$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/1/3134302e3133362e302e302f31362d3138203d3e203338383435.roa File: 3134302e3133362e302e302f31362d3138203d3e203338383435.roa (raw, json) Hash identifier: KZTzmQvtMl30ooDQP2BpjvYIK2V/6PX0wpxObAwcpTw= Subject key identifier: EE:A2:2B:D7:6A:A7:61:F0:3A:94:CF:7B:03:C1:62:56:71:37:CF:53 Certificate issuer: /CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Certificate serial: 37329F474A9EEB161F4BD1E87153F765166B48A1 Authority key identifier: B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/1/3134302e3133362e302e302f31362d3138203d3e203338383435.roa Signing time: Mon 11 May 2026 20:59:12 +0000 ROA not before: Mon 11 May 2026 20:54:12 +0000 ROA not after: Mon 10 May 2027 20:59:12 +0000 asID: 38845 IP address blocks: 140.136.0.0/16 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:32:9f:47:4a:9e:eb:16:1f:4b:d1:e8:71:53:f7:65:16:6b:48:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Validity Not Before: May 11 20:54:12 2026 GMT Not After : May 10 20:59:12 2027 GMT Subject: CN=EEA22BD76AA761F03A94CF7B03C162567137CF53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:67:c3:48:77:39:5a:3a:35:ed:04:6d:1e: e9:fa:92:89:d9:78:31:84:8b:22:96:e6:08:3b:fe: e9:fa:1d:38:1a:b9:76:04:91:7a:44:1a:8b:b4:19: 92:4d:2e:e7:3b:98:e4:e3:fb:0f:4e:22:4c:69:9b: 13:c8:f3:bb:93:eb:8a:99:cc:ea:10:31:c9:b2:e4: 49:33:77:01:4d:d5:fd:f7:ee:4f:1b:20:ca:22:4c: d9:52:2a:a0:19:94:73:ec:83:91:88:04:4f:df:ce: 5d:83:b5:b7:16:73:68:1d:3d:c5:45:64:ad:27:f0: 91:e1:f8:83:cd:7f:c8:ca:15:75:88:b6:ba:7e:ec: 8e:64:64:47:e9:43:7b:86:85:df:6c:f8:9e:db:f6: 14:a2:e5:c4:40:fd:62:23:3a:2e:d1:e9:cc:71:1c: fc:0c:aa:e4:1a:1c:8a:33:c2:31:d7:74:9c:3f:be: b3:20:49:8a:11:4f:5b:7e:e1:d4:95:f7:7d:66:5a: f2:25:04:88:10:75:16:08:ba:f2:21:6b:4c:f8:3b: b0:8e:a1:6c:72:1d:6a:f7:93:46:cb:67:b1:96:33: f8:43:0d:b5:5e:a5:73:69:ad:3f:f4:30:32:0a:24: ba:34:03:0f:56:4e:6f:5d:45:7f:dd:e1:4f:50:01: 72:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A2:2B:D7:6A:A7:61:F0:3A:94:CF:7B:03:C1:62:56:71:37:CF:53 X509v3 Authority Key Identifier: keyid:B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/1/3134302e3133362e302e302f31362d3138203d3e203338383435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.136.