$ rpki-client -vvf rpkica.twnic.tw/rpki/ZUSO/1/3133382e3235322e31332e302f32342d3234203d3e20313331363338.roa File: 3133382e3235322e31332e302f32342d3234203d3e20313331363338.roa (raw, json) Hash identifier: ZxFVwcoOUjiuOptQUvoMY0HJlqBq+tEMKJCTrxaADFk= Subject key identifier: 80:82:8A:7C:92:94:D3:32:61:42:3C:30:68:5F:34:47:6A:E0:4F:E0 Certificate issuer: /CN=9CDE503CCE370A39E157F8519ACF1A47727CC1C3 Certificate serial: 38074A8DF9F2DFF7911701AA35B5ED436BE122B7 Authority key identifier: 9C:DE:50:3C:CE:37:0A:39:E1:57:F8:51:9A:CF:1A:47:72:7C:C1:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/9CDE503CCE370A39E157F8519ACF1A47727CC1C3.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ZUSO/1/3133382e3235322e31332e302f32342d3234203d3e20313331363338.roa Signing time: Mon 11 May 2026 17:57:04 +0000 ROA not before: Mon 11 May 2026 17:52:04 +0000 ROA not after: Mon 10 May 2027 17:57:04 +0000 asID: 131638 IP address blocks: 138.252.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ZUSO/1/9CDE503CCE370A39E157F8519ACF1A47727CC1C3.crl rsync://rpkica.twnic.tw/rpki/ZUSO/1/9CDE503CCE370A39E157F8519ACF1A47727CC1C3.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/9CDE503CCE370A39E157F8519ACF1A47727CC1C3.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:07:4a:8d:f9:f2:df:f7:91:17:01:aa:35:b5:ed:43:6b:e1:22:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CDE503CCE370A39E157F8519ACF1A47727CC1C3 Validity Not Before: May 11 17:52:04 2026 GMT Not After : May 10 17:57:04 2027 GMT Subject: CN=80828A7C9294D33261423C30685F34476AE04FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:64:14:2a:74:17:cb:e8:40:e1:f9:bd:1b:9a: 98:8e:09:df:e9:bd:18:57:27:fa:13:1b:61:0c:1d: 12:c0:99:e7:9c:f8:28:11:97:05:37:29:02:dd:d9: 62:f0:5d:af:40:8b:f0:5c:5f:ee:2b:68:0f:22:57: 4a:8f:a9:3d:b4:48:cf:4b:2b:c0:84:74:f7:87:5d: 83:ed:38:4f:c7:17:af:44:ed:85:22:f3:e0:60:5a: 79:d1:cf:c8:a4:fa:27:c2:e1:8b:87:8d:75:b0:20: dd:f4:47:2d:cc:90:b4:4b:6b:11:81:95:22:b4:65: 81:75:7b:68:bb:bd:48:87:f8:0f:5e:5a:d0:1b:32: 87:af:07:45:18:9e:81:99:40:70:bb:c1:1b:f6:db: 0d:4d:5e:9b:d0:99:1c:fd:15:e7:9c:64:54:b7:a2: d2:13:67:94:7c:2b:12:81:1a:d5:9b:39:fb:48:8d: 3c:f5:e5:af:e5:bd:62:f4:8a:72:cf:72:8b:08:b8: d8:13:31:4b:64:f6:82:a5:95:2e:a0:d6:99:de:85: 77:98:da:48:6d:9e:64:cf:92:6e:e9:a0:8f:2c:c7: 65:67:ff:fe:7c:2e:fb:4b:58:a4:4f:2f:59:e3:c9: 79:86:77:c7:e1:6e:45:b9:cb:ca:1d:de:4d:d4:d1: 1a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:82:8A:7C:92:94:D3:32:61:42:3C:30:68:5F:34:47:6A:E0:4F:E0 X509v3 Authority Key Identifier: keyid:9C:DE:50:3C:CE:37:0A:39:E1:57:F8:51:9A:CF:1A:47:72:7C:C1:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ZUSO/1/9CDE503CCE370A39E157F8519ACF1A47727CC1C3.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/9CDE503CCE370A39E157F8519ACF1A47727CC1C3.