$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/1/3134302e3132392e3131322e302f32322d3232203d3e203137373136.roa File: 3134302e3132392e3131322e302f32322d3232203d3e203137373136.roa (raw, json) Hash identifier: uN9hEkd4eAps5EJdYWCj186iEBpSHfaYFbKpvyiAhmc= Subject key identifier: 52:00:84:F8:F0:30:90:71:6C:E8:6F:C7:5E:40:80:E5:94:A3:3D:27 Certificate issuer: /CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Certificate serial: 457ECA48B45C69E786EB37FFAF70F9DC94BCD17D Authority key identifier: B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/1/3134302e3132392e3131322e302f32322d3232203d3e203137373136.roa Signing time: Mon 11 May 2026 21:00:22 +0000 ROA not before: Mon 11 May 2026 20:55:22 +0000 ROA not after: Mon 10 May 2027 21:00:22 +0000 asID: 17716 IP address blocks: 140.129.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:7e:ca:48:b4:5c:69:e7:86:eb:37:ff:af:70:f9:dc:94:bc:d1:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Validity Not Before: May 11 20:55:22 2026 GMT Not After : May 10 21:00:22 2027 GMT Subject: CN=520084F8F03090716CE86FC75E4080E594A33D27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6f:9e:d1:79:d1:48:c1:8d:e1:03:e0:67:04: ae:ac:87:a7:2e:5e:3b:54:3a:f7:6b:cd:17:93:96: 6c:a2:24:d0:65:f2:2a:e1:6c:4d:99:11:65:1c:c0: d8:aa:9d:09:49:2b:a9:a0:5d:b3:6d:18:c1:9d:eb: d3:b0:16:20:fd:aa:0a:e7:97:0f:ac:18:0c:04:d6: 86:fa:cd:2b:c2:ea:25:b8:54:29:64:1a:63:41:dc: fb:4a:c5:04:8d:ed:da:71:db:ab:1c:6f:f4:28:fa: 13:e3:3d:f1:36:66:3f:a5:f7:31:b2:17:ca:5e:f3: 1c:fd:46:c8:3b:15:89:57:e3:37:6b:76:16:cc:19: f0:35:8b:d1:e4:7b:76:18:92:be:1a:ca:d8:a5:fa: b1:6d:4a:ed:74:06:86:df:de:08:48:ab:3f:5e:cd: 2a:7b:fd:25:19:0b:62:96:a5:74:ae:a3:46:d4:35: 67:18:7e:be:98:10:2e:61:46:b6:d2:ab:cb:a4:16: 99:1d:c1:b0:da:e7:ca:8a:08:d6:16:75:6a:3f:64: a9:d0:6d:ba:34:56:f5:8e:ab:78:e3:c4:cb:a7:40: b3:71:23:b5:df:bc:1a:79:76:1e:f0:03:1d:2f:96: b1:d2:13:cb:83:22:ef:5e:6b:6f:55:1c:79:09:ea: ac:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:00:84:F8:F0:30:90:71:6C:E8:6F:C7:5E:40:80:E5:94:A3:3D:27 X509v3 Authority Key Identifier: keyid:B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/1/3134302e3132392e3131322e302f32322d3232203d3e203137373136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.129.112.