$ rpki-client -vvf rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231332e302f32342d3234203d3e203134363138.roa File: 3130332e3131392e3231332e302f32342d3234203d3e203134363138.roa (raw, json) Hash identifier: sldyxDcFqyW0yrBmnmv5iDOduZFppPbQvxaSJnOI1Vw= Subject key identifier: 99:0B:AF:BC:E5:20:B8:79:AE:A8:7F:63:82:A5:C6:6B:E7:F4:1A:2C Certificate issuer: /CN=3D576C4841082805B3CDBD7337F3963A8833174B Certificate serial: 60D46B2003E392B9772FC16E45E2A97D1A42559C Authority key identifier: 3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231332e302f32342d3234203d3e203134363138.roa Signing time: Mon 11 May 2026 17:06:56 +0000 ROA not before: Mon 11 May 2026 17:01:56 +0000 ROA not after: Mon 10 May 2027 17:06:56 +0000 asID: 14618 IP address blocks: 103.119.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:d4:6b:20:03:e3:92:b9:77:2f:c1:6e:45:e2:a9:7d:1a:42:55:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D576C4841082805B3CDBD7337F3963A8833174B Validity Not Before: May 11 17:01:56 2026 GMT Not After : May 10 17:06:56 2027 GMT Subject: CN=990BAFBCE520B879AEA87F6382A5C66BE7F41A2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c9:f6:53:9d:0f:14:72:0e:dd:52:77:24:9f: cd:60:62:2b:4b:90:87:59:26:66:ec:47:f9:2d:31: bd:81:6c:db:22:0d:73:01:cb:66:51:63:09:c0:4d: 64:8e:5c:3f:ee:47:65:d9:b4:28:37:03:1f:29:1c: 38:d8:d7:4d:83:7c:ec:6a:d2:79:1f:72:9d:93:cc: f4:06:34:0b:b3:fc:ed:b8:d8:ac:db:18:10:ec:29: cf:7f:c4:77:8d:9c:0f:88:ef:1a:11:c0:2d:05:08: 05:07:ed:ca:b7:a5:c2:b6:07:23:99:13:b3:0e:2a: 40:24:94:39:d8:44:c7:90:d5:09:3c:0b:6f:1c:47: 6e:0a:86:98:b8:8c:fa:cb:c4:f0:2f:32:e9:b1:44: 8e:8c:62:c7:5d:c3:bd:9f:61:40:81:3c:93:ad:13: 98:8d:89:c3:4f:8d:bf:37:f7:31:18:62:8e:ae:de: b1:72:87:0e:95:32:55:71:1b:8a:41:99:f8:a4:8e: 67:78:30:42:75:f1:96:67:a9:04:66:77:3b:50:53: df:33:e7:42:e5:2b:76:d4:d5:3c:90:58:27:ef:8d: 9c:6a:c3:74:24:9f:6c:9f:4a:19:dc:ef:52:66:1b: 25:67:b1:ef:7b:d4:0f:26:e2:95:44:5a:34:13:76: 30:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0B:AF:BC:E5:20:B8:79:AE:A8:7F:63:82:A5:C6:6B:E7:F4:1A:2C X509v3 Authority Key Identifier: keyid:3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231332e302f32342d3234203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.213.0/24 Signature Algorithm: sha256WithRSAEncryption 42:65:ff:ee:6f:f3:c5:38:62:81:04:5b:cb:b8:29:69:4c:51: 16:41:62:0c:1b:9b:3c:1e:6b:52:a4:04:d9:f1:b2:a1:59:13: 