$ rpki-client -vvf rpkica.twnic.tw/rpki/MCK/0/3130332e3134382e36382e302f32332d3234203d3e20313331363138.roa File: 3130332e3134382e36382e302f32332d3234203d3e20313331363138.roa (raw, json) Hash identifier: BACFnkZaw8ZPpbq3IkwDxSxDzFcQk+Vm9o3aE8Vt++E= Subject key identifier: AA:68:51:71:91:A2:0A:10:FA:76:ED:8E:E9:09:D7:8F:8E:62:07:36 Certificate issuer: /CN=9C6C404D96BB112984EB14C46BE0526514B6BFBF Certificate serial: 12C8D3DAE84F685A041604AEE58E5A1BC2C4A66E Authority key identifier: 9C:6C:40:4D:96:BB:11:29:84:EB:14:C4:6B:E0:52:65:14:B6:BF:BF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9C6C404D96BB112984EB14C46BE0526514B6BFBF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/MCK/0/3130332e3134382e36382e302f32332d3234203d3e20313331363138.roa Signing time: Mon 11 May 2026 17:11:41 +0000 ROA not before: Mon 11 May 2026 17:06:41 +0000 ROA not after: Mon 10 May 2027 17:11:41 +0000 asID: 131618 IP address blocks: 103.148.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/MCK/0/9C6C404D96BB112984EB14C46BE0526514B6BFBF.crl rsync://rpkica.twnic.tw/rpki/MCK/0/9C6C404D96BB112984EB14C46BE0526514B6BFBF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9C6C404D96BB112984EB14C46BE0526514B6BFBF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:c8:d3:da:e8:4f:68:5a:04:16:04:ae:e5:8e:5a:1b:c2:c4:a6:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C6C404D96BB112984EB14C46BE0526514B6BFBF Validity Not Before: May 11 17:06:41 2026 GMT Not After : May 10 17:11:41 2027 GMT Subject: CN=AA68517191A20A10FA76ED8EE909D78F8E620736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c2:b4:1a:4b:97:d6:eb:8a:9e:5f:86:67:0e: 22:84:59:25:cc:a0:5f:bd:be:54:4a:81:52:31:34: 6b:5a:c2:a0:79:a1:80:8c:82:07:84:a9:63:17:70: 0f:18:62:b0:e4:22:b2:e6:1d:87:17:b7:67:35:7e: e6:22:df:ce:51:ab:41:23:7f:54:9c:66:92:c0:56: 69:a2:d6:4d:67:a2:ef:59:6e:f0:87:60:9c:60:96: 92:83:3f:48:fd:51:15:94:d1:ce:29:b3:40:76:29: d0:9e:32:a7:63:c4:a1:c6:2f:4d:9a:c0:bf:62:2c: d3:07:ad:85:12:24:b7:6a:d6:9a:06:be:c7:e9:fe: 58:70:22:fe:9f:10:b6:55:d4:37:5c:67:3c:95:25: be:5e:a4:a1:9b:7b:92:e4:50:09:2b:e0:a9:0f:33: 1e:db:3b:5c:c2:84:fd:20:d8:6b:6f:1f:75:09:72: ae:05:6e:b9:1e:79:c2:6f:eb:0e:8a:90:fa:dd:28: a2:78:28:f1:78:1c:4d:db:38:16:1c:17:ef:eb:47: ae:0c:cd:ae:2d:e5:1c:4c:4a:13:07:e2:35:55:ad: b5:6f:10:76:08:a5:8f:15:9f:14:dc:65:d7:1c:c0: 56:3a:2c:d6:ea:82:41:d2:5d:f5:b7:30:d1:71:01: 31:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:68:51:71:91:A2:0A:10:FA:76:ED:8E:E9:09:D7:8F:8E:62:07:36 X509v3 Authority Key Identifier: keyid:9C:6C:40:4D:96:BB:11:29:84:EB:14:C4:6B:E0:52:65:14:B6:BF:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/MCK/0/9C6C404D96BB112984EB14C46BE0526514B6BFBF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9C6C404D96BB112984EB14C46BE0526514B6BFBF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/MCK/0/3130332e3134382e36382e302f32332d3234203d3e20313331363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.68.0/23 