$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3234302e302f32312d3234203d3e2034373830.roa File: 3139322e37322e3234302e302f32312d3234203d3e2034373830.roa (raw, json) Hash identifier: w9y6pwWmA3JFdHYwXGU59AkfbSQ5hRF5f8RxZemOXM8= Subject key identifier: C3:8D:F1:B1:8C:F3:E1:E1:BD:3B:C4:DE:20:0C:29:C8:DC:00:A7:7F Certificate issuer: /CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Certificate serial: 552307BCC50F6B16EB85CA93A91F2719A99761C0 Authority key identifier: D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3234302e302f32312d3234203d3e2034373830.roa Signing time: Mon 11 May 2026 16:41:12 +0000 ROA not before: Mon 11 May 2026 16:36:12 +0000 ROA not after: Mon 10 May 2027 16:41:12 +0000 asID: 4780 IP address blocks: 192.72.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:23:07:bc:c5:0f:6b:16:eb:85:ca:93:a9:1f:27:19:a9:97:61:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Validity Not Before: May 11 16:36:12 2026 GMT Not After : May 10 16:41:12 2027 GMT Subject: CN=C38DF1B18CF3E1E1BD3BC4DE200C29C8DC00A77F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9b:86:0a:d7:5a:fd:fe:0b:0e:85:4b:80:4c: 1f:38:6e:34:83:6e:d8:6d:eb:28:a1:90:a6:ae:bf: 45:63:b0:65:dc:28:9c:22:1c:2a:fd:b9:af:9d:ae: f5:a7:13:3c:d6:bd:a3:41:5c:7e:63:93:0d:cf:cb: d1:a4:e1:e0:74:b2:ea:9a:22:9e:ed:55:a5:da:8f: 4f:39:4e:76:6f:7c:1c:73:0f:c5:e4:2c:07:86:73: f3:91:0d:bd:d5:e7:79:00:5b:aa:c4:88:84:e4:62: 9a:3d:7c:a8:bd:dd:9e:bd:b2:ab:a6:a0:19:9a:0c: ef:e0:77:f6:0c:27:f5:96:2c:ac:e1:a5:c2:22:47: 37:56:5d:6a:06:d9:7c:e4:4d:27:5e:91:2c:fa:c9: bf:a1:eb:0e:19:64:ae:3c:80:31:de:ed:b2:5e:2d: 41:d3:b3:ea:54:f2:5b:72:50:64:4f:64:d4:cf:bf: 82:3c:2f:7e:3a:59:46:4f:0c:e2:3b:e1:ec:2a:12: 69:7f:b4:7f:6a:da:88:de:b1:23:43:90:ba:d5:fe: cc:a0:80:cd:e4:e6:76:1d:99:48:1d:67:4d:5c:83: 13:80:1e:b2:df:5c:87:f1:a0:ed:ad:ef:64:9e:3c: 14:8a:ee:6f:70:71:45:db:53:8f:38:24:86:2c:7c: a3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8D:F1:B1:8C:F3:E1:E1:BD:3B:C4:DE:20:0C:29:C8:DC:00:A7:7F X509v3 Authority Key Identifier: keyid:D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3234302e302f32312d3234203d3e2034373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 56:f6:6d:6a:cb:9b:3c:fd:d3:1b:46:db:7a:a9:ff:b0:59:8a: 79:f3:0a:58:2b:43:d6:8e:84:b9:2f:83:c9:c2:da:27:ad:4d: 2a:38:fb:a4:b9:a1:60:05:81:58:71:7d:28:ad:d8:c7:39:15: 4b:fc:5d:10:d5:e8:9c:e7:4d:8b:24:ca:cc:da:8c:77:0b:5a: 1d:d7:9c:49:c3:5d:11:af:56:8d:41:95:69:09:b8:c2:8a:dc: 91:a0:e1:05:bc:c4:59:96:91:0c:fb:60:31:42:7f:28:40:85: 3f:e5:54:13:c5:85:d8:f9:86:4c:a8:86:67:e2:89:6a:fa:1e: d2:db:86:4d:ce:09:db:4a:67:97:b8:33:20:b1:e5:42:94:9f: a8:08:6a:80:26:a8:05:f7:37:e0:6e:4b:a2:b9:f8:2d:21:89: c8:11:8d:16:43:39:93:14:17:2b:c0:f7:5f:f5:7a:aa:b7:de: 98:0e:15:af:43:e2:44:8f:94:8a:f0:ba:e8:b0:20:c0:9f:5d: 91:bc:4c:44:c9:c8:33:50:5e:9d:e3:d8:53:eb:5f:9d:5d:ef: 9e:fc:8e:64:3e:ba:39:07:c7:7b:ef:47:b9:4d:d8:12:61:a1: d8:d1:9b:0f:b5:5c:d8:bc:bd:7b:f5:ac:67:44:fd:16:62:67: 28:70:a3:a5 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUVSMHvMUPaxbrhcqTqR8nGamXYcAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4ODU5 NjEyQzczQjAeFw0yNjA1MTExNjM2MTJaFw0yNzA1MTAxNjQxMTJaMDMxMTAvBgNV BAMTKEMzOERGMUIxOENGM0UxRTFCRDNCQzRERTIwMEMyOUM4REMwMEE3N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHm4YK11r9/gsOhUuATB84bjSD btht6yihkKauv0VjsGXcKJwiHCr9ua+drvWnEzzWvaNBXH5jkw3Py9Gk4eB0suqa Ip7tVaXaj085TnZvfBxzD8XkLAeGc/ORDb3V53kAW6rEiITkYpo9fKi93Z69squm oBmaDO/gd/YMJ/WWLKzhpcIiRzdWXWoG2XzkTSdekSz6yb+h6w4ZZK48gDHe7bJe LUHTs+pU8ltyUGRPZNTPv4I8L346WUZPDOI74ewqEml/tH9q2ojesSNDkLrV/syg gM3k5nYdmUgdZ01cgxOAHrLfXIfxoO2t72SePBSK7m9wcUXbU484JIYsfKOlAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUw43xsYzz4eG9O8TeIAwpyNwAp38wHwYDVR0j BBgwFoAU1cmQFtAe3eCk1Hw8lI7ohZYSxzswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNJQy8x L0Q1Qzk5MDE2RDAxRURERTBBNEQ0N0MzQzk0OEVFODg1OTYxMkM3M0IuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzAvRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4 ODU5NjEyQzczQi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSUMvMS8zMTM5MzIyZTM3MzIyZTMy MzQzMDJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDM0MzczODMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD wEjwMA0GCSqGSIb3DQEBCwUAA4IBAQBW9m1qy5s8/dMbRtt6qf+wWYp58wpYK0PW joS5L4PJwtonrU0qOPukuaFgBYFYcX0ordjHORVL/F0Q1eic502LJMrM2ox3C1od 15xJw10Rr1aNQZVpCbjCityRoOEFvMRZlpEM+2AxQn8oQIU/5VQTxYXY+YZMqIZn 4olq+h7S24ZNzgnbSmeXuDMgseVClJ+oCGqAJqgF9zfgbkuiufgtIYnIEY0WQzmT FBcrwPdf9Xqqt96YDhWvQ+JEj5SK8LrosCDAn12RvExEycgzUF6d49hT61+dXe+e /I5kPro5B8d770e5TdgSYaHY0ZsPtVzYvL179axnRP0WYmcocKOl -----END CERTIFICATE-----Generated at Wed May 13 04:03:07 2026 by rpki-client