$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/1/3139322e3139322e3133332e302f32342d3234203d3e203138313737.roa File: 3139322e3139322e3133332e302f32342d3234203d3e203138313737.roa (raw, json) Hash identifier: 5MzC4PPO/cl8F2PSJt8usal22pdZB+IPYVUo23uIBIk= Subject key identifier: 69:10:21:BC:42:5B:48:D6:CA:A6:D4:18:47:3A:DC:09:CB:65:F0:3A Certificate issuer: /CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Certificate serial: 0CD3310F80EA9A8C6563C2B81DDA4FA63305E728 Authority key identifier: B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/1/3139322e3139322e3133332e302f32342d3234203d3e203138313737.roa Signing time: Mon 11 May 2026 21:03:30 +0000 ROA not before: Mon 11 May 2026 20:58:30 +0000 ROA not after: Mon 10 May 2027 21:03:30 +0000 asID: 18177 IP address blocks: 192.192.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:d3:31:0f:80:ea:9a:8c:65:63:c2:b8:1d:da:4f:a6:33:05:e7:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Validity Not Before: May 11 20:58:30 2026 GMT Not After : May 10 21:03:30 2027 GMT Subject: CN=691021BC425B48D6CAA6D418473ADC09CB65F03A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b6:b5:88:a9:cf:b8:cb:e4:c0:ba:ac:9b:3a: 76:97:38:21:b9:e7:96:d9:c3:ad:fc:21:ca:57:33: 71:45:be:93:18:04:eb:85:83:71:f2:90:8b:07:e8: b8:a8:f8:28:7d:e2:ee:4b:6f:ae:18:1a:d5:87:94: f7:0b:9e:73:27:74:a1:40:53:74:e3:dd:0c:33:05: b3:15:d7:78:2d:bb:ad:69:d5:97:36:8c:e6:e9:46: d1:79:28:d8:39:d6:66:9f:4d:d0:42:c4:aa:ab:f3: e8:6f:e9:60:c6:04:4e:17:ba:cd:99:9b:ce:d4:e8: f3:b3:65:6c:0c:9a:6e:e2:81:8d:d8:c9:19:d2:91: f4:7a:8e:66:7b:7d:50:a2:ad:b2:9a:21:78:d9:b7: d2:d4:c0:e6:9f:08:61:83:ce:24:51:a2:c8:6b:61: 4c:1c:90:57:2f:9d:01:bd:07:0f:20:35:e9:ab:79: d9:eb:46:e6:c2:83:9c:bc:4f:69:4e:f5:9e:02:f3: d2:25:fe:fc:f4:8e:30:c8:88:3b:6f:e1:a9:62:38: 23:d8:d6:1b:80:c6:83:88:94:e5:20:8d:de:b8:51: a8:17:1b:98:7f:61:d6:e7:03:55:50:f6:e9:39:26: d9:d3:ae:6a:a6:2d:43:8e:74:6e:ee:71:1a:75:56: a6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:10:21:BC:42:5B:48:D6:CA:A6:D4:18:47:3A:DC:09:CB:65:F0:3A X509v3 Authority Key Identifier: keyid:B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/1/3139322e3139322e3133332e302f32342d3234203d3e203138313737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.192.133.0/24 Signature Algorithm: sha256WithRSAEncryption ac:cc:5c:4a:2b:4f:e1:2b:f5:b1:26:e7:da:44:6c:33:b8:68: 14:57:5a:15:2d:eb:39:9a:26:6c:96:71:39:cd:90:76:f8:39: 