$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/1/3139322e3139322e3133312e302f32342d3234203d3e203137373132.roa File: 3139322e3139322e3133312e302f32342d3234203d3e203137373132.roa (raw, json) Hash identifier: mn3W3Q4c1JCw+cnjmzBIGi/M/+YENa38qY0JQBX8MSk= Subject key identifier: D1:07:EE:A9:10:A4:0E:9E:EA:D6:E1:36:C6:92:95:8B:2C:D9:AF:86 Certificate issuer: /CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Certificate serial: 05A751C19A341E1F1E5848019F9451BBB2E0F06F Authority key identifier: B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/1/3139322e3139322e3133312e302f32342d3234203d3e203137373132.roa Signing time: Mon 11 May 2026 21:02:39 +0000 ROA not before: Mon 11 May 2026 20:57:39 +0000 ROA not after: Mon 10 May 2027 21:02:39 +0000 asID: 17712 IP address blocks: 192.192.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a7:51:c1:9a:34:1e:1f:1e:58:48:01:9f:94:51:bb:b2:e0:f0:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Validity Not Before: May 11 20:57:39 2026 GMT Not After : May 10 21:02:39 2027 GMT Subject: CN=D107EEA910A40E9EEAD6E136C692958B2CD9AF86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:36:6a:60:8f:a5:6e:c8:4d:69:a1:af:ff:b3: a9:d7:ca:9d:68:52:8f:d9:13:22:5b:c2:cc:09:99: f7:dd:61:ae:87:2f:94:62:d2:22:35:67:78:58:11: ed:e1:09:9a:92:8b:9d:26:2a:bd:d7:99:e4:c6:6e: f2:23:2e:41:8d:72:10:80:90:c7:e2:fc:a1:55:35: be:63:f2:35:11:fa:1f:9a:36:4e:ba:d5:2e:ad:4e: c5:57:ab:55:14:e7:ee:c3:6b:a2:aa:29:d0:35:7f: 69:ef:5e:0b:cf:a4:55:b6:99:b2:a4:f4:3d:2d:5f: ed:3a:85:56:2a:db:3e:53:f4:e3:77:02:f2:02:8c: 65:ef:71:e6:f7:9a:f2:a0:e7:ff:5b:84:47:af:d8: c6:d4:7f:22:62:6a:95:23:d0:dd:29:ef:d0:f9:2a: 80:a1:eb:e6:13:28:a8:85:cb:99:81:18:3e:bb:2c: 4b:9e:5d:20:7e:3c:46:62:f4:a3:e3:1d:ad:f0:00: ec:5d:30:b2:88:2a:71:63:09:11:13:92:3e:6a:7b: ea:9f:8b:1d:ba:05:e1:c7:12:8f:0e:c3:9d:77:02: 5d:bd:f8:89:63:1a:e7:b6:c7:72:db:c1:91:1d:fd: a5:7c:74:a3:c4:23:53:93:71:ea:33:de:41:ea:a3: 41:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:07:EE:A9:10:A4:0E:9E:EA:D6:E1:36:C6:92:95:8B:2C:D9:AF:86 X509v3 Authority Key Identifier: keyid:B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/1/3139322e3139322e3133312e302f32342d3234203d3e203137373132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.192.131.