$ rpki-client -vvf rpkica.twnic.tw/rpki/HINET/0/AS198949.roa File: AS198949.roa (raw, json) Hash identifier: D3XdkLUUgU9whjqty6+jUwxiHoYMJ5jtQGvgN6I4h4Q= Subject key identifier: 95:47:CA:32:DC:E8:67:72:50:23:EF:7E:30:F2:DC:B8:9C:59:5F:3F Certificate issuer: /CN=6276AF5AEFB216534D76803A45D67CADC23447BD Certificate serial: 66262C69E77ABFEB0E5CBB0D8922BB5EB5176C7B Authority key identifier: 62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HINET/0/AS198949.roa Signing time: Mon 11 May 2026 17:36:56 +0000 ROA not before: Mon 11 May 2026 17:31:56 +0000 ROA not after: Mon 10 May 2027 17:36:56 +0000 asID: 198949 IP address blocks: 203.66.126.0/24 maxlen: 24 203.74.176.0/24 maxlen: 24 203.74.177.0/24 maxlen: 24 203.75.255.0/24 maxlen: 24 210.61.3.0/24 maxlen: 24 210.61.114.0/24 maxlen: 24 210.242.83.0/24 maxlen: 24 210.242.118.0/24 maxlen: 24 210.242.123.0/24 maxlen: 24 210.242.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:26:2c:69:e7:7a:bf:eb:0e:5c:bb:0d:89:22:bb:5e:b5:17:6c:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6276AF5AEFB216534D76803A45D67CADC23447BD Validity Not Before: May 11 17:31:56 2026 GMT Not After : May 10 17:36:56 2027 GMT Subject: CN=9547CA32DCE867725023EF7E30F2DCB89C595F3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5d:b7:a0:d1:64:67:af:91:1f:39:86:34:40: b2:c2:88:1d:7d:f9:44:3c:b2:c8:19:4c:cd:be:3b: 0a:d6:f5:f5:62:43:f7:bb:0a:b5:21:1c:77:d1:b0: 4a:65:fa:a6:84:cd:89:2d:46:17:bb:35:48:3f:74: 26:e7:a4:df:4c:8d:32:11:56:66:fb:ab:00:f5:7e: f6:db:a7:69:8b:00:d3:b2:a2:ce:7e:d2:6b:77:7a: 11:ba:2b:89:99:e9:a7:2c:89:40:25:42:aa:42:3c: d2:22:89:10:34:ef:ac:12:f1:15:67:90:af:ab:77: 12:65:d5:15:6f:82:ad:3a:20:4f:94:49:db:0c:a5: d9:ab:14:ce:60:51:1c:0c:c1:88:02:bc:00:b7:04: 04:fb:42:bd:bb:c3:4e:7b:cf:99:3a:9f:67:a2:26: 52:4c:49:8a:61:13:56:a8:8f:d9:85:3e:b4:e3:97: 9c:46:67:a8:a1:35:43:82:fb:88:14:7c:69:59:55: 70:7b:29:69:14:f7:13:69:b7:c0:2f:ed:f3:b0:d4: ac:ac:0c:f1:e5:6e:d1:b8:c3:fd:86:b9:9f:de:9b: 4d:15:43:b5:22:04:63:1c:84:2b:4e:8c:66:21:ed: cd:91:d8:6d:60:12:b5:c9:bb:b8:f2:a8:aa:80:4b: af:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:47:CA:32:DC:E8:67:72:50:23:EF:7E:30:F2:DC:B8:9C:59:5F:3F X509v3 Authority Key Identifier: keyid:62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HINET/0/AS198949.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.66.126.0/24 203.74.176.0/23 203.75.255.0/24 210.61.3.0/24 210.61.114.0/24 210.242.83.0/24 210.242.118.0/24 210.242.123.0/24 210.242.186.