$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/0/AS54994.roa File: AS54994.roa (raw, json) Hash identifier: RsnzFTqm2XU0nw52sFhW7iKQqUPc3QS9+04ejWe/r5E= Subject key identifier: A5:9F:AE:36:77:36:39:1C:60:B4:4E:39:BE:AE:DD:7B:81:B8:CF:9E Certificate issuer: /CN=CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB Certificate serial: 148F003EA530343666D86E10F77C7C008E9070 Authority key identifier: CC:F8:5F:9A:12:4E:B3:15:FA:6F:5A:1B:38:23:7B:2C:B4:74:E7:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/0/AS54994.roa Signing time: Tue 12 May 2026 01:49:13 +0000 ROA not before: Tue 12 May 2026 01:44:13 +0000 ROA not after: Tue 11 May 2027 01:49:13 +0000 asID: 54994 IP address blocks: 61.61.69.0/24 maxlen: 24 61.61.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.crl rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:8f:00:3e:a5:30:34:36:66:d8:6e:10:f7:7c:7c:00:8e:90:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB Validity Not Before: May 12 01:44:13 2026 GMT Not After : May 11 01:49:13 2027 GMT Subject: CN=A59FAE367736391C60B44E39BEAEDD7B81B8CF9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:42:aa:11:77:10:7c:78:8a:94:5e:62:b7:2f: ad:79:69:2b:4b:31:71:38:1e:ce:b9:bf:77:5e:f1: dc:2e:61:a6:ed:a4:09:ad:33:25:b2:a0:f1:e6:04: 29:1e:b3:f2:4e:bc:b7:81:28:b1:13:3e:40:67:04: ca:03:18:4b:f2:43:ed:cb:ef:b7:63:84:bc:3c:24: b0:d6:cb:68:65:b4:eb:ba:80:33:ce:e7:63:c2:a3: b6:64:38:ca:e2:82:62:25:08:7c:da:b9:04:c3:24: f5:53:b5:ce:eb:b7:8a:44:ac:8b:9c:3a:f0:73:f3: 6a:89:29:96:8b:37:48:07:f0:0a:68:44:7a:1e:bc: 0d:66:33:1d:5c:ad:df:ba:3d:a4:2c:b3:62:0c:88: 2c:16:e2:3b:95:80:db:f5:95:29:f8:30:93:75:f6: ca:d2:15:7c:02:19:e5:6d:9b:c4:4c:1e:73:5d:39: ea:58:1a:97:8b:60:9d:3a:ce:93:4b:ad:0b:23:0a: 9f:76:1b:c9:0e:7d:9d:bd:ed:2d:ed:0e:82:ea:84: d5:42:58:8f:87:26:a7:48:8a:a4:38:0f:f0:5a:5a: 81:61:04:56:05:94:f0:4a:e6:19:6b:fe:11:6d:e3: 2d:8d:28:26:d0:bb:01:df:63:44:ce:ee:bf:82:41: 91:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:9F:AE:36:77:36:39:1C:60:B4:4E:39:BE:AE:DD:7B:81:B8:CF:9E X509v3 Authority Key Identifier: keyid:CC:F8:5F:9A:12:4E:B3:15:FA:6F:5A:1B:38:23:7B:2C:B4:74:E7:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCIC/0/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CCF85F9A124EB315FA6F5A1B38237B2CB474E7FB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/0/AS54994.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.61.69.0/24 61.61.163.