$ rpki-client -vvf rpkica.twnic.tw/rpki/HINET/0/AS131621.roa File: AS131621.roa (raw, json) Hash identifier: 6l8iku8JROMb9LMQcVra783iu1GlK/FOoxpABg0FYWU= Subject key identifier: 54:B6:F4:36:0C:06:AC:27:4F:13:5C:28:B9:83:88:3E:25:6B:BC:B8 Certificate issuer: /CN=6276AF5AEFB216534D76803A45D67CADC23447BD Certificate serial: 3C216A02BB701F0679947C533F04AD8E500F883E Authority key identifier: 62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HINET/0/AS131621.roa Signing time: Mon 11 May 2026 17:15:38 +0000 ROA not before: Mon 11 May 2026 17:10:38 +0000 ROA not after: Mon 10 May 2027 17:15:38 +0000 asID: 131621 IP address blocks: 118.168.255.0/24 maxlen: 24 203.75.51.0/27 maxlen: 27 2001:b032:103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:21:6a:02:bb:70:1f:06:79:94:7c:53:3f:04:ad:8e:50:0f:88:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6276AF5AEFB216534D76803A45D67CADC23447BD Validity Not Before: May 11 17:10:38 2026 GMT Not After : May 10 17:15:38 2027 GMT Subject: CN=54B6F4360C06AC274F135C28B983883E256BBCB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d1:eb:f8:3a:90:ee:13:03:ff:7a:c1:f3:95: 27:8d:b9:c2:4a:12:19:6b:4c:36:47:ae:de:d9:f5: 21:1b:80:f3:e5:a5:2d:c9:bc:cb:58:0b:e9:a3:ca: 15:5a:ca:70:a0:32:58:c6:b3:b1:55:7b:15:8a:06: 94:3a:18:89:f7:1f:ee:db:63:a7:27:da:0c:ad:30: ac:4c:79:1f:9f:43:77:10:b6:d6:4e:11:9f:78:32: 29:16:80:bc:f0:67:d1:20:bf:69:cf:f5:9b:7b:89: 19:06:30:eb:e0:0b:30:be:91:30:0c:d1:f5:39:11: 81:69:91:0a:9e:1c:d2:2a:4f:64:10:24:89:c9:28: 4e:55:32:a7:c1:b7:06:b1:57:51:e3:1f:e1:5a:35: ab:2a:8f:f8:7e:53:cc:3a:b1:fe:bf:47:1d:44:f9: aa:91:a7:1a:05:be:bd:bc:07:66:ec:66:51:f0:ad: 8d:e9:85:ad:0a:86:81:61:18:b2:84:49:10:7d:fb: cb:c5:b5:f8:b3:21:8d:b8:8e:57:9b:35:f3:42:f8: 2f:b3:cf:98:3d:56:5a:98:bd:88:8c:f0:57:31:89: 27:eb:8e:41:18:e2:1b:f0:2a:0b:b3:d0:80:a5:34: 8c:d5:2b:2d:c6:da:2c:49:f5:35:cc:d3:db:16:44: 15:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B6:F4:36:0C:06:AC:27:4F:13:5C:28:B9:83:88:3E:25:6B:BC:B8 X509v3 Authority Key Identifier: keyid:62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HINET/0/AS131621.