$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/1/3134302e3132352e302e302f31362d3136203d3e203137373132.roa File: 3134302e3132352e302e302f31362d3136203d3e203137373132.roa (raw, json) Hash identifier: KkWfOLlmmJrKjpB4LEPw85PKcQo2C6jBBrvHXC6WjDw= Subject key identifier: 96:EA:A1:DB:0A:CA:7E:57:68:E4:E2:75:70:3B:A9:E8:18:93:6C:DA Certificate issuer: /CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Certificate serial: 03FF5AA07FB76AF19CFF732A3A9FE786FDFA583F Authority key identifier: B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/1/3134302e3132352e302e302f31362d3136203d3e203137373132.roa Signing time: Mon 11 May 2026 21:00:19 +0000 ROA not before: Mon 11 May 2026 20:55:19 +0000 ROA not after: Mon 10 May 2027 21:00:19 +0000 asID: 17712 IP address blocks: 140.125.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ff:5a:a0:7f:b7:6a:f1:9c:ff:73:2a:3a:9f:e7:86:fd:fa:58:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Validity Not Before: May 11 20:55:19 2026 GMT Not After : May 10 21:00:19 2027 GMT Subject: CN=96EAA1DB0ACA7E5768E4E275703BA9E818936CDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fa:d2:1d:d6:d0:24:c3:f1:07:3f:82:fa:a0: e3:e1:74:86:24:9f:f8:10:eb:14:00:ee:04:8f:69: 8a:ca:bd:a9:bb:a0:f4:9f:03:96:7d:2f:41:7f:db: 7b:84:33:6b:02:36:d3:93:72:a9:d8:a9:10:a7:10: ff:31:9f:80:ff:16:64:93:60:ce:55:4a:07:0e:64: c9:c7:d2:60:55:5d:9d:94:1a:d3:24:b8:8e:65:7e: 36:9d:d3:c4:bf:2e:ae:3d:6d:eb:ca:f7:c0:66:78: e5:f6:52:2a:ba:c4:a9:67:99:b3:77:52:23:9c:f1: 8c:92:f0:b3:66:24:c9:ed:d4:e0:73:22:75:ed:ba: 53:61:2e:ed:d0:1d:c5:05:43:b8:a1:b5:3e:d4:75: 7c:9b:95:67:75:79:3b:f5:f3:10:f5:08:d8:65:15: 18:f1:65:18:b0:7a:a1:d1:3c:6b:ab:67:ed:89:ea: a4:95:39:96:ec:c9:48:92:9a:ee:3e:29:b8:93:18: 64:67:e3:96:78:cf:be:bc:33:3a:4b:5b:d6:18:98: 3f:14:42:0a:34:93:73:7e:58:16:08:5f:d9:39:42: 67:e3:5e:a9:45:ca:0f:e6:a6:8b:d5:88:f4:2f:36: fa:9d:e3:8d:5d:94:93:6f:b7:db:95:37:80:82:a3: 93:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:EA:A1:DB:0A:CA:7E:57:68:E4:E2:75:70:3B:A9:E8:18:93:6C:DA X509v3 Authority Key Identifier: keyid:B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/1/3134302e3132352e302e302f31362d3136203d3e203137373132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.125.