$ rpki-client -vvf rpkica.twnic.tw/rpki/FET/0/AS131142.roa File: AS131142.roa (raw, json) Hash identifier: tweFci1Q2ZNgrPegbCYB4DWzZuIQBECyL1mmHV6V+D4= Subject key identifier: EF:E0:1E:32:3A:0F:57:B7:5B:F0:B2:AA:80:CC:33:9A:DC:48:5A:47 Certificate issuer: /CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Certificate serial: 78FEE5AE5878B5127AEDD645A7681EF8F096BD28 Authority key identifier: 71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject info access: rsync://rpkica.twnic.tw/rpki/FET/0/AS131142.roa Signing time: Mon 11 May 2026 17:34:52 +0000 ROA not before: Mon 11 May 2026 17:29:52 +0000 ROA not after: Mon 10 May 2027 17:34:52 +0000 asID: 131142 IP address blocks: 203.79.204.0/23 maxlen: 24 210.200.0.0/22 maxlen: 24 210.200.64.0/20 maxlen: 24 210.200.80.0/22 maxlen: 24 222.251.0.0/18 maxlen: 24 223.22.0.0/20 maxlen: 24 223.22.16.0/22 maxlen: 24 223.22.252.0/22 maxlen: 24 223.22.254.0/24 maxlen: 24 2404:0:7000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:fe:e5:ae:58:78:b5:12:7a:ed:d6:45:a7:68:1e:f8:f0:96:bd:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Validity Not Before: May 11 17:29:52 2026 GMT Not After : May 10 17:34:52 2027 GMT Subject: CN=EFE01E323A0F57B75BF0B2AA80CC339ADC485A47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:91:e1:22:59:88:e0:a4:98:e9:9e:51:bf:4f: 5e:04:ee:39:48:34:fd:84:08:6d:2d:a3:16:76:cd: 2f:a0:78:c3:75:01:8b:35:36:60:16:dc:39:a9:03: 12:7e:ac:0c:ac:fe:ad:f5:da:2a:a3:84:9f:15:d1: 89:ce:a1:fd:a6:27:7e:86:4c:8d:6b:cc:f8:ef:0f: da:ea:37:a3:a0:5a:5b:81:65:b7:fe:69:e0:12:e7: 60:4a:d8:35:0e:24:11:e1:be:aa:e4:e5:8e:04:c0: 23:f8:bc:ba:c0:38:08:47:54:ed:97:70:7a:94:db: 4e:8a:e9:85:c9:68:71:83:31:23:99:fe:67:04:b3: 65:1e:c9:56:16:90:dd:02:bb:9b:8e:25:f2:39:00: 28:f6:6b:5b:6f:9d:52:63:50:b5:4f:d3:c5:de:9e: 41:a2:70:c6:34:41:e6:3e:c6:96:c1:0b:99:72:fa: 50:e4:d9:63:1f:5f:85:f3:b8:a3:5f:72:2e:75:95: 98:5c:c4:b0:c7:f6:43:bf:06:9d:2a:58:44:d3:df: 8b:b7:8b:16:63:36:a0:63:d1:73:23:05:ca:d8:fb: 35:4a:27:6b:4c:19:f9:35:83:b5:6e:c8:b1:44:21: bf:cf:59:5f:1f:d8:18:ee:6b:8b:ac:14:fd:66:aa: e5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E0:1E:32:3A:0F:57:B7:5B:F0:B2:AA:80:CC:33:9A:DC:48:5A:47 X509v3 Authority Key Identifier: keyid:71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/FET/0/AS131142.