$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/0/AS131584.roa File: AS131584.roa (raw, json) Hash identifier: Zowu4aBqdpKFsDUWh2EJdhNU8lOOnhsRMn9By90Ywqo= Subject key identifier: 79:97:9E:C1:63:D2:E6:31:C3:E2:4A:6B:1F:8B:1C:AF:35:3B:BD:2E Certificate issuer: /CN=CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB Certificate serial: 7A7EA99A19B129EE90698626097FC9C062B0AA13 Authority key identifier: CC:F8:5F:9A:12:4E:B3:15:FA:6F:5A:1B:38:23:7B:2C:B4:74:E7:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/0/AS131584.roa Signing time: Mon 11 May 2026 16:33:20 +0000 ROA not before: Mon 11 May 2026 16:28:20 +0000 ROA not after: Mon 10 May 2027 16:33:20 +0000 asID: 131584 IP address blocks: 106.105.176.0/23 maxlen: 24 106.105.178.0/24 maxlen: 24 106.105.179.0/24 maxlen: 24 106.105.180.0/24 maxlen: 24 106.105.181.0/24 maxlen: 24 106.105.182.0/24 maxlen: 24 106.105.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.crl rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:7e:a9:9a:19:b1:29:ee:90:69:86:26:09:7f:c9:c0:62:b0:aa:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB Validity Not Before: May 11 16:28:20 2026 GMT Not After : May 10 16:33:20 2027 GMT Subject: CN=79979EC163D2E631C3E24A6B1F8B1CAF353BBD2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a8:02:3a:fa:3b:1c:27:00:02:43:1a:5a:e3: 8a:82:58:62:19:41:8f:6c:62:d3:7e:e5:a2:9e:fd: 13:02:5d:39:82:a3:c3:e6:0d:93:50:d8:46:9a:4c: 47:1b:57:35:e5:34:07:69:b2:14:31:24:16:9d:45: 43:fb:79:5b:ab:8f:44:5a:85:15:d8:07:9d:fc:0c: 0c:5e:b4:d5:7b:55:0b:6e:61:11:36:ff:60:0d:0c: bb:69:a8:f6:8d:bb:47:57:64:85:4e:82:e0:cb:80: 26:a4:ab:b6:7a:dd:12:f9:b6:94:ba:31:bb:c6:df: 05:19:17:5d:a6:64:86:11:b4:ea:52:6b:35:13:1b: 89:74:6b:1f:d5:0d:fa:1c:52:24:6f:31:04:ef:53: 62:56:03:21:d2:75:9e:65:24:67:29:da:32:55:8b: 56:a7:22:59:05:ae:90:4b:1b:5e:77:8a:dd:22:12: b4:58:76:31:a6:95:f7:48:58:c5:8a:f2:4c:91:50: c5:01:82:dc:23:54:d8:7f:ad:7e:aa:55:b5:09:05: 69:ab:9d:98:bd:94:ac:75:ca:b1:2e:e7:5f:f4:d8: 00:01:40:e4:7a:1e:70:ed:f9:02:be:4b:9a:fc:14: cf:df:c6:e2:89:00:58:6a:68:35:5b:7e:bd:8f:8e: d2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:97:9E:C1:63:D2:E6:31:C3:E2:4A:6B:1F:8B:1C:AF:35:3B:BD:2E X509v3 Authority Key Identifier: keyid:CC:F8:5F:9A:12:4E:B3:15:FA:6F:5A:1B:38:23:7B:2C:B4:74:E7:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/0/AS131584.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 106.105.176.