$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KTCFE/3hH1fBqUAPjZgrNbF5EBVW9majc.roa File: 3hH1fBqUAPjZgrNbF5EBVW9majc.roa (raw, json) Hash identifier: HbWiOod1GpmmHJa+VvcKGx6qMVR059a6EXaOFPBzrqE= Subject key identifier: DE:11:F5:7C:1A:94:00:F8:D9:82:B3:5B:17:91:01:55:6F:66:6A:37 Certificate issuer: /CN=48787C53FF697F16CEE9E6252DA730183DD5D701 Certificate serial: 0DA6 Authority key identifier: 48:78:7C:53:FF:69:7F:16:CE:E9:E6:25:2D:A7:30:18:3D:D5:D7:01 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHh8U_9pfxbO6eYlLacwGD3V1wE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KTCFE/3hH1fBqUAPjZgrNbF5EBVW9majc.roa Signing time: Mon 02 Mar 2026 07:37:58 +0000 ROA not before: Mon 02 Mar 2026 07:37:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131595 IP address blocks: 103.59.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KTCFE/SHh8U_9pfxbO6eYlLacwGD3V1wE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KTCFE/SHh8U_9pfxbO6eYlLacwGD3V1wE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/SHh8U_9pfxbO6eYlLacwGD3V1wE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3494 (0xda6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48787C53FF697F16CEE9E6252DA730183DD5D701 Validity Not Before: Mar 2 07:37:58 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DE11F57C1A9400F8D982B35B179101556F666A37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7f:d5:ce:69:fb:23:d7:51:64:bf:24:27:2e: 64:92:52:94:ae:b0:77:35:00:d2:be:77:49:b9:24: d8:3c:c1:59:fb:61:fd:9d:89:84:16:28:b7:04:bb: c7:a1:93:61:ba:22:43:f2:3f:0f:41:fb:48:de:03: ce:53:f5:bd:7b:56:0a:5d:cd:57:3a:82:c8:96:3a: c2:86:cf:bd:9a:19:83:b6:15:87:bc:8e:78:f1:9a: bf:13:09:a4:99:45:bd:d3:15:9f:d4:79:90:8b:f5: c7:e7:76:04:65:31:a6:7a:25:ea:0c:f1:fa:5d:f3: f4:5d:b1:78:17:c3:76:7f:90:4d:a4:e3:4b:ea:c8: 54:41:76:38:96:44:35:29:ad:4a:df:e2:db:85:c9: 45:ff:bc:01:50:d6:e8:b5:8a:79:17:45:6a:9d:c7: e7:b8:0e:08:76:5a:d9:3b:52:f9:8b:a4:70:17:7f: 1c:40:a2:f8:1c:92:00:46:76:54:e0:d3:e4:14:09: cc:6e:f0:bc:2a:35:61:7a:5c:a1:1f:c3:22:33:69: 43:93:b1:02:61:1d:8a:36:06:a9:3a:69:ca:51:cf: 15:af:22:3f:36:a6:c2:22:ee:91:c5:bb:31:cb:f7: f8:5e:03:eb:97:47:f7:3f:fc:bc:66:9e:94:11:94: d5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:11:F5:7C:1A:94:00:F8:D9:82:B3:5B:17:91:01:55:6F:66:6A:37 X509v3 Authority Key Identifier: keyid:48:78:7C:53:FF:69:7F:16:CE:E9:E6:25:2D:A7:30:18:3D:D5:D7:01 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KTCFE/SHh8U_9pfxbO6eYlLacwGD3V1wE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHh8U_9pfxbO6eYlLacwGD3V1wE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KTCFE/3hH1fBqUAPjZgrNbF5EBVW9majc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.59.220.0/23 