$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/0/AS133747.roa File: AS133747.roa (raw, json) Hash identifier: UA5Xs30l4LOlm4EwBh45qzx8kKGjg7O+/U1/foDvFn8= Subject key identifier: 89:94:C3:41:57:AE:7A:2A:9C:27:50:14:3A:AE:A9:B1:FC:A7:03:11 Certificate issuer: /CN=CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB Certificate serial: 142A0C2DC1D0229357F80521F696ECD6AB6D9FD0 Authority key identifier: CC:F8:5F:9A:12:4E:B3:15:FA:6F:5A:1B:38:23:7B:2C:B4:74:E7:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/0/AS133747.roa Signing time: Mon 11 May 2026 17:10:19 +0000 ROA not before: Mon 11 May 2026 17:05:19 +0000 ROA not after: Mon 10 May 2027 17:10:19 +0000 asID: 133747 IP address blocks: 115.30.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.crl rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:2a:0c:2d:c1:d0:22:93:57:f8:05:21:f6:96:ec:d6:ab:6d:9f:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB Validity Not Before: May 11 17:05:19 2026 GMT Not After : May 10 17:10:19 2027 GMT Subject: CN=8994C34157AE7A2A9C2750143AAEA9B1FCA70311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:78:fd:80:a6:d4:09:32:7d:2f:47:49:58:62: b0:e0:b8:fe:9f:e8:89:a8:28:b8:a4:86:2a:15:d0: 12:6f:8c:f4:3d:0a:f6:7a:4b:cd:93:11:1f:de:49: a9:47:8d:a3:4a:77:d3:7a:64:d6:ca:13:cb:ee:f3: 96:5f:ee:83:88:d2:ca:ee:ad:38:f6:cd:8b:23:f9: a6:ff:99:c3:6b:66:64:55:22:0e:2d:25:90:a9:1c: b4:cb:d0:d2:a8:fb:60:70:5c:d0:0b:40:b6:41:3b: 3e:8d:6e:e2:93:16:05:3f:7f:2b:ca:69:50:e9:a5: d2:76:49:c3:84:9a:c5:ac:40:46:bc:08:95:88:9a: bd:59:dc:fe:0b:60:2a:e3:db:49:d3:73:ec:e7:14: d4:8f:44:47:26:08:fd:88:0f:e5:6e:67:a6:8c:2b: 59:3f:e7:02:65:a0:c0:c1:8b:b0:fa:d8:60:f8:7d: 25:72:03:8c:c2:24:27:d6:a3:4e:8d:fb:90:e9:ba: 5c:c3:69:c9:26:0d:5b:c1:b7:9b:7f:44:3d:c2:d2: af:eb:f8:49:0d:cf:cf:6c:4d:1c:20:4b:7a:9f:2f: 5b:d5:8a:a0:70:8c:a7:1e:89:8b:94:01:cf:fc:a9: cc:1b:27:a2:8d:90:3e:f0:07:12:5c:03:33:74:5b: 48:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:94:C3:41:57:AE:7A:2A:9C:27:50:14:3A:AE:A9:B1:FC:A7:03:11 X509v3 Authority Key Identifier: keyid:CC:F8:5F:9A:12:4E:B3:15:FA:6F:5A:1B:38:23:7B:2C:B4:74:E7:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/0/AS133747.