$ rpki-client -vvf rpkica.twnic.tw/rpki/KE-ING/0/3131392e31342e3132382e302f31372d3137203d3e2039343136.roa File: 3131392e31342e3132382e302f31372d3137203d3e2039343136.roa (raw, json) Hash identifier: etypLFOH/+2ky9YLH0gkWFgtIbtkxf0DGdzRztYvnQ4= Subject key identifier: DB:E6:8E:0F:D9:D0:37:7C:7E:BF:84:DB:14:F3:64:86:B2:B2:84:F0 Certificate issuer: /CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Certificate serial: 18903B9E33070EE0E8836B5692D0E73778E15D6A Authority key identifier: 04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KE-ING/0/3131392e31342e3132382e302f31372d3137203d3e2039343136.roa Signing time: Mon 11 May 2026 16:48:52 +0000 ROA not before: Mon 11 May 2026 16:43:52 +0000 ROA not after: Mon 10 May 2027 16:48:52 +0000 asID: 9416 IP address blocks: 119.14.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:90:3b:9e:33:07:0e:e0:e8:83:6b:56:92:d0:e7:37:78:e1:5d:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Validity Not Before: May 11 16:43:52 2026 GMT Not After : May 10 16:48:52 2027 GMT Subject: CN=DBE68E0FD9D0377C7EBF84DB14F36486B2B284F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ac:2b:36:0a:72:84:71:af:5f:19:f9:3a:ca: 58:f5:f7:97:a7:ad:d5:54:20:06:f4:c5:a1:b3:2e: 35:9e:31:9c:2a:04:03:41:47:11:b1:ec:ae:b9:55: 03:f3:1c:bd:af:a4:90:9c:48:85:de:fb:09:29:94: 7f:7e:df:54:05:65:52:b4:be:ff:0e:e5:fe:04:95: 6e:d6:89:ae:27:9e:b6:2d:b0:03:95:01:04:32:0b: cf:68:e7:9c:e3:58:26:2c:e1:52:ec:29:0c:95:48: 2c:50:ec:28:b5:27:63:82:78:9c:3e:3a:2c:65:ff: cd:da:60:e5:b7:d3:fd:32:86:ee:a6:7e:5d:d2:0f: 2e:36:c9:03:a5:2e:3f:fa:4e:8c:26:2b:6a:3b:fc: 35:5f:0c:fa:f3:c3:73:f4:19:0f:14:4f:4f:4b:67: b0:2d:a3:ec:92:24:59:7b:8c:18:0f:ba:e2:58:d1: 30:87:93:43:f9:6f:1c:04:b8:f4:f0:2b:cf:10:88: 99:ad:35:a2:48:91:68:ad:73:22:cc:b5:c3:3d:cb: a4:de:f6:2c:96:ad:06:05:90:ce:3b:0b:fc:1b:b3: e6:a4:f4:99:e7:da:36:b1:8b:06:69:dc:2d:36:3b: 08:a8:19:9b:77:e4:c2:21:0b:1d:53:85:39:aa:fb: 78:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E6:8E:0F:D9:D0:37:7C:7E:BF:84:DB:14:F3:64:86:B2:B2:84:F0 X509v3 Authority Key Identifier: keyid:04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/3131392e31342e3132382e302f31372d3137203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.14.128.0/17 Signature Algorithm: sha256WithRSAEncryption 57:5f:fe:05:9f:96:85:88:22:f1:f3:30:5b:0a:26:b5:5f:8d: 85:56:a5:8d:19:d5:5f:ac:8f:77:81:b8:12:4c:fd:27:b9:f1: 