$ rpki-client -vvf rpkica.twnic.tw/rpki/CHINALIFE/0/3130332e3132332e3138382e302f32342d3234203d3e203138303432.roa File: 3130332e3132332e3138382e302f32342d3234203d3e203138303432.roa (raw, json) Hash identifier: VGG3iALCYmsIo1frTwJ57vcG6Z53Cw4xXzO8I+lKQrc= Subject key identifier: 3B:FC:07:7E:0C:97:45:0A:C1:AB:A4:FA:A8:A7:54:1F:A4:90:73:77 Certificate issuer: /CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD Certificate serial: 703FBE76349CB079D6D988EEA8DC061666E33328 Authority key identifier: CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/3130332e3132332e3138382e302f32342d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 17:04:14 +0000 ROA not before: Mon 11 May 2026 16:59:14 +0000 ROA not after: Mon 10 May 2027 17:04:14 +0000 asID: 18042 IP address blocks: 103.123.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:3f:be:76:34:9c:b0:79:d6:d9:88:ee:a8:dc:06:16:66:e3:33:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD Validity Not Before: May 11 16:59:14 2026 GMT Not After : May 10 17:04:14 2027 GMT Subject: CN=3BFC077E0C97450AC1ABA4FAA8A7541FA4907377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2f:ec:29:88:b5:d8:27:bd:05:0e:94:2c:e4: 21:70:17:ee:84:62:e6:ab:ed:81:e9:9a:2a:c9:ca: b5:28:3d:d2:36:42:47:96:0f:34:d3:2b:c3:d7:74: 90:03:44:7a:83:62:8b:69:e3:eb:05:cb:f7:bd:06: ec:0d:88:f6:46:2b:d9:7a:9d:5f:f9:93:7d:f9:89: ed:d8:0c:bb:5b:11:c5:41:d8:51:3f:3a:65:fb:ad: 31:b9:82:e2:76:38:cd:2d:64:a8:df:80:09:5f:09: e1:be:2b:95:91:aa:9e:60:fb:ea:26:8f:41:98:6f: 77:57:12:8e:7a:1d:3c:a5:cf:4b:44:7f:45:42:28: c8:5a:00:77:56:60:5b:0d:ef:7a:f6:8b:e3:bc:fb: 32:60:7f:04:62:ab:8d:a9:68:c7:92:c9:fa:7d:13: e6:d3:6f:c0:2d:06:3c:df:ae:75:fc:85:d2:ad:57: a5:6c:55:22:26:4e:55:7a:4b:41:df:98:e4:1c:81: 61:66:03:da:79:58:c8:ba:75:76:6a:26:d9:c5:4e: 12:a9:7c:24:6b:87:82:cc:0b:5b:bb:d1:76:b8:ff: 32:f3:27:70:26:ee:2c:6c:11:0c:b5:22:3c:ea:fe: 26:06:19:c4:ce:6e:15:3a:4a:da:9c:02:bb:0c:3d: d8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FC:07:7E:0C:97:45:0A:C1:AB:A4:FA:A8:A7:54:1F:A4:90:73:77 X509v3 Authority Key Identifier: keyid:CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/3130332e3132332e3138382e302f32342d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.188.0/24 Signature Algorithm: sha256WithRSAEncryption ad:70:3b:75:97:d2:ab:8a:bd:66:bb:2d:0d:f6:35:a6:2d:24: 09:92:08:72:7d:6d:c1:7e:fa:21:b9:bf:d2:c1:88:fc:dc:25: cb:f5:25:47:ab:67:75:f4:1a:8b:45:f0:15:04:70:40:9f:75: 