$ rpki-client -vvf rpkica.twnic.tw/rpki/DNSNET/0/3130332e3136302e3232362e302f32332d3234203d3e203338383432.roa File: 3130332e3136302e3232362e302f32332d3234203d3e203338383432.roa (raw, json) Hash identifier: fXBUwxrpMNifp4MO+znwtVxrCjA2c4pDgmAW0x6+dMc= Subject key identifier: 82:7A:50:3F:79:B6:A2:1E:7D:9D:B9:E1:57:F1:C5:C1:84:32:14:55 Certificate issuer: /CN=9D007D373F381CCA596ECE20FC27E8D7F72BD5C2 Certificate serial: 15ADA990E2B96EBF50615539990850C13FAD5D14 Authority key identifier: 9D:00:7D:37:3F:38:1C:CA:59:6E:CE:20:FC:27:E8:D7:F7:2B:D5:C2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D007D373F381CCA596ECE20FC27E8D7F72BD5C2.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DNSNET/0/3130332e3136302e3232362e302f32332d3234203d3e203338383432.roa Signing time: Mon 11 May 2026 17:31:25 +0000 ROA not before: Mon 11 May 2026 17:26:25 +0000 ROA not after: Mon 10 May 2027 17:31:25 +0000 asID: 38842 IP address blocks: 103.160.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DNSNET/0/9D007D373F381CCA596ECE20FC27E8D7F72BD5C2.crl rsync://rpkica.twnic.tw/rpki/DNSNET/0/9D007D373F381CCA596ECE20FC27E8D7F72BD5C2.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D007D373F381CCA596ECE20FC27E8D7F72BD5C2.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ad:a9:90:e2:b9:6e:bf:50:61:55:39:99:08:50:c1:3f:ad:5d:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D007D373F381CCA596ECE20FC27E8D7F72BD5C2 Validity Not Before: May 11 17:26:25 2026 GMT Not After : May 10 17:31:25 2027 GMT Subject: CN=827A503F79B6A21E7D9DB9E157F1C5C184321455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:15:3d:36:49:7f:c9:16:c2:dd:a6:aa:a6:d4: 73:7b:d9:3f:e9:ae:df:b6:fd:28:59:c1:d7:df:e8: 69:7c:c0:7f:b6:ac:7b:18:01:d0:28:22:ae:8d:a4: 9e:a6:08:f8:bb:3e:73:bd:8b:ba:d3:6b:04:2b:a4: 03:1b:07:ce:cb:23:2d:0a:fd:cb:9f:a5:6a:52:7f: e3:d1:c5:fa:2f:c4:05:5e:98:89:82:bd:ad:b0:1b: 94:45:1b:5e:79:f2:b4:c2:76:18:63:bd:43:5b:3f: 88:97:67:fd:2a:ff:fd:60:19:b8:fd:98:ac:aa:58: 2f:ea:ad:01:42:4c:c3:f6:7f:8b:a2:4a:15:42:41: 44:15:d8:b9:5c:67:9c:8b:81:01:47:4c:8f:1e:31: c0:fe:36:85:e8:3e:c8:95:ee:3e:c1:2d:88:4f:4c: c4:af:b6:26:9f:b0:fe:cd:1b:bb:4c:c9:cc:19:42: f4:65:44:4d:84:4e:56:77:b8:aa:c5:45:db:56:5a: a7:6f:5f:a6:10:e6:1b:b2:3f:77:55:11:40:68:08: ae:17:ef:bc:43:ea:86:f4:36:0b:e4:b3:f8:be:91: 9f:0a:de:71:39:94:f8:90:9c:d8:78:81:c7:e3:13: fc:ad:40:a8:68:f8:fe:51:d0:9b:60:ea:4b:ac:6f: 1e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7A:50:3F:79:B6:A2:1E:7D:9D:B9:E1:57:F1:C5:C1:84:32:14:55 X509v3 Authority Key Identifier: keyid:9D:00:7D:37:3F:38:1C:CA:59:6E:CE:20:FC:27:E8:D7:F7:2B:D5:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DNSNET/0/9D007D373F381CCA596ECE20FC27E8D7F72BD5C2.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D007D373F381CCA596ECE20FC27E8D7F72BD5C2.