$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/0/AS198949.roa File: AS198949.roa (raw, json) Hash identifier: mNdswjy8yMrd3rwD+wOE+aOIgteATLVc5SE3jiYK6qU= Subject key identifier: 77:B9:D3:D6:67:38:86:53:CA:0F:18:B1:B6:6A:4A:0A:41:A3:4B:D1 Certificate issuer: /CN=CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB Certificate serial: 4574AF2F3C5DBD53A951CB99FE2F05E3CF3ECB07 Authority key identifier: CC:F8:5F:9A:12:4E:B3:15:FA:6F:5A:1B:38:23:7B:2C:B4:74:E7:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/0/AS198949.roa Signing time: Mon 11 May 2026 17:32:08 +0000 ROA not before: Mon 11 May 2026 17:27:08 +0000 ROA not after: Mon 10 May 2027 17:32:08 +0000 asID: 198949 IP address blocks: 113.196.39.0/24 maxlen: 24 113.196.79.0/24 maxlen: 24 113.196.242.0/24 maxlen: 24 113.196.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.crl rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:74:af:2f:3c:5d:bd:53:a9:51:cb:99:fe:2f:05:e3:cf:3e:cb:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB Validity Not Before: May 11 17:27:08 2026 GMT Not After : May 10 17:32:08 2027 GMT Subject: CN=77B9D3D667388653CA0F18B1B66A4A0A41A34BD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cb:4f:60:e4:ee:2d:63:dc:a1:37:46:0c:0d: ac:3e:6d:8f:75:c6:61:e9:d2:aa:8e:5f:57:c7:f3: a8:67:98:99:14:7a:41:43:f5:57:5a:e5:7a:b2:3e: c8:0c:22:5a:ef:b3:31:6e:94:61:22:93:24:c5:81: fe:80:72:1f:fe:58:0c:1f:f6:50:f6:73:56:db:09: 0a:7a:30:b0:34:c0:a1:4d:16:65:93:f9:bc:c7:3a: 93:87:ec:26:8b:bd:84:e4:11:fe:9d:4a:b7:5f:87: 3c:1e:40:9a:15:bc:e8:3e:1c:67:8a:93:24:ee:6f: b7:94:55:11:1a:51:ab:f4:a2:f1:4e:79:41:59:40: c8:b7:c2:24:6d:f7:c4:3b:af:24:dc:54:24:e1:30: 9e:37:46:02:14:fc:4f:a1:6a:55:7d:23:18:e6:5e: 6e:74:27:cc:9a:c9:50:1c:eb:45:0a:e4:8f:19:b4: fe:f7:8a:88:af:e5:1d:69:7e:53:83:17:7f:74:96: c5:75:1a:47:6a:32:dc:9f:b4:da:b9:a9:9f:fb:8a: 02:54:74:90:8b:2b:db:e3:f9:a2:10:d4:9d:87:30: 9d:51:1b:12:7c:28:3c:3f:3a:d3:4a:11:0e:e0:34: b8:ed:30:46:94:a3:66:94:3d:a3:6f:5a:a9:b0:e7: ad:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B9:D3:D6:67:38:86:53:CA:0F:18:B1:B6:6A:4A:0A:41:A3:4B:D1 X509v3 Authority Key Identifier: keyid:CC:F8:5F:9A:12:4E:B3:15:FA:6F:5A:1B:38:23:7B:2C:B4:74:E7:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/0/AS198949.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.196.39.0/24 113.196.79.0/24 113.196.242.0/24 113.196.245.