Signature Algorithm: sha256WithRSAEncryption 49:04:a5:00:ab:4d:46:4e:e8:3e:b7:e7:d6:1d:2b:59:f0:6a: 6f:2b:c5:d2:47:d2:38:cc:3d:f2:0a:22:e0:5a:68:ed:0a:39: dc:49:9a:51:e0:5a:43:5e:a9:1f:2b:5e:e6:17:66:6e:d7:30: 55:67:ea:0b:46:07:00:ea:dd:4e:f9:b3:80:30:37:73:ef:f1: f8:77:f3:1b:3d:9a:70:67:30:7d:c5:3b:ab:b5:68:a5:d3:da: d0:5a:96:8f:9d:9f:37:4c:a2:36:0b:4b:da:a9:2f:4b:9e:38: 45:1f:30:a5:c9:de:8e:5c:51:53:45:1d:ee:f4:34:84:23:89: 8e:1c:7a:52:0b:6b:0a:b9:0d:0e:d3:e6:51:66:54:de:3e:8d: 8c:80:7f:4e:df:8f:65:be:44:90:1a:50:57:a6:f5:70:97:87: 47:ef:81:93:af:6a:54:49:b7:4a:4d:a3:1e:4f:25:99:d8:c3: eb:77:f1:6e:f2:3e:c6:15:e8:32:bb:7b:b0:c4:f4:5b:44:97: b0:70:16:86:54:09:76:8c:29:f2:3c:b8:bc:e7:d8:40:4e:dc: 72:60:d1:5a:a9:2d:8d:8a:ee:d4:0a:e4:a1:d6:cd:7b:61:4e: 3a:24:10:c8:c1:de:a9:6b:f6:05:fa:68:68:74:c2:49:00:ac: f3:35:ff:76 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUEsjT2uhPaFoEFgSu5Y5aG8LEpm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM2QzQwNEQ5NkJCMTEyOTg0RUIxNEM0NkJFMDUyNjUx NEI2QkZCRjAeFw0yNjA1MTExNzA2NDFaFw0yNzA1MTAxNzExNDFaMDMxMTAvBgNV BAMTKEFBNjg1MTcxOTFBMjBBMTBGQTc2RUQ4RUU5MDlENzhGOEU2MjA3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6wrQaS5fW64qeX4ZnDiKEWSXM oF+9vlRKgVIxNGtawqB5oYCMggeEqWMXcA8YYrDkIrLmHYcXt2c1fuYi385Rq0Ej f1ScZpLAVmmi1k1nou9ZbvCHYJxglpKDP0j9URWU0c4ps0B2KdCeMqdjxKHGL02a wL9iLNMHrYUSJLdq1poGvsfp/lhwIv6fELZV1DdcZzyVJb5epKGbe5LkUAkr4KkP Mx7bO1zChP0g2GtvH3UJcq4FbrkeecJv6w6KkPrdKKJ4KPF4HE3bOBYcF+/rR64M za4t5RxMShMH4jVVrbVvEHYIpY8VnxTcZdccwFY6LNbqgkHSXfW3MNFxATGDAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUqmhRcZGiChD6du2O6QnXj45iBzYwHwYDVR0j BBgwFoAUnGxATZa7ESmE6xTEa+BSZRS2v78wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTUNLLzAv OUM2QzQwNEQ5NkJCMTEyOTg0RUIxNEM0NkJFMDUyNjUxNEI2QkZCRi5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85QzZDNDA0RDk2QkIxMTI5ODRFQjE0QzQ2QkUwNTI2 NTE0QjZCRkJGLmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTUNLLzAvMzEzMDMzMmUzMTM0MzgyZTM2 MzgyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzNjMxMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnlEQwDQYJKoZIhvcNAQELBQADggEBAEkEpQCrTUZO6D6359YdK1nwam8rxdJH 0jjMPfIKIuBaaO0KOdxJmlHgWkNeqR8rXuYXZm7XMFVn6gtGBwDq3U75s4AwN3Pv 8fh38xs9mnBnMH3FO6u1aKXT2tBalo+dnzdMojYLS9qpL0ueOEUfMKXJ3o5cUVNF He70NIQjiY4celILawq5DQ7T5lFmVN4+jYyAf07fj2W+RJAaUFem9XCXh0fvgZOv alRJt0pNox5PJZnYw+t38W7yPsYV6DK7e7DE9FtEl7BwFoZUCXaMKfI8uLzn2EBO 3HJg0VqpLY2K7tQK5KHWzXthTjokEMjB3qlr9gX6aGh0wkkArPM1/3Y= -----END CERTIFICATE-----Generated at Wed May 13 06:56:42 2026 by rpki-client