$ rpki-client -vvf rpkica.twnic.tw/rpki/HYA/0/3130332e3235322e3132382e302f32322d3234203d3e2034373830.roa File: 3130332e3235322e3132382e302f32322d3234203d3e2034373830.roa (raw, json) Hash identifier: aU5nH7E+iqqE72JCSOf/syfpmIQ4Ugwf1G4zZbGiNhs= Subject key identifier: 8D:40:2D:AE:C4:37:25:C7:98:6A:7B:A0:D0:9B:34:CA:68:1F:56:C5 Certificate issuer: /CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A Certificate serial: 176A1AE41DA08F0DB52F39779E6B05FE1797F61D Authority key identifier: 72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HYA/0/3130332e3235322e3132382e302f32322d3234203d3e2034373830.roa Signing time: Mon 11 May 2026 17:38:55 +0000 ROA not before: Mon 11 May 2026 17:33:55 +0000 ROA not after: Mon 10 May 2027 17:38:55 +0000 asID: 4780 IP address blocks: 103.252.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:6a:1a:e4:1d:a0:8f:0d:b5:2f:39:77:9e:6b:05:fe:17:97:f6:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A Validity Not Before: May 11 17:33:55 2026 GMT Not After : May 10 17:38:55 2027 GMT Subject: CN=8D402DAEC43725C7986A7BA0D09B34CA681F56C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:52:98:cc:c6:69:b3:fa:b0:29:81:80:93:15: 15:d8:3e:21:f5:7d:e8:6b:ff:05:fc:be:9d:da:79: 03:ac:f0:bd:4f:4e:91:26:1e:ba:cd:35:6c:8c:39: 1e:2e:fd:41:67:60:ec:28:d6:56:fa:ef:c0:a4:91: 32:60:d6:43:00:28:d8:68:83:44:67:a8:7b:07:a6: 54:9c:a7:dd:49:97:bf:43:44:95:d1:7b:39:39:ad: 23:73:8f:a1:a7:30:30:b3:c7:0b:c9:a4:b8:b4:d7: 71:7c:0e:aa:38:6b:ab:22:f8:aa:ab:d7:aa:26:82: f7:96:0d:68:22:74:10:24:7f:76:17:2c:3e:01:94: fc:03:e8:4f:80:6d:2c:8f:b4:0b:ae:f8:3c:3d:d3: 1c:5e:ec:9d:4d:5a:fb:c2:69:bb:b6:5d:70:46:fb: 25:b3:1d:13:21:a3:26:5b:45:e0:23:c4:2f:a9:8b: ce:dc:98:be:c7:0c:9f:df:70:ff:a8:51:47:de:54: d3:6f:5b:f4:ac:a6:b3:22:c4:96:7f:fe:68:ea:61: 69:9f:d5:37:fc:d2:68:4a:e1:81:d8:06:60:eb:e1: 41:b3:5c:6a:d4:8d:8e:67:58:63:07:ac:55:ad:a5: 25:dd:69:33:2f:1a:ad:a6:54:28:db:e8:48:96:49: 5d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:40:2D:AE:C4:37:25:C7:98:6A:7B:A0:D0:9B:34:CA:68:1F:56:C5 X509v3 Authority Key Identifier: keyid:72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HYA/0/3130332e3235322e3132382e302f32322d3234203d3e2034373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.128.0/22 Signature Algorithm: sha256WithRSAEncryption 97:7c:bb:2a:76:59:02:c9:45:dc:6f:f6:ae:cd:45:f9:b3:f1: 99:43:c5:54:2a:b0:a7:ea:be:5f:60:2d:5e:17:4d:5f:0e:f1: b3:fd:0c:1d:85:66:43:ad:67:a1:07:f9:f3:b3:9f:e2:47:80: c0:b7:91:72:b5:83:aa:97:d3:f5:85:59:28:c1:6c:32:71:86: 95:46:10:e4:7d:fc:e4:cb:e8:66:c8:93:44:69:1f:80:b7:8f: 47:ab:2e:04:f1:78:76:da:5f:54:f9:56:04:72:00:6c:61:5e: 65:44:d6:7b:4e:62:c9:e0:90:4d:d6:ab:db:83:58:05:0a:18: 8f:05:15:74:ab:33:51:c1:24:e9:04:a7:90:84:6f:97:30:23: 2a:70:50:50:b5:c9:02:99:bd:a0:0e:f6:72:82:a8:16:13:8f: 68:b3:f0:ab:de:90:15:9d:91:c8:10:53:15:f5:27:83:67:33: 24:ef:cb:de:9e:69:09:70:02:83:b4:45:01:c8:7c:b3:ab:ae: ad:fb:ac:11:6d:06:f0:04:60:f3:12:18:77:30:ea:67:76:c0: b0:f5:04:2b:9b:ed:e1:23:4a:04:97:d5:1a:22:01:f2:8d:88: 85:3c:2b:22:15:55:af:31:3a:e0:a3:50:14:98:53:62:b2:5b: cb:a8:b3:0f -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUF2oa5B2gjw21Lzl3nmsF/heX9h0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4 REQzMDk5QTAeFw0yNjA1MTExNzMzNTVaFw0yNzA1MTAxNzM4NTVaMDMxMTAvBgNV BAMTKDhENDAyREFFQzQzNzI1Qzc5ODZBN0JBMEQwOUIzNENBNjgxRjU2QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+UpjMxmmz+rApgYCTFRXYPiH1 fehr/wX8vp3aeQOs8L1PTpEmHrrNNWyMOR4u/UFnYOwo1lb678CkkTJg1kMAKNho g0RnqHsHplScp91Jl79DRJXRezk5rSNzj6GnMDCzxwvJpLi013F8Dqo4a6si+Kqr 16omgveWDWgidBAkf3YXLD4BlPwD6E+AbSyPtAuu+Dw90xxe7J1NWvvCabu2XXBG +yWzHRMhoyZbReAjxC+pi87cmL7HDJ/fcP+oUUfeVNNvW/SsprMixJZ//mjqYWmf 1Tf80mhK4YHYBmDr4UGzXGrUjY5nWGMHrFWtpSXdaTMvGq2mVCjb6EiWSV1BAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUjUAtrsQ3JceYanug0Js0ymgfVsUwHwYDVR0j BBgwFoAUckh+F8JA1VwW6P5bC3HUSY3TCZowDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAv NzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4REQzMDk5QS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MjQ4N0UxN0MyNDBENTVDMTZFOEZFNUIwQjcxRDQ0 OThERDMwOTlBLmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAvMzEzMDMzMmUzMjM1MzIyZTMx MzIzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzczODMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC Z/yAMA0GCSqGSIb3DQEBCwUAA4IBAQCXfLsqdlkCyUXcb/auzUX5s/GZQ8VUKrCn 6r5fYC1eF01fDvGz/QwdhWZDrWehB/nzs5/iR4DAt5FytYOql9P1hVkowWwycYaV RhDkffzky+hmyJNEaR+At49Hqy4E8Xh22l9U+VYEcgBsYV5lRNZ7TmLJ4JBN1qvb g1gFChiPBRV0qzNRwSTpBKeQhG+XMCMqcFBQtckCmb2gDvZygqgWE49os/Cr3pAV nZHIEFMV9SeDZzMk78venmkJcAKDtEUByHyzq66t+6wRbQbwBGDzEhh3MOpndsCw 9QQrm+3hI0oEl9UaIgHyjYiFPCsiFVWvMTrgo1AUmFNislvLqLMP -----END CERTIFICATE-----Generated at Wed May 13 21:14:07 2026 by rpki-client