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:e3:0c:11:29:e1:6e:75:c1:6c:e2:bf:d2:d4:2d:f5:45:91: 94:c9:94:3d:6b:1f:6a:b5:e9:f7:c3:9b:fe:88:61:53:39:7a: a1:1e:97:0c:5f:8e:25:48:d8:b7:60:c0:62:3d:28:1f:d2:cf: 7e:5a:3b:98:dd:a7:f6:da:30:65:63:b2:ba:89:49:40:e1:60: de:f7:ee:24:98:41:8b:74:5a:78:2c:f8:f5:bd:dd:e4:18:c9: 12:9c:76:fe:21:d2:69:e6:41:fd:b0:a9:26:66:5f:f7:c8:9c: 43:57:ac:80:0c:14:18:00:fc:98:9d:97:61:43:46:00:42:9c: d5:d1:7c:c2:d5:9a:3e:13:da:5d:da:5c:9a:36:e9:36:54:97: 28:0d:7a:fa:23:8d:89:f0:3d:a0:b8:3c:db:84:ff:26:db:f8: a1:ed:cb:37:ae:1d:c6:e2:41:45:fd:93:a3:e3:c7:6f:b0:55: 7c:2f:93:cb:99:d0:bf:21:0d:f2:66:e7:52:eb:ad:c8:04:20: f7:bc:69:82:b8:6d:6d:cb:f9:8b:e6:d3:52:e2:46:3f:c2:1a: 0c:31:0a:75:9b:de:e6:98:48:ec:68:e4:16:0c:a8:3a:64:83: 4a:50:74:10:13:8c:b9:fe:a0:ce:f5:6b:21:47:c4:11:ce:b6: b5:d0:dd:e0 -----BEGIN CERTIFICATE----- MIIEpzCCA4+gAwIBAgIUen6pmhmxKe6QaYYmCX/JwGKwqhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NGODVGOUExMjRFQjMxNUZBNkY1QTFCMzgyMzdCMkNC NDc0RTdGQjAeFw0yNjA1MTExNjI4MjBaFw0yNzA1MTAxNjMzMjBaMDMxMTAvBgNV BAMTKDc5OTc5RUMxNjNEMkU2MzFDM0UyNEE2QjFGOEIxQ0FGMzUzQkJEMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZqAI6+jscJwACQxpa44qCWGIZ QY9sYtN+5aKe/RMCXTmCo8PmDZNQ2EaaTEcbVzXlNAdpshQxJBadRUP7eVurj0Ra hRXYB538DAxetNV7VQtuYRE2/2ANDLtpqPaNu0dXZIVOguDLgCakq7Z63RL5tpS6 MbvG3wUZF12mZIYRtOpSazUTG4l0ax/VDfocUiRvMQTvU2JWAyHSdZ5lJGcp2jJV i1anIlkFrpBLG153it0iErRYdjGmlfdIWMWK8kyRUMUBgtwjVNh/rX6qVbUJBWmr nZi9lKx1yrEu51/02AABQOR6HnDt+QK+S5r8FM/fxuKJAFhqaDVbfr2PjtIZAgMB AAGjggGxMIIBrTAdBgNVHQ4EFgQUeZeewWPS5jHD4kprH4scrzU7vS4wHwYDVR0j BBgwFoAUzPhfmhJOsxX6b1obOCN7LLR05/swDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNJQy8w L0NDRjg1RjlBMTI0RUIzMTVGQTZGNUExQjM4MjM3QjJDQjQ3NEU3RkIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQ0NGODVGOUExMjRFQjMxNUZBNkY1QTFCMzgyMzdC MkNCNDc0RTdGQi5jZXIwTAYIKwYBBQUHAQsEQDA+MDwGCCsGAQUFBzALhjByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSUMvMC9BUzEzMTU4NC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA2ppsDANBgkqhkiG9w0BAQsFAAOCAQEAiuMMESnhbnXBbOK/0tQt9UWRlMmU PWsfarXp98Ob/ohhUzl6oR6XDF+OJUjYt2DAYj0oH9LPflo7mN2n9towZWOyuolJ QOFg3vfuJJhBi3RaeCz49b3d5BjJEpx2/iHSaeZB/bCpJmZf98icQ1esgAwUGAD8 mJ2XYUNGAEKc1dF8wtWaPhPaXdpcmjbpNlSXKA16+iONifA9oLg824T/Jtv4oe3L N64dxuJBRf2To+PHb7BVfC+Ty5nQvyEN8mbnUuutyAQg97xpgrhtbcv5i+bTUuJG P8IaDDEKdZve5phI7GjkFgyoOmSDSlB0EBOMuf6gzvVrIUfEEc62tdDd4A== -----END CERTIFICATE-----Generated at Tue May 12 22:53:29 2026 by rpki-client