$ rpki-client -vvf rpkica.twnic.tw/rpki/HINET/0/AS800.roa File: AS800.roa (raw, json) Hash identifier: EuwL99mOXuUtO+vqbY6Nfep8ybhJXbGrYdsBA53O4Xc= Subject key identifier: C5:D9:31:A7:B7:91:0E:15:E5:6A:85:B7:03:4A:E1:78:70:90:E2:A7 Certificate issuer: /CN=6276AF5AEFB216534D76803A45D67CADC23447BD Certificate serial: 3BC401B88CAED5AAAD43FA13636809DB87E3FD09 Authority key identifier: 62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HINET/0/AS800.roa Signing time: Mon 11 May 2026 17:38:29 +0000 ROA not before: Mon 11 May 2026 17:33:29 +0000 ROA not after: Mon 10 May 2027 17:38:29 +0000 asID: 800 IP address blocks: 175.111.237.0/24 maxlen: 24 175.111.238.0/24 maxlen: 24 175.111.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c4:01:b8:8c:ae:d5:aa:ad:43:fa:13:63:68:09:db:87:e3:fd:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6276AF5AEFB216534D76803A45D67CADC23447BD Validity Not Before: May 11 17:33:29 2026 GMT Not After : May 10 17:38:29 2027 GMT Subject: CN=C5D931A7B7910E15E56A85B7034AE1787090E2A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:50:2d:d2:ab:5b:4f:81:90:46:4d:0f:b7:7c: f1:57:82:8c:56:7f:77:9b:62:8c:30:05:08:75:15: e8:04:c1:bb:9f:06:e5:d7:10:7f:e9:7d:e3:76:0b: 0e:dc:5a:5c:02:e9:25:db:06:e0:bc:2c:98:da:de: 35:62:d6:76:fd:d2:bb:e2:46:ad:b0:6e:ea:5e:b2: 17:8e:47:6b:3b:5d:c1:d0:7c:31:1c:29:3c:4d:39: fc:91:27:d8:12:95:49:2c:68:f5:70:04:3b:92:e7: 88:44:a5:8b:48:ba:e0:72:df:ba:66:c5:db:23:7a: 6a:e9:a8:f2:fc:58:4e:37:2b:6b:c7:e7:97:c5:e6: 50:21:a9:0f:a0:94:2d:f3:5b:f3:6d:3d:e9:22:38: 67:8e:8b:36:60:42:af:3c:6c:18:53:81:47:a5:cd: 82:96:1a:9a:e8:7a:a9:f9:71:5d:26:88:a2:7d:f3: 45:bb:66:ea:47:61:2c:de:0d:4d:3a:08:1e:0f:60: 40:cf:e1:b2:01:bb:68:0c:01:3f:93:83:b6:b9:9c: f1:14:0c:09:86:e6:17:d4:4a:c0:29:23:5f:5d:56: e9:01:82:0c:f0:7e:89:d8:6b:4e:f7:33:62:38:b0: 59:f1:75:22:4c:b6:5a:01:80:65:43:e5:2f:97:41: 6d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D9:31:A7:B7:91:0E:15:E5:6A:85:B7:03:4A:E1:78:70:90:E2:A7 X509v3 Authority Key Identifier: keyid:62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HINET/0/AS800.