Signature Algorithm: sha256WithRSAEncryption 80:e5:4e:ec:05:6c:38:ac:82:f3:e4:20:a2:5b:a4:c3:2e:61: 93:58:b1:0b:a0:02:f2:6f:69:55:e7:01:75:30:92:db:77:53: 73:ed:ec:be:f2:5f:aa:e6:98:8e:66:30:9f:d4:0d:6b:3d:04: 9c:00:e7:97:88:a3:d0:a2:63:1a:37:15:a1:aa:3f:9f:2d:75: 90:6a:ef:7c:e7:da:d5:d5:aa:13:9c:ea:04:8b:ce:bb:6d:2f: 2a:39:c5:41:39:14:26:4c:8a:ba:8a:49:46:eb:dd:e6:eb:e8: c9:12:ee:0b:21:fc:06:1f:20:6b:b4:79:be:85:12:80:11:79: 9b:21:e6:57:ef:2b:f3:a1:41:9b:4a:36:b0:58:9c:96:0f:cb: e3:e7:d5:a8:57:93:a0:53:02:1e:d1:fe:81:0b:84:e6:07:a1: c5:4b:98:51:a2:09:c1:42:18:a6:1b:c3:ac:05:35:b7:ad:7b: 43:d2:1f:93:d0:49:a3:15:fa:12:99:67:43:f7:d7:28:0e:cc: 6e:de:96:8c:82:1c:23:9f:5f:44:57:7e:3e:5e:db:d3:11:e8: 71:56:7b:82:93:54:3a:8d:c7:fa:61:76:be:50:41:70:ca:5c: 06:10:fb:c9:ad:14:c2:99:43:72:ae:b1:b9:e1:23:e3:a1:b7: 41:ac:83:42 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDaYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDg3 ODdDNTNGRjY5N0YxNkNFRTlFNjI1MkRBNzMwMTgzREQ1RDcwMTAeFw0yNjAzMDIw NzM3NThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERFMTFGNTdDMUE5NDAw RjhEOTgyQjM1QjE3OTEwMTU1NkY2NjZBMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgf9XOafsj11FkvyQnLmSSUpSusHc1ANK+d0m5JNg8wVn7Yf2d iYQWKLcEu8ehk2G6IkPyPw9B+0jeA85T9b17VgpdzVc6gsiWOsKGz72aGYO2FYe8 jnjxmr8TCaSZRb3TFZ/UeZCL9cfndgRlMaZ6JeoM8fpd8/RdsXgXw3Z/kE2k40vq yFRBdjiWRDUprUrf4tuFyUX/vAFQ1ui1inkXRWqdx+e4Dgh2Wtk7UvmLpHAXfxxA ovgckgBGdlTg0+QUCcxu8LwqNWF6XKEfwyIzaUOTsQJhHYo2Bqk6acpRzxWvIj82 psIi7pHFuzHL9/heA+uXR/c//LxmnpQRlNX7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU3hH1fBqUAPjZgrNbF5EBVW9majcwHwYDVR0jBBgwFoAUSHh8U/9pfxbO6eYl LacwGD3V1wEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1RDRkUv U0hoOFVfOXBmeGJPNmVZbExhY3dHRDNWMXdFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9TSGg4VV85cGZ4Yk82ZVlsTGFjd0dEM1Yxd0UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9LVENGRS8zaEgxZkJxVUFQalpnck5iRjVF QlZXOW1hamMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZzvc MA0GCSqGSIb3DQEBCwUAA4IBAQCA5U7sBWw4rILz5CCiW6TDLmGTWLELoALyb2lV 5wF1MJLbd1Nz7ey+8l+q5piOZjCf1A1rPQScAOeXiKPQomMaNxWhqj+fLXWQau98 59rV1aoTnOoEi867bS8qOcVBORQmTIq6iklG693m6+jJEu4LIfwGHyBrtHm+hRKA EXmbIeZX7yvzoUGbSjawWJyWD8vj59WoV5OgUwIe0f6BC4TmB6HFS5hRognBQhim G8OsBTW3rXtD0h+T0EmjFfoSmWdD99coDsxu3paMghwjn19EV34+XtvTEehxVnuC k1Q6jcf6YXa+UEFwylwGEPvJrRTCmUNyrrG54SPjobdBrINC -----END CERTIFICATE-----Generated at Fri Mar 27 11:27:41 2026 by rpki-client