86:31:01:d3:ef:79:e4:68:cd:2c:a7:15:83:38:8e:89:67:2e: fb:70:04:6a:ec:e7:f1:ec:be:d7:c1:f1:94:41:55:3b:24:ca: f1:d1:bc:04:be:99:87:59:e6:67:f1:e2:31:47:cf:7c:c6:06: 19:e6:2a:be:32:a1:57:3a:85:c9:66:46:f8:64:07:dd:28:3b: 01:17:ef:ba:9b:66:d6:72:d4:49:13:23:42:cf:30:9e:6f:45: ae:7a:8c:5d:15:da:22:e6:6e:91:db:32:e4:ff:d6:10:6a:2c: 88:31:2b:55:76:8a:4c:4f:ff:7d:97:9a:d5:35:0c:ec:c5:c4: 0d:70:56:5d:83:89:46:10:1f:5a:91:cb:b1:32:6d:a1:5d:ff: 98:4d:eb:f6:2f:50:b5:ec:8b:68:d7:ed:4e:ad:be:0d:14:62: 99:20:e4:7e:97:d3:b4:fe:8c:24:9d:1a:f9:de:d3:69:06:05: a5:bd:58:fc:13:66:12:44:12:b0:ec:9c:91:f2:41:8c:d5:39: 97:a0:80:6c:11:28:9f:ec:4f:cb:d0:79:ba:f7:0a:83:c3:80: 1b:da:49:b3 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUDNMxD4DqmoxlY8K4HdpPpjMF5ygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdGMUExMkE1OUY5RTAyNDRDNDQ1RDE5NkQzM0NGNTA3 NkIzQ0Y2QTAeFw0yNjA1MTEyMDU4MzBaFw0yNzA1MTAyMTAzMzBaMDMxMTAvBgNV BAMTKDY5MTAyMUJDNDI1QjQ4RDZDQUE2RDQxODQ3M0FEQzA5Q0I2NUYwM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDItrWIqc+4y+TAuqybOnaXOCG5 55bZw638IcpXM3FFvpMYBOuFg3HykIsH6Lio+Ch94u5Lb64YGtWHlPcLnnMndKFA U3Tj3QwzBbMV13gtu61p1Zc2jObpRtF5KNg51mafTdBCxKqr8+hv6WDGBE4Xus2Z m87U6POzZWwMmm7igY3YyRnSkfR6jmZ7fVCirbKaIXjZt9LUwOafCGGDziRRoshr YUwckFcvnQG9Bw8gNemrednrRubCg5y8T2lO9Z4C89Il/vz0jjDIiDtv4aliOCPY 1huAxoOIlOUgjd64UagXG5h/YdbnA1VQ9uk5JtnTrmqmLUOOdG7ucRp1VqbvAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUaRAhvEJbSNbKptQYRzrcCctl8DowHwYDVR0j BBgwFoAUt/GhKln54CRMRF0ZbTPPUHazz2owDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MS9CN0YxQTEyQTU5RjlFMDI0NEM0NDVEMTk2RDMzQ0Y1MDc2QjNDRjZBLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8wL0I3RjFBMTJBNTlGOUUwMjQ0QzQ0NUQxOTZEMzND RjUwNzZCM0NGNkEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8xLzMxMzkzMjJlMzEzOTMy MmUzMTMzMzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM4MzEzNzM3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwMCFMA0GCSqGSIb3DQEBCwUAA4IBAQCszFxKK0/hK/WxJufaRGwzuGgU V1oVLes5miZslnE5zZB2+DmGMQHT73nkaM0spxWDOI6JZy77cARq7Ofx7L7XwfGU QVU7JMrx0bwEvpmHWeZn8eIxR898xgYZ5iq+MqFXOoXJZkb4ZAfdKDsBF++6m2bW ctRJEyNCzzCeb0WueoxdFdoi5m6R2zLk/9YQaiyIMStVdopMT/99l5rVNQzsxcQN cFZdg4lGEB9akcuxMm2hXf+YTev2L1C17Ito1+1Orb4NFGKZIOR+l9O0/owknRr5 3tNpBgWlvVj8E2YSRBKw7JyR8kGM1TmXoIBsESif7E/L0Hm69wqDw4Ab2kmz -----END CERTIFICATE-----Generated at Wed May 13 12:47:08 2026 by rpki-client