$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/0/AS18047.roa File: AS18047.roa (raw, json) Hash identifier: J4WakVwJWfyd/jtRhBY0Sn4bIPMH3T7PrME5BAycAxE= Subject key identifier: 12:11:6B:CF:F1:42:4A:E3:34:48:D3:F5:56:8E:6F:F1:10:3B:69:6F Certificate issuer: /CN=6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD Certificate serial: 44CE191ABCF4CF9705A600AADEFE4608023B3A8D Authority key identifier: 6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/0/AS18047.roa Signing time: Mon 11 May 2026 21:01:47 +0000 ROA not before: Mon 11 May 2026 20:56:47 +0000 ROA not after: Mon 10 May 2027 21:01:47 +0000 asID: 18047 IP address blocks: 120.127.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.crl rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ce:19:1a:bc:f4:cf:97:05:a6:00:aa:de:fe:46:08:02:3b:3a:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD Validity Not Before: May 11 20:56:47 2026 GMT Not After : May 10 21:01:47 2027 GMT Subject: CN=12116BCFF1424AE33448D3F5568E6FF1103B696F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:67:58:52:31:17:43:c8:0e:5e:65:32:23:a8: 31:38:87:eb:a7:61:c5:82:87:fe:e9:e9:29:21:46: 44:76:ae:50:65:ed:fa:0f:3d:31:32:49:65:95:51: 17:58:73:9a:7b:d7:9c:b1:75:35:1d:22:ac:92:07: ac:64:3b:00:39:0d:d4:c0:77:ec:19:36:52:ae:54: 32:17:09:66:37:c5:47:1f:cd:21:18:d5:c5:27:e9: 78:8f:cf:fc:a1:03:76:66:a1:cf:76:0a:8f:73:18: 1a:c7:d0:e0:2b:3d:11:cd:81:ba:67:4c:b7:2e:80: c5:f8:6e:9d:c6:6c:f1:0c:d3:d0:1a:95:45:b0:2a: c9:b8:cd:2e:ab:ba:2b:ab:5e:de:32:cf:01:87:76: a8:0d:5a:26:83:6c:8d:c2:d8:6e:2e:a3:24:66:5e: 8d:2d:9d:3d:11:56:9f:21:ea:cb:7c:84:2e:7f:11: 80:7d:62:a8:8b:e9:2b:8f:4b:49:8c:5e:be:46:c3: cd:bd:e4:fa:f2:4e:74:58:eb:03:6b:83:b8:e5:4b: f5:9b:7c:cf:f2:88:a7:da:9e:ae:09:8b:17:67:4b: b6:b4:fd:c9:52:19:30:fc:6f:0c:30:3e:77:42:d9: 1c:9e:8f:16:58:c9:a8:7f:42:52:5d:c9:54:10:86: ea:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:11:6B:CF:F1:42:4A:E3:34:48:D3:F5:56:8E:6F:F1:10:3B:69:6F X509v3 Authority Key Identifier: keyid:6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/0/AS18047.