$ rpki-client -vvf rpkica.twnic.tw/rpki/HINET/0/AS9505.roa File: AS9505.roa (raw, json) Hash identifier: WjVXok2hYZR7JH67d52NiZEGMvU327NYInUtjHpSeYA= Subject key identifier: 09:2B:0C:87:FF:E9:98:6F:58:33:23:C2:E8:B0:82:14:3D:7E:AA:0F Certificate issuer: /CN=6276AF5AEFB216534D76803A45D67CADC23447BD Certificate serial: 5387FB50EB9FA4936866C4CFB78AF4758E4C54FD Authority key identifier: 62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HINET/0/AS9505.roa Signing time: Mon 11 May 2026 17:40:08 +0000 ROA not before: Mon 11 May 2026 17:35:08 +0000 ROA not after: Mon 10 May 2027 17:40:08 +0000 asID: 9505 IP address blocks: 175.41.48.0/20 maxlen: 24 175.111.224.0/20 maxlen: 24 175.111.237.0/24 maxlen: 24 175.111.238.0/24 maxlen: 24 175.111.239.0/24 maxlen: 24 175.111.240.0/21 maxlen: 24 203.78.176.0/20 maxlen: 24 203.160.224.0/20 maxlen: 24 220.128.48.0/21 maxlen: 24 2001:b200::/23 maxlen: 64 2001:b200::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:87:fb:50:eb:9f:a4:93:68:66:c4:cf:b7:8a:f4:75:8e:4c:54:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6276AF5AEFB216534D76803A45D67CADC23447BD Validity Not Before: May 11 17:35:08 2026 GMT Not After : May 10 17:40:08 2027 GMT Subject: CN=092B0C87FFE9986F583323C2E8B082143D7EAA0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8a:20:b1:59:6b:b7:0a:e9:e0:68:91:14:cf: 58:95:85:cc:51:66:d0:42:45:7a:b6:0f:48:3b:b5: a5:8e:26:98:fb:d9:9b:c7:ea:48:64:8b:8a:c3:b9: 50:71:5a:36:6a:26:09:2a:b8:51:14:78:fd:35:73: 97:6c:6b:79:95:44:30:dc:8f:f1:4b:27:9c:91:80: 43:10:81:76:13:47:c6:6a:6c:51:54:33:2a:e6:0f: df:7d:9d:4d:a4:14:b7:89:fb:3d:0e:74:ca:bf:ac: 05:74:1f:58:a8:f6:66:0c:92:5f:13:cb:59:08:ad: 78:d8:51:d9:83:ef:33:d4:f5:c4:21:26:bd:f6:d2: 3e:bb:72:18:5a:f8:1d:8e:37:c0:91:27:a9:e3:8e: 42:61:19:ba:fb:a3:e9:9f:10:37:f7:fc:c6:a4:e9: c3:68:48:8c:8f:9f:50:84:8d:85:4a:39:be:d4:15: 24:26:e2:b9:9b:f4:4e:35:0d:05:40:86:87:34:dd: d2:39:ed:0f:14:a8:81:53:4f:cc:31:14:05:3b:9f: 1d:48:87:29:38:05:49:84:99:ac:76:48:f9:4a:37: 8a:9f:64:d3:8a:b8:f2:b5:02:14:87:af:7a:e6:e3: b5:c3:e8:70:1e:85:74:3c:49:cf:b1:c4:76:9b:54: c5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2B:0C:87:FF:E9:98:6F:58:33:23:C2:E8:B0:82:14:3D:7E:AA:0F X509v3 Authority Key Identifier: keyid:62:76:AF:5A:EF:B2:16:53:4D:76:80:3A:45:D6:7C:AD:C2:34:47:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HINET/0/6276AF5AEFB216534D76803A45D67CADC23447BD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6276AF5AEFB216534D76803A45D67CADC23447BD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HINET/0/AS9505.