$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/3130332e3232342e3230302e302f32322d3234203d3e203138343239.roa File: 3130332e3232342e3230302e302f32322d3234203d3e203138343239.roa (raw, json) Hash identifier: ZFKZSKM8QZaXGKc1i4BFmjugNB2O/5mYR0ET+d2Z1hQ= Subject key identifier: 24:EA:EB:11:96:CD:E6:F1:20:FE:48:38:FC:B4:C6:45:5D:D0:04:E2 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 3BC3FA7926AEF030A7FC3F7DE931B1F8E6E8CF3A Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/3130332e3232342e3230302e302f32322d3234203d3e203138343239.roa Signing time: Mon 11 May 2026 17:27:09 +0000 ROA not before: Mon 11 May 2026 17:22:09 +0000 ROA not after: Mon 10 May 2027 17:27:09 +0000 asID: 18429 IP address blocks: 103.224.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c3:fa:79:26:ae:f0:30:a7:fc:3f:7d:e9:31:b1:f8:e6:e8:cf:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 17:22:09 2026 GMT Not After : May 10 17:27:09 2027 GMT Subject: CN=24EAEB1196CDE6F120FE4838FCB4C6455DD004E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:58:ce:cd:32:8f:61:81:53:e1:b4:d0:7a:e6: dc:95:6f:d3:82:d1:d9:18:a0:c5:bb:68:b0:cf:31: 77:f8:0d:04:3f:3c:8a:7e:50:22:ea:41:cb:ef:e1: e4:e0:a8:3d:54:09:9d:fe:ea:eb:52:6c:a0:f1:b1: 1e:91:09:b9:c5:c8:4a:ea:b6:7e:d3:80:c8:cf:14: 02:43:6c:1d:72:02:89:f1:80:39:95:63:9d:86:c8: 4e:94:ab:e1:db:a7:98:b3:4c:6f:33:05:e1:36:c5: 7a:7e:6b:84:40:18:d7:f2:2f:92:3c:fd:53:c4:94: 1e:94:dd:db:0f:e3:eb:ec:47:14:a6:94:17:38:bb: 62:ab:2f:87:fc:00:0f:4a:46:08:9b:50:5c:79:bf: 90:2f:a1:53:3b:c8:ac:c3:a3:41:05:1d:3c:08:2a: 4b:64:a0:12:05:92:ef:0e:75:69:e9:0f:0f:60:c3: 40:04:fd:cd:11:f1:d8:5a:9d:7a:fa:cc:0e:8e:cf: ba:78:c2:04:7b:c1:2d:8a:fd:b7:39:e8:07:86:7c: 94:0d:10:0c:15:90:1a:ef:e2:13:d7:15:56:fe:b3: f0:6d:03:ec:ac:4a:4e:d9:93:02:aa:62:02:43:06: ad:4c:ce:dc:0b:7b:79:49:d4:48:0a:47:c0:c5:55: 75:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:EA:EB:11:96:CD:E6:F1:20:FE:48:38:FC:B4:C6:45:5D:D0:04:E2 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/3130332e3232342e3230302e302f32322d3234203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.200.0/22 Signature Algorithm: sha256WithRSAEncryption 70:09:0e:f9:f7:e5:64:b2:41:dc:c4:5c:ac:9c:e1:dd:33:33: 06:41:16:47:6f:bf:15:65:e6:06:da:16:ee:81:c1:61:99:63: f5:8c:a6:93:d6:cc:8e:14:d4:e8:3c:18:48:35:f7:2a:2c:e3: 4d:f7:13:0e:a3:1b:da:5d:1b:a1:c2:33:ea:f6:0b:c6:44:b4: 86:70:ac:12:62:65:8a:58:ae:11:82:bd:3e:32:8b:97:50:a8: f5:9a:bf:c4:54:a7:8a:38:0d:8f:32:a7:1b:e9:da:13:9f:75: 01:a3:e8:4b:ab:92:68:a4:3a:53:17:a4:f3:4d:69:79:44:60: f7:68:d2:b5:2d:34:e4:10:d4:a0:2f:13:b1:fd:fa:e0:a4:c1: bd:7e:0d:3b:41:23:b2:9a:5d:47:de:4b:d2:44:19:8c:ea:8b: 9b:17:0d:db:b6:a5:1f:3e:7b:f8:2a:dc:62:3a:cd:2c:78:ee: 9f:7d:f6:76:29:e8:90:c7:09:be:f3:8b:d1:86:de:ab:02:d6: 6f:24:4d:f7:b5:2b:9f:cb:86:4f:ce:eb:fe:fa:9d:e9:ee:13: 16:de:ec:61:23:34:a7:77:5e:f0:a8:08:33:f3:48:06:cd:4c: ca:23:27:df:e0:91:56:03:0f:79:25:01:bd:34:4f:91:c0:ca: 5f:ba:b9:27 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUO8P6eSau8DCn/D996TGx+ObozzowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNzIyMDlaFw0yNzA1MTAxNzI3MDlaMDMxMTAvBgNV BAMTKDI0RUFFQjExOTZDREU2RjEyMEZFNDgzOEZDQjRDNjQ1NUREMDA0RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeWM7NMo9hgVPhtNB65tyVb9OC 0dkYoMW7aLDPMXf4DQQ/PIp+UCLqQcvv4eTgqD1UCZ3+6utSbKDxsR6RCbnFyErq tn7TgMjPFAJDbB1yAonxgDmVY52GyE6Uq+Hbp5izTG8zBeE2xXp+a4RAGNfyL5I8 /VPElB6U3dsP4+vsRxSmlBc4u2KrL4f8AA9KRgibUFx5v5AvoVM7yKzDo0EFHTwI KktkoBIFku8OdWnpDw9gw0AE/c0R8dhanXr6zA6Oz7p4wgR7wS2K/bc56AeGfJQN EAwVkBrv4hPXFVb+s/BtA+ysSk7ZkwKqYgJDBq1MztwLe3lJ1EgKR8DFVXWrAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUJOrrEZbN5vEg/kg4/LTGRV3QBOIwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMxMzAzMzJlMzIzMjM0 MmUzMjMwMzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTM4MzQzMjM5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCZ+DIMA0GCSqGSIb3DQEBCwUAA4IBAQBwCQ759+VkskHcxFysnOHdMzMG QRZHb78VZeYG2hbugcFhmWP1jKaT1syOFNToPBhINfcqLONN9xMOoxvaXRuhwjPq 9gvGRLSGcKwSYmWKWK4Rgr0+MouXUKj1mr/EVKeKOA2PMqcb6doTn3UBo+hLq5Jo pDpTF6TzTWl5RGD3aNK1LTTkENSgLxOx/frgpMG9fg07QSOyml1H3kvSRBmM6oub Fw3btqUfPnv4KtxiOs0seO6fffZ2KeiQxwm+84vRht6rAtZvJE33tSufy4ZPzuv+ +p3p7hMW3uxhIzSnd17wqAgz80gGzUzKIyff4JFWAw95JQG9NE+RwMpfurkn -----END CERTIFICATE-----Generated at Wed May 13 21:08:18 2026 by rpki-client