$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CJME/_aXB3WFk4kuZHebHzc1oe4klfpc.roa File: _aXB3WFk4kuZHebHzc1oe4klfpc.roa (raw, json) Hash identifier: YeHMk8bebTPCBNogdzj/8fG42Wd9ehV96W/3rjqeFaM= Subject key identifier: FD:A5:C1:DD:61:64:E2:4B:99:1D:E6:C7:CD:CD:68:7B:89:25:7E:97 Certificate issuer: /CN=E214623FD129CB972740D391DAF39196F2ADF2BD Certificate serial: 01F8 Authority key identifier: E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/_aXB3WFk4kuZHebHzc1oe4klfpc.roa Signing time: Thu 02 Apr 2026 03:08:35 +0000 ROA not before: Thu 02 Apr 2026 03:08:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 140214 IP address blocks: 157.20.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 Apr 2026 01:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E214623FD129CB972740D391DAF39196F2ADF2BD Validity Not Before: Apr 2 03:08:35 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FDA5C1DD6164E24B991DE6C7CDCD687B89257E97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ab:c2:23:3f:92:ff:01:2d:dc:0d:ea:fa:f0: 3f:2c:38:82:e0:e2:76:04:ac:1f:5e:d5:eb:25:49: 91:8b:cd:f0:30:5b:be:07:ed:24:15:ab:8f:1f:bf: 35:43:34:a6:85:51:ee:23:28:f8:8c:4e:71:a7:dd: 4e:41:4b:88:36:c2:be:5c:72:ea:d1:9e:ff:06:c9: 97:1c:23:f1:98:7d:e8:11:fe:8d:d1:f0:a3:ed:97: b6:7a:86:f1:ea:da:69:a6:bc:78:e6:34:55:95:43: 5f:a8:8b:7e:66:e4:b5:51:09:3f:04:00:e1:1a:24: a1:46:ae:e0:59:fc:d8:28:86:0f:e5:0b:77:db:3c: 66:bf:d2:03:b1:8a:20:a8:27:2e:ce:31:ba:16:0a: 52:e9:50:ed:94:c0:00:7d:d4:d6:e9:f0:44:d1:03: de:6b:c3:7b:b9:a9:31:7d:9f:00:fb:5c:4b:b6:ed: 94:3b:94:c4:24:20:5e:9f:92:99:5f:93:20:f4:94: 96:47:8e:11:3b:d0:ef:78:cb:5b:a4:79:2a:b4:52: 95:7d:8a:26:bd:de:e3:82:55:71:70:88:94:9d:8f: af:eb:5f:04:a6:a5:ec:9a:22:fd:b7:0d:a9:d6:2d: bc:1c:21:35:dd:83:74:4c:40:01:0f:89:ff:e3:91: 8b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A5:C1:DD:61:64:E2:4B:99:1D:E6:C7:CD:CD:68:7B:89:25:7E:97 X509v3 Authority Key Identifier: keyid:E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/_aXB3WFk4kuZHebHzc1oe4klfpc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.198.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:d3:af:92:28:5e:8d:77:03:92:0d:a4:99:f9:77:79:c4:a8: 4f:e1:26:ca:af:79:33:29:11:42:94:38:5a:6a:76:4f:ed:b6: 0a:3a:98:24:c3:a5:ca:4f:f5:4b:49:82:50:74:c5:6d:96:80: 93:3a:6e:9a:34:3f:1c:4a:eb:fd:3f:44:f9:6d:8f:2c:92:59: e5:e7:13:98:8e:54:46:33:b7:ae:ff:37:e0:bb:8d:5d:d8:5e: aa:9f:cd:86:96:eb:d0:83:30:88:69:e6:85:e6:b3:a3:11:53: 2c:74:0f:21:63:dc:eb:08:08:a1:e4:fc:9f:f2:3f:0d:2a:f7: ee:d5:b4:99:fe:46:ba:75:9e:d7:25:f1:e2:e2:49:6c:ee:e1: 0b:43:60:78:fc:ec:61:cb:f4:a3:a8:11:2e:38:f4:70:e9:1e: 24:55:a0:39:db:48:8c:20:c0:02:b2:10:14:e4:f8:82:03:c2: 7f:08:a5:d2:15:9e:41:37:ae:2b:40:5d:78:84:0d:7c:91:d9: 73:46:4f:42:df:2b:a4:f5:5f:d9:22:38:e1:97:bd:f6:8d:91: 6a:df:de:10:54:93:cc:58:82:7f:6b:b2:85:16:a9:f6:bd:9d: 42:7a:77:2d:3c:c4:b7:67:e0:af:b8:d6:1c:02:2c:31:f9:a2: 61:42:cd:a3 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTIx NDYyM0ZEMTI5Q0I5NzI3NDBEMzkxREFGMzkxOTZGMkFERjJCRDAeFw0yNjA0MDIw MzA4MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZEQTVDMURENjE2NEUy NEI5OTFERTZDN0NEQ0Q2ODdCODkyNTdFOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9q8IjP5L/AS3cDer68D8sOILg4nYErB9e1eslSZGLzfAwW74H 7SQVq48fvzVDNKaFUe4jKPiMTnGn3U5BS4g2wr5ccurRnv8GyZccI/GYfegR/o3R 8KPtl7Z6hvHq2mmmvHjmNFWVQ1+oi35m5LVRCT8EAOEaJKFGruBZ/Ngohg/lC3fb PGa/0gOxiiCoJy7OMboWClLpUO2UwAB91Nbp8ETRA95rw3u5qTF9nwD7XEu27ZQ7 lMQkIF6fkplfkyD0lJZHjhE70O94y1ukeSq0UpV9iia93uOCVXFwiJSdj6/rXwSm peyaIv23DanWLbwcITXdg3RMQAEPif/jkYs7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU/aXB3WFk4kuZHebHzc1oe4klfpcwHwYDVR0jBBgwFoAU4hRiP9Epy5cnQNOR 2vORlvKt8r0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0pNRS80 aFJpUDlFcHk1Y25RTk9SMnZPUmx2S3Q4cjAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRoUmlQOUVweTVjblFOT1Iydk9SbHZLdDhyMC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NKTUUvX2FYQjNXRms0a3VaSGViSHpjMW9l NGtsZnBjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UxjAN BgkqhkiG9w0BAQsFAAOCAQEATNOvkihejXcDkg2kmfl3ecSoT+Emyq95MykRQpQ4 Wmp2T+22CjqYJMOlyk/1S0mCUHTFbZaAkzpumjQ/HErr/T9E+W2PLJJZ5ecTmI5U RjO3rv834LuNXdheqp/Nhpbr0IMwiGnmheazoxFTLHQPIWPc6wgIoeT8n/I/DSr3 7tW0mf5GunWe1yXx4uJJbO7hC0NgePzsYcv0o6gRLjj0cOkeJFWgOdtIjCDAArIQ FOT4ggPCfwil0hWeQTeuK0BdeIQNfJHZc0ZPQt8rpPVf2SI44Ze99o2Rat/eEFST zFiCf2uyhRap9r2dQnp3LTzEt2fgr7jWHAIsMfmiYULNow== -----END CERTIFICATE-----Generated at Mon Apr 6 00:06:17 2026 by rpki-client