$ rpki-client -vvf rpkica.twnic.tw/rpki/CARLWATCH/0/3130332e3136312e362e302f32332d3234203d3e20313331363138.roa File: 3130332e3136312e362e302f32332d3234203d3e20313331363138.roa (raw, json) Hash identifier: HW3fNW9yAqboou7jAhk1cKMCcOPZDWYktjmxy1gjfvo= Subject key identifier: 21:0F:F5:66:16:07:E3:FB:96:74:BC:41:14:FF:6E:E3:22:F7:1D:C9 Certificate issuer: /CN=6A8F810EB0BF683DFCA74C403A7B03D37E16F268 Certificate serial: 3A2A9C09DF5C3E2E86725C67377E9227084CC700 Authority key identifier: 6A:8F:81:0E:B0:BF:68:3D:FC:A7:4C:40:3A:7B:03:D3:7E:16:F2:68 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/3130332e3136312e362e302f32332d3234203d3e20313331363138.roa Signing time: Mon 11 May 2026 17:08:54 +0000 ROA not before: Mon 11 May 2026 17:03:54 +0000 ROA not after: Mon 10 May 2027 17:08:54 +0000 asID: 131618 IP address blocks: 103.161.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2a:9c:09:df:5c:3e:2e:86:72:5c:67:37:7e:92:27:08:4c:c7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A8F810EB0BF683DFCA74C403A7B03D37E16F268 Validity Not Before: May 11 17:03:54 2026 GMT Not After : May 10 17:08:54 2027 GMT Subject: CN=210FF5661607E3FB9674BC4114FF6EE322F71DC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c0:95:64:2c:4b:0e:ea:c5:e4:bf:3b:e4:e2: f2:20:dd:88:04:61:88:c9:99:72:24:ee:49:cd:e5: f1:95:c0:53:7e:23:e7:b2:3e:39:22:5d:06:b5:b2: ef:75:a4:eb:fe:ce:12:75:99:5c:d7:49:47:5a:23: 87:de:ba:dc:ec:53:2b:6a:50:46:10:40:da:53:72: d4:96:17:0f:46:79:e9:41:d1:2a:21:ca:98:4c:dd: 34:f4:5b:09:e2:6e:6b:23:ed:4b:1c:34:fc:6a:11: 70:64:a7:1d:a6:4c:50:47:3e:f7:47:11:cb:0f:96: 9c:96:42:00:97:3d:f9:40:22:3d:18:df:dc:d5:90: 41:42:b7:14:79:fd:3a:1c:1d:fd:f1:74:79:db:c4: 67:8f:70:ee:74:c9:c7:84:cf:91:20:58:3f:2c:3e: 19:40:1d:41:74:dc:14:d0:32:78:64:58:aa:69:fd: ed:4a:68:92:dd:54:5d:06:58:c0:45:90:ff:3c:de: 7c:30:ff:4d:4e:95:1f:8d:4e:d5:24:a8:23:03:03: d6:f5:41:50:03:58:7b:e9:ac:06:e7:79:43:49:db: c5:52:d2:4f:2c:5d:a4:7a:2c:ba:b1:03:10:d8:3b: 21:9c:1a:40:8e:6b:7a:26:23:e8:61:ee:9a:ab:5b: 1a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0F:F5:66:16:07:E3:FB:96:74:BC:41:14:FF:6E:E3:22:F7:1D:C9 X509v3 Authority Key Identifier: keyid:6A:8F:81:0E:B0:BF:68:3D:FC:A7:4C:40:3A:7B:03:D3:7E:16:F2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/3130332e3136312e362e302f32332d3234203d3e20313331363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.6.0/23 Signature Algorithm: sha256WithRSAEncryption d7:83:c0:04:34:08:f2:18:73:17:d3:53:6f:e5:8c:05:94:e5: f1:9d:6a:f5:98:ee:54:c3:4a:af:5d:c6:34:9b:d2:1f:29:6e: ba:9c:31:61:67:26:ad:b1:98:b4:7f:61:e7:41:95:ea:cb:01: 5b:1e:7b:00:20:da:b0:7a:e2:c2:88:47:e4:50:22:2d:4a:40: e3:c4:10:bb:1e:ca:59:14:e5:03:46:3f:6e:e4:02:b2:37:6e: 8e:a5:e7:d7:a0:28:cd:fa:a7:2c:a5:af:72:1d:af:89:c3:12: 62:27:ea:46:f3:4d:cb:67:4d:2a:45:b5:65:f2:9f:6e:d3:6d: c4:dd:47:81:9a:9e:42:0f:f5:a1:80:5a:e7:0d:7e:7c:0f:f4: 7f:51:1d:42:a0:f2:4f:7a:df:43:53:4b:e5:05:87:8c:33:21: 89:27:6d:71:8c:1f:7b:b3:4e:c8:7b:5d:cd:1b:85:5d:a2:0b: f4:dd:4e:f7:37:11:34:a6:90:16:c7:78:0b:5f:c1:80:cb:73: 80:82:54:8a:1a:8e:4b:2d:fc:69:ab:55:80:5a:23:1a:ba:42: 9c:35:0e:c6:9c:b9:92:87:e1:e3:b7:f0:b8:a2:0d:5a:64:d1: d7:9c:8e:12:fa:ff:b7:67:cf:d2:a8:61:ea:cf:9f:07:8b:8d: 07:f0:5f:26 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUOiqcCd9cPi6GclxnN36SJwhMxwAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE4RjgxMEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3 RTE2RjI2ODAeFw0yNjA1MTExNzAzNTRaFw0yNzA1MTAxNzA4NTRaMDMxMTAvBgNV BAMTKDIxMEZGNTY2MTYwN0UzRkI5Njc0QkM0MTE0RkY2RUUzMjJGNzFEQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWwJVkLEsO6sXkvzvk4vIg3YgE YYjJmXIk7knN5fGVwFN+I+eyPjkiXQa1su91pOv+zhJ1mVzXSUdaI4feutzsUytq UEYQQNpTctSWFw9GeelB0SohyphM3TT0Wwnibmsj7UscNPxqEXBkpx2mTFBHPvdH EcsPlpyWQgCXPflAIj0Y39zVkEFCtxR5/TocHf3xdHnbxGePcO50yceEz5EgWD8s PhlAHUF03BTQMnhkWKpp/e1KaJLdVF0GWMBFkP883nww/01OlR+NTtUkqCMDA9b1 QVADWHvprAbneUNJ28VS0k8sXaR6LLqxAxDYOyGcGkCOa3omI+hh7pqrWxrxAgMB AAGjggHpMIIB5TAdBgNVHQ4EFgQUIQ/1ZhYH4/uWdLxBFP9u4yL3HckwHwYDVR0j BBgwFoAUao+BDrC/aD38p0xAOnsD034W8mgwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FSTFdB VENILzAvNkE4RjgxMEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3RTE2RjI2OC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS82QThGODEwRUIwQkY2ODNERkNBNzRDNDAz QTdCMDNEMzdFMTZGMjY4LmNlcjB/BggrBgEFBQcBCwRzMHEwbwYIKwYBBQUHMAuG Y3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FSTFdBVENILzAvMzEzMDMz MmUzMTM2MzEyZTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzMxMzYzMTM4 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQBZ6EGMA0GCSqGSIb3DQEBCwUAA4IBAQDXg8AENAjyGHMX01Nv 5YwFlOXxnWr1mO5Uw0qvXcY0m9IfKW66nDFhZyatsZi0f2HnQZXqywFbHnsAINqw euLCiEfkUCItSkDjxBC7HspZFOUDRj9u5AKyN26OpefXoCjN+qcspa9yHa+JwxJi J+pG803LZ00qRbVl8p9u023E3UeBmp5CD/WhgFrnDX58D/R/UR1CoPJPet9DU0vl BYeMMyGJJ21xjB97s07Ie13NG4Vdogv03U73NxE0ppAWx3gLX8GAy3OAglSKGo5L Lfxpq1WAWiMaukKcNQ7GnLmSh+Hjt/C4og1aZNHXnI4S+v+3Z8/SqGHqz58Hi40H 8F8m -----END CERTIFICATE-----Generated at Wed May 13 21:09:13 2026 by rpki-client