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.127.160.0/19 Signature Algorithm: sha256WithRSAEncryption 3e:5f:93:8a:8c:fc:4a:f9:c0:6b:62:05:6a:90:ee:7a:39:f0: e7:fd:21:6a:33:43:a5:1b:82:b5:41:e2:96:2a:cc:31:f0:79: 0f:e5:92:74:09:40:d4:73:da:5d:29:a2:8a:74:95:30:c1:fd: 04:65:b5:15:c3:e0:2e:bc:3c:3d:e0:5b:c8:85:16:94:8c:53: cd:e2:a3:25:c9:f6:d8:a1:4f:12:fd:91:a5:93:bb:13:79:dc: a7:08:3d:ca:45:a6:9c:82:df:66:45:f5:5b:8b:d7:b6:cc:9a: 8a:93:41:45:e9:e7:fc:0f:57:47:62:77:74:82:38:5e:08:14: a3:b4:42:76:b3:a1:61:53:47:9b:88:10:89:46:73:b6:6f:8e: 98:68:b0:b1:ca:f5:4b:f6:40:c4:32:09:47:02:29:ad:43:49: 63:2d:28:f5:b9:72:99:10:53:c3:fd:eb:8a:91:bf:2d:23:9a: 7e:2f:f9:7a:c8:b4:98:a9:e7:a0:f0:e1:cf:ad:3d:68:e2:17: 31:f7:e3:5b:f9:c3:07:9f:84:d1:bd:79:b6:5b:1a:2d:7c:a7: 6d:b4:85:50:ed:f8:5d:b0:31:d2:1a:54:da:89:2d:b7:ba:18: 40:05:4a:a2:3e:eb:4e:2e:2a:f3:57:4b:4b:c6:42:0c:06:70: 34:c5:61:2b -----BEGIN CERTIFICATE----- MIIEqDCCA5CgAwIBAgIURM4ZGrz0z5cFpgCq3v5GCAI7Oo0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU5QzMyMjY2ODJBRUZBOEQ2N0I4QUM2MDhDQ0NGQzhB MDk2MTBDRDAeFw0yNjA1MTEyMDU2NDdaFw0yNzA1MTAyMTAxNDdaMDMxMTAvBgNV BAMTKDEyMTE2QkNGRjE0MjRBRTMzNDQ4RDNGNTU2OEU2RkYxMTAzQjY5NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7Z1hSMRdDyA5eZTIjqDE4h+un YcWCh/7p6SkhRkR2rlBl7foPPTEySWWVURdYc5p715yxdTUdIqySB6xkOwA5DdTA d+wZNlKuVDIXCWY3xUcfzSEY1cUn6XiPz/yhA3Zmoc92Co9zGBrH0OArPRHNgbpn TLcugMX4bp3GbPEM09AalUWwKsm4zS6ruiurXt4yzwGHdqgNWiaDbI3C2G4uoyRm Xo0tnT0RVp8h6st8hC5/EYB9YqiL6SuPS0mMXr5Gw8295PryTnRY6wNrg7jlS/Wb fM/yiKfanq4JixdnS7a0/clSGTD8bwwwPndC2RyejxZYyah/QlJdyVQQhuobAgMB AAGjggGyMIIBrjAdBgNVHQ4EFgQUEhFrz/FCSuM0SNP1Vo5v8RA7aW8wHwYDVR0j BBgwFoAUbpwyJmgq76jWe4rGCMzPyKCWEM0wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MC82RTlDMzIyNjY4MkFFRkE4RDY3QjhBQzYwOENDQ0ZDOEEwOTYxMENELmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzZFOUMzMjI2NjgyQUVGQThENjdCOEFDNjA4Q0ND RkM4QTA5NjEwQ0QuY2VyMEwGCCsGAQUFBwELBEAwPjA8BggrBgEFBQcwC4YwcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8wL0FTMTgwNDcucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV4f6AwDQYJKoZIhvcNAQELBQADggEBAD5fk4qM/Er5wGtiBWqQ7no58Of9 IWozQ6UbgrVB4pYqzDHweQ/lknQJQNRz2l0poop0lTDB/QRltRXD4C68PD3gW8iF FpSMU83ioyXJ9tihTxL9kaWTuxN53KcIPcpFppyC32ZF9VuL17bMmoqTQUXp5/wP V0did3SCOF4IFKO0QnazoWFTR5uIEIlGc7ZvjphosLHK9Uv2QMQyCUcCKa1DSWMt KPW5cpkQU8P964qRvy0jmn4v+XrItJip56Dw4c+tPWjiFzH341v5wwefhNG9ebZb Gi18p220hVDt+F2wMdIaVNqJLbe6GEAFSqI+604uKvNXS0vGQgwGcDTFYSs= -----END CERTIFICATE-----Generated at Tue May 12 23:00:49 2026 by rpki-client