$ rpki-client -vvf rpkica.twnic.tw/rpki/CROWN/0/3130332e3235352e3231302e302f32332d3332203d3e20313331363432.roa File: 3130332e3235352e3231302e302f32332d3332203d3e20313331363432.roa (raw, json) Hash identifier: FaPlqa1DeUZTg3kaDmHEbki3z5vF9i3TucSszJSHI3U= Subject key identifier: 5C:0A:D5:78:84:F3:8A:AF:8B:81:47:55:CD:50:0A:64:E8:0F:29:97 Certificate issuer: /CN=E4763E7E7DC8760889BF64C180AA4F95C50445AB Certificate serial: 65D70CA6CD748B98E4DA7FCB091B8D9406631951 Authority key identifier: E4:76:3E:7E:7D:C8:76:08:89:BF:64:C1:80:AA:4F:95:C5:04:45:AB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E4763E7E7DC8760889BF64C180AA4F95C50445AB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CROWN/0/3130332e3235352e3231302e302f32332d3332203d3e20313331363432.roa Signing time: Mon 11 May 2026 17:37:56 +0000 ROA not before: Mon 11 May 2026 17:32:56 +0000 ROA not after: Mon 10 May 2027 17:37:56 +0000 asID: 131642 IP address blocks: 103.255.210.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CROWN/0/E4763E7E7DC8760889BF64C180AA4F95C50445AB.crl rsync://rpkica.twnic.tw/rpki/CROWN/0/E4763E7E7DC8760889BF64C180AA4F95C50445AB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E4763E7E7DC8760889BF64C180AA4F95C50445AB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d7:0c:a6:cd:74:8b:98:e4:da:7f:cb:09:1b:8d:94:06:63:19:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E4763E7E7DC8760889BF64C180AA4F95C50445AB Validity Not Before: May 11 17:32:56 2026 GMT Not After : May 10 17:37:56 2027 GMT Subject: CN=5C0AD57884F38AAF8B814755CD500A64E80F2997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fc:5d:b6:02:e6:38:1d:1e:93:12:81:33:8d: 05:0e:ce:38:ac:53:ba:dc:31:18:3c:14:7a:f6:a1: bf:6d:02:75:d7:f9:f2:bf:9e:ee:a6:5a:d7:83:e9: d4:18:17:ee:fa:ab:88:82:71:b1:2d:74:27:0e:6f: f4:e3:23:81:91:2f:2e:95:e9:01:54:b6:89:e4:65: 83:84:f2:c5:d5:ad:45:5d:08:ed:54:bb:09:bc:06: b2:e4:29:d7:4a:ca:f5:79:63:0a:df:de:a1:1b:71: 89:5c:c7:ae:0e:52:37:45:67:b1:21:76:f2:93:58: dc:08:be:f1:70:7f:87:9d:32:cd:48:ed:cc:42:25: 06:34:4f:21:18:74:bf:3d:72:30:9e:29:2e:a0:b2: 0e:19:dd:8e:d2:f3:7e:62:30:54:9b:29:4a:17:4c: 60:f6:cc:e9:98:a7:aa:4d:2b:63:c6:1f:1b:47:8a: 88:e1:1f:f9:38:2c:e3:c4:02:93:43:0c:5b:40:42: cb:8b:15:08:7c:e1:a2:a1:d3:af:91:c7:c6:0c:9e: 4f:55:1a:f4:77:f1:f2:34:4c:09:30:5e:17:20:45: a5:21:39:33:1f:f4:5a:bc:c4:29:43:e7:8f:1d:46: 41:0c:52:ad:8e:bb:7d:2a:ea:c4:e5:a4:de:19:b2: ea:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0A:D5:78:84:F3:8A:AF:8B:81:47:55:CD:50:0A:64:E8:0F:29:97 X509v3 Authority Key Identifier: keyid:E4:76:3E:7E:7D:C8:76:08:89:BF:64:C1:80:AA:4F:95:C5:04:45:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CROWN/0/E4763E7E7DC8760889BF64C180AA4F95C50445AB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E4763E7E7DC8760889BF64C180AA4F95C50445AB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CROWN/0/3130332e3235352e3231302e302f32332d3332203d3e20313331363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.210.0/23 Signature Algorithm: sha256WithRSAEncryption 77:c7:70:5e:fe:86:c0:6f:3f:d9:55:22:dd:2e:e9:14:e9:9f: 6a:22:fa:1a:49:9d:eb:77:f4:38:19:dd:6f:b5:d1:28:b8:c2: 7d:25:3e:2a:4d:a4:3a:c6:7f:a2:56:07:50:5d:bd:3b:54:03: 8e:66:61:e0:b9:64:5a:4c:48:9a:d1:2e:07:2d:61:02:df:49: 4c:cb:cc:42:ff:d7:d8:2c:01:cc:18:11:8a:0c:03:0c:73:49: bb:c3:1c:ff:59:e1:1d:dc:fc:ec:0b:ca:67:1f:2a:1e:14:92: 7f:3e:01:5b:af:09:e9:5b:93:45:11:4a:c7:7b:17:66:a8:18: 50:35:23:a0:c1:27:d0:52:5d:9f:3f:31:29:99:ed:c0:8c:fe: 09:69:69:ad:e0:44:e8:e3:d6:11:65:0c:7c:d6:b5:05:0f:b7: ed:50:c3:cd:61:c2:4d:72:a7:03:25:95:9c:b6:9e:db:0a:03: 66:2c:c6:d7:e4:9c:e6:3f:f2:8e:23:c1:03:ae:0e:5c:96:cd: 04:42:2b:cd:a9:b3:3f:5a:6c:e5:1b:08:00:71:0d:34:30:e9: 96:76:86:d9:65:54:fa:95:04:ff:60:4c:01:c8:6e:f3:24:24: 4e:73:53:9d:f4:2d:70:cf:e0:0a:5d:c6:2c:4a:45:87:6c:52: e0:59:bf:83 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIUZdcMps10i5jk2n/LCRuNlAZjGVEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ3NjNFN0U3REM4NzYwODg5QkY2NEMxODBBQTRGOTVD NTA0NDVBQjAeFw0yNjA1MTExNzMyNTZaFw0yNzA1MTAxNzM3NTZaMDMxMTAvBgNV BAMTKDVDMEFENTc4ODRGMzhBQUY4QjgxNDc1NUNENTAwQTY0RTgwRjI5OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo/F22AuY4HR6TEoEzjQUOzjis U7rcMRg8FHr2ob9tAnXX+fK/nu6mWteD6dQYF+76q4iCcbEtdCcOb/TjI4GRLy6V 6QFUtonkZYOE8sXVrUVdCO1Uuwm8BrLkKddKyvV5Ywrf3qEbcYlcx64OUjdFZ7Eh dvKTWNwIvvFwf4edMs1I7cxCJQY0TyEYdL89cjCeKS6gsg4Z3Y7S835iMFSbKUoX TGD2zOmYp6pNK2PGHxtHiojhH/k4LOPEApNDDFtAQsuLFQh84aKh06+Rx8YMnk9V GvR38fI0TAkwXhcgRaUhOTMf9Fq8xClD548dRkEMUq2Ou30q6sTlpN4Zsup9AgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQUXArVeITziq+LgUdVzVAKZOgPKZcwHwYDVR0j BBgwFoAU5HY+fn3IdgiJv2TBgKpPlcUERaswDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ1JPV04v MC9FNDc2M0U3RTdEQzg3NjA4ODlCRjY0QzE4MEFBNEY5NUM1MDQ0NUFCLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0U0NzYzRTdFN0RDODc2MDg4OUJGNjRDMTgwQUE0 Rjk1QzUwNDQ1QUIuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DUk9XTi8wLzMxMzAzMzJlMzIzNTM1 MmUzMjMxMzAyZTMwMmYzMjMzMmQzMzMyMjAzZDNlMjAzMTMzMzEzNjM0MzIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFn/9IwDQYJKoZIhvcNAQELBQADggEBAHfHcF7+hsBvP9lVIt0u6RTp n2oi+hpJnet39DgZ3W+10Si4wn0lPipNpDrGf6JWB1BdvTtUA45mYeC5ZFpMSJrR LgctYQLfSUzLzEL/19gsAcwYEYoMAwxzSbvDHP9Z4R3c/OwLymcfKh4Ukn8+AVuv Celbk0URSsd7F2aoGFA1I6DBJ9BSXZ8/MSmZ7cCM/glpaa3gROjj1hFlDHzWtQUP t+1Qw81hwk1ypwMllZy2ntsKA2YsxtfknOY/8o4jwQOuDlyWzQRCK82psz9abOUb CABxDTQw6ZZ2htllVPqVBP9gTAHIbvMkJE5zU530LXDP4ApdxixKRYdsUuBZv4M= -----END CERTIFICATE-----Generated at Wed May 13 21:11:49 2026 by rpki-client