$ rpki-client -vvf rpkica.twnic.tw/rpki/OPENRICH/0/3130332e3134372e3133302e302f32332d3234203d3e20313331363734.roa File: 3130332e3134372e3133302e302f32332d3234203d3e20313331363734.roa (raw, json) Hash identifier: hPsd6S2D9hMin8P77QyQ2OhAm+/bYf9j5m2G2tBdGrg= Subject key identifier: 45:EA:6F:FB:60:A2:AE:41:DA:BD:21:B4:0B:2F:72:DD:87:AC:6B:30 Certificate issuer: /CN=61F2C234A51074E0978404BDC79AA79130040B00 Certificate serial: 04939FFA6B2A0B60F487E3D0F9414E171E95CF42 Authority key identifier: 61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer Subject info access: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/3130332e3134372e3133302e302f32332d3234203d3e20313331363734.roa Signing time: Mon 11 May 2026 17:09:49 +0000 ROA not before: Mon 11 May 2026 17:04:49 +0000 ROA not after: Mon 10 May 2027 17:09:49 +0000 asID: 131674 IP address blocks: 103.147.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.crl rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:26:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:93:9f:fa:6b:2a:0b:60:f4:87:e3:d0:f9:41:4e:17:1e:95:cf:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61F2C234A51074E0978404BDC79AA79130040B00 Validity Not Before: May 11 17:04:49 2026 GMT Not After : May 10 17:09:49 2027 GMT Subject: CN=45EA6FFB60A2AE41DABD21B40B2F72DD87AC6B30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8c:d4:bb:61:5c:83:71:ff:c3:c7:29:93:82: 00:9f:6c:2f:0a:e7:8d:1a:a3:56:f5:ce:2d:10:7d: f2:b5:fd:77:8e:8e:64:93:fc:39:76:97:cc:2a:55: 23:c5:e7:3b:65:4c:fc:fd:91:2e:79:ee:e9:85:2c: 2e:e3:86:b3:45:b4:0f:6d:85:df:0e:7a:52:75:03: 5e:e9:b6:58:28:b1:14:d3:09:44:32:9d:c1:3c:aa: ad:98:24:50:08:c7:0d:41:c3:b9:cb:e1:28:1d:6c: 89:cb:b0:ee:f1:59:15:b3:c3:77:b0:34:56:50:d6: a5:a4:5d:1d:06:fd:05:de:f1:19:72:a1:06:ba:4c: fd:6e:00:a9:aa:a5:a6:28:f9:07:a8:f6:cf:4f:fd: d0:79:1f:62:7c:90:9d:c5:5c:6c:1d:14:f9:7e:c8: 04:33:06:a9:42:3c:a3:7d:bc:81:9b:18:ae:b4:36: f4:aa:51:ff:65:14:c3:62:51:ad:ad:cd:a7:9e:3c: 4f:e3:c5:56:b7:b5:53:67:33:3a:97:70:70:dc:d5: 60:5b:0f:5c:08:e8:2f:ba:0f:16:ca:d9:01:f9:5f: d6:b2:46:29:ba:89:3a:12:6d:63:6a:e6:21:3a:11: 4d:98:51:b3:cc:02:c9:ae:58:1d:ab:40:7e:5d:f5: a4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EA:6F:FB:60:A2:AE:41:DA:BD:21:B4:0B:2F:72:DD:87:AC:6B:30 X509v3 Authority Key Identifier: keyid:61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/3130332e3134372e3133302e302f32332d3234203d3e20313331363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.130.0/23 Signature Algorithm: sha256WithRSAEncryption 