$ rpki-client -vvf rpkica.twnic.tw/rpki/IMCRS/0/3130332e3137372e33322e302f32342d3234203d3e20323134343332.roa File: 3130332e3137372e33322e302f32342d3234203d3e20323134343332.roa (raw, json) Hash identifier: 2YaoD0V9MTmYaytjBdN3g/2JltFPIOscJRsxuw7e/EQ= Subject key identifier: 4C:20:16:98:54:AF:17:F5:80:D9:14:27:63:DF:34:97:86:25:6D:C1 Certificate issuer: /CN=A7827E4E53BA517BBC5C798CF0D3AF870375C0B0 Certificate serial: 1368CACC827C64D22192A8F8BF1B1BC938296F39 Authority key identifier: A7:82:7E:4E:53:BA:51:7B:BC:5C:79:8C:F0:D3:AF:87:03:75:C0:B0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IMCRS/0/3130332e3137372e33322e302f32342d3234203d3e20323134343332.roa Signing time: Mon 11 May 2026 17:40:16 +0000 ROA not before: Mon 11 May 2026 17:35:16 +0000 ROA not after: Mon 10 May 2027 17:40:16 +0000 asID: 214432 IP address blocks: 103.177.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:68:ca:cc:82:7c:64:d2:21:92:a8:f8:bf:1b:1b:c9:38:29:6f:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7827E4E53BA517BBC5C798CF0D3AF870375C0B0 Validity Not Before: May 11 17:35:16 2026 GMT Not After : May 10 17:40:16 2027 GMT Subject: CN=4C20169854AF17F580D9142763DF349786256DC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9c:0d:c2:15:89:50:94:67:38:ae:30:08:07: 14:ae:80:e1:a9:2b:e5:15:5a:a8:57:2e:3f:98:89: 4b:66:0c:11:b1:0f:e3:84:20:3c:12:04:68:dd:2b: c4:8e:bd:d9:5b:eb:6b:f0:fb:09:5f:8b:e4:fd:8c: 17:d8:ef:de:d4:24:71:44:d8:bd:87:da:6a:e6:99: d1:7a:0a:4a:04:ec:79:5d:14:02:95:4d:ca:50:04: 45:fc:da:7a:42:8b:56:ee:65:90:6a:07:3a:7e:18: df:18:58:f6:0e:bf:8e:a3:b6:b2:93:a6:b8:4f:ef: 68:ba:2d:7a:a9:65:6a:db:7e:a4:aa:e9:ae:fe:4e: 9d:7a:a1:65:13:75:d1:5e:6f:7c:8d:e7:9f:15:57: 84:1c:8f:a6:aa:25:21:44:f2:92:46:f4:aa:3a:1a: f4:f4:16:2f:52:cc:23:9e:d0:68:42:4e:f2:03:7b: 97:3e:3a:3d:af:47:32:ac:db:fc:09:79:76:85:db: c3:c3:fc:f9:62:0f:45:1b:74:c7:f6:63:86:8c:54: aa:de:b2:4d:9b:de:c1:6c:c9:aa:d8:6f:b2:80:0d: 21:f3:98:dc:70:e6:fd:28:6f:95:6f:17:45:10:86: 05:22:e2:bf:5b:65:dc:7b:3e:cb:3c:e1:27:26:20: dd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:20:16:98:54:AF:17:F5:80:D9:14:27:63:DF:34:97:86:25:6D:C1 X509v3 Authority Key Identifier: keyid:A7:82:7E:4E:53:BA:51:7B:BC:5C:79:8C:F0:D3:AF:87:03:75:C0:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IMCRS/0/3130332e3137372e33322e302f32342d3234203d3e20323134343332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.32.0/24 Signature Algorithm: sha256WithRSAEncryption 