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:53:ed:00:5b:de:76:8b:f9:86:80:8d:6a:0e:cb:8f:78:26: 26:d6:e5:57:88:4f:6d:a6:9d:d7:3f:7f:6d:e4:02:80:13:5f: 5e:24:e1:e3:6b:f2:3c:77:41:ba:1d:3e:cf:ae:b9:50:17:76: cb:0c:6e:60:4e:0e:e5:6b:a1:99:53:78:31:6e:ee:87:b5:0a: aa:b2:5c:f0:38:a1:6d:a4:50:ad:e9:e7:e2:85:f7:9a:8c:46: ca:2e:61:a6:ae:b6:75:15:f1:50:96:b7:4d:48:50:b1:e8:f5: f0:fb:65:e1:05:6d:11:c0:48:6b:3a:80:6f:36:49:95:9a:af: aa:c2:f7:12:2f:5b:f4:db:2c:2a:d2:81:b4:62:70:6f:e9:34: 4b:87:1f:83:0a:31:8a:0b:60:02:b2:f2:f7:cc:4c:72:3d:97: fc:10:92:e0:c4:7e:ff:f0:ba:25:79:e1:91:fd:e4:2b:3a:6f: 67:b6:c6:77:0c:d1:0e:f7:4d:85:69:6c:a7:a3:25:63:46:e2: 0e:0e:9b:46:dd:c1:3e:8c:03:00:99:43:35:1e:4e:65:5f:36: c8:cd:65:09:4f:c1:84:91:56:99:33:f0:e6:20:7e:91:89:36: e2:43:e6:55:a7:75:e1:a1:a6:57:fa:8e:38:e3:8e:8b:32:fb: 55:a9:26:ec -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUBadRwZo0Hh8eWEgBn5RRu7Lg8G8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdGMUExMkE1OUY5RTAyNDRDNDQ1RDE5NkQzM0NGNTA3 NkIzQ0Y2QTAeFw0yNjA1MTEyMDU3MzlaFw0yNzA1MTAyMTAyMzlaMDMxMTAvBgNV BAMTKEQxMDdFRUE5MTBBNDBFOUVFQUQ2RTEzNkM2OTI5NThCMkNEOUFGODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDNmpgj6VuyE1poa//s6nXyp1o Uo/ZEyJbwswJmffdYa6HL5Ri0iI1Z3hYEe3hCZqSi50mKr3XmeTGbvIjLkGNchCA kMfi/KFVNb5j8jUR+h+aNk661S6tTsVXq1UU5+7Da6KqKdA1f2nvXgvPpFW2mbKk 9D0tX+06hVYq2z5T9ON3AvICjGXvceb3mvKg5/9bhEev2MbUfyJiapUj0N0p79D5 KoCh6+YTKKiFy5mBGD67LEueXSB+PEZi9KPjHa3wAOxdMLKIKnFjCRETkj5qe+qf ix26BeHHEo8Ow513Al29+IljGue2x3LbwZEd/aV8dKPEI1OTceoz3kHqo0FXAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQU0QfuqRCkDp7q1uE2xpKViyzZr4YwHwYDVR0j BBgwFoAUt/GhKln54CRMRF0ZbTPPUHazz2owDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MS9CN0YxQTEyQTU5RjlFMDI0NEM0NDVEMTk2RDMzQ0Y1MDc2QjNDRjZBLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8wL0I3RjFBMTJBNTlGOUUwMjQ0QzQ0NUQxOTZEMzND RjUwNzZCM0NGNkEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8xLzMxMzkzMjJlMzEzOTMy MmUzMTMzMzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMTMyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwMCDMA0GCSqGSIb3DQEBCwUAA4IBAQBLU+0AW952i/mGgI1qDsuPeCYm 1uVXiE9tpp3XP39t5AKAE19eJOHja/I8d0G6HT7PrrlQF3bLDG5gTg7la6GZU3gx bu6HtQqqslzwOKFtpFCt6efihfeajEbKLmGmrrZ1FfFQlrdNSFCx6PXw+2XhBW0R wEhrOoBvNkmVmq+qwvcSL1v02ywq0oG0YnBv6TRLhx+DCjGKC2ACsvL3zExyPZf8 EJLgxH7/8LoleeGR/eQrOm9ntsZ3DNEO902FaWynoyVjRuIODptG3cE+jAMAmUM1 Hk5lXzbIzWUJT8GEkVaZM/DmIH6RiTbiQ+ZVp3XhoaZX+o44446LMvtVqSbs -----END CERTIFICATE-----Generated at Wed May 13 08:25:03 2026 by rpki-client