$ rpki-client -vvf rpkica.twnic.tw/rpki/HINET/0/AS17714.roa File: AS17714.roa (raw, json) Hash identifier: 3ST/aQVK2F3fMZGtDCYgdw7LHVI7BwcNaExDsjYitCQ= Subject key identifier: D5:83:7A:E0:AB:31:A4:70:74:A3:BF:4A:B9:4F:E0:CD:EB:32:F0:06 Certificate issuer: /CN=6276AF5AEFB216534D76803A45D67CADC23447BD Certificate serial: 265F60347B58EA208328CA80E056CAFC2F96F6F7 Authority key identifier: 62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HINET/0/AS17714.roa Signing time: Mon 11 May 2026 16:34:07 +0000 ROA not before: Mon 11 May 2026 16:29:07 +0000 ROA not after: Mon 10 May 2027 16:34:07 +0000 asID: 17714 IP address blocks: 114.30.35.0/24 maxlen: 24 175.111.252.0/24 maxlen: 24 175.111.255.0/24 maxlen: 24 203.78.180.0/24 maxlen: 24 203.78.190.0/24 maxlen: 24 203.160.237.0/24 maxlen: 24 220.128.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:5f:60:34:7b:58:ea:20:83:28:ca:80:e0:56:ca:fc:2f:96:f6:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6276AF5AEFB216534D76803A45D67CADC23447BD Validity Not Before: May 11 16:29:07 2026 GMT Not After : May 10 16:34:07 2027 GMT Subject: CN=D5837AE0AB31A47074A3BF4AB94FE0CDEB32F006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e1:b7:49:62:80:0c:a3:78:a3:97:6d:21:80: 11:3f:22:03:c8:32:13:aa:77:c4:cd:01:2a:ed:ec: b3:42:43:71:3e:6a:16:a1:a0:d0:3f:a6:8a:df:87: d7:ce:8e:05:22:4a:6f:09:b8:8e:bf:6c:9f:90:13: 53:d9:84:82:71:41:d2:64:e6:80:61:70:bc:8d:09: 80:54:91:98:77:ae:3a:12:d4:46:d0:f6:c4:f9:d4: 89:ca:6f:7c:82:f9:9f:dd:11:fd:94:82:7e:40:b3: 7e:b6:11:1b:65:b6:e8:df:55:e1:82:a5:44:cd:bc: 47:d8:e4:1c:ac:98:cd:76:48:0f:ba:bf:a7:d3:41: a6:92:81:f9:58:19:b0:ba:34:d3:0a:99:22:6a:72: e9:4f:25:eb:e8:37:77:fd:6f:07:ce:50:2c:f9:6d: 2f:33:7d:a1:33:a8:c0:3d:d8:9d:ba:14:9c:e2:d4: e6:bb:53:a8:5b:19:19:f3:cc:1d:5c:74:14:49:cb: a0:ef:d2:9a:4a:4e:b4:c1:7c:f9:6c:5b:8f:af:e8: 45:b1:d2:82:a4:f7:23:80:1d:37:b9:38:f8:e5:9b: b5:68:f5:e8:bd:50:37:ca:cb:65:28:73:f0:a4:56: fa:66:2e:1a:a8:99:b0:e6:b6:7a:c1:3e:5f:3d:a3: f7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:83:7A:E0:AB:31:A4:70:74:A3:BF:4A:B9:4F:E0:CD:EB:32:F0:06 X509v3 Authority Key Identifier: keyid:62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HINET/0/AS17714.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.30.35.0/24 175.111.252.0/24 175.111.255.0/24 203.78.180.0/24 203.78.190.0/24 203.160.237.0/24 220.128.48.