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:6e:df:36:e9:7d:7e:9a:85:5d:65:89:d1:5d:40:23:de:c8: b7:ef:e4:10:af:c9:01:98:fc:9e:e2:e2:05:02:50:52:2c:7d: 0e:61:8e:d8:69:63:58:0c:34:92:76:0a:ae:06:31:db:b1:a5: 4a:28:40:c5:3a:48:c7:1c:a1:51:ff:a7:12:cc:be:d1:84:b1: e9:06:99:3b:61:3a:ab:02:f0:0b:76:2d:27:44:ef:cd:78:e0: 08:de:0f:c3:c8:29:08:5f:c1:fc:3a:aa:46:65:cf:c1:77:37: 30:9c:48:43:f8:92:6a:df:33:60:80:28:c8:46:39:ac:5b:c1: 7e:1a:76:39:5c:59:b3:ac:b5:98:2e:d5:09:98:a1:62:10:cf: b3:8b:ad:af:ca:a4:75:a3:32:5e:2e:73:c1:cf:44:c3:99:6b: 24:dd:35:e5:90:b7:ec:22:a0:6b:c9:4c:c1:5f:69:ff:3b:93: b2:56:e6:f4:ce:b6:9c:18:e9:d8:ac:f9:76:2e:a5:f8:9f:7d: 85:70:f7:c9:cc:db:b9:4c:19:ad:32:0e:54:7b:25:01:fa:58: b1:5b:e0:64:17:7f:16:f3:07:1f:17:17:ba:2a:68:13:c2:0e: e1:64:7f:57:8b:31:08:5c:70:d0:c9:99:97:bf:b4:d9:ed:4f: 2f:88:a7:d8 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUNzKfR0qe6xYfS9HocVP3ZRZrSKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdGMUExMkE1OUY5RTAyNDRDNDQ1RDE5NkQzM0NGNTA3 NkIzQ0Y2QTAeFw0yNjA1MTEyMDU0MTJaFw0yNzA1MTAyMDU5MTJaMDMxMTAvBgNV BAMTKEVFQTIyQkQ3NkFBNzYxRjAzQTk0Q0Y3QjAzQzE2MjU2NzEzN0NGNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9SWfDSHc5Wjo17QRtHun6konZ eDGEiyKW5gg7/un6HTgauXYEkXpEGou0GZJNLuc7mOTj+w9OIkxpmxPI87uT64qZ zOoQMcmy5EkzdwFN1f337k8bIMoiTNlSKqAZlHPsg5GIBE/fzl2DtbcWc2gdPcVF ZK0n8JHh+IPNf8jKFXWItrp+7I5kZEfpQ3uGhd9s+J7b9hSi5cRA/WIjOi7R6cxx HPwMquQaHIozwjHXdJw/vrMgSYoRT1t+4dSV931mWvIlBIgQdRYIuvIha0z4O7CO oWxyHWr3k0bLZ7GWM/hDDbVepXNprT/0MDIKJLo0Aw9WTm9dRX/d4U9QAXLdAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQU7qIr12qnYfA6lM97A8FiVnE3z1MwHwYDVR0j BBgwFoAUt/GhKln54CRMRF0ZbTPPUHazz2owDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MS9CN0YxQTEyQTU5RjlFMDI0NEM0NDVEMTk2RDMzQ0Y1MDc2QjNDRjZBLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8wL0I3RjFBMTJBNTlGOUUwMjQ0QzQ0NUQxOTZEMzND RjUwNzZCM0NGNkEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8xLzMxMzQzMDJlMzEzMzM2 MmUzMDJlMzAyZjMxMzYyZDMxMzgyMDNkM2UyMDMzMzgzODM0MzUucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwCMiDANBgkqhkiG9w0BAQsFAAOCAQEAQ27fNul9fpqFXWWJ0V1AI97It+/kEK/J AZj8nuLiBQJQUix9DmGO2GljWAw0knYKrgYx27GlSihAxTpIxxyhUf+nEsy+0YSx 6QaZO2E6qwLwC3YtJ0TvzXjgCN4Pw8gpCF/B/DqqRmXPwXc3MJxIQ/iSat8zYIAo yEY5rFvBfhp2OVxZs6y1mC7VCZihYhDPs4utr8qkdaMyXi5zwc9Ew5lrJN015ZC3 7CKga8lMwV9p/zuTslbm9M62nBjp2Kz5di6l+J99hXD3yczbuUwZrTIOVHslAfpY sVvgZBd/FvMHHxcXuipoE8IO4WR/V4sxCFxw0MmZl7+02e1PL4in2A== -----END CERTIFICATE-----Generated at Wed May 13 03:56:47 2026 by rpki-client