$ rpki-client -vvf rpkica.twnic.tw/rpki/HYA/0/3130332e3235322e3132382e302f32322d3232203d3e203130303835.roa File: 3130332e3235322e3132382e302f32322d3232203d3e203130303835.roa (raw, json) Hash identifier: z0gKkFBHhI3K6nHdzx65beXtOEgH8B0I5cTB2wTLt8g= Subject key identifier: 2C:75:50:10:AB:9C:7C:A8:F0:69:D6:A7:5D:F9:CC:C9:EF:BA:EF:0E Certificate issuer: /CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A Certificate serial: 7D684C50405A4E113F9A4ACDC794CF7D82752669 Authority key identifier: 72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HYA/0/3130332e3235322e3132382e302f32322d3232203d3e203130303835.roa Signing time: Mon 11 May 2026 17:01:22 +0000 ROA not before: Mon 11 May 2026 16:56:22 +0000 ROA not after: Mon 10 May 2027 17:01:22 +0000 asID: 10085 IP address blocks: 103.252.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:68:4c:50:40:5a:4e:11:3f:9a:4a:cd:c7:94:cf:7d:82:75:26:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A Validity Not Before: May 11 16:56:22 2026 GMT Not After : May 10 17:01:22 2027 GMT Subject: CN=2C755010AB9C7CA8F069D6A75DF9CCC9EFBAEF0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:3e:a5:14:bd:47:ab:73:56:31:25:7e:e9: 21:e9:36:f9:df:2f:78:f9:b9:db:18:9e:86:81:cc: 56:10:42:85:7f:85:4a:90:10:e1:93:3a:b4:b6:0e: 74:66:16:b7:a4:60:4a:1f:d7:8a:82:30:b6:aa:cd: 18:d8:69:a5:37:46:4f:ec:0f:be:e2:f6:35:99:05: c3:d6:f1:f8:0c:b7:72:6b:db:98:e6:74:d4:6e:99: 6d:be:69:60:3c:a2:7e:48:93:87:ed:f9:4f:ee:a2: 17:57:a9:29:6a:49:b5:da:d6:78:95:34:43:8c:22: bf:fd:3f:30:19:04:3d:12:5d:63:ac:71:d2:42:82: 20:60:ce:74:d8:79:16:03:22:43:60:ff:e0:84:20: 6f:b7:23:25:e4:70:f8:2b:90:3e:1a:62:ce:aa:b6: 58:ad:db:d3:7a:23:ad:31:b4:ce:61:68:82:3e:30: c4:da:a2:13:b3:43:9d:a5:c5:3f:b3:8b:a8:27:a1: a7:f3:88:97:35:e1:2f:a6:01:4f:fd:ce:a6:25:46: 82:51:fc:6f:0f:55:ad:83:82:e7:34:32:6c:4a:6e: 80:65:c3:11:75:eb:b3:a9:ab:56:e8:a5:fe:7b:26: 24:20:3e:f7:44:76:50:74:df:35:35:4f:5f:35:f9: 1c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:75:50:10:AB:9C:7C:A8:F0:69:D6:A7:5D:F9:CC:C9:EF:BA:EF:0E X509v3 Authority Key Identifier: keyid:72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HYA/0/3130332e3235322e3132382e302f32322d3232203d3e203130303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.128.0/22 Signature Algorithm: sha256WithRSAEncryption 53:64:64:ec:1b:20:b5:3a:17:34:fd:0f:cd:c8:78:e2:e7:90: 9c:e7:29:9a:80:51:1d:21:b4:35:9c:cc:d5:0a:81:55:4a:36: 06:cb:c2:27:9b:ae:f3:2c:38:16:0e:3a:ad:36:20:ae:41:f1: 10:16:f1:13:09:aa:17:4d:3f:14:89:5e:aa:9e:4f:2f:90:09: 75:6f:50:21:f0:15:ed:0f:8e:7b:e5:50:02:50:54:32:e4:1c: a5:80:2f:8d:2a:0f:de:15:e0:ed:37:9b:0c:d4:12:98:ca:d4: c5:a3:20:87:9a:b6:01:2f:66:06:43:ab:d7:18:d1:7c:a4:4f: fe:50:1f:94:06:f3:0a:9b:2f:4f:95:f4:d7:72:4a:d0:bb:06: 06:fe:ae:c2:3d:96:6c:08:c8:7c:30:b5:bc:ba:b5:27:06:a6: a0:a0:fc:55:ef:12:c4:ff:1f:97:69:81:3f:77:28:a1:db:5b: 71:44:77:dc:02:c8:6b:33:80:39:e6:69:c9:7e:11:39:c7:62: 71:70:27:6c:1f:49:69:06:2a:c1:53:72:52:a1:1f:ce:23:fb: 9c:ac:9c:67:bd:b8:f4:6e:17:de:ef:d4:0e:36:d1:df:75:58: d2:22:18:c9:d0:af:af:dd:f5:9a:3a:c8:26:ad:52:7d:f2:b8: c0:0c:77:a0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUfWhMUEBaThE/mkrNx5TPfYJ1JmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4 REQzMDk5QTAeFw0yNjA1MTExNjU2MjJaFw0yNzA1MTAxNzAxMjJaMDMxMTAvBgNV BAMTKDJDNzU1MDEwQUI5QzdDQThGMDY5RDZBNzVERjlDQ0M5RUZCQUVGMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8bD6lFL1Hq3NWMSV+6SHpNvnf L3j5udsYnoaBzFYQQoV/hUqQEOGTOrS2DnRmFrekYEof14qCMLaqzRjYaaU3Rk/s D77i9jWZBcPW8fgMt3Jr25jmdNRumW2+aWA8on5Ik4ft+U/uohdXqSlqSbXa1niV NEOMIr/9PzAZBD0SXWOscdJCgiBgznTYeRYDIkNg/+CEIG+3IyXkcPgrkD4aYs6q tlit29N6I60xtM5haII+MMTaohOzQ52lxT+zi6gnoafziJc14S+mAU/9zqYlRoJR /G8PVa2Dguc0MmxKboBlwxF167Opq1bopf57JiQgPvdEdlB03zU1T181+RwnAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQULHVQEKucfKjwadanXfnMye+67w4wHwYDVR0j BBgwFoAUckh+F8JA1VwW6P5bC3HUSY3TCZowDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAv NzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4REQzMDk5QS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MjQ4N0UxN0MyNDBENTVDMTZFOEZFNUIwQjcxRDQ0 OThERDMwOTlBLmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAvMzEzMDMzMmUzMjM1MzIyZTMx MzIzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzAzMDM4MzUucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn/IAwDQYJKoZIhvcNAQELBQADggEBAFNkZOwbILU6FzT9D83IeOLnkJznKZqA UR0htDWczNUKgVVKNgbLwiebrvMsOBYOOq02IK5B8RAW8RMJqhdNPxSJXqqeTy+Q CXVvUCHwFe0PjnvlUAJQVDLkHKWAL40qD94V4O03mwzUEpjK1MWjIIeatgEvZgZD q9cY0XykT/5QH5QG8wqbL0+V9NdyStC7Bgb+rsI9lmwIyHwwtby6tScGpqCg/FXv EsT/H5dpgT93KKHbW3FEd9wCyGszgDnmacl+ETnHYnFwJ2wfSWkGKsFTclKhH84j +5ysnGe9uPRuF97v1A420d91WNIiGMnQr6/d9Zo6yCatUn3yuMAMd6A= -----END CERTIFICATE-----Generated at Wed May 13 21:14:05 2026 by rpki-client