$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/0/AS1569.roa File: AS1569.roa (raw, json) Hash identifier: jY4pATt/jGgMLbu/QefPNwktyUJg9b+KBtuPdVhUmTk= Subject key identifier: 7F:DC:72:3D:2B:E7:C3:0C:7A:3F:26:A3:1A:9F:0E:F6:45:50:88:08 Certificate issuer: /CN=6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD Certificate serial: 39CA3825273EFFBA12D0113437E96516FEAA8EC8 Authority key identifier: 6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/0/AS1569.roa Signing time: Mon 11 May 2026 21:01:45 +0000 ROA not before: Mon 11 May 2026 20:56:45 +0000 ROA not after: Mon 10 May 2027 21:01:45 +0000 asID: 1569 IP address blocks: 203.68.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.crl rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:ca:38:25:27:3e:ff:ba:12:d0:11:34:37:e9:65:16:fe:aa:8e:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD Validity Not Before: May 11 20:56:45 2026 GMT Not After : May 10 21:01:45 2027 GMT Subject: CN=7FDC723D2BE7C30C7A3F26A31A9F0EF645508808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b0:58:6c:6b:f9:bf:1f:c3:74:af:1a:d0:04: 57:33:70:fd:dc:98:9f:f6:c8:e2:5c:27:10:9e:08: 6c:8d:83:23:97:1d:e1:d0:06:ba:96:20:cc:0d:1a: 1c:50:f2:5a:3f:78:8b:05:97:90:2c:92:26:12:b5: 6a:86:58:7d:f0:22:e9:35:3a:44:6b:8b:cb:89:13: 68:35:e4:0c:7b:15:fb:fa:e5:55:05:d7:74:65:ef: d5:bb:04:22:c7:cd:c0:10:19:06:3f:bf:f3:d7:a2: 23:e8:6e:de:bb:05:78:fe:46:4c:03:80:e7:70:f4: ca:5d:c9:1d:8e:60:3b:f8:2d:07:88:49:57:4e:1f: 57:4e:a3:e6:24:3d:52:f9:b7:5d:b4:b0:38:f6:8e: c7:04:28:41:7d:21:e4:da:d1:fa:d6:e8:30:9e:0b: 7a:44:5b:4e:c7:1d:46:07:5a:1a:25:56:dd:92:35: 98:23:a9:5e:5b:c5:aa:ff:c8:a5:18:07:fa:bd:4c: b8:5f:ee:1e:96:61:14:01:48:fe:13:6e:68:d7:d3: 48:d5:45:c5:93:6c:fa:a4:63:a4:d4:5d:99:ba:d6: ec:e2:82:4b:e6:f2:66:28:0f:0d:e1:23:11:72:80: d2:71:5d:91:3a:d5:ba:d1:ce:6b:6f:eb:ac:3a:56: fc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:DC:72:3D:2B:E7:C3:0C:7A:3F:26:A3:1A:9F:0E:F6:45:50:88:08 X509v3 Authority Key Identifier: keyid:6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/0/AS1569.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.68.192.