$ rpki-client -vvf rpkica.twnic.tw/rpki/FET/0/AS131602.roa File: AS131602.roa (raw, json) Hash identifier: bFVVVflXDjtPSgbd2kGD0xptDyu1BbSWXOBLoCefftU= Subject key identifier: C3:F1:0E:FE:BD:72:61:8A:62:EB:2B:FE:05:7A:F0:ED:CA:23:C6:15 Certificate issuer: /CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Certificate serial: 11981118E7EEB4810073C01253E421410CAF75D1 Authority key identifier: 71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject info access: rsync://rpkica.twnic.tw/rpki/FET/0/AS131602.roa Signing time: Mon 11 May 2026 17:40:46 +0000 ROA not before: Mon 11 May 2026 17:35:46 +0000 ROA not after: Mon 10 May 2027 17:40:46 +0000 asID: 131602 IP address blocks: 218.34.156.0/22 maxlen: 24 218.34.160.0/19 maxlen: 24 218.35.96.0/21 maxlen: 24 218.35.104.0/22 maxlen: 24 218.35.192.0/18 maxlen: 24 218.35.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:98:11:18:e7:ee:b4:81:00:73:c0:12:53:e4:21:41:0c:af:75:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Validity Not Before: May 11 17:35:46 2026 GMT Not After : May 10 17:40:46 2027 GMT Subject: CN=C3F10EFEBD72618A62EB2BFE057AF0EDCA23C615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:b4:68:cf:02:b1:23:96:31:f7:fa:11:cf:a5: 51:9f:f5:6d:7a:e1:fc:68:f3:58:7b:a1:58:55:eb: 05:30:74:b0:11:3b:80:6b:a7:71:6c:dd:4d:3e:d3: 79:e6:65:c9:6a:03:25:1a:61:91:5b:16:0a:0f:00: e1:84:7a:72:7b:7f:06:6a:21:0e:24:56:a4:1d:65: 34:86:83:ae:ff:40:5e:22:aa:28:ac:f7:60:fa:ed: 3a:0c:57:4e:2e:1c:80:87:42:61:46:ca:fe:d1:cc: 5d:cd:b9:1d:3e:07:74:a8:53:b2:0c:69:4a:80:af: c3:37:9a:ef:82:97:c2:cc:63:5a:cd:6a:84:94:88: e2:66:4e:aa:8a:8a:4b:f2:d4:2b:6a:8d:c2:dd:8c: 2c:53:16:e5:a5:d2:4f:3d:1c:34:47:a8:61:83:14: 30:0c:f7:e6:71:2a:75:dc:02:9f:3b:57:b0:cd:21: 1f:74:80:50:2f:54:c1:8f:28:77:5c:94:8a:3d:a3: b5:94:81:a0:81:db:44:9d:b3:76:78:47:2c:70:15: 03:ba:61:34:ed:38:00:e4:e5:3f:7a:bd:2b:8f:3f: 6b:78:e9:63:4e:a1:dd:01:09:35:3f:b0:45:27:fc: 06:fd:0c:38:90:66:3e:a5:37:42:51:88:60:4d:67: a7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F1:0E:FE:BD:72:61:8A:62:EB:2B:FE:05:7A:F0:ED:CA:23:C6:15 X509v3 Authority Key Identifier: keyid:71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/FET/0/AS131602.