77:c5:07:c7:b1:19:17:f1:b8:17:d9:05:73:f7:60:a2:c4:94: d8:df:45:8a:97:32:0b:ab:d7:96:1e:55:3d:f6:96:30:ab:5d: 39:69:5e:c7:57:7b:38:47:08:bd:cd:cd:8d:ca:b7:c0:1e:48: a8:f6:3b:1b:94:5e:17:80:f9:60:43:6e:98:e4:a4:41:5d:fd: 4c:9a:b3:5f:94:6b:8d:f0:71:8d:e6:94:4d:db:69:59:aa:37: 02:77:40:91:94:6e:5a:b2:d3:31:fe:82:42:6c:30:8b:1f:84: 7e:fa:da:1c:14:3b:44:2a:e2:e5:da:50:53:45:2c:cb:04:8a: 17:d8:9b:ee:0b:86:78:6d:13:9d:8d:eb:e3:cf:77:bb:7f:77: a1:71:18:55:fd:c9:16:44:93:fb:fa:6a:c8:08:27:68:6f:d9: c2:0b:9c:85:79:04:bc:01:38:57:ed:e8:ed:2f:a1:37:3d:f5: 9a:83:4f:5a:ad:05:5a:b1:4b:7f:23:47:55:49:74:08:2d:6f: f3:82:8b:a9:34:86:8f:c9:cb:43:8f:35:45:17:43:56:1a:c4: 32:5b:95:8b:ef:b4:d4:de:5c:bd:70:f8:70:4a:32:22:fd:aa: 21:48:9e:79:8f:67:8a:0f:f2:80:17:99:75:04:a6:08:5b:52: 56:e6:06:42 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUE2jKzIJ8ZNIhkqj4vxsbyTgpbzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc4MjdFNEU1M0JBNTE3QkJDNUM3OThDRjBEM0FGODcw Mzc1QzBCMDAeFw0yNjA1MTExNzM1MTZaFw0yNzA1MTAxNzQwMTZaMDMxMTAvBgNV BAMTKDRDMjAxNjk4NTRBRjE3RjU4MEQ5MTQyNzYzREYzNDk3ODYyNTZEQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChnA3CFYlQlGc4rjAIBxSugOGp K+UVWqhXLj+YiUtmDBGxD+OEIDwSBGjdK8SOvdlb62vw+wlfi+T9jBfY797UJHFE 2L2H2mrmmdF6CkoE7HldFAKVTcpQBEX82npCi1buZZBqBzp+GN8YWPYOv46jtrKT prhP72i6LXqpZWrbfqSq6a7+Tp16oWUTddFeb3yN558VV4Qcj6aqJSFE8pJG9Ko6 GvT0Fi9SzCOe0GhCTvIDe5c+Oj2vRzKs2/wJeXaF28PD/PliD0UbdMf2Y4aMVKre sk2b3sFsyarYb7KADSHzmNxw5v0ob5VvF0UQhgUi4r9bZdx7Pss84ScmIN2JAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUTCAWmFSvF/WA2RQnY980l4YlbcEwHwYDVR0j BBgwFoAUp4J+TlO6UXu8XHmM8NOvhwN1wLAwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSU1DUlMv MC9BNzgyN0U0RTUzQkE1MTdCQkM1Qzc5OENGMEQzQUY4NzAzNzVDMEIwLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0E3ODI3RTRFNTNCQTUxN0JCQzVDNzk4Q0YwRDNB Rjg3MDM3NUMwQjAuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9JTUNSUy8wLzMxMzAzMzJlMzEzNzM3 MmUzMzMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM0MzQzMzMyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ7EgMA0GCSqGSIb3DQEBCwUAA4IBAQB3xQfHsRkX8bgX2QVz92CixJTY 30WKlzILq9eWHlU99pYwq105aV7HV3s4Rwi9zc2NyrfAHkio9jsblF4XgPlgQ26Y 5KRBXf1MmrNflGuN8HGN5pRN22lZqjcCd0CRlG5astMx/oJCbDCLH4R++tocFDtE KuLl2lBTRSzLBIoX2JvuC4Z4bROdjevjz3e7f3ehcRhV/ckWRJP7+mrICCdob9nC C5yFeQS8AThX7ejtL6E3PfWag09arQVasUt/I0dVSXQILW/zgoupNIaPyctDjzVF F0NWGsQyW5WL77TU3ly9cPhwSjIi/aohSJ55j2eKD/KAF5l1BKYIW1JW5gZC -----END CERTIFICATE-----Generated at Wed May 13 21:17:44 2026 by rpki-client