97:95:e0:50:6f:89:f1:44:40:de:9d:74:6d:d3:23:c2:35:b3: d0:3b:96:b2:96:d7:50:0b:a3:84:8a:4d:0e:72:3c:a7:a6:a1: d7:a1:0c:3b:94:d0:82:95:08:40:07:3d:3c:7c:67:3d:73:2d: 7c:92:0a:a9:a8:6f:24:d4:db:35:be:68:a5:67:0c:61:94:1c: eb:61:a0:5c:cb:dd:ac:22:6e:f0:80:c9:a5:c9:26:d5:e3:46: 56:e4:5d:0e:57:3a:ec:05:73:ec:c7:53:8b:44:e1:69:3d:4b: a3:d4:9f:86:71:00:24:96:87:99:29:95:e3:9c:8f:d9:ea:90: 77:d4:49:04:c0:69:78:d1:5e:54:4c:64:56:58:78:86:7e:2c: 28:98:99:ba:96:f6:f3:1f:22:45:e1:23:b3:05:cd:48:f5:4a: cd:da:33:63:96:d7:0f:8e:35:9e:f1:d0:5d:fe:02:9f:54:e4: ad:53:c7:ee:fc:2f:a7:ea:76:36:fe:4e:7a:3f:d2:fd:58:91: 35:7e:75:8e:2a:b3:53:fe:73:61:b0:7c:31:07:50:26:f7:12: e7:07:13:58 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUGJA7njMHDuDog2tWktDnN3jhXWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0Qy MzMyNEU0QjAeFw0yNjA1MTExNjQzNTJaFw0yNzA1MTAxNjQ4NTJaMDMxMTAvBgNV BAMTKERCRTY4RTBGRDlEMDM3N0M3RUJGODREQjE0RjM2NDg2QjJCMjg0RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYrCs2CnKEca9fGfk6ylj195en rdVUIAb0xaGzLjWeMZwqBANBRxGx7K65VQPzHL2vpJCcSIXe+wkplH9+31QFZVK0 vv8O5f4ElW7Wia4nnrYtsAOVAQQyC89o55zjWCYs4VLsKQyVSCxQ7Ci1J2OCeJw+ Oixl/83aYOW30/0yhu6mfl3SDy42yQOlLj/6TowmK2o7/DVfDPrzw3P0GQ8UT09L Z7Ato+ySJFl7jBgPuuJY0TCHk0P5bxwEuPTwK88QiJmtNaJIkWitcyLMtcM9y6Te 9iyWrQYFkM47C/wbs+ak9Jnn2jaxiwZp3C02OwioGZt35MIhCx1ThTmq+3j/AgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQU2+aOD9nQN3x+v4TbFPNkhrKyhPAwHwYDVR0j BBgwFoAUBJ1NvPql7iinm/SeYj6HzSMyTkswDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5H LzAvMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0QyMzMyNEU0Qi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8wNDlENERCQ0ZBQTVFRTI4QTc5QkY0OUU2MjNF ODdDRDIzMzI0RTRCLmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5HLzAvMzEzMTM5MmUzMTM0 MmUzMTMyMzgyZTMwMmYzMTM3MmQzMTM3MjAzZDNlMjAzOTM0MzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB3cOgDANBgkqhkiG9w0BAQsFAAOCAQEAV1/+BZ+WhYgi8fMwWwomtV+NhVal jRnVX6yPd4G4Ekz9J7nxl5XgUG+J8URA3p10bdMjwjWz0DuWspbXUAujhIpNDnI8 p6ah16EMO5TQgpUIQAc9PHxnPXMtfJIKqahvJNTbNb5opWcMYZQc62GgXMvdrCJu 8IDJpckm1eNGVuRdDlc67AVz7MdTi0ThaT1Lo9SfhnEAJJaHmSmV45yP2eqQd9RJ BMBpeNFeVExkVlh4hn4sKJiZupb28x8iReEjswXNSPVKzdozY5bXD441nvHQXf4C n1TkrVPH7vwvp+p2Nv5Oej/S/ViRNX51jiqzU/5zYbB8MQdQJvcS5wcTWA== -----END CERTIFICATE-----Generated at Wed May 13 21:11:06 2026 by rpki-client