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ZUSO/1/3133382e3235322e31332e302f32342d3234203d3e20313331363338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.13.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:3b:1c:1d:28:85:82:ed:bc:a1:10:d2:17:c8:43:0c:e0:c3: 2a:d1:6c:89:07:4a:2c:c8:cf:60:d6:cc:f1:9d:2b:6b:2e:0c: 6e:20:22:9e:ec:50:fc:e4:e3:f6:7e:b2:08:a3:71:14:aa:10: 69:e8:f6:bf:7b:30:d2:d9:ba:f0:91:c7:e8:58:b7:25:1c:a1: 3e:2b:da:08:49:75:35:36:6d:17:7e:90:cb:36:4f:e5:ba:01: e4:cc:ac:ad:dc:06:da:e0:1a:10:c8:58:3b:7c:ba:81:c8:65: 67:1c:b0:43:34:73:95:bf:bd:27:e2:34:70:1d:1c:bb:fd:1d: d2:f8:55:96:97:1f:3e:85:bf:bf:aa:4c:35:3e:03:5a:6c:af: a0:0e:91:63:20:48:d1:a4:d4:be:ab:ec:4a:7c:e0:e6:ff:30: 49:58:6e:79:f5:06:1d:05:de:eb:7b:2d:40:9c:a6:8e:17:6c: 0a:42:36:9b:6a:f1:f4:ff:46:b9:e8:15:00:3f:4c:2e:a6:17: 9e:4d:4f:bd:cc:7c:0f:eb:ab:76:b6:7f:a2:8e:da:b1:46:d8: 8c:15:ab:83:5a:b7:75:2e:5c:9d:7e:9c:c3:e7:06:6f:fa:e8: 8d:a2:9d:f4:4a:4c:50:bb:b7:a1:e4:22:a6:ba:a1:87:ba:f9: 3a:ba:10:b1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUOAdKjfny3/eRFwGqNbXtQ2vhIrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUNERTUwM0NDRTM3MEEzOUUxNTdGODUxOUFDRjFBNDc3 MjdDQzFDMzAeFw0yNjA1MTExNzUyMDRaFw0yNzA1MTAxNzU3MDRaMDMxMTAvBgNV BAMTKDgwODI4QTdDOTI5NEQzMzI2MTQyM0MzMDY4NUYzNDQ3NkFFMDRGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeZBQqdBfL6EDh+b0bmpiOCd/p vRhXJ/oTG2EMHRLAmeec+CgRlwU3KQLd2WLwXa9Ai/BcX+4raA8iV0qPqT20SM9L K8CEdPeHXYPtOE/HF69E7YUi8+BgWnnRz8ik+ifC4YuHjXWwIN30Ry3MkLRLaxGB lSK0ZYF1e2i7vUiH+A9eWtAbMoevB0UYnoGZQHC7wRv22w1NXpvQmRz9FeecZFS3 otITZ5R8KxKBGtWbOftIjTz15a/lvWL0inLPcosIuNgTMUtk9oKllS6g1pnehXeY 2khtnmTPkm7poI8sx2Vn//58LvtLWKRPL1njyXmGd8fhbkW5y8od3k3U0Ro9AgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUgIKKfJKU0zJhQjwwaF80R2rgT+AwHwYDVR0j BBgwFoAUnN5QPM43CjnhV/hRms8aR3J8wcMwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWlVTTy8x LzlDREU1MDNDQ0UzNzBBMzlFMTU3Rjg1MTlBQ0YxQTQ3NzI3Q0MxQzMuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzAvOUNERTUwM0NDRTM3MEEzOUUxNTdGODUxOUFDRjFB NDc3MjdDQzFDMy5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1pVU08vMS8zMTMzMzgyZTMyMzUzMjJl MzEzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM2MzMzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAIr8DTANBgkqhkiG9w0BAQsFAAOCAQEAPjscHSiFgu28oRDSF8hDDODDKtFs iQdKLMjPYNbM8Z0ray4MbiAinuxQ/OTj9n6yCKNxFKoQaej2v3sw0tm68JHH6Fi3 JRyhPivaCEl1NTZtF36QyzZP5boB5MysrdwG2uAaEMhYO3y6gchlZxywQzRzlb+9 J+I0cB0cu/0d0vhVlpcfPoW/v6pMNT4DWmyvoA6RYyBI0aTUvqvsSnzg5v8wSVhu efUGHQXe63stQJymjhdsCkI2m2rx9P9GuegVAD9MLqYXnk1Pvcx8D+urdrZ/oo7a sUbYjBWrg1q3dS5cnX6cw+cGb/rojaKd9EpMULu3oeQiprqhh7r5OroQsQ== -----END CERTIFICATE-----Generated at Wed May 13 03:59:38 2026 by rpki-client