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.79.204.0/23 210.200.0.0/22 210.200.64.0-210.200.83.255 222.251.0.0/18 223.22.0.0-223.22.19.255 223.22.252.0/22 IPv6: 2404:0:7000::/36 Signature Algorithm: sha256WithRSAEncryption 0e:47:63:0c:68:b4:d2:5d:93:5e:0e:a5:df:d2:a3:78:fe:90: 38:53:aa:ea:8c:30:6d:dd:f5:9c:7f:ef:25:73:38:ee:65:a6: 03:3a:80:a4:af:f6:4d:f8:e7:02:29:16:e1:c8:17:f7:8a:14: dc:6d:d5:9a:09:c9:98:98:00:11:26:1f:ba:b7:e1:f4:50:23: 33:ca:00:0c:77:53:3b:d7:c8:72:7d:51:61:2a:01:8f:74:d6: c9:25:61:b8:87:7e:39:c8:75:0f:65:d3:df:28:ae:d7:58:44: 81:27:f6:a7:f1:f2:00:1b:90:6a:32:d6:7e:49:df:8c:3a:a1: ed:be:43:0e:30:de:4b:41:ae:08:5a:3a:65:a9:fc:39:f1:48: 4c:02:e3:a0:fe:0b:c3:23:fc:1d:88:60:b5:70:cb:fb:a0:b9: 40:ca:98:46:d5:de:d0:d0:85:c7:0f:dc:ce:2d:c4:86:8a:15: 87:33:b1:bc:ed:54:32:aa:5b:de:95:e6:d7:a2:38:93:5b:2b: e1:0f:37:43:0c:f1:d8:53:21:5f:7f:5d:1b:60:31:2e:e8:5a: b8:e5:0e:c8:c2:ec:bc:25:2d:5c:16:af:0b:62:88:77:34:62: 8a:e3:57:44:ec:d2:94:63:85:29:97:ab:d5:e8:75:f0:98:32: ea:89:de:cc -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUeP7lrlh4tRJ67dZFp2ge+PCWvSgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4 NDI0NkQxMDAeFw0yNjA1MTExNzI5NTJaFw0yNzA1MTAxNzM0NTJaMDMxMTAvBgNV BAMTKEVGRTAxRTMyM0EwRjU3Qjc1QkYwQjJBQTgwQ0MzMzlBREM0ODVBNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbkeEiWYjgpJjpnlG/T14E7jlI NP2ECG0toxZ2zS+geMN1AYs1NmAW3DmpAxJ+rAys/q312iqjhJ8V0YnOof2mJ36G TI1rzPjvD9rqN6OgWluBZbf+aeAS52BK2DUOJBHhvqrk5Y4EwCP4vLrAOAhHVO2X cHqU206K6YXJaHGDMSOZ/mcEs2UeyVYWkN0Cu5uOJfI5ACj2a1tvnVJjULVP08Xe nkGicMY0QeY+xpbBC5ly+lDk2WMfX4XzuKNfci51lZhcxLDH9kO/Bp0qWETT34u3 ixZjNqBj0XMjBcrY+zVKJ2tMGfk1g7VuyLFEIb/PWV8f2Bjua4usFP1mquVFAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQU7+AeMjoPV7db8LKqgMwzmtxIWkcwHwYDVR0j BBgwFoAUcfog/Cac6YBbLGflmzV6poQkbRAwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAv NzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4NDI0NkQxMC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MUZBMjBGQzI2OUNFOTgwNUIyQzY3RTU5QjM1N0FB Njg0MjQ2RDEwLmNlcjBLBggrBgEFBQcBCwQ/MD0wOwYIKwYBBQUHMAuGL3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAvQVMxMzExNDIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwXAYIKwYBBQUHAQcBAf8ETTBLMDkEAgABMDMD BAHLT8wDBALSyAAwDAMEBtLIQAMEAtLIUAMEBt77ADALAwMB3xYDBALfFhADBALf FvwwDgQCAAIwCAMGBCQEAABwMA0GCSqGSIb3DQEBCwUAA4IBAQAOR2MMaLTSXZNe DqXf0qN4/pA4U6rqjDBt3fWcf+8lczjuZaYDOoCkr/ZN+OcCKRbhyBf3ihTcbdWa CcmYmAARJh+6t+H0UCMzygAMd1M718hyfVFhKgGPdNbJJWG4h345yHUPZdPfKK7X WESBJ/an8fIAG5BqMtZ+Sd+MOqHtvkMOMN5LQa4IWjplqfw58UhMAuOg/gvDI/wd iGC1cMv7oLlAyphG1d7Q0IXHD9zOLcSGihWHM7G87VQyqlvelebXojiTWyvhDzdD DPHYUyFff10bYDEu6Fq45Q7Iwuy8JS1cFq8LYoh3NGKK41dE7NKUY4Upl6vV6HXw mDLqid7M -----END CERTIFICATE-----Generated at Wed May 13 21:51:11 2026 by rpki-client