$ rpki-client -vvf rpkica.twnic.tw/rpki/FET/0/AS1131591.roa File: AS1131591.roa (raw, json) Hash identifier: IauF2vAXzqx5+FLJ2cLeMJ1xdIINB1w640Q7FBxzL1w= Subject key identifier: FE:5B:7F:22:18:DE:66:74:9C:77:88:31:8E:DE:C6:A0:E6:67:8E:45 Certificate issuer: /CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Certificate serial: 611E3ECC87F22812E87405D5E688C0989DA416C2 Authority key identifier: 71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject info access: rsync://rpkica.twnic.tw/rpki/FET/0/AS1131591.roa Signing time: Mon 11 May 2026 17:35:19 +0000 ROA not before: Mon 11 May 2026 17:30:19 +0000 ROA not after: Mon 10 May 2027 17:35:19 +0000 asID: 1131591 IP address blocks: 103.231.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:1e:3e:cc:87:f2:28:12:e8:74:05:d5:e6:88:c0:98:9d:a4:16:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Validity Not Before: May 11 17:30:19 2026 GMT Not After : May 10 17:35:19 2027 GMT Subject: CN=FE5B7F2218DE66749C7788318EDEC6A0E6678E45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4e:c7:da:44:ca:99:90:19:07:40:7b:8a:b5: 88:20:d7:d2:58:a1:74:0d:d5:3a:73:77:cb:d6:3f: ce:ec:6d:56:d8:9e:40:c1:f3:c6:dd:84:84:02:56: 74:bd:b6:6d:86:6d:45:4a:02:cf:d8:cb:11:70:10: de:4c:6e:c1:4f:68:ad:a7:51:17:c2:9b:24:ba:cd: a7:55:93:7a:7d:c3:6e:20:ea:ab:65:5b:2c:e4:4c: 63:d3:36:47:63:6c:b5:67:83:81:fa:b4:d7:10:50: 19:02:c2:74:07:21:20:0c:96:6a:53:f0:cc:59:e2: 46:d7:24:89:a6:ed:54:e2:8b:b5:d3:99:4a:18:8e: d6:1a:09:ea:a8:77:6f:e2:ab:60:0c:44:1e:d7:4c: e2:aa:77:50:ca:da:b3:61:f2:a3:7e:98:ca:81:88: 38:f8:88:63:b4:f7:07:c7:9b:5f:a4:1e:f9:fe:5d: c3:3a:c4:b9:81:56:48:58:70:58:ed:a2:29:ba:99: 89:c2:41:2f:cc:e6:85:ee:d4:79:fa:78:31:d4:a6: 78:37:ff:66:bd:0b:bb:a4:0c:42:09:b5:26:3d:04: 78:b4:cf:05:18:e5:d2:a5:e3:fa:3b:cf:d7:49:19: 3c:e0:35:60:75:16:b5:fd:d6:18:30:88:d6:d2:1a: 06:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:5B:7F:22:18:DE:66:74:9C:77:88:31:8E:DE:C6:A0:E6:67:8E:45 X509v3 Authority Key Identifier: keyid:71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/FET/0/AS1131591.