$ rpki-client -vvf rpkica.twnic.tw/rpki/MFE/0/3130332e3131372e3133322e302f32332d3234203d3e203231383539.roa File: 3130332e3131372e3133322e302f32332d3234203d3e203231383539.roa (raw, json) Hash identifier: V7xrPLp5f+XdiNXnNwOKJbYVBx4iv5pqsU5W1y0I9ac= Subject key identifier: 90:6B:EF:5B:5B:FF:60:57:98:4C:CE:B2:1F:94:A2:15:CC:4F:58:2E Certificate issuer: /CN=21B62D60E1AB53803B229CCF83C179FD3FCFB5B3 Certificate serial: 67ECBF78F57673C30B2732DA401F5A2B3FB144C6 Authority key identifier: 21:B6:2D:60:E1:AB:53:80:3B:22:9C:CF:83:C1:79:FD:3F:CF:B5:B3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.cer Subject info access: rsync://rpkica.twnic.tw/rpki/MFE/0/3130332e3131372e3133322e302f32332d3234203d3e203231383539.roa Signing time: Mon 11 May 2026 17:56:06 +0000 ROA not before: Mon 11 May 2026 17:51:06 +0000 ROA not after: Mon 10 May 2027 17:56:06 +0000 asID: 21859 IP address blocks: 103.117.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.crl rsync://rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:53:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ec:bf:78:f5:76:73:c3:0b:27:32:da:40:1f:5a:2b:3f:b1:44:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21B62D60E1AB53803B229CCF83C179FD3FCFB5B3 Validity Not Before: May 11 17:51:06 2026 GMT Not After : May 10 17:56:06 2027 GMT Subject: CN=906BEF5B5BFF6057984CCEB21F94A215CC4F582E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a4:75:e0:28:e2:0b:c7:f2:3b:cf:b1:f2:05: 1c:5d:d2:64:62:81:c1:5d:9f:fd:bf:cd:7f:6b:6f: 7b:c5:05:07:90:1e:3e:7a:93:66:77:ef:9e:c4:71: 56:f5:91:50:d2:41:90:79:00:f8:60:ad:1b:13:34: da:7f:3e:f9:d2:f3:7c:b2:8a:aa:a9:3b:61:12:b0: 31:fc:52:8e:37:63:05:cf:47:e2:ff:6a:30:fb:23: 94:bd:f8:d3:ac:49:56:a7:99:4e:81:4c:a4:97:6a: 15:f9:16:99:1d:2a:6d:d8:97:d9:bb:0e:8f:06:fe: 18:de:c2:92:02:dd:fe:ea:ae:6d:b5:4d:73:00:c3: 67:4e:8e:30:77:0f:e9:8a:3f:94:d8:2d:d5:ac:a2: c0:d2:14:b8:08:04:21:fa:7f:fc:e4:90:b3:32:ff: 3a:f8:82:53:90:47:99:09:18:a6:9f:9b:23:54:ca: cd:d5:76:bc:3f:d5:89:bf:8a:e6:f7:89:6a:b6:7d: 05:f6:09:b8:d0:6c:a9:32:bf:70:b2:0f:a4:b1:e0: bb:a9:74:84:31:dd:68:64:c9:6a:fb:1b:e4:db:e1: c1:b2:e9:47:af:fb:32:97:34:50:c2:fc:5a:73:fc: ef:bf:86:4f:46:bf:31:3e:71:ca:03:51:83:58:d4: ad:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:6B:EF:5B:5B:FF:60:57:98:4C:CE:B2:1F:94:A2:15:CC:4F:58:2E X509v3 Authority Key Identifier: keyid:21:B6:2D:60:E1:AB:53:80:3B:22:9C:CF:83:C1:79:FD:3F:CF:B5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/MFE/0/3130332e3131372e3133322e302f32332d3234203d3e203231383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.132.0/23 