$ rpki-client -vvf rpkica.twnic.tw/rpki/HYA/0/3130332e3235322e3132382e302f32322d3234203d3e20313331363032.roa File: 3130332e3235322e3132382e302f32322d3234203d3e20313331363032.roa (raw, json) Hash identifier: nVHgvAQGfCe5GeqBJlvDWrqjtd8OwRSNjhUeOydBwUA= Subject key identifier: C9:E4:2C:AF:30:48:7B:FA:F6:1B:53:58:F1:10:E2:29:3E:84:87:E1 Certificate issuer: /CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A Certificate serial: 2B7DD1759F2A69F3B81DA9115C1C7DC4BA422F0C Authority key identifier: 72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HYA/0/3130332e3235322e3132382e302f32322d3234203d3e20313331363032.roa Signing time: Mon 11 May 2026 17:38:54 +0000 ROA not before: Mon 11 May 2026 17:33:54 +0000 ROA not after: Mon 10 May 2027 17:38:54 +0000 asID: 131602 IP address blocks: 103.252.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:7d:d1:75:9f:2a:69:f3:b8:1d:a9:11:5c:1c:7d:c4:ba:42:2f:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A Validity Not Before: May 11 17:33:54 2026 GMT Not After : May 10 17:38:54 2027 GMT Subject: CN=C9E42CAF30487BFAF61B5358F110E2293E8487E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a0:fd:c1:e0:c1:09:58:4d:ba:73:5c:6f:58: ce:80:cf:b3:97:9f:3e:5e:e8:e6:d0:da:cc:a3:d5: a9:ef:15:99:55:5d:0b:8f:ba:b8:9f:fd:08:69:77: 82:70:9f:37:a7:5a:af:05:b2:e0:1e:0d:b7:53:8a: 50:a9:e8:55:33:f4:72:62:72:4b:48:0c:96:5d:64: 6b:59:79:96:ff:fb:0c:ef:ce:2c:68:7b:e1:07:c2: 45:ff:be:ae:8d:47:2e:06:d0:ca:fb:65:dc:52:64: 31:5b:90:14:4a:73:91:23:35:e1:7f:fc:e5:1b:d4: e7:2f:b0:24:02:2d:63:81:ec:1c:f6:f0:ff:44:27: cc:32:1a:f1:10:8c:c6:e1:36:9e:2f:17:2c:f2:7b: 05:be:8e:22:77:04:8d:e3:a3:57:0a:b8:3e:3e:c6: 86:d5:0e:d2:41:3c:44:c4:fd:02:61:99:43:79:07: c3:e4:ae:66:a1:83:de:52:50:ff:94:6f:8a:9f:3f: 15:7d:f7:b2:a2:30:42:07:00:1f:cf:de:fc:6a:78: 5e:77:3e:78:3d:b7:18:29:a8:fc:07:e2:b4:ea:93: f9:7c:5a:dc:72:24:7e:20:f3:4c:8c:9b:64:96:0d: 67:ce:08:3f:45:d1:a6:8e:4b:2f:32:da:52:8c:61: f0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E4:2C:AF:30:48:7B:FA:F6:1B:53:58:F1:10:E2:29:3E:84:87:E1 X509v3 Authority Key Identifier: keyid:72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HYA/0/3130332e3235322e3132382e302f32322d3234203d3e20313331363032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.128.0/22 Signature Algorithm: sha256WithRSAEncryption 39:89:c5:fe:2c:f9:1b:fd:1c:be:9b:69:7d:6e:6c:00:29:c1: 37:5d:84:0c:be:4f:4a:c4:3f:88:97:a4:ea:0f:c2:12:f8:88: a8:26:56:23:5e:38:1d:8d:30:18:25:2c:df:21:4b:cd:46:ec: 77:fd:dd:39:47:6d:c0:e6:5e:dd:74:6a:df:82:a3:94:19:4b: ec:10:5f:03:3f:fd:60:04:8c:ad:35:b0:d9:fa:45:c3:b4:ea: 4b:ac:b8:67:60:5f:07:31:01:f9:12:10:bb:31:e3:72:6f:86: 0d:93:4b:e3:57:8a:bb:14:cd:3c:71:70:4d:bc:71:b0:b7:1b: 79:98:a7:ac:6d:8b:9b:f5:3e:cb:32:7a:4c:b3:78:b5:32:dc: c5:5f:58:bc:19:67:72:36:db:2d:be:bb:a1:5f:d1:3c:1f:24: 2d:75:fd:14:03:3c:c4:77:61:fe:80:da:c0:45:74:ff:f2:26: 83:2b:8c:7a:73:0b:25:99:f4:c0:14:3b:f7:43:b2:0e:36:61: 3e:62:02:51:3a:e1:a0:f7:fc:3e:00:09:c9:75:1a:35:37:6b: a2:7f:57:d4:d1:fd:65:71:ce:65:5b:07:e3:c8:4e:83:64:d8: 02:b9:2c:32:2d:bd:74:46:5d:2b:d9:b3:2a:b5:80:11:0b:fd: 47:89:79:31 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUK33RdZ8qafO4HakRXBx9xLpCLwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4 REQzMDk5QTAeFw0yNjA1MTExNzMzNTRaFw0yNzA1MTAxNzM4NTRaMDMxMTAvBgNV BAMTKEM5RTQyQ0FGMzA0ODdCRkFGNjFCNTM1OEYxMTBFMjI5M0U4NDg3RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3oP3B4MEJWE26c1xvWM6Az7OX nz5e6ObQ2syj1anvFZlVXQuPurif/Qhpd4JwnzenWq8FsuAeDbdTilCp6FUz9HJi cktIDJZdZGtZeZb/+wzvzixoe+EHwkX/vq6NRy4G0Mr7ZdxSZDFbkBRKc5EjNeF/ /OUb1OcvsCQCLWOB7Bz28P9EJ8wyGvEQjMbhNp4vFyzyewW+jiJ3BI3jo1cKuD4+ xobVDtJBPETE/QJhmUN5B8Pkrmahg95SUP+Ub4qfPxV997KiMEIHAB/P3vxqeF53 Png9txgpqPwH4rTqk/l8WtxyJH4g80yMm2SWDWfOCD9F0aaOSy8y2lKMYfBZAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUyeQsrzBIe/r2G1NY8RDiKT6Eh+EwHwYDVR0j BBgwFoAUckh+F8JA1VwW6P5bC3HUSY3TCZowDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAv NzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4REQzMDk5QS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MjQ4N0UxN0MyNDBENTVDMTZFOEZFNUIwQjcxRDQ0 OThERDMwOTlBLmNlcjB9BggrBgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuGYXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAvMzEzMDMzMmUzMjM1MzIyZTMx MzIzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzMzMTM2MzAzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmf8gDANBgkqhkiG9w0BAQsFAAOCAQEAOYnF/iz5G/0cvptpfW5sACnBN12E DL5PSsQ/iJek6g/CEviIqCZWI144HY0wGCUs3yFLzUbsd/3dOUdtwOZe3XRq34Kj lBlL7BBfAz/9YASMrTWw2fpFw7TqS6y4Z2BfBzEB+RIQuzHjcm+GDZNL41eKuxTN PHFwTbxxsLcbeZinrG2Lm/U+yzJ6TLN4tTLcxV9YvBlncjbbLb67oV/RPB8kLXX9 FAM8xHdh/oDawEV0//ImgyuMenMLJZn0wBQ790OyDjZhPmICUTrhoPf8PgAJyXUa NTdron9X1NH9ZXHOZVsH48hOg2TYArksMi29dEZdK9mzKrWAEQv9R4l5MQ== -----END CERTIFICATE-----Generated at Wed May 13 21:14:29 2026 by rpki-client