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:a8:b1:ef:e3:f8:78:47:f3:d0:9d:63:4f:c8:4d:90:af:48: f2:27:79:d0:a2:8d:15:02:a7:37:f9:08:53:2e:37:78:c9:3c: ff:6b:7e:d0:21:e1:5e:de:be:5c:07:b8:ce:36:6e:5f:73:72: f6:9c:8f:70:ec:b4:9c:68:c0:76:3d:dc:24:28:2e:40:76:71: 97:19:09:c3:e8:e8:4e:d1:aa:9b:10:54:56:6c:b4:c1:b2:e0: 25:36:8c:ee:dd:27:57:5a:a9:c1:d9:3b:76:f9:79:e8:e0:0a: 3f:fd:aa:69:cd:2b:76:0b:a0:0b:12:3f:d5:47:c3:a0:bd:2e: 3e:b9:c4:42:d2:07:19:d8:47:90:03:b8:f7:e6:21:34:42:9d: 3e:a5:9e:94:40:82:2e:95:2c:96:ca:30:b9:86:46:f4:03:1e: 01:5f:5a:f1:ce:28:cf:30:5d:6b:ce:1f:45:8f:b3:2e:bd:9f: 02:cf:39:10:19:d5:7e:29:ac:46:bb:58:d0:f6:9f:e4:6b:23: b5:23:5a:6a:75:5d:1e:5d:45:69:bd:5f:c1:fc:0d:97:d1:f5: 58:c7:3b:e1:e1:52:d5:97:97:de:0f:1c:c8:28:44:2f:3c:18: b3:0a:8a:35:75:80:a5:78:15:de:37:59:a5:7e:92:ef:b5:97: 0f:a4:0a:e0 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIURX7KSLRcaeeG6zf/r3D53JS80X0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdGMUExMkE1OUY5RTAyNDRDNDQ1RDE5NkQzM0NGNTA3 NkIzQ0Y2QTAeFw0yNjA1MTEyMDU1MjJaFw0yNzA1MTAyMTAwMjJaMDMxMTAvBgNV BAMTKDUyMDA4NEY4RjAzMDkwNzE2Q0U4NkZDNzVFNDA4MEU1OTRBMzNEMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7b57RedFIwY3hA+BnBK6sh6cu XjtUOvdrzReTlmyiJNBl8irhbE2ZEWUcwNiqnQlJK6mgXbNtGMGd69OwFiD9qgrn lw+sGAwE1ob6zSvC6iW4VClkGmNB3PtKxQSN7dpx26scb/Qo+hPjPfE2Zj+l9zGy F8pe8xz9Rsg7FYlX4zdrdhbMGfA1i9Hke3YYkr4aytil+rFtSu10Bobf3ghIqz9e zSp7/SUZC2KWpXSuo0bUNWcYfr6YEC5hRrbSq8ukFpkdwbDa58qKCNYWdWo/ZKnQ bbo0VvWOq3jjxMunQLNxI7XfvBp5dh7wAx0vlrHSE8uDIu9ea29VHHkJ6qxlAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUUgCE+PAwkHFs6G/HXkCA5ZSjPScwHwYDVR0j BBgwFoAUt/GhKln54CRMRF0ZbTPPUHazz2owDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MS9CN0YxQTEyQTU5RjlFMDI0NEM0NDVEMTk2RDMzQ0Y1MDc2QjNDRjZBLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8wL0I3RjFBMTJBNTlGOUUwMjQ0QzQ0NUQxOTZEMzND RjUwNzZCM0NGNkEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8xLzMxMzQzMDJlMzEzMjM5 MmUzMTMxMzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMTM3MzczMTM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCjIFwMA0GCSqGSIb3DQEBCwUAA4IBAQCbqLHv4/h4R/PQnWNPyE2Qr0jy J3nQoo0VAqc3+QhTLjd4yTz/a37QIeFe3r5cB7jONm5fc3L2nI9w7LScaMB2Pdwk KC5AdnGXGQnD6OhO0aqbEFRWbLTBsuAlNozu3SdXWqnB2Tt2+Xno4Ao//appzSt2 C6ALEj/VR8OgvS4+ucRC0gcZ2EeQA7j35iE0Qp0+pZ6UQIIulSyWyjC5hkb0Ax4B X1rxzijPMF1rzh9Fj7MuvZ8CzzkQGdV+KaxGu1jQ9p/kayO1I1pqdV0eXUVpvV/B /A2X0fVYxzvh4VLVl5feDxzIKEQvPBizCoo1dYCleBXeN1mlfpLvtZcPpArg -----END CERTIFICATE-----Generated at Wed May 13 07:35:38 2026 by rpki-client