$ rpki-client -vvf rpkica.twnic.tw/rpki/KE-ING/0/3131392e31342e302e302f31362d3234203d3e203138303432.roa File: 3131392e31342e302e302f31362d3234203d3e203138303432.roa (raw, json) Hash identifier: HbGluHb1NsEVJLOmIp1khnjJQIuZhHoSydxnFJStI9Y= Subject key identifier: F2:6C:B1:FB:6F:95:B9:69:B3:B6:39:FC:32:27:63:62:58:51:1E:09 Certificate issuer: /CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Certificate serial: 7E59A6DEA45C4385FD1B06E57175A394C9A96B5E Authority key identifier: 04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KE-ING/0/3131392e31342e302e302f31362d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 16:48:49 +0000 ROA not before: Mon 11 May 2026 16:43:49 +0000 ROA not after: Mon 10 May 2027 16:48:49 +0000 asID: 18042 IP address blocks: 119.14.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:59:a6:de:a4:5c:43:85:fd:1b:06:e5:71:75:a3:94:c9:a9:6b:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Validity Not Before: May 11 16:43:49 2026 GMT Not After : May 10 16:48:49 2027 GMT Subject: CN=F26CB1FB6F95B969B3B639FC3227636258511E09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:9d:b9:a6:94:f1:78:98:e3:06:a7:97:47:0c: d0:0a:28:db:ab:3f:d0:d0:13:45:64:fa:68:e9:0c: df:15:4e:8c:c5:7d:6e:83:7c:a1:75:60:d4:c6:b5: 43:49:5d:8e:d4:a2:49:0a:99:58:ed:69:1c:81:f1: 70:5f:e9:8d:de:e3:d8:1d:ab:99:9e:79:db:21:52: 6f:2c:79:67:c5:cc:3f:4b:ac:13:73:ac:64:89:47: 9a:ca:47:ae:e0:5a:cd:1f:24:45:4e:36:95:d8:81: 9c:00:b6:08:d0:21:5c:36:fd:0d:1a:cd:61:cf:c0: 60:5f:28:cc:f2:e5:3d:b0:3c:e1:ae:30:1d:e2:06: 8c:25:7c:60:18:a0:3f:e6:d0:ef:f4:b1:d4:f9:4f: c5:a3:47:66:cc:6b:a2:22:2c:f5:7f:44:f4:d7:13: 1b:bc:0b:90:be:3c:2e:01:05:20:c4:e0:32:bc:dd: fa:b4:ae:8b:63:7b:48:7d:51:09:19:0b:3b:19:70: 4b:f9:99:90:32:45:95:2d:74:ba:eb:cb:75:48:ec: 38:30:83:05:fc:d6:90:99:28:64:5b:71:f2:c1:23: d4:6c:86:96:bd:fa:38:08:94:ec:0a:69:53:92:1b: 0a:8e:81:7d:76:af:b7:55:d0:9f:d9:1a:69:50:96: 35:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:6C:B1:FB:6F:95:B9:69:B3:B6:39:FC:32:27:63:62:58:51:1E:09 X509v3 Authority Key Identifier: keyid:04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/3131392e31342e302e302f31362d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.14.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9e:6a:70:70:0a:d4:4d:58:78:cb:b8:2a:be:d5:00:ef:ec:d7: 48:9e:dc:9e:b3:1a:0f:2a:bf:64:c0:21:51:d2:4a:34:a1:81: bc:76:5c:f7:84:e6:d6:ef:20:89:85:fd:b1:ad:a5:25:6a:1a: a6:d9:bf:1e:70:9b:da:9b:15:4b:3b:1e:c1:38:87:98:71:47: 63:f1:33:55:1f:3f:0f:dc:9d:8e:14:28:7d:80:e3:3e:07:06: cc:e8:e4:60:34:9a:15:6e:e1:ca:ba:d2:48:df:cd:6f:fa:0f: ec:76:d1:86:95:dd:aa:15:dc:7c:a9:44:29:f0:0e:fa:38:30: 4f:54:5e:ec:1b:57:be:27:34:4e:84:fe:7e:d0:51:0b:5b:80: 03:01:1d:2e:e7:22:ff:c1:ed:43:59:25:5f:ad:c5:f8:7a:8b: 70:df:c5:f7:e6:a9:2b:8c:8d:d2:1e:f3:fe:73:39:b0:ee:c2: dd:d4:7c:1d:86:2c:29:b8:99:58:7c:da:a7:12:c6:8a:55:6d: 58:32:98:96:90:81:2b:2b:05:8a:ab:63:9f:17:de:f8:05:de: 79:05:ae:76:d1:49:d9:49:e4:01:2f:31:d3:9c:db:c1:c8:4d: 51:33:55:f7:c4:6a:d6:b3:3d:49:b4:e1:0d:08:61:20:e1:cd: a0:43:5a:19 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUflmm3qRcQ4X9GwblcXWjlMmpa14wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0Qy MzMyNEU0QjAeFw0yNjA1MTExNjQzNDlaFw0yNzA1MTAxNjQ4NDlaMDMxMTAvBgNV BAMTKEYyNkNCMUZCNkY5NUI5NjlCM0I2MzlGQzMyMjc2MzYyNTg1MTFFMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOnbmmlPF4mOMGp5dHDNAKKNur P9DQE0Vk+mjpDN8VTozFfW6DfKF1YNTGtUNJXY7UokkKmVjtaRyB8XBf6Y3e49gd q5meedshUm8seWfFzD9LrBNzrGSJR5rKR67gWs0fJEVONpXYgZwAtgjQIVw2/Q0a zWHPwGBfKMzy5T2wPOGuMB3iBowlfGAYoD/m0O/0sdT5T8WjR2bMa6IiLPV/RPTX Exu8C5C+PC4BBSDE4DK83fq0rotje0h9UQkZCzsZcEv5mZAyRZUtdLrry3VI7Dgw gwX81pCZKGRbcfLBI9Rshpa9+jgIlOwKaVOSGwqOgX12r7dV0J/ZGmlQljWrAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQU8myx+2+VuWmztjn8MidjYlhRHgkwHwYDVR0j BBgwFoAUBJ1NvPql7iinm/SeYj6HzSMyTkswDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5H LzAvMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0QyMzMyNEU0Qi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8wNDlENERCQ0ZBQTVFRTI4QTc5QkY0OUU2MjNF ODdDRDIzMzI0RTRCLmNlcjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5HLzAvMzEzMTM5MmUzMTM0 MmUzMDJlMzAyZjMxMzYyZDMyMzQyMDNkM2UyMDMxMzgzMDM0MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwB3DjANBgkqhkiG9w0BAQsFAAOCAQEAnmpwcArUTVh4y7gqvtUA7+zXSJ7cnrMa Dyq/ZMAhUdJKNKGBvHZc94Tm1u8giYX9sa2lJWoaptm/HnCb2psVSzsewTiHmHFH Y/EzVR8/D9ydjhQofYDjPgcGzOjkYDSaFW7hyrrSSN/Nb/oP7HbRhpXdqhXcfKlE KfAO+jgwT1Re7BtXvic0ToT+ftBRC1uAAwEdLuci/8HtQ1klX63F+HqLcN/F9+ap K4yN0h7z/nM5sO7C3dR8HYYsKbiZWHzapxLGilVtWDKYlpCBKysFiqtjnxfe+AXe eQWudtFJ2UnkAS8x05zbwchNUTNV98Rq1rM9SbThDQhhIOHNoENaGQ== -----END CERTIFICATE-----Generated at Wed May 13 21:11:07 2026 by rpki-client