26:c5:5c:1e:78:9a:62:20:ad:93:a9:90:b4:28:0a:e4:1a:46: c2:c7:04:4a:f2:a1:02:3b:c3:ed:5c:60:86:95:fd:cd:d6:e1: ca:59:ea:1c:18:aa:86:3b:d2:6f:cc:41:e8:bb:07:7c:9d:db: 95:bd:f6:c8:2f:9d:80:0a:c2:8a:95:ed:82:d4:ec:44:aa:34: 8c:10:78:29:c9:8f:5f:62:39:86:8e:2b:e0:0a:f4:9c:de:40: 12:fa:4a:fc:9a:be:bd:d7:21:1c:4e:ee:88:96:91:69:d6:ff: 31:d4:18:2a:1c:12:d1:69:96:7b:53:1a:de:04:86:cf:1a:fa: da:1e:c7:ff:c2:d1:32:f5:77:2e:95:15:c4:8d:c8:d4:a6:79: c7:57:9a:20:80:45:3b:46:8a:0a:78:1f:fd:d6:f4:90:63:27: 5a:60:2e:48:ab:93:73:46:f3:b0:7e:c1:9b:93:cf:3b:53:9e: 9c:69:4c:7a:e8:78:7f:f2:7f:18:d1:29:eb:80:dd:a2:cd:de: e8:c1:3f:88:54:f3:da:c5:13:85:92:cd:b0:cd:6a:ad:c9:9a: f9:24:37:1a:c2:a1:8a:a9:74:1c:ef:5a:38:6d:be:8a:fc:12: e8:9a:57:62:fd:9e:e8:59:22:b6:68:00:6f:c0:99:c7:e4:09: 72:ac:3c:1e -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUBJOf+msqC2D0h+PQ+UFOFx6Vz0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFGMkMyMzRBNTEwNzRFMDk3ODQwNEJEQzc5QUE3OTEz MDA0MEIwMDAeFw0yNjA1MTExNzA0NDlaFw0yNzA1MTAxNzA5NDlaMDMxMTAvBgNV BAMTKDQ1RUE2RkZCNjBBMkFFNDFEQUJEMjFCNDBCMkY3MkREODdBQzZCMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbjNS7YVyDcf/DxymTggCfbC8K 540ao1b1zi0QffK1/XeOjmST/Dl2l8wqVSPF5ztlTPz9kS557umFLC7jhrNFtA9t hd8OelJ1A17ptlgosRTTCUQyncE8qq2YJFAIxw1Bw7nL4SgdbInLsO7xWRWzw3ew NFZQ1qWkXR0G/QXe8RlyoQa6TP1uAKmqpaYo+Qeo9s9P/dB5H2J8kJ3FXGwdFPl+ yAQzBqlCPKN9vIGbGK60NvSqUf9lFMNiUa2tzaeePE/jxVa3tVNnMzqXcHDc1WBb D1wI6C+6DxbK2QH5X9ayRim6iToSbWNq5iE6EU2YUbPMAsmuWB2rQH5d9aThAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQURepv+2CirkHavSG0Cy9y3YesazAwHwYDVR0j BBgwFoAUYfLCNKUQdOCXhAS9x5qnkTAECwAwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT1BFTlJJ Q0gvMC82MUYyQzIzNEE1MTA3NEUwOTc4NDA0QkRDNzlBQTc5MTMwMDQwQjAwLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzYxRjJDMjM0QTUxMDc0RTA5Nzg0MDRCREM3 OUFBNzkxMzAwNDBCMDAuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuG ZnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT1BFTlJJQ0gvMC8zMTMwMzMy ZTMxMzQzNzJlMzEzMzMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzMxMzYz NzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ5OCMA0GCSqGSIb3DQEBCwUAA4IBAQAmxVweeJpiIK2T qZC0KArkGkbCxwRK8qECO8PtXGCGlf3N1uHKWeocGKqGO9JvzEHouwd8nduVvfbI L52ACsKKle2C1OxEqjSMEHgpyY9fYjmGjivgCvSc3kAS+kr8mr691yEcTu6IlpFp 1v8x1BgqHBLRaZZ7UxreBIbPGvraHsf/wtEy9XculRXEjcjUpnnHV5oggEU7RooK eB/91vSQYydaYC5Iq5NzRvOwfsGbk887U56caUx66Hh/8n8Y0SnrgN2izd7owT+I VPPaxROFks2wzWqtyZr5JDcawqGKqXQc71o4bb6K/BLomldi/Z7oWSK2aABvwJnH 5AlyrDwe -----END CERTIFICATE-----Generated at Wed May 13 04:09:25 2026 by rpki-client