$ rpki-client -vvf rpkica.twnic.tw/rpki/HINET/0/AS21859.roa File: AS21859.roa (raw, json) Hash identifier: 5GBTIgYncS+wBgZB313BlwojSL+syDuu+gei4coUEDU= Subject key identifier: 26:3D:77:45:BC:8F:EB:C6:D9:AC:CE:38:3E:5F:88:B1:8A:7A:1F:B8 Certificate issuer: /CN=6276AF5AEFB216534D76803A45D67CADC23447BD Certificate serial: 3A4A222885006DECB4A6D7BCF7BDB89A39B37F1B Authority key identifier: 62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HINET/0/AS21859.roa Signing time: Mon 11 May 2026 17:09:43 +0000 ROA not before: Mon 11 May 2026 17:04:43 +0000 ROA not after: Mon 10 May 2027 17:09:43 +0000 asID: 21859 IP address blocks: 210.61.104.0/24 maxlen: 24 210.61.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4a:22:28:85:00:6d:ec:b4:a6:d7:bc:f7:bd:b8:9a:39:b3:7f:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6276AF5AEFB216534D76803A45D67CADC23447BD Validity Not Before: May 11 17:04:43 2026 GMT Not After : May 10 17:09:43 2027 GMT Subject: CN=263D7745BC8FEBC6D9ACCE383E5F88B18A7A1FB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:82:f7:4a:b6:a8:04:ef:4c:25:5c:f1:3b:75: 20:88:6c:cb:26:10:54:f4:2b:f2:32:ff:72:e8:23: 9d:f5:3b:d8:ad:db:26:df:47:ee:a9:45:c2:3c:dd: 2d:c2:10:f3:7b:de:d9:44:51:fa:ae:60:c7:35:16: fb:e4:a3:b1:ef:6b:2d:66:6b:c5:39:8b:54:c7:c9: 15:28:10:20:5d:20:97:8d:c3:1c:52:05:45:8a:ef: 92:0f:61:28:87:fb:a2:10:5e:0f:0d:94:51:5c:0c: 0e:5c:b8:de:52:c4:da:7a:d8:23:86:28:59:0b:46: 51:4d:6a:70:d9:fc:ef:e2:2e:0f:7e:14:47:bb:1b: 87:d6:1c:aa:85:f9:aa:a3:de:a8:ba:28:1d:4c:4b: 25:c1:23:ec:5e:cc:46:55:66:8b:fd:ba:ed:9a:54: 62:c4:bd:2c:80:98:18:e6:f2:b4:58:ca:1e:91:65: da:74:8d:6c:67:83:26:f0:33:d8:56:2e:31:34:50: 55:91:52:cb:b4:6c:4d:e2:d8:6c:64:88:d3:9c:29: 16:63:84:56:fb:c1:fc:e8:54:64:e3:74:d0:0b:de: 46:56:de:e7:17:87:a7:92:7b:a4:64:8f:ae:4a:04: 9b:2b:a9:24:53:d3:ae:cd:e5:8e:23:44:2c:20:19: 82:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3D:77:45:BC:8F:EB:C6:D9:AC:CE:38:3E:5F:88:B1:8A:7A:1F:B8 X509v3 Authority Key Identifier: keyid:62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HINET/0/AS21859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.61.104.0/24 210.61.201.0/24 Signature Algorithm: sha256WithRSAEncryption ac:a1:9a:e8:44:08:25:26:70:d8:76:36:11:9c:29:eb:7d:b3: 34:2b:cf:fd:5d:8e:33:d7:15:3b:4b:28:d5:46:a2:4a:aa:89: 9b:d3:59:0d:5c:db:42:96:f9:01:41:88:34:a0:d8:d9:70:49: 