$ rpki-client -vvf rpkica.twnic.tw/rpki/DYXNET/0/3131332e32312e3137332e302f32342d3234203d3e2039323434.roa File: 3131332e32312e3137332e302f32342d3234203d3e2039323434.roa (raw, json) Hash identifier: zad3+2RXzsQ+kKuIVqMfSQyLlU7unW/aAqyPG/mguxY= Subject key identifier: A4:8C:66:98:02:F8:CA:C8:17:A9:B5:25:6F:EB:6B:96:A1:1D:03:DA Certificate issuer: /CN=157D536924EE6C5A7711625C6906CB5139BE6605 Certificate serial: 5B5B24AF222CC451ECFEC8D560CA6C16CB234043 Authority key identifier: 15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DYXNET/0/3131332e32312e3137332e302f32342d3234203d3e2039323434.roa Signing time: Mon 11 May 2026 16:54:40 +0000 ROA not before: Mon 11 May 2026 16:49:40 +0000 ROA not after: Mon 10 May 2027 16:54:40 +0000 asID: 9244 IP address blocks: 113.21.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:5b:24:af:22:2c:c4:51:ec:fe:c8:d5:60:ca:6c:16:cb:23:40:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157D536924EE6C5A7711625C6906CB5139BE6605 Validity Not Before: May 11 16:49:40 2026 GMT Not After : May 10 16:54:40 2027 GMT Subject: CN=A48C669802F8CAC817A9B5256FEB6B96A11D03DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:85:51:2b:99:e9:0d:c9:91:99:f9:b2:b1:17: 25:8f:fb:62:db:6c:eb:b7:3f:a9:0e:a9:b6:38:ad: d8:b7:31:5d:4c:dd:b3:ba:95:6f:68:cc:a3:25:09: cb:3a:eb:f8:4a:4d:44:f5:a4:a3:07:4d:0c:a0:69: 20:0a:a0:34:b8:6f:00:be:57:80:6d:ae:f1:28:82: 23:8d:6c:b1:b7:f1:c8:97:e6:3b:c5:bc:e2:dd:4b: e2:a9:b9:f3:00:aa:a1:72:8c:8c:ca:f9:e6:50:f4: d3:2b:e5:d9:96:d3:f8:1e:e3:c9:97:13:c4:b3:d8: 4c:51:bc:50:c6:56:cd:35:38:69:56:8f:7a:26:ba: b4:b9:c3:bd:71:c7:04:b9:8c:ff:84:6b:65:a0:70: 4c:7f:94:13:54:30:45:21:7b:98:5d:96:08:c4:3a: 91:7b:37:94:a3:77:81:2d:75:70:cf:c5:a5:db:7d: 73:66:fc:11:b6:c1:e6:ac:0d:0b:d4:69:6b:a2:db: 09:fa:81:70:b5:43:be:de:f8:83:d8:33:dd:71:2c: 08:bc:02:61:23:30:31:f9:e9:60:b8:fd:f6:6e:fb: 06:57:db:c5:5b:49:cd:79:74:d3:5c:6e:1b:b3:f0: 78:b4:7a:08:78:6f:3d:83:60:b3:7a:9c:36:ed:79: bf:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:8C:66:98:02:F8:CA:C8:17:A9:B5:25:6F:EB:6B:96:A1:1D:03:DA X509v3 Authority Key Identifier: keyid:15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/3131332e32312e3137332e302f32342d3234203d3e2039323434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.21.173.