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:e6:24:9a:30:38:e4:36:f2:d4:f5:25:97:dc:53:06:54:77: be:59:79:fb:95:9d:df:b0:d8:cb:e4:08:a7:24:6d:2d:a1:6f: 84:f0:60:96:95:be:bc:09:48:ee:8d:6d:0a:74:38:58:95:29: b0:cf:93:db:32:d8:5a:92:85:46:c0:5b:d2:98:1e:a4:0b:32: a2:bc:72:a3:d1:9e:a9:28:22:a0:18:43:e0:b2:7a:f4:0b:52: c0:6b:49:db:0b:c0:28:14:29:fe:bb:71:75:bd:e2:4a:db:c1: 44:b7:3e:95:03:f8:ab:87:c0:16:ac:21:c2:af:cf:4f:39:1c: 09:78:70:0b:3d:3f:f2:ea:48:72:52:6f:a9:ce:35:1d:18:4f: ec:00:3d:77:c5:e2:a7:07:78:19:fb:00:78:3b:19:9d:d5:a5: fa:18:ff:3d:46:47:45:0f:93:a9:cc:94:0c:57:33:4d:ec:15: 3e:d5:d4:b5:60:cd:07:ce:bc:29:ca:52:b7:da:85:f6:21:77: 5a:a8:85:2e:51:9e:ec:1c:0e:a2:e8:0b:87:90:83:c5:97:57: e0:b9:74:4f:d9:94:64:21:50:da:1a:a2:6b:4d:62:59:67:90: 93:35:eb:88:71:56:20:81:01:04:99:8d:7f:4b:f4:c1:bf:70: de:f5:7a:35 -----BEGIN CERTIFICATE----- MIIEpzCCA4+gAwIBAgIUOco4JSc+/7oS0BE0N+llFv6qjsgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU5QzMyMjY2ODJBRUZBOEQ2N0I4QUM2MDhDQ0NGQzhB MDk2MTBDRDAeFw0yNjA1MTEyMDU2NDVaFw0yNzA1MTAyMTAxNDVaMDMxMTAvBgNV BAMTKDdGREM3MjNEMkJFN0MzMEM3QTNGMjZBMzFBOUYwRUY2NDU1MDg4MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZsFhsa/m/H8N0rxrQBFczcP3c mJ/2yOJcJxCeCGyNgyOXHeHQBrqWIMwNGhxQ8lo/eIsFl5AskiYStWqGWH3wIuk1 OkRri8uJE2g15Ax7Ffv65VUF13Rl79W7BCLHzcAQGQY/v/PXoiPobt67BXj+RkwD gOdw9MpdyR2OYDv4LQeISVdOH1dOo+YkPVL5t120sDj2jscEKEF9IeTa0frW6DCe C3pEW07HHUYHWholVt2SNZgjqV5bxar/yKUYB/q9TLhf7h6WYRQBSP4TbmjX00jV RcWTbPqkY6TUXZm61uzigkvm8mYoDw3hIxFygNJxXZE61brRzmtv66w6VvyfAgMB AAGjggGxMIIBrTAdBgNVHQ4EFgQUf9xyPSvnwwx6PyajGp8O9kVQiAgwHwYDVR0j BBgwFoAUbpwyJmgq76jWe4rGCMzPyKCWEM0wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MC82RTlDMzIyNjY4MkFFRkE4RDY3QjhBQzYwOENDQ0ZDOEEwOTYxMENELmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzZFOUMzMjI2NjgyQUVGQThENjdCOEFDNjA4Q0ND RkM4QTA5NjEwQ0QuY2VyMEsGCCsGAQUFBwELBD8wPTA7BggrBgEFBQcwC4YvcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8wL0FTMTU2OS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEActEwDANBgkqhkiG9w0BAQsFAAOCAQEAmuYkmjA45Dby1PUll9xTBlR3vll5 +5Wd37DYy+QIpyRtLaFvhPBglpW+vAlI7o1tCnQ4WJUpsM+T2zLYWpKFRsBb0pge pAsyorxyo9GeqSgioBhD4LJ69AtSwGtJ2wvAKBQp/rtxdb3iStvBRLc+lQP4q4fA Fqwhwq/PTzkcCXhwCz0/8upIclJvqc41HRhP7AA9d8Xipwd4GfsAeDsZndWl+hj/ PUZHRQ+TqcyUDFczTewVPtXUtWDNB868KcpSt9qF9iF3WqiFLlGe7BwOougLh5CD xZdX4Ll0T9mUZCFQ2hqia01iWWeQkzXriHFWIIEBBJmNf0v0wb9w3vV6NQ== -----END CERTIFICATE-----Generated at Tue May 12 23:00:55 2026 by rpki-client