$ rpki-client -vvf rpkica.twnic.tw/rpki/KE-ING/0/3232302e3135372e3131322e302f32302d3234203d3e2039343136.roa File: 3232302e3135372e3131322e302f32302d3234203d3e2039343136.roa (raw, json) Hash identifier: MV88dvBez2VEHGQu9vHIsSHLmR+FC/BkqQXgQl6RGGE= Subject key identifier: ED:F1:47:7C:31:C4:7B:BA:F2:48:5D:92:55:47:50:42:05:A0:56:20 Certificate issuer: /CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Certificate serial: 49B295F91A1235A50DE989995EC6B7569151D159 Authority key identifier: 04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KE-ING/0/3232302e3135372e3131322e302f32302d3234203d3e2039343136.roa Signing time: Mon 11 May 2026 17:04:15 +0000 ROA not before: Mon 11 May 2026 16:59:15 +0000 ROA not after: Mon 10 May 2027 17:04:15 +0000 asID: 9416 IP address blocks: 220.157.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:b2:95:f9:1a:12:35:a5:0d:e9:89:99:5e:c6:b7:56:91:51:d1:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Validity Not Before: May 11 16:59:15 2026 GMT Not After : May 10 17:04:15 2027 GMT Subject: CN=EDF1477C31C47BBAF2485D925547504205A05620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6f:0b:11:44:ef:3c:d3:e8:4d:c3:2f:ac:13: cb:4a:54:93:5e:71:f2:75:ad:84:b5:d2:ca:a6:e7: 16:e0:8c:c0:50:3c:8f:86:b6:ef:fc:ee:ed:6f:81: 3e:d4:92:ed:5c:ae:a4:6e:77:79:d1:ea:d2:71:af: 94:ff:80:a8:1a:8c:a9:b3:7f:e6:70:46:16:31:4c: 17:6b:3c:f6:33:68:3e:ae:11:98:58:42:ed:5e:ff: 8a:43:d6:0e:cc:4f:b3:de:ff:83:48:db:25:54:2e: c9:c3:0a:45:bb:6b:19:cb:eb:e4:d2:3e:a2:12:08: 4c:44:95:ca:a3:fa:1f:22:28:34:bd:dc:16:23:2f: f7:21:22:eb:e8:21:f7:53:4a:73:95:d6:87:4c:1a: 69:04:98:ac:8a:c2:29:91:64:4f:58:54:f3:f0:e5: 50:da:10:81:a3:31:a2:de:11:6c:96:62:ca:16:e3: 66:52:4f:06:24:2e:25:58:ec:a1:02:41:6a:41:f0: d4:1f:88:e8:e9:4d:a3:ea:d3:47:d2:96:14:c9:8b: 15:43:9b:28:67:14:00:d3:37:53:38:02:3d:7c:a5: 4f:cd:85:4b:98:4e:b7:e7:fb:d4:c3:fc:ae:01:48: fe:86:37:38:01:06:3f:90:ca:8f:aa:68:1a:35:b1: c3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:F1:47:7C:31:C4:7B:BA:F2:48:5D:92:55:47:50:42:05:A0:56:20 X509v3 Authority Key Identifier: keyid:04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/3232302e3135372e3131322e302f32302d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.112.0/20 Signature Algorithm: sha256WithRSAEncryption 6c:c0:5d:c2:b9:9b:95:e4:37:2d:b5:19:a2:37:8e:15:3f:cf: 0a:e1:96:73:b1:70:09:d5:74:a6:78:dd:6b:9a:b6:f6:dc:f2: 