$ rpki-client -vvf rpkica.twnic.tw/rpki/CTII/0/3130332e3133302e3234382e302f32342d3234203d3e20313333393438.roa File: 3130332e3133302e3234382e302f32342d3234203d3e20313333393438.roa (raw, json) Hash identifier: fD/ucDIm4GlZar7mmOLi7+OafDyoA/X6tjLQrmsYp4Q= Subject key identifier: 03:B4:C1:96:AD:A7:94:E4:86:29:28:F9:FD:80:81:3E:3B:DC:08:23 Certificate issuer: /CN=96EC32418F5DB7D272132F4F615EEE14EBFCC789 Certificate serial: 1388B635B946CC07CFC7A834113635D456AEFC21 Authority key identifier: 96:EC:32:41:8F:5D:B7:D2:72:13:2F:4F:61:5E:EE:14:EB:FC:C7:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/96EC32418F5DB7D272132F4F615EEE14EBFCC789.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CTII/0/3130332e3133302e3234382e302f32342d3234203d3e20313333393438.roa Signing time: Mon 11 May 2026 17:57:09 +0000 ROA not before: Mon 11 May 2026 17:52:09 +0000 ROA not after: Mon 10 May 2027 17:57:09 +0000 asID: 133948 IP address blocks: 103.130.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CTII/0/96EC32418F5DB7D272132F4F615EEE14EBFCC789.crl rsync://rpkica.twnic.tw/rpki/CTII/0/96EC32418F5DB7D272132F4F615EEE14EBFCC789.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/96EC32418F5DB7D272132F4F615EEE14EBFCC789.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:88:b6:35:b9:46:cc:07:cf:c7:a8:34:11:36:35:d4:56:ae:fc:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96EC32418F5DB7D272132F4F615EEE14EBFCC789 Validity Not Before: May 11 17:52:09 2026 GMT Not After : May 10 17:57:09 2027 GMT Subject: CN=03B4C196ADA794E4862928F9FD80813E3BDC0823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bf:77:24:70:61:59:ce:66:c2:60:08:09:6d: 74:96:a6:a8:f0:02:f0:81:82:3c:ee:80:00:58:6f: 0a:6f:d4:4b:52:52:5f:5d:db:f9:55:a6:d7:1a:69: 27:34:97:86:72:c4:1d:ce:d6:58:fb:5e:2a:2e:2f: f2:ea:f3:e8:72:17:1a:33:4e:bb:c6:ea:fd:0c:bd: 56:fa:34:a3:25:ad:ac:44:89:db:29:d7:e3:46:c7: d5:fe:f5:29:cf:43:96:c7:99:e4:37:b7:a3:28:4a: 89:b8:e7:c8:d8:05:21:78:3b:4d:7f:a8:37:79:7a: ad:1b:a6:ba:eb:c9:f2:e5:4d:1c:37:63:cc:29:6c: 7d:a6:25:d7:e7:66:23:77:fc:ff:61:fa:29:26:b9: 40:68:35:64:f1:cc:fd:89:2d:27:a6:d7:81:b6:c6: 6f:e8:66:73:c2:37:c3:fc:38:57:53:f8:1b:e3:80: 90:8f:9a:f5:15:ed:2e:d2:ba:cc:c3:31:b1:c2:59: 01:90:c4:b8:54:fb:b6:9e:03:2b:92:99:8b:1a:8f: 9f:0f:24:e3:e1:9d:54:4a:2c:4a:7f:04:82:2d:3d: f9:97:63:fb:63:9e:ec:75:06:b4:90:41:18:1e:b4: 8c:bd:05:4e:c0:ca:4b:62:eb:64:04:34:3a:12:57: f1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B4:C1:96:AD:A7:94:E4:86:29:28:F9:FD:80:81:3E:3B:DC:08:23 X509v3 Authority Key Identifier: keyid:96:EC:32:41:8F:5D:B7:D2:72:13:2F:4F:61:5E:EE:14:EB:FC:C7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CTII/0/96EC32418F5DB7D272132F4F615EEE14EBFCC789.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/96EC32418F5DB7D272132F4F615EEE14EBFCC789.