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:3f:d8:93:e8:42:76:7d:39:71:b4:3d:f8:3b:21:db:89:56: f4:e6:73:2f:01:c9:1c:e0:fc:5a:83:53:0d:94:ff:60:5a:74: a7:c8:98:c5:cd:fb:48:1a:bf:62:f9:b5:9d:94:b7:f1:b1:c6: 75:86:c6:06:f6:dc:24:1a:59:ca:32:87:a1:fc:72:c6:e0:01: 00:21:d8:76:95:93:ee:6b:17:1c:db:53:f9:66:de:ef:fb:6e: 1f:64:23:7f:47:38:45:a0:a1:8e:ab:0a:74:00:2a:a2:b0:aa: 15:5b:5d:f5:a9:38:fa:44:72:15:04:84:39:48:b5:bd:27:8f: 90:09:24:6e:39:c6:09:47:5b:c1:a2:d3:0f:36:dd:77:65:72: 7b:db:2f:4d:09:4e:63:61:da:41:9c:6b:fe:7b:24:dc:f6:b4: 66:58:36:75:b1:99:18:db:8f:7f:89:aa:5a:cf:1f:fa:1d:c6: 9c:2c:b0:25:d4:69:55:1e:80:da:76:db:b5:1c:40:3f:d1:bd: 52:5d:54:85:a8:ba:f6:44:50:8e:63:fe:3a:52:03:d8:12:2b: 51:bc:8d:13:87:dc:69:d0:37:65:81:1e:29:3c:d9:33:c1:ba: 3c:e1:cd:77:54:96:cf:63:19:dc:e0:53:e4:cf:a3:a7:d2:76: 53:6a:0c:95 -----BEGIN CERTIFICATE----- MIIEuTCCA6GgAwIBAgIURXSvLzxdvVOpUcuZ/i8F488+ywcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NGODVGOUExMjRFQjMxNUZBNkY1QTFCMzgyMzdCMkNC NDc0RTdGQjAeFw0yNjA1MTExNzI3MDhaFw0yNzA1MTAxNzMyMDhaMDMxMTAvBgNV BAMTKDc3QjlEM0Q2NjczODg2NTNDQTBGMThCMUI2NkE0QTBBNDFBMzRCRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJy09g5O4tY9yhN0YMDaw+bY91 xmHp0qqOX1fH86hnmJkUekFD9Vda5XqyPsgMIlrvszFulGEikyTFgf6Ach/+WAwf 9lD2c1bbCQp6MLA0wKFNFmWT+bzHOpOH7CaLvYTkEf6dSrdfhzweQJoVvOg+HGeK kyTub7eUVREaUav0ovFOeUFZQMi3wiRt98Q7ryTcVCThMJ43RgIU/E+halV9Ixjm Xm50J8yayVAc60UK5I8ZtP73ioiv5R1pflODF390lsV1GkdqMtyftNq5qZ/7igJU dJCLK9vj+aIQ1J2HMJ1RGxJ8KDw/OtNKEQ7gNLjtMEaUo2aUPaNvWqmw561lAgMB AAGjggHDMIIBvzAdBgNVHQ4EFgQUd7nT1mc4hlPKDxixtmpKCkGjS9EwHwYDVR0j BBgwFoAUzPhfmhJOsxX6b1obOCN7LLR05/swDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNJQy8w L0NDRjg1RjlBMTI0RUIzMTVGQTZGNUExQjM4MjM3QjJDQjQ3NEU3RkIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQ0NGODVGOUExMjRFQjMxNUZBNkY1QTFCMzgyMzdC MkNCNDc0RTdGQi5jZXIwTAYIKwYBBQUHAQsEQDA+MDwGCCsGAQUFBzALhjByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSUMvMC9BUzE5ODk0OS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEw GAMEAHHEJwMEAHHETwMEAHHE8gMEAHHE9TANBgkqhkiG9w0BAQsFAAOCAQEAbz/Y k+hCdn05cbQ9+Dsh24lW9OZzLwHJHOD8WoNTDZT/YFp0p8iYxc37SBq/Yvm1nZS3 8bHGdYbGBvbcJBpZyjKHofxyxuABACHYdpWT7msXHNtT+Wbe7/tuH2Qjf0c4RaCh jqsKdAAqorCqFVtd9ak4+kRyFQSEOUi1vSePkAkkbjnGCUdbwaLTDzbdd2Vye9sv TQlOY2HaQZxr/nsk3Pa0Zlg2dbGZGNuPf4mqWs8f+h3GnCywJdRpVR6A2nbbtRxA P9G9Ul1Uhai69kRQjmP+OlID2BIrUbyNE4fcadA3ZYEeKTzZM8G6POHNd1SWz2MZ 3OBT5M+jp9J2U2oMlQ== -----END CERTIFICATE-----Generated at Tue May 12 21:54:07 2026 by rpki-client