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.34.156.0-218.34.191.255 218.35.96.0-218.35.107.255 218.35.192.0/18 Signature Algorithm: sha256WithRSAEncryption 36:ab:83:b3:52:b9:68:51:14:04:d9:1c:b5:cd:fe:09:24:95: c1:ee:67:4d:5d:c5:c0:e9:91:0f:94:f6:df:d0:70:6d:70:43: d9:34:e7:c0:27:12:cb:8c:08:0c:14:99:4c:40:f1:10:90:8e: d0:e7:8e:7d:41:a9:1b:91:82:07:84:79:39:b0:58:1e:87:a0: 2f:20:aa:55:96:56:83:ac:e0:7b:4b:9d:b3:15:12:37:85:67: 65:19:e8:ae:5c:fe:37:76:56:fd:b1:e4:33:8a:dd:4a:2c:72: 58:b3:13:b4:23:f4:51:e0:58:8d:b7:55:eb:d6:5c:44:9d:92: b7:d1:fb:5d:ed:79:dd:ce:a9:02:2d:30:d0:0c:5b:24:5f:10: 71:91:65:31:18:ff:d1:f0:17:e3:45:17:4b:a8:02:9b:ed:2a: c4:5e:3f:e9:f5:4c:74:7e:3b:e5:05:7f:39:03:bd:4d:b5:66: 6b:40:7f:1f:7c:cd:0e:70:6d:83:7d:63:cc:d9:77:66:2f:b1: a5:f9:ff:61:d7:3f:17:c0:c4:d5:0b:dd:e0:56:fb:80:96:00: 40:2f:1d:83:40:3a:e6:fa:b8:97:a3:72:b6:e4:54:87:6d:28: d5:14:76:22:5c:dc:0c:2d:b0:c0:5d:2c:25:02:42:09:3a:c9: 8c:40:d4:1a -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIUEZgRGOfutIEAc8ASU+QhQQyvddEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4 NDI0NkQxMDAeFw0yNjA1MTExNzM1NDZaFw0yNzA1MTAxNzQwNDZaMDMxMTAvBgNV BAMTKEMzRjEwRUZFQkQ3MjYxOEE2MkVCMkJGRTA1N0FGMEVEQ0EyM0M2MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGtGjPArEjljH3+hHPpVGf9W16 4fxo81h7oVhV6wUwdLARO4Brp3Fs3U0+03nmZclqAyUaYZFbFgoPAOGEenJ7fwZq IQ4kVqQdZTSGg67/QF4iqiis92D67ToMV04uHICHQmFGyv7RzF3NuR0+B3SoU7IM aUqAr8M3mu+Cl8LMY1rNaoSUiOJmTqqKikvy1CtqjcLdjCxTFuWl0k89HDRHqGGD FDAM9+ZxKnXcAp87V7DNIR90gFAvVMGPKHdclIo9o7WUgaCB20Sds3Z4RyxwFQO6 YTTtOADk5T96vSuPP2t46WNOod0BCTU/sEUn/Ab9DDiQZj6lN0JRiGBNZ6fNAgMB AAGjggHLMIIBxzAdBgNVHQ4EFgQUw/EO/r1yYYpi6yv+BXrw7cojxhUwHwYDVR0j BBgwFoAUcfog/Cac6YBbLGflmzV6poQkbRAwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAv NzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4NDI0NkQxMC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MUZBMjBGQzI2OUNFOTgwNUIyQzY3RTU5QjM1N0FB Njg0MjQ2RDEwLmNlcjBLBggrBgEFBQcBCwQ/MD0wOwYIKwYBBQUHMAuGL3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAvQVMxMzE2MDIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwOwYIKwYBBQUHAQcBAf8ELDAqMCgEAgABMCIw DAMEAtoinAMEBtoigDAMAwQF2iNgAwQC2iNoAwQG2iPAMA0GCSqGSIb3DQEBCwUA A4IBAQA2q4OzUrloURQE2Ry1zf4JJJXB7mdNXcXA6ZEPlPbf0HBtcEPZNOfAJxLL jAgMFJlMQPEQkI7Q5459QakbkYIHhHk5sFgeh6AvIKpVllaDrOB7S52zFRI3hWdl GeiuXP43dlb9seQzit1KLHJYsxO0I/RR4FiNt1Xr1lxEnZK30ftd7XndzqkCLTDQ DFskXxBxkWUxGP/R8BfjRRdLqAKb7SrEXj/p9Ux0fjvlBX85A71NtWZrQH8ffM0O cG2DfWPM2XdmL7Gl+f9h1z8XwMTVC93gVvuAlgBALx2DQDrm+riXo3K25FSHbSjV FHYiXNwMLbDAXSwlAkIJOsmMQNQa -----END CERTIFICATE-----Generated at Wed May 13 21:50:41 2026 by rpki-client