58:6d:78:44:4f:54:2a:d1:f7:15:18:80:b3:60:8d:be:25:da: 04:d7:cf:db:79:d4:a8:9e:ac:43:17:0f:26:82:9d:1d:3d:57: 99:2f:5e:a4:96:c6:a3:14:36:ce:0e:f0:0c:a4:e8:14:b0:84: 91:13:4e:6c:3c:41:40:be:08:4e:67:ca:14:b1:97:39:f8:92: 12:98:e2:55:c0:22:75:4f:fc:d0:66:a1:19:39:64:2f:09:98: dc:81:26:e9:d2:ef:76:ab:3b:97:d5:2f:28:c5:fe:97:1b:b9: 49:c1:e1:ff:65:e1:a2:17:ba:c9:c4:10:68:84:a3:90:35:50: 74:d0:a0:2b:bf:d8:5a:3d:b3:a4:07:be:ae:55:b3:91:fd:9b: 58:3e:c3:b3:78:c6:20:9e:5d:3c:0f:dd:ec:cf:85:f3:88:fe: 36:51:ea:94:fa:7c:51:b5:16:6d:f9:55:df:c6:0c:05:3a:ad: aa:90:9d:9f:3a:5f:11:f5:7d:3c:09:37:51:e6:20:19:36:ed: 77:25:61:3c -----BEGIN CERTIFICATE----- MIIErjCCA5agAwIBAgIUOkoiKIUAbey0pte89724mjmzfxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI3NkFGNUFFRkIyMTY1MzRENzY4MDNBNDVENjdDQURD MjM0NDdCRDAeFw0yNjA1MTExNzA0NDNaFw0yNzA1MTAxNzA5NDNaMDMxMTAvBgNV BAMTKDI2M0Q3NzQ1QkM4RkVCQzZEOUFDQ0UzODNFNUY4OEIxOEE3QTFGQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCugvdKtqgE70wlXPE7dSCIbMsm EFT0K/Iy/3LoI531O9it2ybfR+6pRcI83S3CEPN73tlEUfquYMc1Fvvko7Hvay1m a8U5i1THyRUoECBdIJeNwxxSBUWK75IPYSiH+6IQXg8NlFFcDA5cuN5SxNp62COG KFkLRlFNanDZ/O/iLg9+FEe7G4fWHKqF+aqj3qi6KB1MSyXBI+xezEZVZov9uu2a VGLEvSyAmBjm8rRYyh6RZdp0jWxngybwM9hWLjE0UFWRUsu0bE3i2GxkiNOcKRZj hFb7wfzoVGTjdNAL3kZW3ucXh6eSe6Rkj65KBJsrqSRT067N5Y4jRCwgGYJrAgMB AAGjggG4MIIBtDAdBgNVHQ4EFgQUJj13RbyP68bZrM44Pl+IsYp6H7gwHwYDVR0j BBgwFoAUYnavWu+yFlNNdoA6RdZ8rcI0R70wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSElORVQv MC82Mjc2QUY1QUVGQjIxNjUzNEQ3NjgwM0E0NUQ2N0NBREMyMzQ0N0JELmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzYyNzZBRjVBRUZCMjE2NTM0RDc2ODAzQTQ1RDY3 Q0FEQzIzNDQ3QkQuY2VyMEwGCCsGAQUFBwELBEAwPjA8BggrBgEFBQcwC4YwcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ISU5FVC8wL0FTMjE4NTkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgAB MAwDBADSPWgDBADSPckwDQYJKoZIhvcNAQELBQADggEBAKyhmuhECCUmcNh2NhGc Ket9szQrz/1djjPXFTtLKNVGokqqiZvTWQ1c20KW+QFBiDSg2NlwSVhteERPVCrR 9xUYgLNgjb4l2gTXz9t51KierEMXDyaCnR09V5kvXqSWxqMUNs4O8Ayk6BSwhJET Tmw8QUC+CE5nyhSxlzn4khKY4lXAInVP/NBmoRk5ZC8JmNyBJunS73arO5fVLyjF /pcbuUnB4f9l4aIXusnEEGiEo5A1UHTQoCu/2Fo9s6QHvq5Vs5H9m1g+w7N4xiCe XTwP3ezPhfOI/jZR6pT6fFG1Fm35Vd/GDAU6raqQnZ86XxH1fTwJN1HmIBk27Xcl YTw= -----END CERTIFICATE-----Generated at Wed May 13 00:51:54 2026 by rpki-client