Signature Algorithm: sha256WithRSAEncryption 64:2f:61:46:e7:3c:09:91:ac:ff:4b:5d:b4:d9:f3:f6:54:ef: 61:90:df:9e:ab:4a:15:5c:d7:54:34:3f:49:12:cf:4e:be:23: b1:c5:3f:dd:9e:0f:98:be:a8:6e:21:b1:13:d5:3c:2c:17:04: e6:b1:82:ab:6a:2b:b7:2d:fe:2a:f6:69:ac:1b:40:4c:12:c8: 8d:13:e9:eb:bf:7a:9d:bc:ed:07:27:cc:30:c8:ef:c7:67:b9: ef:04:85:ea:c3:2c:b3:a6:63:02:52:2c:8f:7c:c9:66:8b:cd: 2c:ad:d8:3b:d4:75:3e:67:58:e4:5d:a8:4c:fe:25:c3:f5:1c: 8f:99:b2:3b:62:63:b4:48:c8:db:97:62:ac:67:76:79:a8:22: f8:f2:5b:61:6e:48:f6:6d:8f:77:dc:9c:fd:3e:79:1a:20:85: 80:81:53:59:10:7f:27:9c:cd:c5:e3:37:fe:a4:77:53:dc:7e: 2f:db:6e:cd:92:3d:84:0c:75:dc:d9:01:5b:80:1d:1b:ac:fa: b6:5f:ce:b1:5c:91:55:80:d7:67:4c:2f:88:ff:19:a3:1c:47: e2:79:1f:b2:7d:4f:9a:dc:c9:79:21:76:d8:ad:c3:ed:21:27: 6c:9e:c9:a3:f2:82:58:73:bf:65:ab:a5:e4:d7:20:99:c9:5d: cc:36:d8:4d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUZ+y/ePV2c8MLJzLaQB9aKz+xRMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFCNjJENjBFMUFCNTM4MDNCMjI5Q0NGODNDMTc5RkQz RkNGQjVCMzAeFw0yNjA1MTExNzUxMDZaFw0yNzA1MTAxNzU2MDZaMDMxMTAvBgNV BAMTKDkwNkJFRjVCNUJGRjYwNTc5ODRDQ0VCMjFGOTRBMjE1Q0M0RjU4MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqpHXgKOILx/I7z7HyBRxd0mRi gcFdn/2/zX9rb3vFBQeQHj56k2Z3757EcVb1kVDSQZB5APhgrRsTNNp/PvnS83yy iqqpO2ESsDH8Uo43YwXPR+L/ajD7I5S9+NOsSVanmU6BTKSXahX5FpkdKm3Yl9m7 Do8G/hjewpIC3f7qrm21TXMAw2dOjjB3D+mKP5TYLdWsosDSFLgIBCH6f/zkkLMy /zr4glOQR5kJGKafmyNUys3Vdrw/1Ym/iub3iWq2fQX2CbjQbKkyv3CyD6Sx4Lup dIQx3WhkyWr7G+Tb4cGy6Uev+zKXNFDC/Fpz/O+/hk9GvzE+ccoDUYNY1K0jAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUkGvvW1v/YFeYTM6yH5SiFcxPWC4wHwYDVR0j BBgwFoAUIbYtYOGrU4A7IpzPg8F5/T/PtbMwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTUZFLzAv MjFCNjJENjBFMUFCNTM4MDNCMjI5Q0NGODNDMTc5RkQzRkNGQjVCMy5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8yMUI2MkQ2MEUxQUI1MzgwM0IyMjlDQ0Y4M0MxNzlG RDNGQ0ZCNUIzLmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTUZFLzAvMzEzMDMzMmUzMTMxMzcyZTMx MzMzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMyMzEzODM1Mzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFndYQwDQYJKoZIhvcNAQELBQADggEBAGQvYUbnPAmRrP9LXbTZ8/ZU72GQ356r ShVc11Q0P0kSz06+I7HFP92eD5i+qG4hsRPVPCwXBOaxgqtqK7ct/ir2aawbQEwS yI0T6eu/ep287QcnzDDI78dnue8EherDLLOmYwJSLI98yWaLzSyt2DvUdT5nWORd qEz+JcP1HI+ZsjtiY7RIyNuXYqxndnmoIvjyW2FuSPZtj3fcnP0+eRoghYCBU1kQ fyeczcXjN/6kd1Pcfi/bbs2SPYQMddzZAVuAHRus+rZfzrFckVWA12dML4j/GaMc R+J5H7J9T5rcyXkhdtitw+0hJ2yeyaPyglhzv2WrpeTXIJnJXcw22E0= -----END CERTIFICATE-----Generated at Wed May 13 21:09:07 2026 by rpki-client