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.51.0/24 Signature Algorithm: sha256WithRSAEncryption 37:14:ef:36:7f:12:4c:fc:f3:8a:62:25:f0:11:c1:62:f8:05: 92:7c:92:09:2d:9d:fa:83:bc:dc:ee:54:40:ea:a4:52:e1:84: 91:92:4f:85:db:24:eb:d4:76:31:0a:5b:68:b4:ef:11:a3:0e: ef:cc:ad:3b:34:d4:db:e4:d8:c9:2f:0c:07:c6:33:07:b7:5b: 4f:95:e3:04:20:6d:bd:cc:a1:9c:39:03:ed:2c:a1:f7:94:7e: 93:f7:d2:3e:ad:48:44:e3:c5:5f:38:dc:de:91:b3:2b:4a:06: ae:af:9c:83:e7:a7:e3:aa:ca:17:36:30:3d:47:05:ef:0d:42: b4:be:cb:8d:5e:c1:f4:f4:dd:ab:92:8b:c2:fb:bb:dc:f0:3d: b3:61:a5:a7:d1:9f:0f:39:c5:bd:41:4f:f6:72:3e:46:ec:0c: 19:f4:00:9f:1e:45:89:38:6b:6d:ec:c3:db:f9:44:4c:5f:b8: 2c:d6:fb:a6:7e:a7:81:29:b8:61:15:24:f5:a3:47:a1:65:f8: 42:3f:9b:21:9d:5e:32:c4:27:e3:2c:7b:34:7a:2b:34:f1:43: 17:22:dc:98:75:3f:1c:15:67:d1:e6:48:2c:ef:3a:b3:68:02: 40:47:b0:f5:74:5e:6e:ee:e2:39:26:bc:d8:19:ea:6d:d0:0a: d6:f6:2a:7c -----BEGIN CERTIFICATE----- MIIEpjCCA46gAwIBAgIUYR4+zIfyKBLodAXV5ojAmJ2kFsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4 NDI0NkQxMDAeFw0yNjA1MTExNzMwMTlaFw0yNzA1MTAxNzM1MTlaMDMxMTAvBgNV BAMTKEZFNUI3RjIyMThERTY2NzQ5Qzc3ODgzMThFREVDNkEwRTY2NzhFNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcTsfaRMqZkBkHQHuKtYgg19JY oXQN1Tpzd8vWP87sbVbYnkDB88bdhIQCVnS9tm2GbUVKAs/YyxFwEN5MbsFPaK2n URfCmyS6zadVk3p9w24g6qtlWyzkTGPTNkdjbLVng4H6tNcQUBkCwnQHISAMlmpT 8MxZ4kbXJImm7VTii7XTmUoYjtYaCeqod2/iq2AMRB7XTOKqd1DK2rNh8qN+mMqB iDj4iGO09wfHm1+kHvn+XcM6xLmBVkhYcFjtoim6mYnCQS/M5oXu1Hn6eDHUpng3 /2a9C7ukDEIJtSY9BHi0zwUY5dKl4/o7z9dJGTzgNWB1FrX91hgwiNbSGgY7AgMB AAGjggGwMIIBrDAdBgNVHQ4EFgQU/lt/IhjeZnScd4gxjt7GoOZnjkUwHwYDVR0j BBgwFoAUcfog/Cac6YBbLGflmzV6poQkbRAwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAv NzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4NDI0NkQxMC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MUZBMjBGQzI2OUNFOTgwNUIyQzY3RTU5QjM1N0FB Njg0MjQ2RDEwLmNlcjBMBggrBgEFBQcBCwRAMD4wPAYIKwYBBQUHMAuGMHJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAvQVMxMTMxNTkxLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ+czMA0GCSqGSIb3DQEBCwUAA4IBAQA3FO82fxJM/POKYiXwEcFi+AWSfJIJ LZ36g7zc7lRA6qRS4YSRkk+F2yTr1HYxCltotO8Row7vzK07NNTb5NjJLwwHxjMH t1tPleMEIG29zKGcOQPtLKH3lH6T99I+rUhE48VfONzekbMrSgaur5yD56fjqsoX NjA9RwXvDUK0vsuNXsH09N2rkovC+7vc8D2zYaWn0Z8POcW9QU/2cj5G7AwZ9ACf HkWJOGtt7MPb+URMX7gs1vumfqeBKbhhFST1o0ehZfhCP5shnV4yxCfjLHs0eis0 8UMXItyYdT8cFWfR5kgs7zqzaAJAR7D1dF5u7uI5JrzYGept0ArW9ip8 -----END CERTIFICATE-----Generated at Wed May 13 21:51:12 2026 by rpki-client