14:70:3a:95:36:3a:2e:9a:90:e3:4c:a9:e4:9f:dc:38:85:d6: 13:ef:12:c6:bc:af:dc:67:e8:7d:95:12:83:90:10:a1:ea:86: 40:cc:a9:2f:3f:1d:82:4b:34:cc:a8:fb:80:af:fb:f9:92:01: 52:fc:97:a9:32:2d:e1:c6:52:22:ba:be:64:50:24:c2:5d:9c: 6b:3a:c9:93:40:12:2c:70:37:2c:14:d9:07:81:c0:78:b9:9d: 05:67:a6:38:84:0c:df:2c:2a:14:e3:49:ff:d4:3e:3a:8e:88: 00:8e:a6:20:79:b9:ed:6a:b1:28:b6:ef:0d:96:35:b0:49:bc: 75:4d:49:2d:f7:a5:c1:8c:dc:8e:66:9c:df:ca:0b:47:b1:f5: 17:26:09:17:a4:70:cb:78:cc:8c:85:b3:a2:e5:d1:90:45:42: be:34:57:27:f4:0c:07:26:77:eb:49:e3:47:ac:26:7f:38:46: 74:b1:5c:62:e2:50:38:37:8b:c7:4c:1e:6e:11:ab:fe:10:f5: 5e:09:f0:30:ef:0d:d2:20:cc:65:1d:4a:03:a7:fb:7a:82:1d: 5c:db:71:dd -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYNRrIAPjkrl3L8FuReKpfRpCVZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdGMzk2M0E4 ODMzMTc0QjAeFw0yNjA1MTExNzAxNTZaFw0yNzA1MTAxNzA2NTZaMDMxMTAvBgNV BAMTKDk5MEJBRkJDRTUyMEI4NzlBRUE4N0Y2MzgyQTVDNjZCRTdGNDFBMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoyfZTnQ8Ucg7dUnckn81gYitL kIdZJmbsR/ktMb2BbNsiDXMBy2ZRYwnATWSOXD/uR2XZtCg3Ax8pHDjY102DfOxq 0nkfcp2TzPQGNAuz/O242KzbGBDsKc9/xHeNnA+I7xoRwC0FCAUH7cq3pcK2ByOZ E7MOKkAklDnYRMeQ1Qk8C28cR24Khpi4jPrLxPAvMumxRI6MYsddw72fYUCBPJOt E5iNicNPjb839zEYYo6u3rFyhw6VMlVxG4pBmfikjmd4MEJ18ZZnqQRmdztQU98z 50LlK3bU1TyQWCfvjZxqw3Qkn2yfShnc71JmGyVnse971A8m4pVEWjQTdjBvAgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQUmQuvvOUguHmuqH9jgqXGa+f0GiwwHwYDVR0j BBgwFoAUPVdsSEEIKAWzzb1zN/OWOogzF0swDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0tNQVRF Uy8wLzNENTc2QzQ4NDEwODI4MDVCM0NEQkQ3MzM3RjM5NjNBODgzMzE3NEIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdG Mzk2M0E4ODMzMTc0Qi5jZXIwfwYIKwYBBQUHAQsEczBxMG8GCCsGAQUFBzALhmNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NLTUFURVMvMC8zMTMwMzMyZTMx MzEzOTJlMzIzMTMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNDM2MzEzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd31TANBgkqhkiG9w0BAQsFAAOCAQEAQmX/7m/zxThigQRby7gp aUxRFkFiDBubPB5rUqQE2fGyoVkTFHA6lTY6LpqQ40yp5J/cOIXWE+8Sxryv3Gfo fZUSg5AQoeqGQMypLz8dgks0zKj7gK/7+ZIBUvyXqTIt4cZSIrq+ZFAkwl2cazrJ k0ASLHA3LBTZB4HAeLmdBWemOIQM3ywqFONJ/9Q+Oo6IAI6mIHm57WqxKLbvDZY1 sEm8dU1JLfelwYzcjmac38oLR7H1FyYJF6Rwy3jMjIWzouXRkEVCvjRXJ/QMByZ3 60njR6wmfzhGdLFcYuJQODeLx0webhGr/hD1XgnwMO8N0iDMZR1KA6f7eoIdXNtx 3Q== -----END CERTIFICATE-----Generated at Wed May 13 21:11:30 2026 by rpki-client