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.237.0-175.111.239.255 Signature Algorithm: sha256WithRSAEncryption 04:3c:b5:7d:04:0c:8a:c2:1d:ba:6c:bd:d1:8f:9d:0b:68:57: 3b:ee:64:6d:3f:ef:1d:7d:12:8a:4c:58:5f:2b:b9:9e:ce:e2: 7f:d3:0a:03:84:51:25:3b:be:2c:20:fc:15:74:2e:4c:7f:ee: 59:28:22:23:84:ef:6e:5c:39:44:60:62:6c:1a:fc:73:41:db: 34:99:35:44:8d:ad:f7:1a:e6:01:e6:88:57:16:0d:4e:7f:52: 12:1a:6f:d7:6a:86:d8:d0:36:cf:4c:d8:f0:fb:7e:60:23:ab: ac:fc:b7:00:0f:f7:70:cd:a4:33:4b:30:f2:cd:0c:ec:40:29: 36:3e:41:6c:ba:4e:e4:b6:50:c5:82:0d:1f:16:cd:ac:c0:3f: b0:e2:84:fb:ee:d4:0f:65:6b:3b:42:07:16:82:10:0d:c6:71: 0c:5a:de:91:cc:d4:0c:24:b9:2f:ba:88:97:69:95:b1:74:b7: 97:1b:8c:22:59:7a:01:cb:c7:37:35:e6:06:e4:12:ba:6b:99: 65:4f:9a:66:6d:af:75:c8:e2:74:09:ab:18:03:85:e6:c4:e6: 83:1a:34:48:c6:e9:21:a7:1f:40:c3:95:37:0c:69:44:bd:05: 5d:8e:6a:ce:ea:0a:3b:91:56:a2:c6:57:ea:c6:14:3a:ca:85: 7b:7e:05:f6 -----BEGIN CERTIFICATE----- MIIErjCCA5agAwIBAgIUO8QBuIyu1aqtQ/oTY2gJ24fj/QkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI3NkFGNUFFRkIyMTY1MzRENzY4MDNBNDVENjdDQURD MjM0NDdCRDAeFw0yNjA1MTExNzMzMjlaFw0yNzA1MTAxNzM4MjlaMDMxMTAvBgNV BAMTKEM1RDkzMUE3Qjc5MTBFMTVFNTZBODVCNzAzNEFFMTc4NzA5MEUyQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3UC3Sq1tPgZBGTQ+3fPFXgoxW f3ebYowwBQh1FegEwbufBuXXEH/pfeN2Cw7cWlwC6SXbBuC8LJja3jVi1nb90rvi Rq2wbupesheOR2s7XcHQfDEcKTxNOfyRJ9gSlUksaPVwBDuS54hEpYtIuuBy37pm xdsjemrpqPL8WE43K2vH55fF5lAhqQ+glC3zW/NtPekiOGeOizZgQq88bBhTgUel zYKWGproeqn5cV0miKJ980W7ZupHYSzeDU06CB4PYEDP4bIBu2gMAT+Tg7a5nPEU DAmG5hfUSsApI19dVukBggzwfonYa073M2I4sFnxdSJMtloBgGVD5S+XQW3jAgMB AAGjggG4MIIBtDAdBgNVHQ4EFgQUxdkxp7eRDhXlaoW3A0rheHCQ4qcwHwYDVR0j BBgwFoAUYnavWu+yFlNNdoA6RdZ8rcI0R70wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSElORVQv MC82Mjc2QUY1QUVGQjIxNjUzNEQ3NjgwM0E0NUQ2N0NBREMyMzQ0N0JELmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzYyNzZBRjVBRUZCMjE2NTM0RDc2ODAzQTQ1RDY3 Q0FEQzIzNDQ3QkQuY2VyMEoGCCsGAQUFBwELBD4wPDA6BggrBgEFBQcwC4YucnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ISU5FVC8wL0FTODAwLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAO MAwDBACvb+0DBASvb+AwDQYJKoZIhvcNAQELBQADggEBAAQ8tX0EDIrCHbpsvdGP nQtoVzvuZG0/7x19EopMWF8ruZ7O4n/TCgOEUSU7viwg/BV0Lkx/7lkoIiOE725c OURgYmwa/HNB2zSZNUSNrfca5gHmiFcWDU5/UhIab9dqhtjQNs9M2PD7fmAjq6z8 twAP93DNpDNLMPLNDOxAKTY+QWy6TuS2UMWCDR8WzazAP7DihPvu1A9laztCBxaC EA3GcQxa3pHM1AwkuS+6iJdplbF0t5cbjCJZegHLxzc15gbkErprmWVPmmZtr3XI 4nQJqxgDhebE5oMaNEjG6SGnH0DDlTcMaUS9BV2Oas7qCjuRVqLGV+rGFDrKhXt+ BfY= -----END CERTIFICATE-----Generated at Wed May 13 21:51:12 2026 by rpki-client