$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/1/3134302e3131372e302e302f31362d3136203d3e203137373133.roa File: 3134302e3131372e302e302f31362d3136203d3e203137373133.roa (raw, json) Hash identifier: 6KT1ndJC2bSjEx7Rb2qUGESgO1pHFFKGVNJ3wOkj/JU= Subject key identifier: A2:01:B8:4C:23:6D:C1:27:B2:33:FC:2F:EC:22:F0:0D:0B:79:A2:E8 Certificate issuer: /CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Certificate serial: 64890187CEC73915DF29C19D19E880C392BAB465 Authority key identifier: B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/1/3134302e3131372e302e302f31362d3136203d3e203137373133.roa Signing time: Mon 11 May 2026 20:59:40 +0000 ROA not before: Mon 11 May 2026 20:54:40 +0000 ROA not after: Mon 10 May 2027 20:59:40 +0000 asID: 17713 IP address blocks: 140.117.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:89:01:87:ce:c7:39:15:df:29:c1:9d:19:e8:80:c3:92:ba:b4:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Validity Not Before: May 11 20:54:40 2026 GMT Not After : May 10 20:59:40 2027 GMT Subject: CN=A201B84C236DC127B233FC2FEC22F00D0B79A2E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f2:be:3f:54:49:13:da:e2:ec:87:cd:20:0e: ec:43:52:c3:de:5b:58:a8:8e:7a:08:91:d1:73:04: b3:a6:cf:fa:b9:85:a9:cd:25:06:52:fc:ae:88:50: 75:85:27:fd:da:db:40:ca:2a:0e:04:88:b4:6d:e9: 30:91:ae:6d:e4:44:60:13:22:67:4d:cf:17:e8:67: ec:e3:2c:75:dd:b4:cc:61:b9:11:17:1f:dc:11:1f: 6a:2f:2f:fb:f8:34:61:95:58:d5:88:33:3d:be:ba: 70:eb:a2:4e:d6:49:f4:42:72:c4:4d:26:a8:97:57: 35:a7:86:18:ff:db:31:5b:0f:a4:a1:a7:3f:a8:3a: 6f:9e:cb:37:15:6d:64:5e:01:c1:d2:c8:67:33:70: 9f:68:af:02:bd:3c:52:e8:6b:91:44:46:a6:0c:2b: ea:97:10:a5:58:a9:d4:78:13:7b:3d:43:55:0e:f3: 28:d7:f8:43:60:f6:93:50:fb:c2:05:a3:6d:3b:84: b3:ad:c5:e5:7e:48:30:a5:d5:88:d1:c4:cf:c6:c6: 4e:ec:25:40:7f:a6:e2:ba:b6:01:1f:35:7b:d6:48: ea:d3:d1:9b:ed:1f:21:c6:f3:03:cf:e9:4e:00:67: 8f:e7:40:0a:51:08:14:df:d7:7d:70:28:1f:9b:38: b1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:01:B8:4C:23:6D:C1:27:B2:33:FC:2F:EC:22:F0:0D:0B:79:A2:E8 X509v3 Authority Key Identifier: keyid:B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/1/3134302e3131372e302e302f31362d3136203d3e203137373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.117.0.0/16 Signature Algorithm: sha256WithRSAEncryption 71:16:42:16:2b:11:81:7b:d9:36:96:04:85:8b:12:fc:bf:b7: a2:79:d2:0a:2c:85:02:86:81:b6:62:c6:e5:77:9c:a5:89:cc: 