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.48.0/20 175.111.224.0-175.111.247.255 203.78.176.0/20 203.160.224.0/20 220.128.48.0/21 IPv6: 2001:b200::/23 Signature Algorithm: sha256WithRSAEncryption 00:6d:c5:88:b4:f5:1a:3b:aa:6f:87:76:7f:c0:6f:25:c5:28: 7c:72:55:e8:0c:3b:3d:18:55:56:d9:0c:0a:a9:9c:88:72:72: ad:c0:ef:08:56:9b:fa:f6:36:a7:7a:3e:c4:5e:86:87:30:65: a0:04:81:53:4c:48:8c:43:c3:36:87:b8:f6:e3:67:f6:c9:06: 08:03:0b:f6:48:ae:e5:91:a8:f6:c6:86:68:8b:7c:ee:fb:27: cb:e1:19:39:60:4c:ba:cb:ba:61:0b:c4:5d:3e:02:8e:a4:48: 28:91:ee:ea:8b:f7:86:c0:d1:d4:f3:e7:28:e8:20:3a:98:6b: ca:2a:b6:4d:59:3d:01:05:ea:15:77:1c:ea:a4:f0:01:48:b4: dc:d6:42:ba:cf:3f:80:69:85:6b:da:2e:b5:ab:0c:48:c7:86: 13:59:cb:45:61:14:1c:6e:c5:8e:f9:48:bb:39:ec:df:28:2e: fe:d0:f9:9e:ca:48:02:6c:3b:03:36:e6:a4:7b:82:ef:b5:23: 8d:ef:f1:6e:0b:a9:b9:a6:a0:d4:53:cf:15:10:80:41:4e:5e: 10:7b:fe:db:08:51:d3:3e:51:4b:f3:77:49:82:79:83:02:77: 99:eb:f0:b2:a8:40:b6:d0:f8:f9:e6:f3:7f:b1:d7:f9:1c:41: 1b:e4:5b:49 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUU4f7UOufpJNoZsTPt4r0dY5MVP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI3NkFGNUFFRkIyMTY1MzRENzY4MDNBNDVENjdDQURD MjM0NDdCRDAeFw0yNjA1MTExNzM1MDhaFw0yNzA1MTAxNzQwMDhaMDMxMTAvBgNV BAMTKDA5MkIwQzg3RkZFOTk4NkY1ODMzMjNDMkU4QjA4MjE0M0Q3RUFBMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6iiCxWWu3CungaJEUz1iVhcxR ZtBCRXq2D0g7taWOJpj72ZvH6khki4rDuVBxWjZqJgkquFEUeP01c5dsa3mVRDDc j/FLJ5yRgEMQgXYTR8ZqbFFUMyrmD999nU2kFLeJ+z0OdMq/rAV0H1io9mYMkl8T y1kIrXjYUdmD7zPU9cQhJr320j67chha+B2ON8CRJ6njjkJhGbr7o+mfEDf3/Mak 6cNoSIyPn1CEjYVKOb7UFSQm4rmb9E41DQVAhoc03dI57Q8UqIFTT8wxFAU7nx1I hyk4BUmEmax2SPlKN4qfZNOKuPK1AhSHr3rm47XD6HAehXQ8Sc+xxHabVMUTAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUCSsMh//pmG9YMyPC6LCCFD1+qg8wHwYDVR0j BBgwFoAUYnavWu+yFlNNdoA6RdZ8rcI0R70wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSElORVQv MC82Mjc2QUY1QUVGQjIxNjUzNEQ3NjgwM0E0NUQ2N0NBREMyMzQ0N0JELmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzYyNzZBRjVBRUZCMjE2NTM0RDc2ODAzQTQ1RDY3 Q0FEQzIzNDQ3QkQuY2VyMEsGCCsGAQUFBwELBD8wPTA7BggrBgEFBQcwC4YvcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ISU5FVC8wL0FTOTUwNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjBNBggrBgEFBQcBBwEB/wQ+MDwwLAQCAAEw JgMEBK8pMDAMAwQFr2/gAwQDr2/wAwQEy06wAwQEy6DgAwQD3IAwMAwEAgACMAYD BAEgAbIwDQYJKoZIhvcNAQELBQADggEBAABtxYi09Ro7qm+Hdn/AbyXFKHxyVegM Oz0YVVbZDAqpnIhycq3A7whWm/r2Nqd6PsRehocwZaAEgVNMSIxDwzaHuPbjZ/bJ BggDC/ZIruWRqPbGhmiLfO77J8vhGTlgTLrLumELxF0+Ao6kSCiR7uqL94bA0dTz 5yjoIDqYa8oqtk1ZPQEF6hV3HOqk8AFItNzWQrrPP4BphWvaLrWrDEjHhhNZy0Vh FBxuxY75SLs57N8oLv7Q+Z7KSAJsOwM25qR7gu+1I43v8W4LqbmmoNRTzxUQgEFO XhB7/tsIUdM+UUvzd0mCeYMCd5nr8LKoQLbQ+Pnm83+x1/kcQRvkW0k= -----END CERTIFICATE-----Generated at Wed May 13 21:51:14 2026 by rpki-client