$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/0/AS17712.roa File: AS17712.roa (raw, json) Hash identifier: Wg4H8Fi4n92WsVNQZPoPRYKtdvnX3aJz4nbFyuqqLUg= Subject key identifier: 67:DA:CD:58:11:FC:10:BC:C3:02:6A:8A:B0:23:DF:98:53:92:88:E3 Certificate issuer: /CN=6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD Certificate serial: 47BDF2D89DB81C9A09BD6A47DE687A5FBD854390 Authority key identifier: 6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/0/AS17712.roa Signing time: Tue 12 May 2026 01:50:16 +0000 ROA not before: Tue 12 May 2026 01:45:16 +0000 ROA not after: Tue 11 May 2027 01:50:16 +0000 asID: 17712 IP address blocks: 120.113.0.0/16 maxlen: 16 120.123.0.0/18 maxlen: 18 163.27.0.0/16 maxlen: 16 163.28.96.0/20 maxlen: 20 203.64.22.0/24 maxlen: 24 203.72.0.0/21 maxlen: 21 203.72.18.0/23 maxlen: 23 203.72.20.0/24 maxlen: 24 210.60.205.0/24 maxlen: 24 210.60.206.0/24 maxlen: 24 210.70.9.0/24 maxlen: 24 210.70.10.0/23 maxlen: 23 210.70.14.0/23 maxlen: 23 210.70.140.0/22 maxlen: 22 210.70.144.0/24 maxlen: 24 210.70.187.0/24 maxlen: 24 210.70.188.0/24 maxlen: 24 210.240.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.crl rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:bd:f2:d8:9d:b8:1c:9a:09:bd:6a:47:de:68:7a:5f:bd:85:43:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD Validity Not Before: May 12 01:45:16 2026 GMT Not After : May 11 01:50:16 2027 GMT Subject: CN=67DACD5811FC10BCC3026A8AB023DF98539288E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f4:cc:df:12:3e:bd:b8:b4:d1:2c:73:b2:31: 23:3b:76:83:a3:84:7b:54:30:fe:a6:dc:56:7e:15: 99:82:68:84:3c:5a:2b:bc:30:48:0c:8b:e0:31:51: 2c:f4:8a:13:b8:d9:f4:d2:1b:e7:16:bb:45:25:6b: 26:4e:35:45:17:03:57:b9:f1:5f:b1:1a:14:aa:6b: b5:be:13:16:06:03:fb:e9:fd:fd:57:be:4b:6b:39: 56:1a:50:85:50:24:e8:56:4e:b8:07:98:0b:e3:dd: a6:49:d9:eb:c0:ec:0b:ed:df:61:52:ad:74:06:82: f1:7e:13:5f:ea:51:22:05:71:5a:01:4e:71:54:5b: d8:ef:e8:eb:12:78:57:90:18:b2:e4:14:ed:2a:59: 61:a7:ce:d4:c5:79:2f:79:cb:dd:78:5a:6f:8e:52: 32:a9:76:3e:ad:ce:8b:f8:f5:a2:63:a4:24:d1:6b: ad:72:51:73:0f:e1:b9:61:a6:23:bc:df:25:76:33: 05:6e:c7:2c:b0:7a:e2:6e:9b:71:85:e7:20:38:3f: dd:75:7a:cf:7e:03:a3:fd:da:6c:51:1b:54:a4:dd: 8f:f3:25:74:9b:57:0f:61:42:9c:2c:5c:af:ea:b3: f6:e4:e8:8b:b5:05:fb:3d:91:e6:d9:83:ee:1d:a8: 4a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:DA:CD:58:11:FC:10:BC:C3:02:6A:8A:B0:23:DF:98:53:92:88:E3 X509v3 Authority Key Identifier: keyid:6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/0/AS17712.