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:21:cf:2e:e7:e9:41:d0:52:20:c3:26:f1:36:2f:39:a4:78: 66:71:10:12:de:08:18:bd:7a:16:e1:6f:51:74:01:7d:e3:7c: 61:b1:f0:4b:75:ec:c0:ed:42:d1:49:77:9a:fb:d5:c6:86:bb: 86:3b:92:f9:d9:cc:a8:59:73:22:fd:d8:fc:2b:25:1c:ba:c6: 08:6f:70:c1:dd:ab:63:89:61:9d:ed:de:85:cb:77:ae:9f:85: 11:ee:96:b3:45:d7:9b:6c:c1:97:a1:c8:03:27:a9:6f:2e:20: 56:72:1f:eb:78:22:d6:23:30:8a:2e:b8:c8:7a:2e:76:fe:fc: a4:71:0c:a1:30:cf:ff:de:84:13:71:ee:0a:db:29:a2:0d:76: a8:55:0e:e5:d3:d1:84:ca:08:b0:9d:bf:1a:50:b3:df:14:13: 7b:95:18:d7:8a:d8:21:b1:4e:2c:11:04:f8:6c:ad:1f:2e:53: 1c:40:4f:85:b8:13:d7:6c:12:17:b2:b2:79:fd:0c:b4:2f:38: 85:2e:67:9e:b1:4c:c7:f2:08:aa:cc:6e:fc:8e:37:65:c3:7a: 41:31:ba:43:7b:12:20:0f:60:41:7b:72:81:74:d7:93:24:f1: b4:7c:6f:9d:eb:7f:62:59:72:41:81:cd:07:95:d7:b5:18:38: 89:b8:40:c1 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgIUJl9gNHtY6iCDKMqA4FbK/C+W9vcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI3NkFGNUFFRkIyMTY1MzRENzY4MDNBNDVENjdDQURD MjM0NDdCRDAeFw0yNjA1MTExNjI5MDdaFw0yNzA1MTAxNjM0MDdaMDMxMTAvBgNV BAMTKEQ1ODM3QUUwQUIzMUE0NzA3NEEzQkY0QUI5NEZFMENERUIzMkYwMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh4bdJYoAMo3ijl20hgBE/IgPI MhOqd8TNASrt7LNCQ3E+ahahoNA/porfh9fOjgUiSm8JuI6/bJ+QE1PZhIJxQdJk 5oBhcLyNCYBUkZh3rjoS1EbQ9sT51InKb3yC+Z/dEf2Ugn5As362ERtltujfVeGC pUTNvEfY5BysmM12SA+6v6fTQaaSgflYGbC6NNMKmSJqculPJevoN3f9bwfOUCz5 bS8zfaEzqMA92J26FJzi1Oa7U6hbGRnzzB1cdBRJy6Dv0ppKTrTBfPlsW4+v6EWx 0oKk9yOAHTe5OPjlm7Vo9ei9UDfKy2Uoc/CkVvpmLhqombDmtnrBPl89o/dXAgMB AAGjggHWMIIB0jAdBgNVHQ4EFgQU1YN64KsxpHB0o79KuU/gzesy8AYwHwYDVR0j BBgwFoAUYnavWu+yFlNNdoA6RdZ8rcI0R70wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSElORVQv MC82Mjc2QUY1QUVGQjIxNjUzNEQ3NjgwM0E0NUQ2N0NBREMyMzQ0N0JELmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzYyNzZBRjVBRUZCMjE2NTM0RDc2ODAzQTQ1RDY3 Q0FEQzIzNDQ3QkQuY2VyMEwGCCsGAQUFBwELBEAwPjA8BggrBgEFBQcwC4YwcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ISU5FVC8wL0FTMTc3MTQucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwQwYIKwYBBQUHAQcBAf8ENDAyMDAEAgAB MCoDBAByHiMDBACvb/wDBACvb/8DBADLTrQDBADLTr4DBADLoO0DBADcgDAwDQYJ KoZIhvcNAQELBQADggEBAE8hzy7n6UHQUiDDJvE2LzmkeGZxEBLeCBi9ehbhb1F0 AX3jfGGx8Et17MDtQtFJd5r71caGu4Y7kvnZzKhZcyL92PwrJRy6xghvcMHdq2OJ YZ3t3oXLd66fhRHulrNF15tswZehyAMnqW8uIFZyH+t4ItYjMIouuMh6Lnb+/KRx DKEwz//ehBNx7grbKaINdqhVDuXT0YTKCLCdvxpQs98UE3uVGNeK2CGxTiwRBPhs rR8uUxxAT4W4E9dsEheysnn9DLQvOIUuZ56xTMfyCKrMbvyON2XDekExukN7EiAP YEF7coF015Mk8bR8b53rf2JZckGBzQeV17UYOIm4QME= -----END CERTIFICATE-----Generated at Wed May 13 21:51:08 2026 by rpki-client