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:f5:72:d1:a0:32:fa:e2:7c:08:e2:4b:d1:a0:5c:c3:ae:0f: e0:dc:eb:99:f1:e2:bf:1a:69:ae:32:a2:ec:25:1e:78:8a:44: a6:c6:fa:bf:af:2f:9e:c7:43:90:ee:ce:fd:97:9c:9c:96:27: 1c:cc:68:bd:7e:6d:95:1d:6c:28:db:7d:ef:73:6b:a5:e6:91: ed:34:66:f8:fe:fd:29:01:f5:21:d2:c8:cd:33:96:0a:e0:62: cd:67:72:31:ce:3c:31:e1:86:c1:fc:33:48:34:b8:3e:c9:07: 5c:06:05:42:0a:c1:bc:c6:51:b7:f2:4a:83:d3:92:21:24:ec: 91:36:58:8f:a1:8b:cb:33:b0:eb:e9:bc:55:92:8e:98:24:0e: 0c:55:8c:66:ff:c4:23:9e:e6:59:af:f8:40:37:52:5b:7e:ba: ea:14:f4:22:e4:5e:5e:48:c9:8a:a8:52:b5:06:50:b9:b2:91: ff:09:bf:0a:c9:20:db:51:20:72:6c:69:63:33:19:f6:53:10: 41:8d:dd:3a:f9:c9:bd:6c:16:05:67:9c:8a:76:92:70:60:84: 09:3e:f9:97:5d:af:f4:d7:fe:7e:cd:f3:cd:99:a4:1a:82:07: 2f:06:23:41:d9:3a:2d:cb:f9:8c:33:2a:49:60:a8:de:85:ed: ef:30:6a:f7 -----BEGIN CERTIFICATE----- MIIEqzCCA5OgAwIBAgITFI8APqUwNDZm2G4Q93x8AI6QcDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhDQ0Y4NUY5QTEyNEVCMzE1RkE2RjVBMUIzODIzN0IyQ0I0 NzRFN0ZCMB4XDTI2MDUxMjAxNDQxM1oXDTI3MDUxMTAxNDkxM1owMzExMC8GA1UE AxMoQTU5RkFFMzY3NzM2MzkxQzYwQjQ0RTM5QkVBRUREN0I4MUI4Q0Y5RTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALdCqhF3EHx4ipReYrcvrXlpK0sx cTgezrm/d17x3C5hpu2kCa0zJbKg8eYEKR6z8k68t4EosRM+QGcEygMYS/JD7cvv t2OEvDwksNbLaGW067qAM87nY8KjtmQ4yuKCYiUIfNq5BMMk9VO1zuu3ikSsi5w6 8HPzaokplos3SAfwCmhEeh68DWYzHVyt37o9pCyzYgyILBbiO5WA2/WVKfgwk3X2 ytIVfAIZ5W2bxEwec1056lgal4tgnTrOk0utCyMKn3YbyQ59nb3tLe0OguqE1UJY j4cmp0iKpDgP8FpagWEEVgWU8ErmGWv+EW3jLY0oJtC7Ad9jRM7uv4JBkY0CAwEA AaOCAbYwggGyMB0GA1UdDgQWBBSln642dzY5HGC0Tjm+rt17gbjPnjAfBgNVHSME GDAWgBTM+F+aEk6zFfpvWhs4I3sstHTn+zAOBgNVHQ8BAf8EBAMCB4AwYQYDVR0f BFowWDBWoFSgUoZQcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9OQ0lDLzAv Q0NGODVGOUExMjRFQjMxNUZBNkY1QTFCMzgyMzdCMkNCNDc0RTdGQi5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DQ0Y4NUY5QTEyNEVCMzE1RkE2RjVBMUIzODIzN0Iy Q0I0NzRFN0ZCLmNlcjBLBggrBgEFBQcBCwQ/MD0wOwYIKwYBBQUHMAuGL3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNJQy8wL0FTNTQ5OTQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAA9PUUDBAA9PaMwDQYJKoZIhvcNAQELBQADggEBAC71ctGgMvrifAjiS9GgXMOu D+Dc65nx4r8aaa4youwlHniKRKbG+r+vL57HQ5Duzv2XnJyWJxzMaL1+bZUdbCjb fe9za6Xmke00Zvj+/SkB9SHSyM0zlgrgYs1ncjHOPDHhhsH8M0g0uD7JB1wGBUIK wbzGUbfySoPTkiEk7JE2WI+hi8szsOvpvFWSjpgkDgxVjGb/xCOe5lmv+EA3Ult+ uuoU9CLkXl5IyYqoUrUGULmykf8JvwrJINtRIHJsaWMzGfZTEEGN3Tr5yb1sFgVn nIp2knBghAk++Zddr/TX/n7N882ZpBqCBy8GI0HZOi3L+YwzKklgqN6F7e8wavc= -----END CERTIFICATE-----Generated at Tue May 12 22:53:27 2026 by rpki-client