55:02:8a:45:62:e3:66:7b:f3:30:4e:0e:1e:6b:9a:8d:01:fa: cf:06:fd:47:8f:7b:73:4d:b1:62:f8:34:1d:ed:2d:e3:93:b6: 91:a6:3c:cd:b0:94:52:ca:23:0a:1d:37:e1:77:4f:8d:af:60: 9c:cc:e8:78:4e:30:c7:55:2e:d8:07:39:fc:33:29:16:2f:41: fa:45:c5:37:b0:33:2f:20:27:ac:e9:a9:57:95:c0:6d:67:c6: 5f:4d:1b:49:91:95:35:44:1d:71:74:7b:b0:08:ec:df:19:0a: 35:2d:61:3d:ce:93:eb:2c:a8:b9:cc:e2:40:b5:c9:99:43:72: e8:07:1f:58:b3:8f:85:eb:63:8d:dc:a8:8b:6f:c2:bc:f7:7d: 98:11:8f:e7:ab:92:60:69:ef:db:42:92:b9:7a:f9:c7:e6:76: 47:6b:e9:23:d1:71:72:ed:75:11:92:7d:46:64:97:97:5f:71: ab:2f:4d:fd:02:f1:05:88:00:fa:ba:77:76:8b:5d:b8:1b:b8: c7:6d:f3:4d:b9:12:45:b5:b0:f3:67:9d:28:32:de:2b:26:76: 42:1c:99:da -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUSbKV+RoSNaUN6YmZXsa3VpFR0VkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0Qy MzMyNEU0QjAeFw0yNjA1MTExNjU5MTVaFw0yNzA1MTAxNzA0MTVaMDMxMTAvBgNV BAMTKEVERjE0NzdDMzFDNDdCQkFGMjQ4NUQ5MjU1NDc1MDQyMDVBMDU2MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0bwsRRO880+hNwy+sE8tKVJNe cfJ1rYS10sqm5xbgjMBQPI+Gtu/87u1vgT7Uku1crqRud3nR6tJxr5T/gKgajKmz f+ZwRhYxTBdrPPYzaD6uEZhYQu1e/4pD1g7MT7Pe/4NI2yVULsnDCkW7axnL6+TS PqISCExElcqj+h8iKDS93BYjL/chIuvoIfdTSnOV1odMGmkEmKyKwimRZE9YVPPw 5VDaEIGjMaLeEWyWYsoW42ZSTwYkLiVY7KECQWpB8NQfiOjpTaPq00fSlhTJixVD myhnFADTN1M4Aj18pU/NhUuYTrfn+9TD/K4BSP6GNzgBBj+Qyo+qaBo1scNzAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQU7fFHfDHEe7rySF2SVUdQQgWgViAwHwYDVR0j BBgwFoAUBJ1NvPql7iinm/SeYj6HzSMyTkswDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5H LzAvMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0QyMzMyNEU0Qi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8wNDlENERCQ0ZBQTVFRTI4QTc5QkY0OUU2MjNF ODdDRDIzMzI0RTRCLmNlcjB8BggrBgEFBQcBCwRwMG4wbAYIKwYBBQUHMAuGYHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5HLzAvMzIzMjMwMmUzMTM1 MzcyZTMxMzEzMjJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDM5MzQzMTM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQE3J1wMA0GCSqGSIb3DQEBCwUAA4IBAQBswF3CuZuV5DcttRmiN44VP88K 4ZZzsXAJ1XSmeN1rmrb23PJVAopFYuNme/MwTg4ea5qNAfrPBv1Hj3tzTbFi+DQd 7S3jk7aRpjzNsJRSyiMKHTfhd0+Nr2CczOh4TjDHVS7YBzn8MykWL0H6RcU3sDMv ICes6alXlcBtZ8ZfTRtJkZU1RB1xdHuwCOzfGQo1LWE9zpPrLKi5zOJAtcmZQ3Lo Bx9Ys4+F62ON3KiLb8K8932YEY/nq5Jgae/bQpK5evnH5nZHa+kj0XFy7XURkn1G ZJeXX3GrL039AvEFiAD6und2i124G7jHbfNNuRJFtbDzZ50oMt4rJnZCHJna -----END CERTIFICATE-----Generated at Wed May 13 21:52:21 2026 by rpki-client