb:0f:76:bb:c1:ae:d6:5c:42:ff: 19:5f:37:c1:88:af:d8:ae:33:be:44:f2:54:a2:95: 44:82:a2:28:69:ac:72:97:dc:37:cc:b7:fe:9c:cd: 46:9a:b1:cc:9d:95:b6:b3:73:b9:aa:f6:8d:5d:f3: fa:a2:b8:72:03:8f:d1:4e:8a:40:32:74:ef:eb:38: 33:8a:fd:11:c6:01:fa:49:b2:00:9f:83:fe:dd:d5: c8:de:3b:5f:ac:90:36:e4:b6:a7:85:9a:79:45:9a: 0c:89:e9:32:5d:53:f5:df:3a:63:f5:dc:1b:7b:f1: 6d:d9:37:70:79:21:73:2a:1e:25:58:95:f7:8a:c7: 0b:53:66:50:c1:0f:af:fb:82:00:8a:39:2e:ca:3f: ea:88:ae:ec:d4:98:1c:2f:87:f2:8d:e7:d0:03:42: e0:84:43:ff:b2:04:55:c9:de:13:53:ab:91:f0:cd: e1:f2:a5:6a:80:b3:8e:f6:1a:da:35:b4:79:bf:2f: 9f:17:53:09:7c:84:59:d7:15:16:3f:d0:dc:c9:e7: f1:b7:36:cf:10:30:ba:95:40:ca:38:92:14:94:87: a6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:FC:03:5D:43:BE:9A:02:F0:33:5C:4B:66:D1:29:86:30:70:12:83 X509v3 Authority Key Identifier: keyid:3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231322e302f32322d3234203d3e20313331363239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.212.0/22 Signature Algorithm: sha256WithRSAEncryption 18:aa:be:36:66:c8:76:93:b4:70:cc:00:4e:c2:e0:15:d1:e6: 78:2f:95:e9:bd:f7:71:cc:1d:30:4c:98:ac:2c:a1:75:f6:99: 63:60:7c:41:32:a7:83:1d:ad:56:64:4d:7d:06:a9:dd:f8:01: 2f:94:d7:d8:f4:3c:99:cd:dc:24:ff:2a:1a:44:0c:e5:8e:bd: 3e:4d:9c:43:3f:8b:35:e8:d7:ef:f9:b2:2f:c9:5b:03:b5:27: c7:93:62:be:16:4f:14:fa:85:e5:3e:8e:98:b8:65:de:8d:92: 84:85:8a:ed:8d:00:5d:5c:83:d3:ba:34:33:c3:b8:86:16:ff: 79:7d:6e:dc:f7:7c:96:92:86:8b:14:f8:01:92:5a:4e:3a:63: f8:e7:b8:13:49:43:05:01:8c:96:95:f4:e3:2b:63:16:9b:45: 9f:ef:af:54:47:e1:f7:b7:df:08:3f:81:bd:63:e1:1e:ad:e6: 40:ce:eb:5b:7c:d9:c1:6e:01:ea:d9:3f:88:27:81:a3:ea:8f: c7:1a:68:2b:d9:b4:6b:aa:3b:4a:9c:05:4e:c2:8d:b0:5e:e0: 90:15:c2:86:57:ee:c4:f7:7e:34:6e:e2:73:34:21:63:8f:08: 6d:9f:61:e9:d4:64:57:52:89:50:88:28:aa:5e:d5:a9:4f:5b: 16:18:54:3c -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUO9Ro8oW4MC3eEU8gjuqaDz24r+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdGMzk2M0E4 ODMzMTc0QjAeFw0yNjA1MTExNzAwNTJaFw0yNzA1MTAxNzA1NTJaMDMxMTAvBgNV BAMTKEI3RkMwMzVENDNCRTlBMDJGMDMzNUM0QjY2RDEyOTg2MzA3MDEyODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3i4ESb1d8JYZkXmJLvtmW/yrE +kHdYyfp9fmdhaxvn7XQuw92u8Gu1lxC/xlfN8GIr9iuM75E8lSilUSCoihprHKX 3DfMt/6czUaascydlbazc7mq9o1d8/qiuHIDj9FOikAydO/rODOK/RHGAfpJsgCf g/7d1cjeO1+skDbktqeFmnlFmgyJ6TJdU/XfOmP13Bt78W3ZN3B5IXMqHiVYlfeK xwtTZlDBD6/7ggCKOS7KP+qIruzUmBwvh/KN59ADQuCEQ/+yBFXJ3hNTq5HwzeHy pWqAs472Gto1tHm/L58XUwl8hFnXFRY/0NzJ5/G3Ns8QMLqVQMo4khSUh6a3AgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUt/wDXUO+mgLwM1xLZtEphjBwEoMwHwYDVR0j BBgwFoAUPVdsSEEIKAWzzb1zN/OWOogzF0swDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0tNQVRF Uy8wLzNENTc2QzQ4NDEwODI4MDVCM0NEQkQ3MzM3RjM5NjNBODgzMzE3NEIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdG Mzk2M0E4ODMzMTc0Qi5jZXIwgYEGCCsGAQUFBwELBHUwczBxBggrBgEFBQcwC4Zl cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DS01BVEVTLzAvMzEzMDMzMmUz MTMxMzkyZTMyMzEzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzMzMTM2MzIz OS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmd31DANBgkqhkiG9w0BAQsFAAOCAQEAGKq+NmbIdpO0cMwA TsLgFdHmeC+V6b33ccwdMEyYrCyhdfaZY2B8QTKngx2tVmRNfQap3fgBL5TX2PQ8 mc3cJP8qGkQM5Y69Pk2cQz+LNejX7/myL8lbA7Unx5NivhZPFPqF5T6OmLhl3o2S hIWK7Y0AXVyD07o0M8O4hhb/eX1u3Pd8lpKGixT4AZJaTjpj+Oe4E0lDBQGMlpX0 4ytjFptFn++vVEfh97ffCD+BvWPhHq3mQM7rW3zZwW4B6tk/iCeBo+qPxxpoK9m0 a6o7SpwFTsKNsF7gkBXChlfuxPd+NG7iczQhY48IbZ9h6dRkV1KJUIgoql7VqU9b FhhUPA== -----END CERTIFICATE-----Generated at Wed May 13 05:36:06 2026 by rpki-client