$ rpki-client -vvf rpkica.twnic.tw/rpki/CARLWATCH/0/3130332e3136312e362e302f32332d3234203d3e203231383539.roa File: 3130332e3136312e362e302f32332d3234203d3e203231383539.roa (raw, json) Hash identifier: uWZD4+YbW51xLCVpXbXAANNn4P9xs+4KtJrLiouzkvQ= Subject key identifier: E8:A8:04:AA:F5:6F:52:E5:2D:CC:E4:A6:B7:CD:7F:46:B3:4E:01:1F Certificate issuer: /CN=6A8F810EB0BF683DFCA74C403A7B03D37E16F268 Certificate serial: 62509FA02D67247EEBA49DE0F9AE6BE4FFD8DEAF Authority key identifier: 6A:8F:81:0E:B0:BF:68:3D:FC:A7:4C:40:3A:7B:03:D3:7E:16:F2:68 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/3130332e3136312e362e302f32332d3234203d3e203231383539.roa Signing time: Mon 11 May 2026 17:58:34 +0000 ROA not before: Mon 11 May 2026 17:53:34 +0000 ROA not after: Mon 10 May 2027 17:58:34 +0000 asID: 21859 IP address blocks: 103.161.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:50:9f:a0:2d:67:24:7e:eb:a4:9d:e0:f9:ae:6b:e4:ff:d8:de:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A8F810EB0BF683DFCA74C403A7B03D37E16F268 Validity Not Before: May 11 17:53:34 2026 GMT Not After : May 10 17:58:34 2027 GMT Subject: CN=E8A804AAF56F52E52DCCE4A6B7CD7F46B34E011F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:45:b8:d6:cb:35:a1:63:c5:0c:52:96:1a:4f: 23:06:34:7d:5f:1f:06:c3:08:b5:ae:10:60:d6:f7: 95:79:f4:2d:9e:62:ff:e7:87:46:53:f5:91:8c:cd: 67:7b:59:36:4d:f6:99:49:83:df:b5:7d:82:02:d7: 34:39:01:dc:62:5f:f8:5a:2d:c1:e9:96:4e:2a:15: 60:48:e4:d2:e3:ad:af:19:47:c2:25:b8:28:47:5a: 6d:ae:c8:a8:bf:bf:4d:fc:82:a7:78:ec:4e:47:99: 79:b5:8d:98:62:cf:8f:35:4e:05:58:9c:36:27:a2: 92:f7:14:d2:6f:19:84:04:0f:ce:6a:9a:1e:02:aa: b9:1c:83:d2:75:ce:65:15:cc:d3:4a:5c:32:2b:1e: 08:fb:c2:b1:11:f7:0f:2a:da:3b:98:30:00:ff:68: c4:fb:a6:a0:0f:8a:77:e8:7b:87:47:51:6c:17:9b: bf:ff:9c:99:07:74:b5:e4:35:4f:a3:50:16:b9:90: 61:31:35:8c:46:73:2e:6e:be:31:05:6f:f5:0c:15: 7b:3d:e9:67:33:48:f3:51:fc:a7:3c:e1:39:69:c0: 8e:fd:ab:a6:a0:2e:3a:55:1b:f7:3e:ab:b9:52:d1: 9f:ac:15:8e:a5:c9:8f:2e:72:1b:cb:ee:d0:0f:3b: 5b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:A8:04:AA:F5:6F:52:E5:2D:CC:E4:A6:B7:CD:7F:46:B3:4E:01:1F X509v3 Authority Key Identifier: keyid:6A:8F:81:0E:B0:BF:68:3D:FC:A7:4C:40:3A:7B:03:D3:7E:16:F2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/3130332e3136312e362e302f32332d3234203d3e203231383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.6.