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DNSNET/0/3130332e3136302e3232362e302f32332d3234203d3e203338383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.226.0/23 Signature Algorithm: sha256WithRSAEncryption 04:f3:b6:c2:49:b6:4f:c4:5b:4e:bd:9e:f6:15:c8:ea:93:40: 52:20:38:79:13:ca:67:99:60:26:e8:59:a4:14:46:07:9f:30: b6:51:44:bd:b4:eb:84:9d:ca:b4:12:27:fb:eb:c7:dc:fd:e2: fd:27:1e:7f:14:b7:98:99:4d:b4:14:63:a2:73:c4:8a:48:3f: ec:43:70:e1:3b:d3:36:4d:84:70:7d:6a:97:61:6f:b7:b7:80: ed:5b:45:20:bf:ab:0a:8a:34:ba:2a:24:ec:5d:08:50:92:c0: 48:a9:a1:18:94:d6:3b:28:bb:dc:9e:c6:14:92:71:15:5f:8a: 1c:80:5a:02:e8:78:5e:7a:ec:3d:8a:c9:0f:02:ba:1b:b9:84: 01:f3:81:ac:ad:e4:b4:d4:42:e0:78:a3:8b:f7:c8:34:5f:21: 2d:e8:36:cb:ca:46:3c:90:5f:d9:56:2c:37:bf:58:cc:18:e6: f8:af:e5:ed:b4:0e:49:cb:21:96:c5:72:f6:6a:92:94:c2:aa: db:30:ae:13:0c:dd:2f:ce:11:4a:42:24:9f:4a:05:12:88:b5: 50:d3:31:f0:a9:e8:a4:c4:6c:c9:7f:8c:4a:7b:0d:49:e8:12: e8:40:03:ce:50:67:a9:47:b4:63:b3:45:b9:ac:79:26:00:57: 6e:15:65:08 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIUFa2pkOK5br9QYVU5mQhQwT+tXRQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQwMDdEMzczRjM4MUNDQTU5NkVDRTIwRkMyN0U4RDdG NzJCRDVDMjAeFw0yNjA1MTExNzI2MjVaFw0yNzA1MTAxNzMxMjVaMDMxMTAvBgNV BAMTKDgyN0E1MDNGNzlCNkEyMUU3RDlEQjlFMTU3RjFDNUMxODQzMjE0NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtFT02SX/JFsLdpqqm1HN72T/p rt+2/ShZwdff6Gl8wH+2rHsYAdAoIq6NpJ6mCPi7PnO9i7rTawQrpAMbB87LIy0K /cufpWpSf+PRxfovxAVemImCva2wG5RFG1558rTCdhhjvUNbP4iXZ/0q//1gGbj9 mKyqWC/qrQFCTMP2f4uiShVCQUQV2LlcZ5yLgQFHTI8eMcD+NoXoPsiV7j7BLYhP TMSvtiafsP7NG7tMycwZQvRlRE2ETlZ3uKrFRdtWWqdvX6YQ5huyP3dVEUBoCK4X 77xD6ob0Ngvks/i+kZ8K3nE5lPiQnNh4gcfjE/ytQKho+P5R0Jtg6kusbx6tAgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQUgnpQP3m2oh59nbnhV/HFwYQyFFUwHwYDVR0j BBgwFoAUnQB9Nz84HMpZbs4g/Cfo1/cr1cIwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE5TTkVU LzAvOUQwMDdEMzczRjM4MUNDQTU5NkVDRTIwRkMyN0U4RDdGNzJCRDVDMi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS85RDAwN0QzNzNGMzgxQ0NBNTk2RUNFMjBGQzI3 RThEN0Y3MkJENUMyLmNlcjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE5TTkVULzAvMzEzMDMzMmUzMTM2 MzAyZTMyMzIzNjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMzMzgzODM0MzIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnoOIwDQYJKoZIhvcNAQELBQADggEBAATztsJJtk/EW069nvYVyOqT QFIgOHkTymeZYCboWaQURgefMLZRRL2064SdyrQSJ/vrx9z94v0nHn8Ut5iZTbQU Y6JzxIpIP+xDcOE70zZNhHB9apdhb7e3gO1bRSC/qwqKNLoqJOxdCFCSwEipoRiU 1jsou9yexhSScRVfihyAWgLoeF567D2KyQ8Cuhu5hAHzgayt5LTUQuB4o4v3yDRf IS3oNsvKRjyQX9lWLDe/WMwY5viv5e20DknLIZbFcvZqkpTCqtswrhMM3S/OEUpC JJ9KBRKItVDTMfCp6KTEbMl/jEp7DUnoEuhAA85QZ6lHtGOzRbmseSYAV24VZQg= -----END CERTIFICATE-----Generated at Wed May 13 21:08:33 2026 by rpki-client