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CTII/0/3130332e3133302e3234382e302f32342d3234203d3e20313333393438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.248.0/24 Signature Algorithm: sha256WithRSAEncryption 84:c8:1c:08:cf:ab:eb:33:28:52:f1:9f:17:aa:9c:91:0c:d1: 97:87:70:a1:1d:df:5a:7a:c7:d9:45:17:f7:a8:b0:d7:eb:07: 09:59:00:d2:4e:f7:d3:c2:3c:75:bb:fd:c4:9b:e3:b9:d5:fc: 3f:8b:78:a4:7f:c0:eb:11:83:f0:c2:d9:66:0a:69:f4:e7:6a: e8:af:6a:8d:83:c2:2f:54:54:e0:e2:76:a5:a9:e9:13:34:02: dc:2f:e8:60:63:c8:05:cb:bd:5e:4e:7b:85:43:07:30:1b:84: ec:8f:49:0e:14:92:42:0c:ca:c9:8f:5d:fa:2d:97:46:4a:59: 92:ed:ba:10:15:fc:a5:aa:02:6d:3d:1d:b6:81:2c:29:9a:5d: 1e:3d:69:fb:f7:66:27:0d:15:8a:ff:65:f4:70:7b:51:f2:91: 78:18:31:03:3c:9f:42:26:34:51:40:d0:07:2e:4d:87:c6:55: 18:1f:99:6d:19:4f:9a:58:05:ff:c9:a2:e7:30:57:7e:58:8e: e3:98:d1:10:ed:4d:38:32:ce:06:77:6f:56:d5:5a:c6:78:c1: 80:19:19:c0:a2:e6:a8:df:ea:c9:3f:9c:ac:83:61:11:6c:6f: c6:1e:fa:12:a6:dd:10:0d:c2:34:27:0a:e2:22:76:d5:ed:b1: ab:17:43:ed -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUE4i2NblGzAfPx6g0ETY11Fau/CEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFQzMyNDE4RjVEQjdEMjcyMTMyRjRGNjE1RUVFMTRF QkZDQzc4OTAeFw0yNjA1MTExNzUyMDlaFw0yNzA1MTAxNzU3MDlaMDMxMTAvBgNV BAMTKDAzQjRDMTk2QURBNzk0RTQ4NjI5MjhGOUZEODA4MTNFM0JEQzA4MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVv3ckcGFZzmbCYAgJbXSWpqjw AvCBgjzugABYbwpv1EtSUl9d2/lVptcaaSc0l4ZyxB3O1lj7XiouL/Lq8+hyFxoz TrvG6v0MvVb6NKMlraxEidsp1+NGx9X+9SnPQ5bHmeQ3t6MoSom458jYBSF4O01/ qDd5eq0bprrryfLlTRw3Y8wpbH2mJdfnZiN3/P9h+ikmuUBoNWTxzP2JLSem14G2 xm/oZnPCN8P8OFdT+BvjgJCPmvUV7S7SuszDMbHCWQGQxLhU+7aeAyuSmYsaj58P JOPhnVRKLEp/BIItPfmXY/tjnux1BrSQQRgetIy9BU7Aykti62QENDoSV/GNAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUA7TBlq2nlOSGKSj5/YCBPjvcCCMwHwYDVR0j BBgwFoAUluwyQY9dt9JyEy9PYV7uFOv8x4kwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ1RJSS8w Lzk2RUMzMjQxOEY1REI3RDI3MjEzMkY0RjYxNUVFRTE0RUJGQ0M3ODkuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvOTZFQzMyNDE4RjVEQjdEMjcyMTMyRjRGNjE1RUVF MTRFQkZDQzc4OS5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NUSUkvMC8zMTMwMzMyZTMxMzMzMDJl MzIzNDM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzMzMzkzNDM4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ4L4MA0GCSqGSIb3DQEBCwUAA4IBAQCEyBwIz6vrMyhS8Z8XqpyRDNGX h3ChHd9aesfZRRf3qLDX6wcJWQDSTvfTwjx1u/3Em+O51fw/i3ikf8DrEYPwwtlm Cmn052ror2qNg8IvVFTg4nalqekTNALcL+hgY8gFy71eTnuFQwcwG4Tsj0kOFJJC DMrJj136LZdGSlmS7boQFfylqgJtPR22gSwpml0ePWn792YnDRWK/2X0cHtR8pF4 GDEDPJ9CJjRRQNAHLk2HxlUYH5ltGU+aWAX/yaLnMFd+WI7jmNEQ7U04Ms4Gd29W 1VrGeMGAGRnAouao3+rJP5ysg2ERbG/GHvoSpt0QDcI0JwriInbV7bGrF0Pt -----END CERTIFICATE-----Generated at Wed May 13 21:49:41 2026 by rpki-client