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:9a:2f:be:29:2c:41:00:98:a0:8c:72:db:c8:10:26:8f:e5: e3:e6:52:97:a2:6e:5d:74:98:05:bf:38:3b:ac:9b:49:ae:a1: 6c:8f:4d:e5:23:67:4d:c6:f3:e8:8b:73:3c:c3:25:e2:bf:f3: f1:cc:1a:7d:9b:9a:53:b6:ee:72:ea:ac:07:df:51:94:34:80: 15:15:c8:3d:a2:ed:55:7d:a2:cf:67:9a:8a:46:6f:eb:97:57: 49:39:a4:6b:9f:ff:20:90:56:0a:08:5a:30:7f:ff:82:a6:f4: 00:f6:40:db:eb:05:e7:bd:97:92:c0:49:ac:60:c4:70:a7:18: 5e:34:18:95:2f:6a:a4:0d:59:b0:f6:d2:51:2e:a5:f8:9b:2a: da:2e:47:39:e6:66:08:eb:41:20:a9:3a:bb:b9:9a:ae:65:c2: f2:82:e1:87:ff:1b:16:73:ce:76:ab:76:8a:e4:67:12:1f:ad: d6:0f:80:5a:6f:00:88:16:5a:5e:e2:47:73:24:c2:61:c0:1e: a7:4f:18:07:2c:4a:ea:d4:96:cb:30:ae:00:b2:6b:20:5a:5f: 83:23:cd:09:fa:80:d6:b4:22:25:82:1c:eb:fc:fe:b9:20:c6: a5:1a:04:e7:31:91:ea:6b:e3:c1:53:38:e4:a8:f0:7a:8b:42: f0:7b:9f:76 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYlCfoC1nJH7rpJ3g+a5r5P/Y3q8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE4RjgxMEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3 RTE2RjI2ODAeFw0yNjA1MTExNzUzMzRaFw0yNzA1MTAxNzU4MzRaMDMxMTAvBgNV BAMTKEU4QTgwNEFBRjU2RjUyRTUyRENDRTRBNkI3Q0Q3RjQ2QjM0RTAxMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3RbjWyzWhY8UMUpYaTyMGNH1f HwbDCLWuEGDW95V59C2eYv/nh0ZT9ZGMzWd7WTZN9plJg9+1fYIC1zQ5AdxiX/ha LcHplk4qFWBI5NLjra8ZR8IluChHWm2uyKi/v038gqd47E5HmXm1jZhiz481TgVY nDYnopL3FNJvGYQED85qmh4Cqrkcg9J1zmUVzNNKXDIrHgj7wrER9w8q2juYMAD/ aMT7pqAPinfoe4dHUWwXm7//nJkHdLXkNU+jUBa5kGExNYxGcy5uvjEFb/UMFXs9 6WczSPNR/Kc84TlpwI79q6agLjpVG/c+q7lS0Z+sFY6lyY8uchvL7tAPO1t9AgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQU6KgEqvVvUuUtzOSmt81/RrNOAR8wHwYDVR0j BBgwFoAUao+BDrC/aD38p0xAOnsD034W8mgwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FSTFdB VENILzAvNkE4RjgxMEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3RTE2RjI2OC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS82QThGODEwRUIwQkY2ODNERkNBNzRDNDAz QTdCMDNEMzdFMTZGMjY4LmNlcjB9BggrBgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuG YXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FSTFdBVENILzAvMzEzMDMz MmUzMTM2MzEyZTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMTM4MzUzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWehBjANBgkqhkiG9w0BAQsFAAOCAQEAW5ovviksQQCYoIxy28gQ Jo/l4+ZSl6JuXXSYBb84O6ybSa6hbI9N5SNnTcbz6ItzPMMl4r/z8cwafZuaU7bu cuqsB99RlDSAFRXIPaLtVX2iz2eaikZv65dXSTmka5//IJBWCghaMH//gqb0APZA 2+sF572XksBJrGDEcKcYXjQYlS9qpA1ZsPbSUS6l+Jsq2i5HOeZmCOtBIKk6u7ma rmXC8oLhh/8bFnPOdqt2iuRnEh+t1g+AWm8AiBZaXuJHcyTCYcAep08YByxK6tSW yzCuALJrIFpfgyPNCfqA1rQiJYIc6/z+uSDGpRoE5zGR6mvjwVM45KjweotC8Huf dg== -----END CERTIFICATE-----Generated at Wed May 13 21:08:46 2026 by rpki-client