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:b4:4f:d2:01:50:43:1e:c5:7e:eb:28:3e:21:b7:35:3d:61: a4:59:72:8b:ad:4c:c3:ab:21:03:e7:98:67:54:60:ba:57:5b: a1:7d:48:a2:78:5e:e7:fe:dc:ce:1e:f6:71:cf:06:07:2a:c0: c9:f6:a4:4e:6b:b0:a6:5d:87:ef:b2:d6:41:46:bd:f0:28:e9: 12:6d:79:7e:cf:bd:78:f8:5f:2c:0e:d5:54:39:57:27:9a:5f: 87:8b:db:cd:5e:e3:93:eb:71:67:a2:1f:73:91:93:a0:fb:ec: 8d:3e:61:83:33:85:d0:a3:e0:d9:a1:32:61:c4:28:76:ca:22: f5:50:11:df:e9:f9:71:96:f8:15:57:95:6c:7d:d4:9b:23:70: eb:2f:f9:c7:eb:6b:d9:6b:94:2c:5d:9e:9b:c7:15:f8:04:cb: 64:a4:c5:66:fc:3f:bd:fc:bb:08:61:f6:23:f7:e1:72:6e:54: 64:b5:84:a1:ae:4f:1a:4a:28:24:04:01:44:96:f3:8d:6a:78: 3a:ac:04:0b:67:39:a7:9f:66:a3:2e:85:02:69:fd:81:e4:76: bb:bd:15:5d:5b:7b:20:93:1b:8c:c5:81:ff:aa:64:45:09:9a: 5a:39:4f:22:84:d1:93:7d:19:fd:2a:70:90:74:94:2e:e2:a7: d8:bf:a4:4a -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUW1skryIsxFHs/sjVYMpsFssjQEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEz OUJFNjYwNTAeFw0yNjA1MTExNjQ5NDBaFw0yNzA1MTAxNjU0NDBaMDMxMTAvBgNV BAMTKEE0OEM2Njk4MDJGOENBQzgxN0E5QjUyNTZGRUI2Qjk2QTExRDAzREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhhVErmekNyZGZ+bKxFyWP+2Lb bOu3P6kOqbY4rdi3MV1M3bO6lW9ozKMlCcs66/hKTUT1pKMHTQygaSAKoDS4bwC+ V4BtrvEogiONbLG38ciX5jvFvOLdS+KpufMAqqFyjIzK+eZQ9NMr5dmW0/ge48mX E8Sz2ExRvFDGVs01OGlWj3omurS5w71xxwS5jP+Ea2WgcEx/lBNUMEUhe5hdlgjE OpF7N5Sjd4EtdXDPxaXbfXNm/BG2weasDQvUaWui2wn6gXC1Q77e+IPYM91xLAi8 AmEjMDH56WC4/fZu+wZX28VbSc15dNNcbhuz8Hi0egh4bz2DYLN6nDbteb9rAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUpIxmmAL4ysgXqbUlb+trlqEdA9owHwYDVR0j BBgwFoAUFX1TaSTubFp3EWJcaQbLUTm+ZgUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVU LzAvMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEzOUJFNjYwNS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8xNTdENTM2OTI0RUU2QzVBNzcxMTYyNUM2OTA2 Q0I1MTM5QkU2NjA1LmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVULzAvMzEzMTMzMmUzMjMx MmUzMTM3MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzOTMyMzQzNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHEVrTANBgkqhkiG9w0BAQsFAAOCAQEAjLRP0gFQQx7FfusoPiG3NT1hpFly i61Mw6shA+eYZ1RguldboX1Ionhe5/7czh72cc8GByrAyfakTmuwpl2H77LWQUa9 8CjpEm15fs+9ePhfLA7VVDlXJ5pfh4vbzV7jk+txZ6Ifc5GToPvsjT5hgzOF0KPg 2aEyYcQodsoi9VAR3+n5cZb4FVeVbH3UmyNw6y/5x+tr2WuULF2em8cV+ATLZKTF Zvw/vfy7CGH2I/fhcm5UZLWEoa5PGkooJAQBRJbzjWp4OqwEC2c5p59moy6FAmn9 geR2u70VXVt7IJMbjMWB/6pkRQmaWjlPIoTRk30Z/SpwkHSULuKn2L+kSg== -----END CERTIFICATE-----Generated at Wed May 13 21:10:46 2026 by rpki-client