$ rpki-client -vvf rpkica.twnic.tw/rpki/DWT/0/3130332e3133362e36302e302f32332d3332203d3e203234313638.roa File: 3130332e3133362e36302e302f32332d3332203d3e203234313638.roa (raw, json) Hash identifier: 2p9fMHfPi2cu+TOvJt8lAO8Pe3CRCnoo8OFb8fl3iMc= Subject key identifier: 42:B0:F0:07:34:CB:2F:29:9F:0B:DB:A6:EC:19:B0:5E:3E:28:8E:53 Certificate issuer: /CN=27CCE49F4A9C14852B3A304359D3CB1E4E332C3E Certificate serial: 758C221F5D5BC9594B13E8282396787A69D99F62 Authority key identifier: 27:CC:E4:9F:4A:9C:14:85:2B:3A:30:43:59:D3:CB:1E:4E:33:2C:3E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DWT/0/3130332e3133362e36302e302f32332d3332203d3e203234313638.roa Signing time: Thu 14 May 2026 10:34:08 +0000 ROA not before: Thu 14 May 2026 10:29:08 +0000 ROA not after: Thu 13 May 2027 10:34:08 +0000 asID: 24168 IP address blocks: 103.136.60.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.crl rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 15:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:8c:22:1f:5d:5b:c9:59:4b:13:e8:28:23:96:78:7a:69:d9:9f:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27CCE49F4A9C14852B3A304359D3CB1E4E332C3E Validity Not Before: May 14 10:29:08 2026 GMT Not After : May 13 10:34:08 2027 GMT Subject: CN=42B0F00734CB2F299F0BDBA6EC19B05E3E288E53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fb:cc:7f:db:2b:ee:de:56:bf:ec:47:38:16: ae:65:8a:83:48:61:6c:f6:07:f8:79:cb:cb:bd:78: 8e:51:b4:68:0c:ae:6c:a7:59:78:fa:62:a5:f7:81: 8f:77:3f:91:51:61:01:2f:bc:38:e1:3d:bd:e9:e7: c7:7e:67:a1:09:99:24:2e:0a:8d:12:9c:1f:04:5e: e4:c7:6a:51:cf:f6:51:0c:ca:0b:b2:bb:52:97:4f: 76:de:21:fe:d3:42:8c:3d:9f:93:17:73:d8:61:5f: fa:5f:7b:68:d7:f0:bc:bf:b4:d5:ab:ec:03:c0:cf: 12:92:e7:a4:f3:c9:c8:1e:2d:ea:ff:e2:f2:36:a8: fc:e0:d1:b5:ce:ab:d7:6a:7d:f1:6b:03:41:74:32: f2:fd:c7:42:24:91:38:c8:00:1e:ec:a6:22:9b:f3: fe:4d:92:f2:b1:ec:8c:dd:3f:da:c3:25:fb:6b:c1: f2:4f:e2:14:2b:4f:71:e8:98:9d:3e:f3:1b:cb:ce: af:1b:bc:65:43:b8:28:2e:ce:71:93:99:e3:a9:5c: 1a:cb:94:a6:43:ac:cf:a7:0e:c5:3a:0c:28:72:22: 11:42:a6:ad:e6:36:4e:50:05:58:3c:3e:e2:fd:94: a6:c7:3d:e4:f4:96:a1:9a:dd:bf:94:88:17:1e:4e: eb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B0:F0:07:34:CB:2F:29:9F:0B:DB:A6:EC:19:B0:5E:3E:28:8E:53 X509v3 Authority Key Identifier: keyid:27:CC:E4:9F:4A:9C:14:85:2B:3A:30:43:59:D3:CB:1E:4E:33:2C:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DWT/0/3130332e3133362e36302e302f32332d3332203d3e203234313638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption 95:f2:4b:d8:98:d5:aa:74:87:5d:1f:9a:0d:99:11:e4:d1:84: e7:6c:48:91:47:c9:9e:ab:b8:92:11:07:c1:5c:97:58:eb:dc: 4b:12:35:1a:87:fd:70:cc:e0:83:c5:b4:37:3f:ed:af:46:bf: 61:6e:eb:b9:f3:1c:e5:90:55:08:f6:18:7d:87:c2:62:b8:bf: dc:af:e3:ea:00:20:ea:75:74:bb:2e:5f:4d:3e:79:74:72:f3: 6a:e2:91:fe:80:3a:e5:40:7d:37:b3:fc:95:e6:ca:0d:e7:5d: fe:98:9e:80:82:75:4b:91:ce:bd:e7:c8:7a:98:53:e0:f0:50: 7a:4a:ba:ac:69:17:e3:85:a7:60:09:b6:14:1f:ae:94:aa:2e: e2:1d:9f:bb:f6:a3:d7:44:53:e2:7c:71:00:9f:2b:73:01:6b: e0:63:a1:35:0b:3a:fa:23:1c:52:a5:af:e2:2e:e8:24:b3:6c: f0:a3:08:49:37:6e:fe:83:e0:43:b9:37:cf:73:20:94:c4:70: 3f:42:18:ed:26:a7:54:ff:98:33:e0:15:a0:28:2e:d3:59:8c: 33:3c:3b:5a:ff:9f:be:1f:52:e7:65:7b:2a:a1:ef:99:b4:42: c4:d0:8f:8e:03:9e:12:46:61:52:1f:d6:a3:a2:72:96:ca:ff: 0c:74:a2:2d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUdYwiH11byVlLE+goI5Z4emnZn2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdDQ0U0OUY0QTlDMTQ4NTJCM0EzMDQzNTlEM0NCMUU0 RTMzMkMzRTAeFw0yNjA1MTQxMDI5MDhaFw0yNzA1MTMxMDM0MDhaMDMxMTAvBgNV BAMTKDQyQjBGMDA3MzRDQjJGMjk5RjBCREJBNkVDMTlCMDVFM0UyODhFNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/+8x/2yvu3la/7Ec4Fq5lioNI YWz2B/h5y8u9eI5RtGgMrmynWXj6YqX3gY93P5FRYQEvvDjhPb3p58d+Z6EJmSQu Co0SnB8EXuTHalHP9lEMyguyu1KXT3beIf7TQow9n5MXc9hhX/pfe2jX8Ly/tNWr 7APAzxKS56TzycgeLer/4vI2qPzg0bXOq9dqffFrA0F0MvL9x0IkkTjIAB7spiKb 8/5NkvKx7IzdP9rDJftrwfJP4hQrT3HomJ0+8xvLzq8bvGVDuCguznGTmeOpXBrL lKZDrM+nDsU6DChyIhFCpq3mNk5QBVg8PuL9lKbHPeT0lqGa3b+UiBceTuujAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUQrDwBzTLLymfC9um7BmwXj4ojlMwHwYDVR0j BBgwFoAUJ8zkn0qcFIUrOjBDWdPLHk4zLD4wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFdULzAv MjdDQ0U0OUY0QTlDMTQ4NTJCM0EzMDQzNTlEM0NCMUU0RTMzMkMzRS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8yN0NDRTQ5RjRBOUMxNDg1MkIzQTMwNDM1OUQzQ0Ix RTRFMzMyQzNFLmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFdULzAvMzEzMDMzMmUzMTMzMzYyZTM2 MzAyZTMwMmYzMjMzMmQzMzMyMjAzZDNlMjAzMjM0MzEzNjM4LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB Z4g8MA0GCSqGSIb3DQEBCwUAA4IBAQCV8kvYmNWqdIddH5oNmRHk0YTnbEiRR8me q7iSEQfBXJdY69xLEjUah/1wzOCDxbQ3P+2vRr9hbuu58xzlkFUI9hh9h8JiuL/c r+PqACDqdXS7Ll9NPnl0cvNq4pH+gDrlQH03s/yV5soN513+mJ6AgnVLkc6958h6 mFPg8FB6SrqsaRfjhadgCbYUH66Uqi7iHZ+79qPXRFPifHEAnytzAWvgY6E1Czr6 IxxSpa/iLugks2zwowhJN27+g+BDuTfPcyCUxHA/QhjtJqdU/5gz4BWgKC7TWYwz PDta/5++H1LnZXsqoe+ZtELE0I+OA54SRmFSH9ajonKWyv8MdKIt -----END CERTIFICATE-----Generated at Tue May 19 20:50:48 2026 by rpki-client