$ rpki-client -vvf rpkica.twnic.tw/rpki/FET/0/AS131591.roa File: AS131591.roa (raw, json) Hash identifier: 2WVqmdm4VP88IWBjb6Gi5Fnp5mAxh+ckRSMyNK+QUJ4= Subject key identifier: 39:C6:9B:5A:0A:6F:F3:32:B6:61:AA:99:41:6A:3E:AC:91:F4:46:8A Certificate issuer: /CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Certificate serial: 0E2920E63117D8A4A7E5C5BF860B1FD7D4A8EA0F Authority key identifier: 71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject info access: rsync://rpkica.twnic.tw/rpki/FET/0/AS131591.roa Signing time: Mon 11 May 2026 17:36:45 +0000 ROA not before: Mon 11 May 2026 17:31:45 +0000 ROA not after: Mon 10 May 2027 17:36:45 +0000 asID: 131591 IP address blocks: 101.136.0.0/14 maxlen: 24 103.231.48.0/24 maxlen: 24 103.231.49.0/24 maxlen: 24 103.231.50.0/24 maxlen: 24 203.79.206.0/23 maxlen: 24 222.250.0.0/16 maxlen: 24 223.22.0.0/16 maxlen: 24 223.22.32.0/19 maxlen: 24 223.23.0.0/16 maxlen: 24 2404:0:8000::/36 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:29:20:e6:31:17:d8:a4:a7:e5:c5:bf:86:0b:1f:d7:d4:a8:ea:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Validity Not Before: May 11 17:31:45 2026 GMT Not After : May 10 17:36:45 2027 GMT Subject: CN=39C69B5A0A6FF332B661AA99416A3EAC91F4468A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f3:c8:f2:0f:42:7d:d2:fb:fc:2f:83:36:9f: 78:40:a0:84:a3:bf:bd:29:ec:bd:bd:76:1c:2c:be: 9f:18:c1:63:24:b2:0d:8a:0b:da:02:b4:f7:56:fc: 3d:1f:ad:51:af:13:f4:c2:36:1d:ac:3a:c5:a4:ed: ea:76:5c:93:d1:f2:73:b4:fc:bc:50:4d:7d:94:06: 2c:ec:98:b5:98:56:1b:55:9d:f8:f4:52:f4:88:a6: f6:54:b5:bf:71:f0:70:b6:42:eb:d8:84:20:41:4f: 63:09:50:15:06:fa:be:7d:59:76:d0:54:c9:cb:f2: df:78:28:b6:bc:cc:d9:8f:b6:2b:30:13:a6:12:01: ab:a8:ab:0c:ba:f7:eb:aa:10:b4:79:e1:d3:ff:bd: a5:f4:9e:43:be:ce:b9:e0:91:dd:1e:fa:3d:1e:c9: 9f:7a:f8:82:2e:9a:f2:7f:0e:91:49:04:30:50:8e: 6d:91:f6:fb:4c:8e:ef:15:9c:52:97:e5:2c:24:2a: b6:7b:0e:61:45:9e:5b:1a:b3:cf:c8:c8:6e:b6:60: 86:b1:e8:36:18:e0:1a:74:1d:8b:6a:55:65:e9:61: 46:af:80:7a:bd:77:43:75:6a:d0:06:e8:fe:66:6c: 35:32:4e:3c:56:e4:a0:25:3e:30:3d:5d:6c:bc:8b: 14:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C6:9B:5A:0A:6F:F3:32:B6:61:AA:99:41:6A:3E:AC:91:F4:46:8A X509v3 Authority Key Identifier: keyid:71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/FET/0/AS131591.