$ rpki-client -vvf rpkica.twnic.tw/rpki/IDT/0/3130332e3135322e3232302e302f32332d3234203d3e20313338393937.roa File: 3130332e3135322e3232302e302f32332d3234203d3e20313338393937.roa (raw, json) Hash identifier: J/22PWUGVzLaEIWqIEkco35k7PiKuvioKGMBglelLtk= Subject key identifier: 5D:E9:2F:70:25:98:84:4A:52:24:BC:B2:DF:7E:7E:0F:DF:2D:90:79 Certificate issuer: /CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Certificate serial: 28F25BE7A06D96570C9FE6AC8192E8973E8EE67B Authority key identifier: 35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IDT/0/3130332e3135322e3232302e302f32332d3234203d3e20313338393937.roa Signing time: Mon 11 May 2026 17:07:03 +0000 ROA not before: Mon 11 May 2026 17:02:03 +0000 ROA not after: Mon 10 May 2027 17:07:03 +0000 asID: 138997 IP address blocks: 103.152.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:f2:5b:e7:a0:6d:96:57:0c:9f:e6:ac:81:92:e8:97:3e:8e:e6:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Validity Not Before: May 11 17:02:03 2026 GMT Not After : May 10 17:07:03 2027 GMT Subject: CN=5DE92F702598844A5224BCB2DF7E7E0FDF2D9079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ca:b6:a9:f6:e6:fe:1c:5e:60:9b:2c:12:f7: 27:d2:1f:ef:42:bc:50:13:89:d4:f7:72:c1:eb:16: e2:9e:a8:e5:97:e5:d6:73:89:e3:46:3f:3d:22:e1: 28:07:c4:41:53:47:a0:78:74:d5:84:cb:8c:7e:c7: 96:85:ac:fc:d0:de:7d:a6:53:84:58:8e:bf:7f:02: 33:c4:04:ea:c0:c4:59:f8:4d:d0:de:53:f3:6a:f3: 5d:c1:57:25:94:9c:76:65:3c:2e:68:47:5f:23:9e: d7:2c:64:ad:c5:99:e7:d8:4c:60:c8:47:48:08:bf: 4d:d5:3e:f7:a0:9d:41:5d:bd:4c:47:a1:fb:f5:6e: 4c:5d:74:49:dc:6f:31:5f:6c:57:44:e3:00:78:b3: c1:bf:c7:48:12:fe:5e:60:6d:0b:06:1f:69:27:18: ef:08:62:7c:d1:71:72:7a:e5:a8:c9:89:d8:92:e8: 41:7c:51:56:d8:e0:10:5b:19:85:5b:9b:c5:cf:02: 6f:41:ae:f3:4f:a4:70:a0:86:d2:e8:f4:b8:de:35: 48:0c:7c:08:04:23:80:e9:68:b5:70:fa:1d:34:7d: cd:60:6b:7a:40:bc:7f:15:a8:e2:84:d2:78:f6:d7: 56:0c:d3:d4:96:61:a1:d1:bf:a6:ae:16:38:da:c9: 73:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E9:2F:70:25:98:84:4A:52:24:BC:B2:DF:7E:7E:0F:DF:2D:90:79 X509v3 Authority Key Identifier: keyid:35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IDT/0/3130332e3135322e3232302e302f32332d3234203d3e20313338393937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.220.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:86:9f:ed:ae:e1:65:da:ab:d2:b2:dd:5e:de:be:12:54:0b: b8:7a:bd:65:6a:4d:87:2d:4b:60:84:7f:19:35:58:ec:cf:f4: 87:21:1a:a0:71:54:b0:ae:06:d0:07:e5:cb:eb:5e:24:0f:99: 24:db:67:bc:42:1d:eb:77:95:72:c7:41:cc:db:78:a3:d8:63: 47:06:17:67:18:3d:80:8c:b4:04:91:dd:6d:6f:3d:76:41:fe: 26:4b:2f:2c:80:52:ef:d4:98:c2:29:98:33:33:f6:70:83:08: 35:05:66:60:96:1d:bf:f5:27:f3:4b:91:49:e7:87:b1:b0:e7: b7:29:af:8d:03:3c:98:e4:f6:3e:6c:91:52:87:c7:03:b8:73: c2:c5:37:3a:1c:2c:a3:56:47:fe:5a:a3:d7:0f:a1:04:c1:8a: d7:c0:4c:5a:bb:f8:b9:db:4e:99:a3:24:bc:50:d1:35:41:12: dc:6d:78:38:46:83:1f:7f:b1:65:71:97:de:7c:d9:2d:a1:2e: e1:37:c8:4c:98:4f:8c:6f:d7:d2:8b:e4:97:e1:28:e9:81:a7: ba:3c:b5:a4:7b:5a:bc:5f:01:da:91:4d:3c:12:e0:a2:0d:df: ab:e6:b3:bf:13:0a:20:7a:46:61:56:66:4f:44:7b:d9:71:a5: 3e:bb:cf:f1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUKPJb56BtllcMn+asgZLolz6O5nswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3 QjgyOUU0RDAeFw0yNjA1MTExNzAyMDNaFw0yNzA1MTAxNzA3MDNaMDMxMTAvBgNV BAMTKDVERTkyRjcwMjU5ODg0NEE1MjI0QkNCMkRGN0U3RTBGREYyRDkwNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0yrap9ub+HF5gmywS9yfSH+9C vFATidT3csHrFuKeqOWX5dZzieNGPz0i4SgHxEFTR6B4dNWEy4x+x5aFrPzQ3n2m U4RYjr9/AjPEBOrAxFn4TdDeU/Nq813BVyWUnHZlPC5oR18jntcsZK3FmefYTGDI R0gIv03VPvegnUFdvUxHofv1bkxddEncbzFfbFdE4wB4s8G/x0gS/l5gbQsGH2kn GO8IYnzRcXJ65ajJidiS6EF8UVbY4BBbGYVbm8XPAm9BrvNPpHCghtLo9LjeNUgM fAgEI4DpaLVw+h00fc1ga3pAvH8VqOKE0nj211YM09SWYaHRv6auFjjayXNPAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUXekvcCWYhEpSJLyy335+D98tkHkwHwYDVR0j BBgwFoAUNchmvgAN6rhwyXvtctCngHuCnk0wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAv MzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3QjgyOUU0RC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8zNUM4NjZCRTAwMERFQUI4NzBDOTdCRUQ3MkQwQTc4 MDdCODI5RTRELmNlcjB9BggrBgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuGYXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAvMzEzMDMzMmUzMTM1MzIyZTMy MzIzMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzODM5MzkzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWeY3DANBgkqhkiG9w0BAQsFAAOCAQEALoaf7a7hZdqr0rLdXt6+ElQLuHq9 ZWpNhy1LYIR/GTVY7M/0hyEaoHFUsK4G0Afly+teJA+ZJNtnvEId63eVcsdBzNt4 o9hjRwYXZxg9gIy0BJHdbW89dkH+JksvLIBS79SYwimYMzP2cIMINQVmYJYdv/Un 80uRSeeHsbDntymvjQM8mOT2PmyRUofHA7hzwsU3Ohwso1ZH/lqj1w+hBMGK18BM Wrv4udtOmaMkvFDRNUES3G14OEaDH3+xZXGX3nzZLaEu4TfITJhPjG/X0ovkl+Eo 6YGnujy1pHtavF8B2pFNPBLgog3fq+azvxMKIHpGYVZmT0R72XGlPrvP8Q== -----END CERTIFICATE-----Generated at Wed May 13 21:52:06 2026 by rpki-client