$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3234302e302f32312d3234203d3e2039393139.roa File: 3139322e37322e3234302e302f32312d3234203d3e2039393139.roa (raw, json) Hash identifier: zyCP5RCcYrInB0mG7H3w0fJawxlNECjjYSjAg7D7d1Y= Subject key identifier: 9A:D7:00:B0:C1:1F:BC:91:02:0F:18:EB:86:DC:82:CA:B4:14:AD:FB Certificate issuer: /CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Certificate serial: 3469746F85D9FA4CD6749345F8B4822B08E0D085 Authority key identifier: D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3234302e302f32312d3234203d3e2039393139.roa Signing time: Mon 11 May 2026 17:19:21 +0000 ROA not before: Mon 11 May 2026 17:14:21 +0000 ROA not after: Mon 10 May 2027 17:19:21 +0000 asID: 9919 IP address blocks: 192.72.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:69:74:6f:85:d9:fa:4c:d6:74:93:45:f8:b4:82:2b:08:e0:d0:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Validity Not Before: May 11 17:14:21 2026 GMT Not After : May 10 17:19:21 2027 GMT Subject: CN=9AD700B0C11FBC91020F18EB86DC82CAB414ADFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:84:66:e1:c1:82:58:be:2f:17:6c:b8:4d:ed: 4c:d6:bb:3d:ab:95:3c:c4:81:ab:bf:fb:93:3f:ec: 8a:75:0a:14:4e:bc:28:88:96:bf:19:b4:d7:a8:2f: e7:64:09:51:6c:73:8a:08:56:5f:12:f5:f7:1c:2a: 5b:01:a1:0e:a5:d7:d3:4d:e1:9b:5a:4e:a9:16:b1: d9:57:d0:1d:cc:c4:86:7e:30:e4:ee:57:7e:10:db: a5:77:7a:65:59:41:bd:a4:2b:6f:d6:44:d5:e6:40: 34:dd:40:52:21:e1:a0:68:60:63:86:99:a5:99:bd: d1:75:a3:5e:55:46:d1:61:00:ec:3b:83:3c:bb:56: cb:7e:ad:2f:89:7c:4e:92:2c:5f:4f:36:4b:5b:6e: 22:7f:4a:da:c4:92:d1:57:51:45:e4:56:7b:51:a5: 8b:d1:22:ca:5b:13:85:84:71:d7:82:90:01:9c:2d: 38:a6:ef:3f:66:61:cf:7d:27:5c:64:35:f3:38:08: ca:d1:f0:b5:f6:87:3e:82:ea:c7:63:5f:ab:68:60: 5f:52:1a:2f:f2:4b:a7:fb:d1:6f:42:a7:fc:a1:29: 59:5b:f1:67:aa:03:cb:fd:f2:08:30:f7:16:dc:80: 84:3c:69:54:77:91:8e:c8:08:0f:c9:c0:28:b0:92: f2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D7:00:B0:C1:1F:BC:91:02:0F:18:EB:86:DC:82:CA:B4:14:AD:FB X509v3 Authority Key Identifier: keyid:D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3234302e302f32312d3234203d3e2039393139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:75:09:67:8b:4d:89:3b:4d:13:fd:32:bb:2c:b4:c0:d9:05: 0d:fa:91:77:c9:68:da:44:74:1c:0a:08:a7:c1:93:68:11:f5: a8:5c:8e:90:01:92:aa:a4:cf:52:6f:91:75:e9:48:f5:81:0f: d8:5a:94:21:46:b4:a1:4f:77:1a:f0:69:c5:72:8a:39:b2:63: c6:54:5a:57:7a:e5:da:98:c9:f6:1f:08:aa:7b:4d:a4:f9:97: 29:8e:eb:9e:2c:6c:cc:6c:8e:d4:4d:3c:23:59:0f:27:b6:86: 16:fd:51:cd:69:cc:00:85:6c:50:4b:3e:ce:92:20:b0:7f:4c: 43:76:4d:5d:54:6d:0c:aa:fd:f3:c4:71:8b:fc:cc:21:5c:8c: df:81:13:5b:eb:d3:77:8a:9c:30:84:cc:d2:ce:15:a3:27:d8: 41:17:0c:02:7e:0c:87:45:79:0c:46:6c:69:85:75:29:ce:9b: 1e:77:eb:ab:46:7e:d7:f7:55:48:39:40:78:ba:17:42:d2:d4: c7:7a:41:3a:30:ef:f7:0a:3b:00:da:6e:97:06:10:49:f8:f9: 6c:3b:e3:bc:a8:ab:70:9b:e9:8c:b4:75:65:2f:7d:82:07:ad: 89:78:c8:3d:f4:92:9e:5b:e0:d7:3e:50:14:29:72:6c:31:56: d2:aa:7c:01 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUNGl0b4XZ+kzWdJNF+LSCKwjg0IUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4ODU5 NjEyQzczQjAeFw0yNjA1MTExNzE0MjFaFw0yNzA1MTAxNzE5MjFaMDMxMTAvBgNV BAMTKDlBRDcwMEIwQzExRkJDOTEwMjBGMThFQjg2REM4MkNBQjQxNEFERkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVhGbhwYJYvi8XbLhN7UzWuz2r lTzEgau/+5M/7Ip1ChROvCiIlr8ZtNeoL+dkCVFsc4oIVl8S9fccKlsBoQ6l19NN 4ZtaTqkWsdlX0B3MxIZ+MOTuV34Q26V3emVZQb2kK2/WRNXmQDTdQFIh4aBoYGOG maWZvdF1o15VRtFhAOw7gzy7Vst+rS+JfE6SLF9PNktbbiJ/StrEktFXUUXkVntR pYvRIspbE4WEcdeCkAGcLTim7z9mYc99J1xkNfM4CMrR8LX2hz6C6sdjX6toYF9S Gi/yS6f70W9Cp/yhKVlb8WeqA8v98ggw9xbcgIQ8aVR3kY7ICA/JwCiwkvKLAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUmtcAsMEfvJECDxjrhtyCyrQUrfswHwYDVR0j BBgwFoAU1cmQFtAe3eCk1Hw8lI7ohZYSxzswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNJQy8x L0Q1Qzk5MDE2RDAxRURERTBBNEQ0N0MzQzk0OEVFODg1OTYxMkM3M0IuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzAvRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4 ODU5NjEyQzczQi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSUMvMS8zMTM5MzIyZTM3MzIyZTMy MzQzMDJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDM5MzkzMTM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD wEjwMA0GCSqGSIb3DQEBCwUAA4IBAQBbdQlni02JO00T/TK7LLTA2QUN+pF3yWja RHQcCginwZNoEfWoXI6QAZKqpM9Sb5F16Uj1gQ/YWpQhRrShT3ca8GnFcoo5smPG VFpXeuXamMn2Hwiqe02k+ZcpjuueLGzMbI7UTTwjWQ8ntoYW/VHNacwAhWxQSz7O kiCwf0xDdk1dVG0Mqv3zxHGL/MwhXIzfgRNb69N3ipwwhMzSzhWjJ9hBFwwCfgyH RXkMRmxphXUpzpsed+urRn7X91VIOUB4uhdC0tTHekE6MO/3CjsA2m6XBhBJ+Pls O+O8qKtwm+mMtHVlL32CB62JeMg99JKeW+DXPlAUKXJsMVbSqnwB -----END CERTIFICATE-----Generated at Wed May 13 06:18:59 2026 by rpki-client