$ rpki-client -vvf rpkica.twnic.tw/rpki/FET/0/AS131597.roa File: AS131597.roa (raw, json) Hash identifier: LsG9a5v2Mc0qNEqxwITDrgC+BMD5jh+oaM6a/pv0ARQ= Subject key identifier: 25:39:46:30:47:74:BA:31:C3:CC:47:79:88:8F:25:8E:96:97:79:F9 Certificate issuer: /CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Certificate serial: 26C5621144CF56F159B4D84BF62BAB718B8E504A Authority key identifier: 71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject info access: rsync://rpkica.twnic.tw/rpki/FET/0/AS131597.roa Signing time: Mon 11 May 2026 17:35:02 +0000 ROA not before: Mon 11 May 2026 17:30:02 +0000 ROA not after: Mon 10 May 2027 17:35:02 +0000 asID: 131597 IP address blocks: 218.35.32.0/19 maxlen: 21 218.35.32.0/19 maxlen: 24 218.35.64.0/19 maxlen: 21 218.35.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c5:62:11:44:cf:56:f1:59:b4:d8:4b:f6:2b:ab:71:8b:8e:50:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Validity Not Before: May 11 17:30:02 2026 GMT Not After : May 10 17:35:02 2027 GMT Subject: CN=253946304774BA31C3CC4779888F258E969779F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:32:cd:10:af:7f:fb:57:74:50:25:bd:7d:94: f8:84:d6:2d:b9:8b:cb:63:dc:82:1b:0c:7b:c9:3d: cf:ef:05:1a:d7:6b:24:fb:2d:f0:8c:13:26:eb:3e: 59:32:ea:f2:4b:a9:f8:1b:43:34:c3:31:4a:4c:45: a6:a0:c2:49:c4:c1:b4:9d:a7:d1:25:13:fc:0c:bb: 69:f0:32:8e:c1:e0:42:1e:b5:28:a9:34:c9:9e:10: 81:48:8c:83:04:0a:96:e8:5e:b2:6d:2d:f4:5f:61: d4:dc:e4:cd:87:a0:02:7e:0f:88:81:73:ff:f7:da: 4c:50:3f:af:c9:29:1d:ab:71:27:f4:34:d2:58:5b: b4:bc:23:ca:59:60:65:3d:a4:40:b9:82:ac:61:f7: a4:5c:68:47:e4:57:4a:15:44:02:28:94:6f:bd:11: c2:02:1f:07:d8:8d:a3:55:92:8e:28:fb:17:f7:67: d1:11:89:9a:ff:33:ed:16:8f:12:80:b7:7b:5f:17: c2:d4:01:84:23:1f:9d:7f:8a:25:be:0b:c5:2b:ad: 4a:0a:b1:dc:6a:85:a1:e0:4d:af:6f:c2:26:e4:15: 28:63:06:9c:b9:bb:8b:3b:72:c0:27:48:3a:37:23: 03:62:b7:49:58:68:e0:52:63:25:50:ac:2e:b1:11: f5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:39:46:30:47:74:BA:31:C3:CC:47:79:88:8F:25:8E:96:97:79:F9 X509v3 Authority Key Identifier: keyid:71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/FET/0/AS131597.