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.113.0.0/16 120.123.0.0/18 163.27.0.0/16 163.28.96.0/20 203.64.22.0/24 203.72.0.0/21 203.72.18.0-203.72.20.255 210.60.205.0-210.60.206.255 210.70.9.0-210.70.11.255 210.70.14.0/23 210.70.140.0-210.70.144.255 210.70.187.0-210.70.188.255 210.240.202.0/23 Signature Algorithm: sha256WithRSAEncryption a3:b9:51:2d:d8:37:97:0d:fd:0e:ae:ab:76:95:7b:a3:d1:d1: da:4f:d3:a1:de:3c:b9:2e:0e:de:30:50:ac:ef:e8:7a:90:ba: e4:18:b5:b4:81:07:c0:d8:4f:c5:a8:d0:12:ae:1e:c1:70:57: 6f:95:b4:87:b1:cc:57:f5:83:85:00:f8:db:46:58:6d:55:a2: f0:d6:47:e9:30:79:dc:d1:b9:44:ec:38:bf:8e:79:03:48:a8: f3:31:e8:72:f4:ef:89:e0:7a:56:8a:2e:cf:d9:cb:d2:35:53: 86:4a:8d:e7:e5:14:6d:61:73:95:72:3e:64:a8:12:fb:b1:19: 76:fd:d1:80:11:23:4a:5d:7d:78:ff:f2:85:8e:77:36:31:47: 97:64:da:67:e4:96:80:40:0f:3a:de:18:bb:89:8c:1c:d9:0c: ad:56:28:85:93:b0:9e:ab:a9:11:5c:36:83:f4:74:50:70:5c: f0:5d:2b:bb:2f:ec:d5:0f:f1:11:1b:43:c0:f4:fe:8c:b6:77: 23:a2:aa:19:6d:3b:3e:a8:1b:e8:60:aa:cd:46:d3:c6:01:d2: 83:94:62:1c:d8:56:07:ae:06:e6:04:8c:20:3f:a9:45:cd:dd: 11:ca:60:d3:fd:07:5a:4c:03:56:59:eb:61:be:84:95:d9:4b: aa:23:46:fa -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUR73y2J24HJoJvWpH3mh6X72FQ5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU5QzMyMjY2ODJBRUZBOEQ2N0I4QUM2MDhDQ0NGQzhB MDk2MTBDRDAeFw0yNjA1MTIwMTQ1MTZaFw0yNzA1MTEwMTUwMTZaMDMxMTAvBgNV BAMTKDY3REFDRDU4MTFGQzEwQkNDMzAyNkE4QUIwMjNERjk4NTM5Mjg4RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK9MzfEj69uLTRLHOyMSM7doOj hHtUMP6m3FZ+FZmCaIQ8Wiu8MEgMi+AxUSz0ihO42fTSG+cWu0UlayZONUUXA1e5 8V+xGhSqa7W+ExYGA/vp/f1XvktrOVYaUIVQJOhWTrgHmAvj3aZJ2evA7Avt32FS rXQGgvF+E1/qUSIFcVoBTnFUW9jv6OsSeFeQGLLkFO0qWWGnztTFeS95y914Wm+O UjKpdj6tzov49aJjpCTRa61yUXMP4blhpiO83yV2MwVuxyyweuJum3GF5yA4P911 es9+A6P92mxRG1Sk3Y/zJXSbVw9hQpwsXK/qs/bk6Iu1Bfs9kebZg+4dqEr1AgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUZ9rNWBH8ELzDAmqKsCPfmFOSiOMwHwYDVR0j BBgwFoAUbpwyJmgq76jWe4rGCMzPyKCWEM0wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MC82RTlDMzIyNjY4MkFFRkE4RDY3QjhBQzYwOENDQ0ZDOEEwOTYxMENELmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzZFOUMzMjI2NjgyQUVGQThENjdCOEFDNjA4Q0ND RkM4QTA5NjEwQ0QuY2VyMEwGCCsGAQUFBwELBEAwPjA8BggrBgEFBQcwC4YwcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8wL0FTMTc3MTIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwgY0GCCsGAQUFBwEHAQH/BH4wfDB6BAIA ATB0AwMAeHEDBAZ4ewADAwCjGwMEBKMcYAMEAMtAFgMEA8tIADAMAwQBy0gSAwQA y0gUMAwDBADSPM0DBADSPM4wDAMEANJGCQMEAtJGCAMEAdJGDjAMAwQC0kaMAwQA 0kaQMAwDBADSRrsDBADSRrwDBAHS8MowDQYJKoZIhvcNAQELBQADggEBAKO5US3Y N5cN/Q6uq3aVe6PR0dpP06HePLkuDt4wUKzv6HqQuuQYtbSBB8DYT8Wo0BKuHsFw V2+VtIexzFf1g4UA+NtGWG1VovDWR+kwedzRuUTsOL+OeQNIqPMx6HL074ngelaK Ls/Zy9I1U4ZKjeflFG1hc5VyPmSoEvuxGXb90YARI0pdfXj/8oWOdzYxR5dk2mfk loBADzreGLuJjBzZDK1WKIWTsJ6rqRFcNoP0dFBwXPBdK7sv7NUP8REbQ8D0/oy2 dyOiqhltOz6oG+hgqs1G08YB0oOUYhzYVgeuBuYEjCA/qUXN3RHKYNP9B1pMA1ZZ 62G+hJXZS6ojRvo= -----END CERTIFICATE-----Generated at Tue May 12 23:00:48 2026 by rpki-client