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.136.0.0/14 103.231.48.0-103.231.50.255 203.79.206.0/23 222.250.0.0/16 223.22.0.0/15 IPv6: 2404:0:8000::/36 Signature Algorithm: sha256WithRSAEncryption bc:47:7b:b7:4e:12:32:08:e4:51:99:e6:06:f1:42:ca:29:ec: c6:9d:bc:62:78:01:d4:e8:cf:fb:bc:de:80:e2:bd:de:26:33: 62:c2:bc:fd:57:a8:46:40:2a:1a:e7:d1:02:aa:d7:d9:a5:26: b5:39:b8:08:98:8a:40:ce:35:07:a9:bc:61:9d:38:58:92:98: fb:0d:a4:dd:97:2c:c2:1b:a1:16:cc:b6:80:52:f4:a6:3e:64: 4d:2e:f3:02:64:e1:3c:a0:3c:10:5c:38:90:e6:aa:25:93:f4: ab:8d:99:27:f7:1f:b8:14:2b:33:8d:76:5c:b0:6b:ae:c0:9e: 90:f4:65:7f:e9:95:8b:48:45:21:ab:55:f6:59:38:27:38:f8: d3:b0:8f:4c:d6:fc:ff:a8:5d:eb:c3:09:78:59:e0:66:06:35: 07:47:53:31:e6:67:18:85:9d:14:94:43:d8:21:93:23:d1:68: f9:77:03:6e:b7:07:8f:e3:e3:f3:70:5b:7d:4e:59:9c:9a:48: 2a:ae:46:7b:31:b8:02:ba:e1:a5:81:d8:f6:11:ee:4f:56:bb: 51:83:10:ef:82:b7:8c:aa:eb:db:e3:3f:c8:14:62:56:d9:7a: 34:6b:5e:7c:4a:9d:fa:e4:c0:27:6f:a6:d1:6f:1e:aa:a9:72: f3:a7:29:86 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDikg5jEX2KSn5cW/hgsf19So6g8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4 NDI0NkQxMDAeFw0yNjA1MTExNzMxNDVaFw0yNzA1MTAxNzM2NDVaMDMxMTAvBgNV BAMTKDM5QzY5QjVBMEE2RkYzMzJCNjYxQUE5OTQxNkEzRUFDOTFGNDQ2OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd88jyD0J90vv8L4M2n3hAoISj v70p7L29dhwsvp8YwWMksg2KC9oCtPdW/D0frVGvE/TCNh2sOsWk7ep2XJPR8nO0 /LxQTX2UBizsmLWYVhtVnfj0UvSIpvZUtb9x8HC2QuvYhCBBT2MJUBUG+r59WXbQ VMnL8t94KLa8zNmPtiswE6YSAauoqwy69+uqELR54dP/vaX0nkO+zrngkd0e+j0e yZ96+IIumvJ/DpFJBDBQjm2R9vtMju8VnFKX5SwkKrZ7DmFFnlsas8/IyG62YIax 6DYY4Bp0HYtqVWXpYUavgHq9d0N1atAG6P5mbDUyTjxW5KAlPjA9XWy8ixQZAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQUOcabWgpv8zK2YaqZQWo+rJH0RoowHwYDVR0j BBgwFoAUcfog/Cac6YBbLGflmzV6poQkbRAwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAv NzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4NDI0NkQxMC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MUZBMjBGQzI2OUNFOTgwNUIyQzY3RTU5QjM1N0FB Njg0MjQ2RDEwLmNlcjBLBggrBgEFBQcBCwQ/MD0wOwYIKwYBBQUHMAuGL3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAvQVMxMzE1OTEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwTAYIKwYBBQUHAQcBAf8EPTA7MCkEAgABMCMD AwJliDAMAwQEZ+cwAwQAZ+cyAwQBy0/OAwMA3voDAwHfFjAOBAIAAjAIAwYEJAQA AIAwDQYJKoZIhvcNAQELBQADggEBALxHe7dOEjII5FGZ5gbxQsop7MadvGJ4AdTo z/u83oDivd4mM2LCvP1XqEZAKhrn0QKq19mlJrU5uAiYikDONQepvGGdOFiSmPsN pN2XLMIboRbMtoBS9KY+ZE0u8wJk4TygPBBcOJDmqiWT9KuNmSf3H7gUKzONdlyw a67AnpD0ZX/plYtIRSGrVfZZOCc4+NOwj0zW/P+oXevDCXhZ4GYGNQdHUzHmZxiF nRSUQ9ghkyPRaPl3A263B4/j4/NwW31OWZyaSCquRnsxuAK64aWB2PYR7k9Wu1GD EO+Ct4yq69vjP8gUYlbZejRrXnxKnfrkwCdvptFvHqqpcvOnKYY= -----END CERTIFICATE-----Generated at Wed May 13 21:51:14 2026 by rpki-client