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.35.32.0-218.35.95.255 Signature Algorithm: sha256WithRSAEncryption 40:8b:1b:c6:ea:db:de:6f:56:14:f0:0a:1c:b3:27:9e:5f:bb: 0d:5e:5c:49:ad:dd:9d:b5:56:8c:b8:b9:54:f3:47:95:2e:98: 79:4c:27:14:b7:6b:89:91:21:19:93:b0:68:97:1f:a5:b0:7c: 55:78:f8:72:fe:b0:8b:2c:c2:63:50:6d:f1:4f:74:5f:de:b1: fa:39:06:f8:e1:ef:be:d2:1c:4b:f2:9e:15:77:c5:8e:0e:c4: 90:2e:6e:d9:f8:97:e2:d5:51:c5:7f:ad:e1:55:d2:0f:ec:c5: 0d:9d:6f:f5:9a:54:54:b6:f4:47:e8:64:26:bb:2e:15:af:fd: c2:40:dc:4a:19:7f:af:c9:cf:ab:f7:bb:78:ed:84:05:ef:4e: 69:ed:a3:de:1d:06:e4:5f:a0:48:cb:ef:45:fe:8a:60:39:da: f7:5f:aa:5a:ae:54:ec:27:10:e3:9a:05:b3:65:6d:72:4f:48: 5d:89:0a:ac:94:a2:ef:4e:c3:96:24:12:92:31:0a:e1:45:0f: 98:3e:c5:4b:b2:c1:22:49:64:57:bc:7c:ee:ca:c7:ea:e2:85: 65:35:ae:92:9d:0d:39:13:a9:c0:7c:d7:3a:d8:33:97:33:58: f9:b1:d7:0c:93:d3:22:10:3f:38:f0:cc:6e:8e:0f:97:cf:55: 7d:df:b3:d0 -----BEGIN CERTIFICATE----- MIIErTCCA5WgAwIBAgIUJsViEUTPVvFZtNhL9iurcYuOUEowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4 NDI0NkQxMDAeFw0yNjA1MTExNzMwMDJaFw0yNzA1MTAxNzM1MDJaMDMxMTAvBgNV BAMTKDI1Mzk0NjMwNDc3NEJBMzFDM0NDNDc3OTg4OEYyNThFOTY5Nzc5RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsMs0Qr3/7V3RQJb19lPiE1i25 i8tj3IIbDHvJPc/vBRrXayT7LfCMEybrPlky6vJLqfgbQzTDMUpMRaagwknEwbSd p9ElE/wMu2nwMo7B4EIetSipNMmeEIFIjIMECpboXrJtLfRfYdTc5M2HoAJ+D4iB c//32kxQP6/JKR2rcSf0NNJYW7S8I8pZYGU9pEC5gqxh96RcaEfkV0oVRAIolG+9 EcICHwfYjaNVko4o+xf3Z9ERiZr/M+0WjxKAt3tfF8LUAYQjH51/iiW+C8UrrUoK sdxqhaHgTa9vwibkFShjBpy5u4s7csAnSDo3IwNit0lYaOBSYyVQrC6xEfXNAgMB AAGjggG3MIIBszAdBgNVHQ4EFgQUJTlGMEd0ujHDzEd5iI8ljpaXefkwHwYDVR0j BBgwFoAUcfog/Cac6YBbLGflmzV6poQkbRAwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAv NzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4NDI0NkQxMC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MUZBMjBGQzI2OUNFOTgwNUIyQzY3RTU5QjM1N0FB Njg0MjQ2RDEwLmNlcjBLBggrBgEFBQcBCwQ/MD0wOwYIKwYBBQUHMAuGL3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAvQVMxMzE1OTcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgABMA4w DAMEBdojIAMEBdojQDANBgkqhkiG9w0BAQsFAAOCAQEAQIsbxurb3m9WFPAKHLMn nl+7DV5cSa3dnbVWjLi5VPNHlS6YeUwnFLdriZEhGZOwaJcfpbB8VXj4cv6wiyzC Y1Bt8U90X96x+jkG+OHvvtIcS/KeFXfFjg7EkC5u2fiX4tVRxX+t4VXSD+zFDZ1v 9ZpUVLb0R+hkJrsuFa/9wkDcShl/r8nPq/e7eO2EBe9Oae2j3h0G5F+gSMvvRf6K YDna91+qWq5U7CcQ45oFs2Vtck9IXYkKrJSi707DliQSkjEK4UUPmD7FS7LBIklk V7x87srH6uKFZTWukp0NOROpwHzXOtgzlzNY+bHXDJPTIhA/OPDMbo4Pl89Vfd+z 0A== -----END CERTIFICATE-----Generated at Wed May 13 21:51:14 2026 by rpki-client