$ rpki-client -vvf rpkica.twnic.tw/rpki/HYA/0/3131342e32392e3234302e302f32322d3234203d3e20313331363032.roa File: 3131342e32392e3234302e302f32322d3234203d3e20313331363032.roa (raw, json) Hash identifier: 4cmNPnys0d/FtI5okidfoOFAlkFUnmuDLC94ZHnaWrA= Subject key identifier: CF:3D:88:9A:C9:E8:52:1C:F0:C9:EC:86:9C:2A:21:45:F0:B8:48:FA Certificate issuer: /CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A Certificate serial: 3FD821824DCBAABFBACA37C1A4765DB1AF5F43C0 Authority key identifier: 72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HYA/0/3131342e32392e3234302e302f32322d3234203d3e20313331363032.roa Signing time: Mon 11 May 2026 17:38:55 +0000 ROA not before: Mon 11 May 2026 17:33:55 +0000 ROA not after: Mon 10 May 2027 17:38:55 +0000 asID: 131602 IP address blocks: 114.29.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:d8:21:82:4d:cb:aa:bf:ba:ca:37:c1:a4:76:5d:b1:af:5f:43:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A Validity Not Before: May 11 17:33:55 2026 GMT Not After : May 10 17:38:55 2027 GMT Subject: CN=CF3D889AC9E8521CF0C9EC869C2A2145F0B848FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:7b:ab:87:95:01:f1:a5:f4:58:e3:d0:3d:f5: c3:93:b1:4b:2b:9a:28:95:d8:e4:34:d3:93:37:32: aa:13:78:4f:0c:8f:24:8b:98:15:32:d0:e8:dd:90: 77:23:98:5a:1e:8a:86:c7:01:35:cd:2f:93:d4:6d: 5e:0c:e6:9a:86:32:52:a4:53:4b:98:d1:2a:11:e9: c7:b6:cd:f0:4f:37:82:d5:bd:3a:b5:a0:44:ec:5e: 09:23:98:ec:5f:b4:7e:58:ce:28:3c:04:e3:a0:67: 77:c1:4a:1d:48:6a:62:fc:33:a4:93:08:76:8e:65: ce:06:8c:5c:bb:55:29:df:72:c2:4d:39:4f:99:bc: ba:bc:ed:91:dc:0b:4f:79:02:29:e2:bd:a5:87:e0: d0:79:e3:ab:7c:0e:f5:d5:91:45:df:76:91:52:69: 7a:f7:81:bb:47:0c:c6:2d:41:4a:8b:bc:6f:92:63: 16:60:22:86:42:54:99:89:e2:77:60:5b:46:0e:61: e6:b8:05:b1:17:7d:df:e5:25:90:55:3f:6b:1f:9e: 9b:78:8e:47:76:2f:71:78:ce:ce:ec:6a:6c:cd:c0: 36:9e:0f:84:eb:13:e9:b8:5e:40:f6:2b:90:da:17: 2e:3c:e3:ff:8a:d2:00:92:50:2f:ed:c4:24:1c:ce: f1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:3D:88:9A:C9:E8:52:1C:F0:C9:EC:86:9C:2A:21:45:F0:B8:48:FA X509v3 Authority Key Identifier: keyid:72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HYA/0/3131342e32392e3234302e302f32322d3234203d3e20313331363032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.29.240.0/22 Signature Algorithm: sha256WithRSAEncryption 53:e2:1c:e5:9c:4d:c9:4f:b9:3f:5f:83:b9:f1:a2:67:36:d1: 5c:8d:b5:89:fb:47:42:15:df:90:f8:09:2e:a3:cf:18:15:6d: 0e:5e:29:c0:1f:de:c1:45:de:da:08:fa:a5:9f:47:bb:08:70: cd:4e:5b:19:2f:9d:09:e0:78:37:91:ce:93:18:2c:7b:56:59: 37:48:61:76:94:f9:9e:1b:67:9b:d8:90:5b:f4:54:be:51:96: cc:44:12:bf:c4:76:03:7e:1b:d9:85:e7:4e:c5:26:2b:7a:52: fd:3c:b7:9f:80:62:6c:96:0c:4c:96:08:b2:39:f4:e9:8f:e4: a4:18:cd:25:0d:35:a9:9c:9e:9a:d8:e5:4f:52:00:90:54:62: 61:1a:2f:dd:1e:ee:64:95:d5:2d:bc:2d:03:f4:93:cf:e2:30: 9b:15:1c:60:10:97:2b:dd:4c:12:a7:9e:a8:af:4a:fe:0d:83: d2:07:47:f7:a2:48:31:2e:86:de:5b:15:24:de:79:0e:29:55: 07:90:b1:11:dd:70:42:d4:fa:24:81:0c:04:c7:6d:ee:0a:f8: 86:68:c0:71:8e:2f:c6:9e:a2:f8:2f:8c:7d:18:32:ea:34:37: c4:5c:ee:a8:84:a7:c6:19:4f:f7:3e:b1:44:0d:58:59:0b:35: d0:8e:fe:fa -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUP9ghgk3Lqr+6yjfBpHZdsa9fQ8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4 REQzMDk5QTAeFw0yNjA1MTExNzMzNTVaFw0yNzA1MTAxNzM4NTVaMDMxMTAvBgNV BAMTKENGM0Q4ODlBQzlFODUyMUNGMEM5RUM4NjlDMkEyMTQ1RjBCODQ4RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPe6uHlQHxpfRY49A99cOTsUsr miiV2OQ005M3MqoTeE8MjySLmBUy0OjdkHcjmFoeiobHATXNL5PUbV4M5pqGMlKk U0uY0SoR6ce2zfBPN4LVvTq1oETsXgkjmOxftH5Yzig8BOOgZ3fBSh1IamL8M6ST CHaOZc4GjFy7VSnfcsJNOU+ZvLq87ZHcC095AinivaWH4NB546t8DvXVkUXfdpFS aXr3gbtHDMYtQUqLvG+SYxZgIoZCVJmJ4ndgW0YOYea4BbEXfd/lJZBVP2sfnpt4 jkd2L3F4zs7samzNwDaeD4TrE+m4XkD2K5DaFy484/+K0gCSUC/txCQczvH3AgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUzz2ImsnoUhzwyeyGnCohRfC4SPowHwYDVR0j BBgwFoAUckh+F8JA1VwW6P5bC3HUSY3TCZowDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAv NzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4REQzMDk5QS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MjQ4N0UxN0MyNDBENTVDMTZFOEZFNUIwQjcxRDQ0 OThERDMwOTlBLmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAvMzEzMTM0MmUzMjM5MmUzMjM0 MzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTMzMzEzNjMwMzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJyHfAwDQYJKoZIhvcNAQELBQADggEBAFPiHOWcTclPuT9fg7nxomc20VyNtYn7 R0IV35D4CS6jzxgVbQ5eKcAf3sFF3toI+qWfR7sIcM1OWxkvnQngeDeRzpMYLHtW WTdIYXaU+Z4bZ5vYkFv0VL5RlsxEEr/EdgN+G9mF507FJit6Uv08t5+AYmyWDEyW CLI59OmP5KQYzSUNNamcnprY5U9SAJBUYmEaL90e7mSV1S28LQP0k8/iMJsVHGAQ lyvdTBKnnqivSv4Ng9IHR/eiSDEuht5bFSTeeQ4pVQeQsRHdcELU+iSBDATHbe4K +IZowHGOL8aeovgvjH0YMuo0N8Rc7qiEp8YZT/c+sUQNWFkLNdCO/vo= -----END CERTIFICATE-----Generated at Wed May 13 21:13:36 2026 by rpki-client