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.30.64.0/23 Signature Algorithm: sha256WithRSAEncryption 33:82:4e:7c:54:a3:6d:c6:0a:15:a6:e6:1d:6d:80:b2:13:0e: f4:6c:a4:28:b8:98:62:44:a5:26:3d:06:91:12:f7:64:7f:2b: 36:9d:e0:36:1b:b1:a4:68:c4:fc:eb:a2:c8:07:e3:84:82:bd: 92:69:04:0d:bd:18:59:95:c8:fe:bc:4e:24:54:83:a6:e9:a8: bd:59:62:d5:a3:e1:9a:a1:66:34:49:11:57:df:07:f9:21:8e: c1:37:f8:88:37:27:9e:9d:f7:40:18:9e:6e:a1:ba:bf:57:d1: 2d:c1:38:2d:2e:6c:56:ef:a3:9c:49:24:0a:53:36:24:4a:6e: 62:30:f0:f8:82:78:f0:6b:f5:34:a7:8f:8c:c3:85:bf:c8:9a: d6:d7:bb:b1:6a:48:36:e1:73:3f:40:d5:80:18:0d:4b:ab:9d: da:ce:ab:76:77:ea:45:62:c2:09:72:6c:aa:1f:d4:04:75:4b: 0a:57:fd:b3:65:84:8b:66:22:8c:7c:3b:e1:cd:4a:07:f7:67: 46:2d:2e:2d:bf:87:11:6d:f7:bb:cd:a2:4a:22:9b:3b:2c:e9: 1d:a9:8f:fa:7f:4c:fd:9d:ab:a4:21:4b:fe:6a:09:46:6d:4e: 04:ba:4d:61:2c:d3:2f:a8:53:3b:eb:03:0d:ee:3b:0f:be:6b: d0:ed:dd:00 -----BEGIN CERTIFICATE----- MIIEpzCCA4+gAwIBAgIUFCoMLcHQIpNX+AUh9pbs1qttn9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NGODVGOUExMjRFQjMxNUZBNkY1QTFCMzgyMzdCMkNC NDc0RTdGQjAeFw0yNjA1MTExNzA1MTlaFw0yNzA1MTAxNzEwMTlaMDMxMTAvBgNV BAMTKDg5OTRDMzQxNTdBRTdBMkE5QzI3NTAxNDNBQUVBOUIxRkNBNzAzMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7eP2AptQJMn0vR0lYYrDguP6f 6ImoKLikhioV0BJvjPQ9CvZ6S82TER/eSalHjaNKd9N6ZNbKE8vu85Zf7oOI0sru rTj2zYsj+ab/mcNrZmRVIg4tJZCpHLTL0NKo+2BwXNALQLZBOz6NbuKTFgU/fyvK aVDppdJ2ScOEmsWsQEa8CJWImr1Z3P4LYCrj20nTc+znFNSPREcmCP2ID+VuZ6aM K1k/5wJloMDBi7D62GD4fSVyA4zCJCfWo06N+5DpulzDackmDVvBt5t/RD3C0q/r +EkNz89sTRwgS3qfL1vViqBwjKceiYuUAc/8qcwbJ6KNkD7wBxJcAzN0W0ipAgMB AAGjggGxMIIBrTAdBgNVHQ4EFgQUiZTDQVeueiqcJ1AUOq6psfynAxEwHwYDVR0j BBgwFoAUzPhfmhJOsxX6b1obOCN7LLR05/swDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNJQy8w L0NDRjg1RjlBMTI0RUIzMTVGQTZGNUExQjM4MjM3QjJDQjQ3NEU3RkIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQ0NGODVGOUExMjRFQjMxNUZBNkY1QTFCMzgyMzdC MkNCNDc0RTdGQi5jZXIwTAYIKwYBBQUHAQsEQDA+MDwGCCsGAQUFBzALhjByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSUMvMC9BUzEzMzc0Ny5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAXMeQDANBgkqhkiG9w0BAQsFAAOCAQEAM4JOfFSjbcYKFabmHW2AshMO9Gyk KLiYYkSlJj0GkRL3ZH8rNp3gNhuxpGjE/OuiyAfjhIK9kmkEDb0YWZXI/rxOJFSD pumovVli1aPhmqFmNEkRV98H+SGOwTf4iDcnnp33QBiebqG6v1fRLcE4LS5sVu+j nEkkClM2JEpuYjDw+IJ48Gv1NKePjMOFv8ia1te7sWpINuFzP0DVgBgNS6ud2s6r dnfqRWLCCXJsqh/UBHVLClf9s2WEi2YijHw74c1KB/dnRi0uLb+HEW33u82iSiKb OyzpHamP+n9M/Z2rpCFL/moJRm1OBLpNYSzTL6hTO+sDDe47D75r0O3dAA== -----END CERTIFICATE-----Generated at Tue May 12 22:53:28 2026 by rpki-client