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:0e:f1:1a:d9:31:75:49:b9:3f:6a:36:7f:f6:dd:b6:6c:91: 72:f3:96:6d:c0:eb:c1:c3:a7:3a:05:28:f7:9e:76:57:83:3a: 7b:0b:9f:37:fa:6f:80:ac:7e:a8:07:e6:11:ed:ea:17:ac:2f: 3c:98:d7:b0:9a:fa:f3:0e:79:48:5c:4e:5b:3d:96:58:75:4a: 52:2a:28:50:ea:ae:e5:2c:26:fd:ce:ed:1d:38:8e:21:92:e4: a8:8e:c7:74:d2:c4:2c:df:d8:80:18:11:99:fe:eb:0e:58:5a: 7e:eb:de:83:8b:18:cc:14:71:ad:57:45:6f:f1:ee:4b:bc:3e: ab:b7:59:74:8a:4f:3d:a4:6b:0e:e1:6c:43:81:80:c7:6a:e7: 1f:9d:9c:cb:ba:39:25:45:b1:bb:67:7a:b2:ec:2c:d1:68:7e: 08:3e:49:38:88:bd:dd:80:fb:b2:64:0b:fc:63:88:f8:b3:97: 07:c9:a7:f6:ae:b8:59:a4:80:29:1d:bb:fd:4d:22:a9:d0:d7: 26:21:cd:61:79:2b:32:0e:58:76:3e:d3:e0:40:c9:c6:83:11: 5e:69:f2:61:a1:21:e6:d3:79:49:0a:a3:46:a1:17:a5:87:56: 8e:65:2d:19:88:a2:ee:35:6b:73:28:01:df:8b:88:eb:15:c5: 5d:59:d6:d9 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUZiYsaed6v+sOXLsNiSK7XrUXbHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI3NkFGNUFFRkIyMTY1MzRENzY4MDNBNDVENjdDQURD MjM0NDdCRDAeFw0yNjA1MTExNzMxNTZaFw0yNzA1MTAxNzM2NTZaMDMxMTAvBgNV BAMTKDk1NDdDQTMyRENFODY3NzI1MDIzRUY3RTMwRjJEQ0I4OUM1OTVGM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Xbeg0WRnr5EfOYY0QLLCiB19 +UQ8ssgZTM2+OwrW9fViQ/e7CrUhHHfRsEpl+qaEzYktRhe7NUg/dCbnpN9MjTIR Vmb7qwD1fvbbp2mLANOyos5+0mt3ehG6K4mZ6acsiUAlQqpCPNIiiRA076wS8RVn kK+rdxJl1RVvgq06IE+USdsMpdmrFM5gURwMwYgCvAC3BAT7Qr27w057z5k6n2ei JlJMSYphE1aoj9mFPrTjl5xGZ6ihNUOC+4gUfGlZVXB7KWkU9xNpt8Av7fOw1Kys DPHlbtG4w/2GuZ/em00VQ7UiBGMchCtOjGYh7c2R2G1gErXJu7jyqKqAS6+TAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUlUfKMtzoZ3JQI+9+MPLcuJxZXz8wHwYDVR0j BBgwFoAUYnavWu+yFlNNdoA6RdZ8rcI0R70wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSElORVQv MC82Mjc2QUY1QUVGQjIxNjUzNEQ3NjgwM0E0NUQ2N0NBREMyMzQ0N0JELmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzYyNzZBRjVBRUZCMjE2NTM0RDc2ODAzQTQ1RDY3 Q0FEQzIzNDQ3QkQuY2VyME0GCCsGAQUFBwELBEEwPzA9BggrBgEFBQcwC4YxcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ISU5FVC8wL0FTMTk4OTQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIA ATA2AwQAy0J+AwQBy0qwAwQAy0v/AwQA0j0DAwQA0j1yAwQA0vJTAwQA0vJ2AwQA 0vJ7AwQA0vK6MA0GCSqGSIb3DQEBCwUAA4IBAQA7DvEa2TF1Sbk/ajZ/9t22bJFy 85ZtwOvBw6c6BSj3nnZXgzp7C583+m+ArH6oB+YR7eoXrC88mNewmvrzDnlIXE5b PZZYdUpSKihQ6q7lLCb9zu0dOI4hkuSojsd00sQs39iAGBGZ/usOWFp+696DixjM FHGtV0Vv8e5LvD6rt1l0ik89pGsO4WxDgYDHaucfnZzLujklRbG7Z3qy7CzRaH4I Pkk4iL3dgPuyZAv8Y4j4s5cHyaf2rrhZpIApHbv9TSKp0NcmIc1heSsyDlh2PtPg QMnGgxFeafJhoSHm03lJCqNGoRelh1aOZS0ZiKLuNWtzKAHfi4jrFcVdWdbZ -----END CERTIFICATE-----Generated at Tue May 12 21:54:06 2026 by rpki-client