$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3234382e302f32322d3234203d3e2034373830.roa File: 3139322e37322e3234382e302f32322d3234203d3e2034373830.roa (raw, json) Hash identifier: 65UG56uDtaduhHckiIsfYUMD5Llwyc25pnJQFOvZ6Bo= Subject key identifier: CB:D9:45:34:57:65:B1:10:DA:55:E0:61:25:E3:8E:61:63:49:1F:0C Certificate issuer: /CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Certificate serial: 5278ED6E527F1FFEAB4F6CFE304D493872460EB2 Authority key identifier: D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3234382e302f32322d3234203d3e2034373830.roa Signing time: Mon 11 May 2026 16:31:57 +0000 ROA not before: Mon 11 May 2026 16:26:57 +0000 ROA not after: Mon 10 May 2027 16:31:57 +0000 asID: 4780 IP address blocks: 192.72.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:78:ed:6e:52:7f:1f:fe:ab:4f:6c:fe:30:4d:49:38:72:46:0e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Validity Not Before: May 11 16:26:57 2026 GMT Not After : May 10 16:31:57 2027 GMT Subject: CN=CBD945345765B110DA55E06125E38E6163491F0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:74:7a:d3:cc:fd:2e:06:94:12:44:c6:46:f0: bb:42:8f:03:f6:27:3f:d6:76:57:d8:49:22:bd:cb: 57:46:93:37:51:f5:54:61:f2:bd:0e:c1:24:5a:8a: 6e:a4:d8:3a:aa:41:87:00:a3:9e:f3:34:e8:25:78: 11:68:cc:46:8c:a8:67:85:36:cc:28:79:17:14:1f: 82:a9:09:c1:01:92:c5:ca:85:b2:85:21:6f:15:f8: 34:27:19:7b:a3:ac:13:26:a3:1b:a5:f1:15:2d:d6: e2:4a:5d:2f:9c:57:67:7b:07:2e:b6:ae:46:35:59: 3a:ef:34:f4:06:37:19:98:82:94:46:d6:ab:f0:bd: b0:23:18:86:53:cc:1a:3c:a7:26:e3:6c:21:3e:2f: 50:91:7f:3c:da:79:fd:60:92:d7:ee:86:cf:cd:1d: fa:1c:c9:50:4c:45:0d:fb:ef:88:34:da:b5:be:50: 76:57:fc:81:32:c7:b0:a2:1d:8e:cd:b3:1a:ab:12: ad:67:38:77:d2:8a:cb:c4:2b:83:be:15:e7:23:61: 46:16:7f:95:4d:81:2e:44:89:bf:96:a0:70:99:dd: 49:29:cb:48:5e:55:a1:30:bf:c5:7b:03:9f:ac:ce: bf:e4:38:ad:07:82:a9:9f:fa:de:7e:4d:6b:f3:72: 09:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D9:45:34:57:65:B1:10:DA:55:E0:61:25:E3:8E:61:63:49:1F:0C X509v3 Authority Key Identifier: keyid:D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3234382e302f32322d3234203d3e2034373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.72.248.0/22 Signature Algorithm: sha256WithRSAEncryption a2:a5:6a:c2:00:d2:fc:da:c8:bf:f3:3a:d9:ac:86:db:4f:24: a9:a1:b4:c7:26:88:d3:ac:d9:61:df:20:45:48:5d:c8:7f:20: 9e:92:7a:5f:73:0d:a3:5d:c6:be:c0:8e:09:2c:ec:e1:bc:78: a2:de:c9:3f:f7:0c:40:44:f9:d0:fd:24:70:04:c5:e0:e6:78: b5:81:55:1d:7b:a9:5a:79:43:fc:5e:34:f7:c9:02:06:8d:4d: 72:20:7e:5a:64:ea:98:2a:df:13:14:dd:93:c9:e7:ab:ad:a8: ef:e1:aa:b8:41:60:09:6c:a8:db:c6:fe:11:78:53:73:c2:78: 60:62:aa:51:c0:89:9b:20:e5:ca:1e:68:62:55:0f:bb:83:fc: 08:36:ec:fb:cf:80:f6:93:64:22:b8:f2:ce:d8:06:66:80:38: 42:52:bc:8f:67:2c:20:ef:76:e0:49:26:06:1e:83:68:fa:cd: 05:04:fa:73:b3:7d:c4:b5:d5:d8:c3:6d:05:c1:af:bc:ae:56: 33:3d:ae:4f:c6:ae:74:7b:bb:de:f1:91:ca:5b:5e:fc:6c:5d: 47:1c:a9:f8:8a:46:e1:14:22:93:ca:c3:eb:99:13:2c:70:0b: 37:10:2e:f1:a8:b3:56:66:a8:16:c4:ba:1c:24:64:e2:12:bc: fa:42:97:f0 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUUnjtblJ/H/6rT2z+ME1JOHJGDrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4ODU5 NjEyQzczQjAeFw0yNjA1MTExNjI2NTdaFw0yNzA1MTAxNjMxNTdaMDMxMTAvBgNV BAMTKENCRDk0NTM0NTc2NUIxMTBEQTU1RTA2MTI1RTM4RTYxNjM0OTFGMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHdHrTzP0uBpQSRMZG8LtCjwP2 Jz/WdlfYSSK9y1dGkzdR9VRh8r0OwSRaim6k2DqqQYcAo57zNOgleBFozEaMqGeF NswoeRcUH4KpCcEBksXKhbKFIW8V+DQnGXujrBMmoxul8RUt1uJKXS+cV2d7By62 rkY1WTrvNPQGNxmYgpRG1qvwvbAjGIZTzBo8pybjbCE+L1CRfzzaef1gktfuhs/N HfocyVBMRQ3774g02rW+UHZX/IEyx7CiHY7NsxqrEq1nOHfSisvEK4O+FecjYUYW f5VNgS5Eib+WoHCZ3Ukpy0heVaEwv8V7A5+szr/kOK0Hgqmf+t5+TWvzcgkzAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUy9lFNFdlsRDaVeBhJeOOYWNJHwwwHwYDVR0j BBgwFoAU1cmQFtAe3eCk1Hw8lI7ohZYSxzswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNJQy8x L0Q1Qzk5MDE2RDAxRURERTBBNEQ0N0MzQzk0OEVFODg1OTYxMkM3M0IuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzAvRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4 ODU5NjEyQzczQi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSUMvMS8zMTM5MzIyZTM3MzIyZTMy MzQzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzczODMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC wEj4MA0GCSqGSIb3DQEBCwUAA4IBAQCipWrCANL82si/8zrZrIbbTySpobTHJojT rNlh3yBFSF3IfyCeknpfcw2jXca+wI4JLOzhvHii3sk/9wxARPnQ/SRwBMXg5ni1 gVUde6laeUP8XjT3yQIGjU1yIH5aZOqYKt8TFN2Tyeerrajv4aq4QWAJbKjbxv4R eFNzwnhgYqpRwImbIOXKHmhiVQ+7g/wINuz7z4D2k2QiuPLO2AZmgDhCUryPZywg 73bgSSYGHoNo+s0FBPpzs33EtdXYw20Fwa+8rlYzPa5Pxq50e7ve8ZHKW178bF1H HKn4ikbhFCKTysPrmRMscAs3EC7xqLNWZqgWxLocJGTiErz6Qpfw -----END CERTIFICATE-----Generated at Wed May 13 05:55:05 2026 by rpki-client