$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3235322e302f32342d3234203d3e2034373830.roa File: 3139322e37322e3235322e302f32342d3234203d3e2034373830.roa (raw, json) Hash identifier: QUCYMabkjkOS3bq4pnYLsjSc27ckRrPNJ8pg8qqNByc= Subject key identifier: 00:F4:97:FD:B6:C3:8C:7A:33:A8:A4:06:AC:27:CE:5E:1D:E1:34:33 Certificate issuer: /CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Certificate serial: 22DB0F289900F953A45241F2902F758B46D77598 Authority key identifier: D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3235322e302f32342d3234203d3e2034373830.roa Signing time: Mon 11 May 2026 16:31:58 +0000 ROA not before: Mon 11 May 2026 16:26:58 +0000 ROA not after: Mon 10 May 2027 16:31:58 +0000 asID: 4780 IP address blocks: 192.72.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:db:0f:28:99:00:f9:53:a4:52:41:f2:90:2f:75:8b:46:d7:75:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B Validity Not Before: May 11 16:26:58 2026 GMT Not After : May 10 16:31:58 2027 GMT Subject: CN=00F497FDB6C38C7A33A8A406AC27CE5E1DE13433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b8:44:d1:d3:7f:3a:4e:71:d2:a9:9c:d1:3d: e9:b1:94:68:59:81:46:ba:95:dc:fc:db:6a:b7:d3: 43:08:05:5f:cf:35:09:12:f6:81:e3:8d:c8:af:dc: 74:ae:fa:d7:35:6b:42:2b:df:39:ae:f1:9c:6a:fb: a3:08:55:c0:78:6b:43:d0:e3:b2:9d:a3:30:09:6d: 46:c1:50:44:1e:fc:db:26:13:9c:46:93:ae:63:4b: 8f:6f:25:76:6f:7b:ef:6c:25:05:fc:61:f6:53:23: 4c:a9:34:d3:ca:74:d9:c9:7e:53:21:30:09:82:95: 78:5f:37:17:dc:fd:3b:b5:8f:3b:32:f5:6d:43:bb: 10:ae:c4:83:4b:4d:54:35:c6:8a:68:d9:b0:d5:6b: 85:04:81:e0:0f:3d:56:4f:ae:4e:c6:62:4e:cd:6c: 28:c3:28:6c:57:8d:83:cf:9a:92:1c:17:7e:b8:8e: e1:03:c5:ad:ca:b2:4e:4e:bf:dd:5e:42:7d:d0:aa: 48:61:45:5a:10:14:d5:1a:bd:4c:c1:9b:e5:ed:02: cb:72:37:97:99:8c:8b:47:03:6b:eb:71:15:90:bd: 26:91:56:c0:78:4a:4e:0a:34:4e:83:9e:82:a4:fe: d1:9f:ad:82:4a:9a:a7:a1:0e:2f:cb:fd:d1:b3:b9: 0c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F4:97:FD:B6:C3:8C:7A:33:A8:A4:06:AC:27:CE:5E:1D:E1:34:33 X509v3 Authority Key Identifier: keyid:D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3235322e302f32342d3234203d3e2034373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.72.252.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:ec:64:1b:5e:29:34:4e:95:2d:7c:34:bc:f9:4b:e0:3e:28: de:c9:57:59:fb:ee:0b:29:b7:b6:bf:c2:ed:dd:50:7f:93:0e: 4c:a8:21:f2:01:ec:79:3b:45:68:c9:be:5e:a8:d8:0e:5b:b6: 47:0e:65:d2:0a:a3:bb:1e:78:b2:72:52:64:0f:01:55:c9:cc: c5:6b:87:d5:36:bd:b3:7c:b3:e4:94:15:46:ce:f0:41:c7:f5: d3:21:64:cf:d5:43:d9:e8:3f:e8:4c:14:d7:dc:42:66:5b:85: c5:2b:64:fd:4a:09:79:9a:16:c7:0b:b2:61:2b:7f:fb:da:5b: fb:98:92:0a:e9:3c:7c:a2:61:34:68:ac:73:75:73:15:60:2b: 51:89:a3:f2:57:49:5d:a0:dc:48:8d:59:d2:31:19:4a:79:01: cf:a4:13:dc:57:f5:20:cf:a9:60:28:16:a0:bc:65:e9:b9:78: 2b:44:22:28:14:10:ba:d9:ea:de:b8:13:d1:4d:37:67:a1:ad: 5b:81:7d:aa:1e:79:64:63:00:1e:d3:b6:c4:a8:2c:7c:7f:82: ce:4b:51:e4:f1:01:5e:f3:05:17:3b:57:2e:aa:5f:5c:bd:57: 64:4d:8d:bb:9f:7c:b6:9e:5c:a6:cd:d0:08:94:e7:b8:d5:d9: 6f:28:cc:5a -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUItsPKJkA+VOkUkHykC91i0bXdZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4ODU5 NjEyQzczQjAeFw0yNjA1MTExNjI2NThaFw0yNzA1MTAxNjMxNThaMDMxMTAvBgNV BAMTKDAwRjQ5N0ZEQjZDMzhDN0EzM0E4QTQwNkFDMjdDRTVFMURFMTM0MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIuETR0386TnHSqZzRPemxlGhZ gUa6ldz822q300MIBV/PNQkS9oHjjciv3HSu+tc1a0Ir3zmu8Zxq+6MIVcB4a0PQ 47KdozAJbUbBUEQe/NsmE5xGk65jS49vJXZve+9sJQX8YfZTI0ypNNPKdNnJflMh MAmClXhfNxfc/Tu1jzsy9W1DuxCuxINLTVQ1xopo2bDVa4UEgeAPPVZPrk7GYk7N bCjDKGxXjYPPmpIcF364juEDxa3Ksk5Ov91eQn3QqkhhRVoQFNUavUzBm+XtAsty N5eZjItHA2vrcRWQvSaRVsB4Sk4KNE6DnoKk/tGfrYJKmqehDi/L/dGzuQytAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUAPSX/bbDjHozqKQGrCfOXh3hNDMwHwYDVR0j BBgwFoAU1cmQFtAe3eCk1Hw8lI7ohZYSxzswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNJQy8x L0Q1Qzk5MDE2RDAxRURERTBBNEQ0N0MzQzk0OEVFODg1OTYxMkM3M0IuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzAvRDVDOTkwMTZEMDFFRERFMEE0RDQ3QzNDOTQ4RUU4 ODU5NjEyQzczQi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSUMvMS8zMTM5MzIyZTM3MzIyZTMy MzUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzczODMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA wEj8MA0GCSqGSIb3DQEBCwUAA4IBAQBO7GQbXik0TpUtfDS8+UvgPijeyVdZ++4L Kbe2v8Lt3VB/kw5MqCHyAex5O0Voyb5eqNgOW7ZHDmXSCqO7HniyclJkDwFVyczF a4fVNr2zfLPklBVGzvBBx/XTIWTP1UPZ6D/oTBTX3EJmW4XFK2T9Sgl5mhbHC7Jh K3/72lv7mJIK6Tx8omE0aKxzdXMVYCtRiaPyV0ldoNxIjVnSMRlKeQHPpBPcV/Ug z6lgKBagvGXpuXgrRCIoFBC62ereuBPRTTdnoa1bgX2qHnlkYwAe07bEqCx8f4LO S1Hk8QFe8wUXO1cuql9cvVdkTY27n3y2nlymzdAIlOe41dlvKMxa -----END CERTIFICATE-----Generated at Wed May 13 03:55:54 2026 by rpki-client