$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3139322e302f31392d3234203d3e2039393139.roa File: 3139322e37322e3139322e302f31392d3234203d3e2039393139.roa (raw, json) Hash identifier: Ah2jakkWaX8SyRrg2TG3GrlMUxHdK/+BuuzbL3/oW74= Subject key identifier: 4B:E4:E6:03:4B:E0:92:5D:80:AF:29:1B:A9:58:32:A3:C0:60:45:D0 Certificate issuer: /CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Certificate serial: 5B0EBA40A2A502E4CEE050934610423AF27A2889 Authority key identifier: D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3139322e302f31392d3234203d3e2039393139.roa Signing time: Mon 11 May 2026 17:19:19 +0000 ROA not before: Mon 11 May 2026 17:14:19 +0000 ROA not after: Mon 10 May 2027 17:19:19 +0000 asID: 9919 IP address blocks: 192.72.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:0e:ba:40:a2:a5:02:e4:ce:e0:50:93:46:10:42:3a:f2:7a:28:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Validity Not Before: May 11 17:14:19 2026 GMT Not After : May 10 17:19:19 2027 GMT Subject: CN=4BE4E6034BE0925D80AF291BA95832A3C06045D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1e:d5:d4:ab:fb:d7:a8:7d:c7:28:8e:77:58: bf:93:4a:6f:2f:7f:ed:f1:4b:3d:51:88:71:5d:e4: 89:03:3b:93:65:5f:33:7f:16:1d:04:24:df:b9:fe: be:20:b9:68:58:1c:1d:6a:de:22:3e:4f:3f:41:40: d7:78:df:aa:ce:68:03:8c:9e:77:a6:48:54:e1:70: 53:63:47:f6:e7:65:aa:d0:14:6f:ba:1e:5c:e0:fd: 3e:27:cb:45:44:11:fe:4f:a7:39:c5:e4:58:90:9b: 9a:c3:36:07:f2:67:8b:f3:b2:89:bd:68:91:70:2d: a7:f6:db:37:f6:53:00:05:68:a0:4c:b1:c5:3c:16: 22:66:d1:a1:31:93:02:06:21:99:0d:f1:71:bd:29: 13:f0:bb:74:59:ef:12:e4:6e:9d:4d:8e:5f:0f:76: 66:aa:42:71:ff:75:3b:b0:d8:8b:41:42:f7:5d:b8: 56:58:04:03:b7:62:ad:b9:b6:f8:16:86:ae:3a:74: 8a:8f:9d:03:b4:99:70:0e:71:a8:36:da:79:86:f1: 1a:cc:d7:6c:20:61:f2:22:21:e2:cf:71:7e:20:69: 4f:17:5a:e6:25:1c:11:08:b8:fd:59:f8:0c:dc:5b: 54:49:ed:ad:22:17:d7:6c:00:5d:93:0c:77:f5:3c: 1a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:E4:E6:03:4B:E0:92:5D:80:AF:29:1B:A9:58:32:A3:C0:60:45:D0 X509v3 Authority Key Identifier: keyid:D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3139322e302f31392d3234203d3e2039393139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.72.192.0/19 Signature Algorithm: sha256WithRSAEncryption 50:82:27:6c:df:f3:d4:46:ec:85:1c:a7:bf:bf:e1:f3:02:13: bc:71:54:ca:31:36:0e:76:55:7e:fb:7e:1a:cd:3f:10:f0:8c: 8c:dd:c1:b4:26:9e:25:69:26:96:54:cc:f3:ae:fc:d0:f9:bc: 91:6b:7f:38:82:d7:be:ac:34:61:e5:90:83:ee:da:47:47:1d: 7e:4d:c6:20:12:5b:2b:39:c5:d0:cb:0a:c1:f0:70:e5:d9:4a: 7b:dd:43:c9:4d:a5:85:9f:9c:80:5a:a2:f8:94:28:d1:a2:38: a1:e4:c1:66:92:4a:4a:ef:16:38:de:a6:05:2e:ca:51:98:10: 3c:7f:b7:a7:fb:28:ab:78:38:22:2c:86:d4:8a:70:37:6b:5f: 5c:c0:11:69:90:54:88:04:9f:81:09:9c:b5:a1:ba:c8:03:85: 95:9a:c4:87:1c:03:00:db:e9:3f:c3:3f:2e:9f:b8:9f:b4:ad: 6d:1f:61:c4:17:f8:3a:42:10:04:33:9c:eb:f1:a6:42:49:45: b0:b9:a2:3b:2e:82:b9:f3:95:f1:cb:e7:6a:18:61:fb:57:8f: 64:24:63:2a:76:8f:cc:fc:76:0d:07:06:6c:50:72:60:a7:c6: d4:50:f9:8f:84:81:ae:92:95:84:a7:da:21:db:32:32:a6:16: 7d:9e:ba:1d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUWw66QKKlAuTO4FCTRhBCOvJ6KIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4ODU5 NjEyQzczQjAeFw0yNjA1MTExNzE0MTlaFw0yNzA1MTAxNzE5MTlaMDMxMTAvBgNV BAMTKDRCRTRFNjAzNEJFMDkyNUQ4MEFGMjkxQkE5NTgzMkEzQzA2MDQ1RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuHtXUq/vXqH3HKI53WL+TSm8v f+3xSz1RiHFd5IkDO5NlXzN/Fh0EJN+5/r4guWhYHB1q3iI+Tz9BQNd436rOaAOM nnemSFThcFNjR/bnZarQFG+6Hlzg/T4ny0VEEf5PpznF5FiQm5rDNgfyZ4vzsom9 aJFwLaf22zf2UwAFaKBMscU8FiJm0aExkwIGIZkN8XG9KRPwu3RZ7xLkbp1Njl8P dmaqQnH/dTuw2ItBQvdduFZYBAO3Yq25tvgWhq46dIqPnQO0mXAOcag22nmG8RrM 12wgYfIiIeLPcX4gaU8XWuYlHBEIuP1Z+AzcW1RJ7a0iF9dsAF2TDHf1PBqtAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUS+TmA0vgkl2ArykbqVgyo8BgRdAwHwYDVR0j BBgwFoAU1cmQFtAe3eCk1Hw8lI7ohZYSxzswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNJQy8x L0Q1Qzk5MDE2RDAxRURERTBBNEQ0N0MzQzk0OEVFODg1OTYxMkM3M0IuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzAvRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4 ODU5NjEyQzczQi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSUMvMS8zMTM5MzIyZTM3MzIyZTMx MzkzMjJlMzAyZjMxMzkyZDMyMzQyMDNkM2UyMDM5MzkzMTM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF wEjAMA0GCSqGSIb3DQEBCwUAA4IBAQBQgids3/PURuyFHKe/v+HzAhO8cVTKMTYO dlV++34azT8Q8IyM3cG0Jp4laSaWVMzzrvzQ+byRa384gte+rDRh5ZCD7tpHRx1+ TcYgElsrOcXQywrB8HDl2Up73UPJTaWFn5yAWqL4lCjRojih5MFmkkpK7xY43qYF LspRmBA8f7en+yireDgiLIbUinA3a19cwBFpkFSIBJ+BCZy1obrIA4WVmsSHHAMA 2+k/wz8un7iftK1tH2HEF/g6QhAEM5zr8aZCSUWwuaI7LoK585Xxy+dqGGH7V49k JGMqdo/M/HYNBwZsUHJgp8bUUPmPhIGukpWEp9oh2zIyphZ9nrod -----END CERTIFICATE-----Generated at Wed May 13 04:53:45 2026 by rpki-client