$ rpki-client -vvf rpkica.twnic.tw/rpki/DWT/0/3130332e3133362e36302e302f32332d3332203d3e203435343734.roa File: 3130332e3133362e36302e302f32332d3332203d3e203435343734.roa (raw, json) Hash identifier: TkAkLvD8kDat4R/6a5lSAK8cYL1VM50G1zssF4Wpmkc= Subject key identifier: 00:AA:3A:44:C9:E3:1D:53:79:C9:68:B0:F0:E2:EF:CC:06:CC:4F:D5 Certificate issuer: /CN=27CCE49F4A9C14852B3A304359D3CB1E4E332C3E Certificate serial: 086AA9558EA74A6D41F4C9B61FC0D435C270580D Authority key identifier: 27:CC:E4:9F:4A:9C:14:85:2B:3A:30:43:59:D3:CB:1E:4E:33:2C:3E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DWT/0/3130332e3133362e36302e302f32332d3332203d3e203435343734.roa Signing time: Thu 14 May 2026 10:34:09 +0000 ROA not before: Thu 14 May 2026 10:29:09 +0000 ROA not after: Thu 13 May 2027 10:34:09 +0000 asID: 45474 IP address blocks: 103.136.60.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.crl rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 11:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:6a:a9:55:8e:a7:4a:6d:41:f4:c9:b6:1f:c0:d4:35:c2:70:58:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27CCE49F4A9C14852B3A304359D3CB1E4E332C3E Validity Not Before: May 14 10:29:09 2026 GMT Not After : May 13 10:34:09 2027 GMT Subject: CN=00AA3A44C9E31D5379C968B0F0E2EFCC06CC4FD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b7:44:2c:1d:1d:3b:73:d9:ae:cf:5b:15:cc: 07:63:89:53:04:30:84:ea:12:d7:8b:26:77:ca:77: c2:34:7a:98:ba:c0:bd:a6:e5:be:f4:85:62:22:23: 92:60:99:d6:2f:ce:3b:af:af:52:0d:a4:b5:a6:4b: f1:02:aa:78:8c:54:11:f6:66:bc:52:c1:9d:30:b9: 5e:33:e9:9d:ab:b2:0c:7d:77:81:26:7e:11:13:6b: 90:9f:97:af:c1:1a:7b:00:4f:bb:09:74:49:d1:6c: bf:49:73:4c:d4:de:52:48:06:43:77:d0:86:d8:4e: 45:9a:0b:ab:b4:a7:e0:c4:6f:73:85:f1:ea:0a:1a: d0:11:50:e6:96:0f:94:ce:2f:03:10:57:5b:07:fd: 06:3e:2e:d4:ad:fc:f9:2f:f2:ab:d9:88:0f:61:27: 38:f0:3f:be:24:51:62:58:5f:ac:38:8c:47:63:bb: fd:fb:81:d7:c9:26:8d:11:a5:49:5d:31:6a:49:63: 91:ee:1c:a1:7d:23:3f:43:c4:e5:27:5c:d8:da:db: bf:92:fa:31:7d:0b:7a:5b:89:ab:c9:4f:59:84:23: f2:7c:24:c9:dd:ed:d8:97:5d:bd:9f:2b:f0:c0:59: b3:a5:34:dc:7d:45:d1:d7:dd:93:88:f0:88:b6:9d: 1a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:AA:3A:44:C9:E3:1D:53:79:C9:68:B0:F0:E2:EF:CC:06:CC:4F:D5 X509v3 Authority Key Identifier: keyid:27:CC:E4:9F:4A:9C:14:85:2B:3A:30:43:59:D3:CB:1E:4E:33:2C:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DWT/0/3130332e3133362e36302e302f32332d3332203d3e203435343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption b1:46:81:45:e7:e2:58:cd:94:0d:94:18:05:6c:93:cf:4d:2e: 4e:7c:3a:74:60:99:83:14:2c:01:b2:ee:e6:e1:9b:d3:b5:b9: db:f3:be:4a:96:f3:12:7e:47:97:2b:9e:02:8e:54:71:4a:05: 89:87:31:ac:41:63:bd:a8:00:a1:0c:5f:cd:84:6c:21:95:e8: 7d:d7:99:d7:ab:95:e8:0d:b8:23:33:96:a6:00:e3:5d:02:17: a2:3c:59:71:c1:5f:bf:21:93:e1:2b:95:81:f0:41:60:7d:ff: 5b:f3:f7:d0:b1:64:35:0a:a2:fa:ec:33:2b:9a:8a:e9:d6:c6: c1:20:28:c7:d2:9a:8f:47:ca:72:a3:54:99:fd:3a:f5:be:98: a5:8e:ce:87:fd:01:77:49:2d:34:be:5e:b9:59:a8:0a:37:17: 6c:f1:1b:bf:68:03:09:03:f8:d2:2e:09:32:6b:3c:fb:29:34: 6b:cb:61:3d:01:6f:79:54:89:ad:9d:4d:76:b3:5f:44:63:32: 33:5d:42:2d:e5:51:2e:48:00:67:58:40:02:38:ca:91:6c:32: 44:0d:e9:3e:f4:8b:4d:6b:f3:bb:8f:db:8f:e3:65:68:c8:ed: 95:9d:56:b6:1a:92:32:4f:89:75:d1:95:cb:02:2f:7f:22:9c: 50:b6:f2:9e -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUCGqpVY6nSm1B9Mm2H8DUNcJwWA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdDQ0U0OUY0QTlDMTQ4NTJCM0EzMDQzNTlEM0NCMUU0 RTMzMkMzRTAeFw0yNjA1MTQxMDI5MDlaFw0yNzA1MTMxMDM0MDlaMDMxMTAvBgNV BAMTKDAwQUEzQTQ0QzlFMzFENTM3OUM5NjhCMEYwRTJFRkNDMDZDQzRGRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCut0QsHR07c9muz1sVzAdjiVME MITqEteLJnfKd8I0epi6wL2m5b70hWIiI5JgmdYvzjuvr1INpLWmS/ECqniMVBH2 ZrxSwZ0wuV4z6Z2rsgx9d4EmfhETa5Cfl6/BGnsAT7sJdEnRbL9Jc0zU3lJIBkN3 0IbYTkWaC6u0p+DEb3OF8eoKGtARUOaWD5TOLwMQV1sH/QY+LtSt/Pkv8qvZiA9h JzjwP74kUWJYX6w4jEdju/37gdfJJo0RpUldMWpJY5HuHKF9Iz9DxOUnXNja27+S +jF9C3pbiavJT1mEI/J8JMnd7diXXb2fK/DAWbOlNNx9RdHX3ZOI8Ii2nRr7AgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUAKo6RMnjHVN5yWiw8OLvzAbMT9UwHwYDVR0j BBgwFoAUJ8zkn0qcFIUrOjBDWdPLHk4zLD4wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFdULzAv MjdDQ0U0OUY0QTlDMTQ4NTJCM0EzMDQzNTlEM0NCMUU0RTMzMkMzRS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8yN0NDRTQ5RjRBOUMxNDg1MkIzQTMwNDM1OUQzQ0Ix RTRFMzMyQzNFLmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFdULzAvMzEzMDMzMmUzMTMzMzYyZTM2 MzAyZTMwMmYzMjMzMmQzMzMyMjAzZDNlMjAzNDM1MzQzNzM0LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB Z4g8MA0GCSqGSIb3DQEBCwUAA4IBAQCxRoFF5+JYzZQNlBgFbJPPTS5OfDp0YJmD FCwBsu7m4ZvTtbnb875KlvMSfkeXK54CjlRxSgWJhzGsQWO9qAChDF/NhGwhleh9 15nXq5XoDbgjM5amAONdAheiPFlxwV+/IZPhK5WB8EFgff9b8/fQsWQ1CqL67DMr morp1sbBICjH0pqPR8pyo1SZ/Tr1vpiljs6H/QF3SS00vl65WagKNxds8Ru/aAMJ A/jSLgkyazz7KTRry2E9AW95VImtnU12s19EYzIzXUIt5VEuSABnWEACOMqRbDJE Dek+9ItNa/O7j9uP42VoyO2VnVa2GpIyT4l10ZXLAi9/IpxQtvKe -----END CERTIFICATE-----Generated at Fri Jun 12 02:40:46 2026 by rpki-client