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.168.255.0/24 203.75.51.0/27 IPv6: 2001:b032:103::/48 Signature Algorithm: sha256WithRSAEncryption 2a:9d:7d:09:36:69:95:73:61:66:46:52:1b:64:9d:99:f7:84: e2:c3:0a:52:77:e2:be:be:df:0b:8b:a8:54:56:fa:ee:a5:0b: cb:dc:c2:f2:60:7b:43:05:58:f2:95:ee:ed:ed:5c:df:78:72: 6e:d4:7a:ba:04:92:a8:3a:cf:a2:5d:ca:02:2c:cf:81:15:fc: 33:cc:55:60:e0:02:1a:c2:19:6b:fd:38:cd:b1:e4:ee:d2:49: 04:ed:80:3d:53:75:2c:2c:cb:d0:1a:9f:04:65:36:0a:40:eb: fc:42:2e:ca:82:6d:f4:35:81:07:67:c7:a2:35:5a:99:9c:02: 05:a9:e5:b6:e5:42:2b:30:85:33:e5:12:84:2c:b2:4b:ae:bc: 5f:95:87:bd:93:c0:66:b8:81:d6:4d:8f:2d:84:34:03:dc:85: 6b:ed:9e:ff:89:37:ff:43:63:f2:e8:92:65:29:83:a2:80:22: 66:50:c8:7f:28:1e:9b:58:ea:be:29:fd:d5:63:f7:31:1f:85: bf:b3:73:29:8d:5e:82:80:88:48:b6:f4:7a:1f:43:24:2b:07: 2f:f6:5d:87:48:18:d8:68:a8:55:da:08:ef:6c:3f:14:55:55: 8a:fe:42:07:ef:6c:31:f7:77:98:e3:da:99:11:20:9f:3f:b3: b4:10:da:78 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIUPCFqArtwHwZ5lHxTPwStjlAPiD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI3NkFGNUFFRkIyMTY1MzRENzY4MDNBNDVENjdDQURD MjM0NDdCRDAeFw0yNjA1MTExNzEwMzhaFw0yNzA1MTAxNzE1MzhaMDMxMTAvBgNV BAMTKDU0QjZGNDM2MEMwNkFDMjc0RjEzNUMyOEI5ODM4ODNFMjU2QkJDQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC80ev4OpDuEwP/esHzlSeNucJK EhlrTDZHrt7Z9SEbgPPlpS3JvMtYC+mjyhVaynCgMljGs7FVexWKBpQ6GIn3H+7b Y6cn2gytMKxMeR+fQ3cQttZOEZ94MikWgLzwZ9Egv2nP9Zt7iRkGMOvgCzC+kTAM 0fU5EYFpkQqeHNIqT2QQJInJKE5VMqfBtwaxV1HjH+FaNasqj/h+U8w6sf6/Rx1E +aqRpxoFvr28B2bsZlHwrY3pha0KhoFhGLKESRB9+8vFtfizIY24jlebNfNC+C+z z5g9VlqYvYiM8FcxiSfrjkEY4hvwKguz0IClNIzVKy3G2ixJ9TXM09sWRBUhAgMB AAGjggHLMIIBxzAdBgNVHQ4EFgQUVLb0NgwGrCdPE1wouYOIPiVrvLgwHwYDVR0j BBgwFoAUYnavWu+yFlNNdoA6RdZ8rcI0R70wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSElORVQv MC82Mjc2QUY1QUVGQjIxNjUzNEQ3NjgwM0E0NUQ2N0NBREMyMzQ0N0JELmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzYyNzZBRjVBRUZCMjE2NTM0RDc2ODAzQTQ1RDY3 Q0FEQzIzNDQ3QkQuY2VyME0GCCsGAQUFBwELBEEwPzA9BggrBgEFBQcwC4YxcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ISU5FVC8wL0FTMTMxNjIxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjATBAIA ATANAwQAdqj/AwUFy0szADAPBAIAAjAJAwcAIAGwMgEDMA0GCSqGSIb3DQEBCwUA A4IBAQAqnX0JNmmVc2FmRlIbZJ2Z94TiwwpSd+K+vt8Li6hUVvrupQvL3MLyYHtD BVjyle7t7VzfeHJu1Hq6BJKoOs+iXcoCLM+BFfwzzFVg4AIawhlr/TjNseTu0kkE 7YA9U3UsLMvQGp8EZTYKQOv8Qi7Kgm30NYEHZ8eiNVqZnAIFqeW25UIrMIUz5RKE LLJLrrxflYe9k8BmuIHWTY8thDQD3IVr7Z7/iTf/Q2Py6JJlKYOigCJmUMh/KB6b WOq+Kf3VY/cxH4W/s3MpjV6CgIhItvR6H0MkKwcv9l2HSBjYaKhV2gjvbD8UVVWK /kIH72wx93eY49qZESCfP7O0ENp4 -----END CERTIFICATE-----Generated at Wed May 13 21:51:29 2026 by rpki-client