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:64:08:5c:b9:71:ba:19:54:15:67:c8:28:5c:84:ca:ed:8f: 60:10:bc:50:fe:8a:96:c0:73:6e:71:ca:7f:27:80:2e:0d:79: 0a:06:8a:67:99:58:1b:9a:0e:36:e6:fd:ee:03:bd:ac:98:2b: 77:b3:f0:9c:ff:da:ce:ea:41:ef:d0:c9:e5:19:8e:eb:0f:23: be:71:49:7b:42:99:a9:89:24:86:b7:88:c8:0f:40:53:65:d5: 19:8c:dd:b0:61:8a:ab:42:c1:54:a5:e3:52:3b:3d:26:56:db: f5:6d:35:f6:bf:d7:7b:84:31:75:ba:cf:63:b2:f0:99:05:df: 39:59:b4:23:83:eb:00:5c:71:dc:5d:be:db:91:85:0d:fc:69: bb:49:24:14:c3:f6:7d:95:b3:f8:ba:92:ac:6b:49:a9:16:51: b8:13:91:63:22:70:d3:8b:9c:bc:de:a5:72:ff:75:f1:e8:09: c9:e1:1a:b0:3d:f9:83:36:c7:73:f0:f8:bb:50:95:dd:66:d2: 33:46:96:10:f4:96:2b:22:f0:9f:6d:1a:bf:6c:b5:ab:bf:bc: 28:25:a1:be:f5:5e:0a:d2:e3:d0:40:45:69:36:33:99:75:c8: e1:f7:36:f9:47:b0:ca:fd:04:94:bf:55:6a:b0:09:8d:45:5e: 60:38:3b:02 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUA/9aoH+3avGc/3MqOp/nhv36WD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdGMUExMkE1OUY5RTAyNDRDNDQ1RDE5NkQzM0NGNTA3 NkIzQ0Y2QTAeFw0yNjA1MTEyMDU1MTlaFw0yNzA1MTAyMTAwMTlaMDMxMTAvBgNV BAMTKDk2RUFBMURCMEFDQTdFNTc2OEU0RTI3NTcwM0JBOUU4MTg5MzZDREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM+tId1tAkw/EHP4L6oOPhdIYk n/gQ6xQA7gSPaYrKvam7oPSfA5Z9L0F/23uEM2sCNtOTcqnYqRCnEP8xn4D/FmST YM5VSgcOZMnH0mBVXZ2UGtMkuI5lfjad08S/Lq49bevK98BmeOX2Uiq6xKlnmbN3 UiOc8YyS8LNmJMnt1OBzInXtulNhLu3QHcUFQ7ihtT7UdXyblWd1eTv18xD1CNhl FRjxZRiweqHRPGurZ+2J6qSVOZbsyUiSmu4+KbiTGGRn45Z4z768MzpLW9YYmD8U Qgo0k3N+WBYIX9k5QmfjXqlFyg/mpovViPQvNvqd441dlJNvt9uVN4CCo5PJAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUluqh2wrKfldo5OJ1cDup6BiTbNowHwYDVR0j BBgwFoAUt/GhKln54CRMRF0ZbTPPUHazz2owDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MS9CN0YxQTEyQTU5RjlFMDI0NEM0NDVEMTk2RDMzQ0Y1MDc2QjNDRjZBLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8wL0I3RjFBMTJBNTlGOUUwMjQ0QzQ0NUQxOTZEMzND RjUwNzZCM0NGNkEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8xLzMxMzQzMDJlMzEzMjM1 MmUzMDJlMzAyZjMxMzYyZDMxMzYyMDNkM2UyMDMxMzczNzMxMzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwCMfTANBgkqhkiG9w0BAQsFAAOCAQEAaGQIXLlxuhlUFWfIKFyEyu2PYBC8UP6K lsBzbnHKfyeALg15CgaKZ5lYG5oONub97gO9rJgrd7PwnP/azupB79DJ5RmO6w8j vnFJe0KZqYkkhreIyA9AU2XVGYzdsGGKq0LBVKXjUjs9Jlbb9W019r/Xe4QxdbrP Y7LwmQXfOVm0I4PrAFxx3F2+25GFDfxpu0kkFMP2fZWz+LqSrGtJqRZRuBORYyJw 04ucvN6lcv918egJyeEasD35gzbHc/D4u1CV3WbSM0aWEPSWKyLwn20av2y1q7+8 KCWhvvVeCtLj0EBFaTYzmXXI4fc2+Uewyv0ElL9VarAJjUVeYDg7Ag== -----END CERTIFICATE-----Generated at Wed May 13 04:03:39 2026 by rpki-client