5c:a9:ad:65:45:9b:a4:85:bb:00:86:af:83:d2:ba:90:3c:70: fb:35:50:18:e0:e9:42:63:3b:0d:18:24:16:9c:d8:cb:f7:33: 9a:9a:b7:2c:01:e2:0a:1b:a4:eb:5f:f7:01:b5:6e:73:5f:ef: 67:2b:4b:23:ae:93:5b:25:49:2b:f4:50:3c:f3:60:45:3d:8f: e6:d9:10:1c:b1:e2:61:33:d7:1b:24:69:4a:b9:ae:23:46:e6: b2:76:24:32:b5:81:dd:3e:c7:96:35:6d:01:23:07:30:a5:38: 1a:82:35:24:7e:ad:27:10:e6:da:da:c6:e9:8a:a6:bb:6e:d0: c9:5a:41:f8:13:d7:92:03:00:0b:f3:88:86:7e:7b:da:6d:39: 52:fd:df:5d:1a:3b:7b:6f:1c:70:33:55:a9:5a:89:ec:d9:99: 3e:28:dd:a7:5c:6e:2c:88:57:9b:1a:1b:6b:c4:3f:d6:87:a8: 04:88:6f:17:cc:98:6e:ab:e9:15:81:2d:94:1e:e4:b6:c0:ad: 8d:1b:31:59 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUcD++djScsHnW2YjuqNwGFmbjMygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U1QTgxMDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4 RUVBQ0NERDAeFw0yNjA1MTExNjU5MTRaFw0yNzA1MTAxNzA0MTRaMDMxMTAvBgNV BAMTKDNCRkMwNzdFMEM5NzQ1MEFDMUFCQTRGQUE4QTc1NDFGQTQ5MDczNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsL+wpiLXYJ70FDpQs5CFwF+6E Yuar7YHpmirJyrUoPdI2QkeWDzTTK8PXdJADRHqDYotp4+sFy/e9BuwNiPZGK9l6 nV/5k335ie3YDLtbEcVB2FE/OmX7rTG5guJ2OM0tZKjfgAlfCeG+K5WRqp5g++om j0GYb3dXEo56HTylz0tEf0VCKMhaAHdWYFsN73r2i+O8+zJgfwRiq42paMeSyfp9 E+bTb8AtBjzfrnX8hdKtV6VsVSImTlV6S0HfmOQcgWFmA9p5WMi6dXZqJtnFThKp fCRrh4LMC1u70Xa4/zLzJ3Am7ixsEQy1Ijzq/iYGGcTObhU6StqcArsMPdhVAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUO/wHfgyXRQrBq6T6qKdUH6SQc3cwHwYDVR0j BBgwFoAUzlqBALoJlKK4B/X0+3QcUo7qzN0wDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFM SUZFLzAvQ0U1QTgxMDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4RUVBQ0NERC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9DRTVBODEwMEJBMDk5NEEyQjgwN0Y1RjRG Qjc0MUM1MjhFRUFDQ0RELmNlcjCBgQYIKwYBBQUHAQsEdTBzMHEGCCsGAQUFBzAL hmVyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NISU5BTElGRS8wLzMxMzAz MzJlMzEzMjMzMmUzMTM4MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAz NDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ3u8MA0GCSqGSIb3DQEBCwUAA4IBAQCtcDt1l9Krir1m uy0N9jWmLSQJkghyfW3Bfvohub/SwYj83CXL9SVHq2d19BqLRfAVBHBAn3Vcqa1l RZukhbsAhq+D0rqQPHD7NVAY4OlCYzsNGCQWnNjL9zOamrcsAeIKG6TrX/cBtW5z X+9nK0sjrpNbJUkr9FA882BFPY/m2RAcseJhM9cbJGlKua4jRuaydiQytYHdPseW NW0BIwcwpTgagjUkfq0nEOba2sbpiqa7btDJWkH4E9eSAwAL84iGfnvabTlS/d9d Gjt7bxxwM1WpWons2Zk+KN2nXG4siFebGhtrxD/Wh6gEiG8XzJhuq+kVgS2UHuS2 wK2NGzFZ -----END CERTIFICATE-----Generated at Wed May 13 21:09:04 2026 by rpki-client