76:26:ab:9b:f4:21:b2:c8:67:c4:4d:db:50:36:e1:0c:43:8f: 37:43:d7:ef:b1:9f:61:53:23:02:be:d8:bf:43:47:ff:dc:01: d2:2a:41:76:5f:68:b5:ff:9e:7e:8a:2d:e5:ec:a8:9b:57:9b: 2f:a3:05:16:cd:f7:4b:b9:b0:da:68:61:11:22:65:e1:ea:91: 63:93:c6:58:65:39:9d:3b:71:59:3d:46:64:94:bf:0e:ab:4b: 0b:af:7d:a6:27:a6:dc:1d:7f:e8:93:a1:12:67:96:7c:85:23: 76:9d:36:28:43:2d:03:4d:2e:cb:f0:e7:c8:3e:4b:1a:e0:cc: 9c:98:9e:0e:f2:6c:a9:ce:31:ac:14:2f:ca:ce:e4:3c:2a:18: b2:7c:b1:3f:13:45:ac:99:b6:fc:b6:92:60:d7:0f:66:e2:04: 2b:6d:43:32:58:ef:d6:23:85:c7:1b:7b:ad:b7:02:fd:fd:f7: 02:40:d6:4b:9b:1c:9f:74:63:e1:98:b6:a7:4d:71:db:a9:a0: de:6b:e9:5e:0c:5a:6e:06:91:79:67:8d:c6:ac:6c:52:4c:60: 5a:0d:14:05 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUZIkBh87HORXfKcGdGeiAw5K6tGUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdGMUExMkE1OUY5RTAyNDRDNDQ1RDE5NkQzM0NGNTA3 NkIzQ0Y2QTAeFw0yNjA1MTEyMDU0NDBaFw0yNzA1MTAyMDU5NDBaMDMxMTAvBgNV BAMTKEEyMDFCODRDMjM2REMxMjdCMjMzRkMyRkVDMjJGMDBEMEI3OUEyRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl8r4/VEkT2uLsh80gDuxDUsPe W1iojnoIkdFzBLOmz/q5hanNJQZS/K6IUHWFJ/3a20DKKg4EiLRt6TCRrm3kRGAT ImdNzxfoZ+zjLHXdtMxhuREXH9wRH2ovL/v4NGGVWNWIMz2+unDrok7WSfRCcsRN JqiXVzWnhhj/2zFbD6Shpz+oOm+eyzcVbWReAcHSyGczcJ9orwK9PFLoa5FERqYM K+qXEKVYqdR4E3s9Q1UO8yjX+ENg9pNQ+8IFo207hLOtxeV+SDCl1YjRxM/Gxk7s JUB/puK6tgEfNXvWSOrT0ZvtHyHG8wPP6U4AZ4/nQApRCBTf131wKB+bOLFFAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUogG4TCNtwSeyM/wv7CLwDQt5ougwHwYDVR0j BBgwFoAUt/GhKln54CRMRF0ZbTPPUHazz2owDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MS9CN0YxQTEyQTU5RjlFMDI0NEM0NDVEMTk2RDMzQ0Y1MDc2QjNDRjZBLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8wL0I3RjFBMTJBNTlGOUUwMjQ0QzQ0NUQxOTZEMzND RjUwNzZCM0NGNkEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8xLzMxMzQzMDJlMzEzMTM3 MmUzMDJlMzAyZjMxMzYyZDMxMzYyMDNkM2UyMDMxMzczNzMxMzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwCMdTANBgkqhkiG9w0BAQsFAAOCAQEAcRZCFisRgXvZNpYEhYsS/L+3onnSCiyF AoaBtmLG5XecpYnMdiarm/QhsshnxE3bUDbhDEOPN0PX77GfYVMjAr7Yv0NH/9wB 0ipBdl9otf+efoot5eyom1ebL6MFFs33S7mw2mhhESJl4eqRY5PGWGU5nTtxWT1G ZJS/DqtLC699piem3B1/6JOhEmeWfIUjdp02KEMtA00uy/DnyD5LGuDMnJieDvJs qc4xrBQvys7kPCoYsnyxPxNFrJm2/LaSYNcPZuIEK21DMljv1iOFxxt7rbcC/f33 AkDWS5scn3Rj4Zi2p01x26mg3mvpXgxabgaReWeNxqxsUkxgWg0UBQ== -----END CERTIFICATE-----Generated at Wed May 13 04:54:11 2026 by rpki-client