$ rpki-client -vvf rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231342e302f32342d3234203d3e20313333333735.roa File: 3130332e3131392e3231342e302f32342d3234203d3e20313333333735.roa (raw, json) Hash identifier: /UvybhcLKT1KK1desdUWoCsOTWNrRkdvIjVquH9d4MA= Subject key identifier: 5B:A4:14:7F:0A:D5:0B:B1:E3:08:FC:5D:E6:AD:54:A1:1B:06:2A:CA Certificate issuer: /CN=3D576C4841082805B3CDBD7337F3963A8833174B Certificate serial: 2FC1ECF6E58BDE8A9761A8235E28124F093662DD Authority key identifier: 3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231342e302f32342d3234203d3e20313333333735.roa Signing time: Tue 16 Jun 2026 16:23:49 +0000 ROA not before: Tue 16 Jun 2026 16:18:49 +0000 ROA not after: Tue 15 Jun 2027 16:23:49 +0000 asID: 133375 IP address blocks: 103.119.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 06:32:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:c1:ec:f6:e5:8b:de:8a:97:61:a8:23:5e:28:12:4f:09:36:62:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D576C4841082805B3CDBD7337F3963A8833174B Validity Not Before: Jun 16 16:18:49 2026 GMT Not After : Jun 15 16:23:49 2027 GMT Subject: CN=5BA4147F0AD50BB1E308FC5DE6AD54A11B062ACA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c2:5b:92:0e:b7:1d:2d:42:03:5e:1b:8d:8e: b1:9c:4b:fc:51:1f:b8:d8:48:89:75:2c:90:3c:da: 57:0c:ff:35:8a:70:63:55:c9:f2:5b:4c:e5:50:aa: 48:65:80:50:2a:0c:65:d4:da:7c:fb:14:08:aa:e9: 3b:31:51:8e:2a:54:02:1f:ca:86:b8:fd:97:8c:1c: e2:51:ce:e3:3c:f2:07:8f:fc:d7:87:e4:e6:49:1b: b7:e7:78:62:92:bd:64:8f:db:03:42:03:bc:9f:8e: f9:1e:a1:f3:a8:b7:be:97:aa:2a:71:b7:10:08:4e: 00:24:83:b9:0d:f1:99:60:7b:37:76:c4:63:73:bb: 5e:7c:84:cd:e2:0f:ed:6e:5c:65:77:c4:aa:b3:5a: 2d:64:cc:37:fa:89:b7:62:f6:9e:f7:a2:58:21:07: cb:92:b8:bb:73:a4:31:bf:6f:c3:bf:29:f8:3b:1c: 05:6b:75:82:cb:19:90:de:12:16:55:ae:81:b9:b6: 65:4c:59:7d:89:82:0f:21:31:30:c9:53:08:8f:4e: 0e:79:91:bd:78:16:19:14:3b:06:91:ff:73:6e:11: 55:17:69:63:78:f6:eb:df:e7:5b:66:98:2c:68:49: 9d:04:80:8c:05:54:ec:fd:03:b9:92:be:35:79:b2: 96:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A4:14:7F:0A:D5:0B:B1:E3:08:FC:5D:E6:AD:54:A1:1B:06:2A:CA X509v3 Authority Key Identifier: keyid:3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231342e302f32342d3234203d3e20313333333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.214.0/24 Signature Algorithm: sha256WithRSAEncryption 11:54:96:38:92:93:4d:c8:f9:94:02:8b:c4:28:b1:28:ad:81: f2:d8:11:6b:9b:15:90:67:61:58:8d:cb:c6:26:48:ca:4f:2e: a6:b6:bc:59:80:7d:af:86:55:a5:03:55:ba:a2:9d:bc:af:cc: b7:4c:98:06:d0:1c:af:9b:8f:2e:cc:93:12:19:28:8e:0c:e7: 40:d4:7e:9c:31:15:27:03:79:4c:62:98:52:8c:62:f7:5b:12: e0:47:e5:a3:3f:b1:30:9d:49:d0:be:c2:8c:02:58:8b:bf:93: a2:76:b0:a9:2e:9d:76:b6:b9:9b:69:20:f1:32:3c:b7:41:ea: a9:9a:6c:2f:36:34:77:5e:95:3e:64:f3:06:b7:c1:d4:6a:15: 81:2f:33:cd:d5:e5:f8:04:4b:46:e3:3a:d3:77:a9:e3:26:f4: 23:19:e4:eb:18:4b:17:d3:ab:d5:28:6a:a5:aa:68:85:df:78: 53:1f:5b:8e:a1:7d:1a:4e:41:0b:b8:ec:07:ca:96:b8:6d:a8: ca:bd:03:80:d1:16:99:68:ee:ba:bd:d1:ef:a2:a8:f7:89:6a: af:ac:6e:cc:6d:c2:7d:2f:62:33:7b:cd:be:f4:ed:bf:de:6f: 0e:f4:37:62:35:52:5b:f0:26:e0:b3:9c:a3:22:0d:58:e2:9b: 68:24:8e:c4 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUL8Hs9uWL3oqXYagjXigSTwk2Yt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdGMzk2M0E4 ODMzMTc0QjAeFw0yNjA2MTYxNjE4NDlaFw0yNzA2MTUxNjIzNDlaMDMxMTAvBgNV BAMTKDVCQTQxNDdGMEFENTBCQjFFMzA4RkM1REU2QUQ1NEExMUIwNjJBQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8wluSDrcdLUIDXhuNjrGcS/xR H7jYSIl1LJA82lcM/zWKcGNVyfJbTOVQqkhlgFAqDGXU2nz7FAiq6TsxUY4qVAIf yoa4/ZeMHOJRzuM88geP/NeH5OZJG7fneGKSvWSP2wNCA7yfjvkeofOot76Xqipx txAITgAkg7kN8Zlgezd2xGNzu158hM3iD+1uXGV3xKqzWi1kzDf6ibdi9p73olgh B8uSuLtzpDG/b8O/Kfg7HAVrdYLLGZDeEhZVroG5tmVMWX2Jgg8hMTDJUwiPTg55 kb14FhkUOwaR/3NuEVUXaWN49uvf51tmmCxoSZ0EgIwFVOz9A7mSvjV5spadAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUW6QUfwrVC7HjCPxd5q1UoRsGKsowHwYDVR0j BBgwFoAUPVdsSEEIKAWzzb1zN/OWOogzF0swDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0tNQVRF Uy8wLzNENTc2QzQ4NDEwODI4MDVCM0NEQkQ3MzM3RjM5NjNBODgzMzE3NEIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdG Mzk2M0E4ODMzMTc0Qi5jZXIwgYEGCCsGAQUFBwELBHUwczBxBggrBgEFBQcwC4Zl cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DS01BVEVTLzAvMzEzMDMzMmUz MTMxMzkyZTMyMzEzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMzMzMzcz NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGd31jANBgkqhkiG9w0BAQsFAAOCAQEAEVSWOJKTTcj5lAKL xCixKK2B8tgRa5sVkGdhWI3LxiZIyk8upra8WYB9r4ZVpQNVuqKdvK/Mt0yYBtAc r5uPLsyTEhkojgznQNR+nDEVJwN5TGKYUoxi91sS4Efloz+xMJ1J0L7CjAJYi7+T onawqS6ddra5m2kg8TI8t0HqqZpsLzY0d16VPmTzBrfB1GoVgS8zzdXl+ARLRuM6 03ep4yb0Ixnk6xhLF9Or1Shqpapohd94Ux9bjqF9Gk5BC7jsB8qWuG2oyr0DgNEW mWjuur3R76Ko94lqr6xuzG3CfS9iM3vNvvTtv95vDvQ3YjVSW/Am4LOcoyINWOKb aCSOxA== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:58 2026 by rpki-client