$ rpki-client -vvf rpkica.twnic.tw/rpki/NCHC/0/3130332e3136302e3232302e302f32332d3234203d3e2037353339.roa File: 3130332e3136302e3232302e302f32332d3234203d3e2037353339.roa (raw, json) Hash identifier: ZL47425VwNlrMCD6iFWAxMHP6JFKdNOnp/o9FUV0D0w= Subject key identifier: 53:31:91:BF:F7:D6:FE:D1:09:6C:3B:0E:0B:E6:5E:B2:2A:B0:59:A3 Certificate issuer: /CN=2C4838ED872E38E97456B74C33E4178C4E1253A2 Certificate serial: 5300A98690FBBF6ADADAC451602DB005DACA2EA7 Authority key identifier: 2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCHC/0/3130332e3136302e3232302e302f32332d3234203d3e2037353339.roa Signing time: Mon 11 May 2026 17:36:48 +0000 ROA not before: Mon 11 May 2026 17:31:48 +0000 ROA not after: Mon 10 May 2027 17:36:48 +0000 asID: 7539 IP address blocks: 103.160.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.crl rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:00:a9:86:90:fb:bf:6a:da:da:c4:51:60:2d:b0:05:da:ca:2e:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C4838ED872E38E97456B74C33E4178C4E1253A2 Validity Not Before: May 11 17:31:48 2026 GMT Not After : May 10 17:36:48 2027 GMT Subject: CN=533191BFF7D6FED1096C3B0E0BE65EB22AB059A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6f:89:6a:62:81:36:d3:f2:0b:0b:d4:95:6b: 3f:b5:68:6e:eb:35:d0:dd:46:51:99:cf:dc:c5:1a: 90:54:f5:e5:41:4c:9c:d1:27:ef:43:c5:6d:48:e7: 64:7d:a9:87:33:2c:7e:3a:f7:24:ec:12:a7:37:26: 8a:da:87:46:63:07:6c:d4:7e:7d:b9:9a:88:d1:01: fb:8a:ef:f6:6b:3b:65:0e:13:ce:c9:9f:00:70:f7: 56:dc:b2:f1:5a:ce:79:26:e2:5c:e5:94:15:45:c4: 36:ea:96:16:eb:8e:57:11:79:03:3c:e2:54:18:6b: df:2d:1a:d5:4f:20:c0:ab:a7:3e:78:ff:da:3f:c7: 2f:d0:b1:69:60:ae:72:3e:d1:1c:52:46:04:c7:56: 37:ff:3c:78:8f:0a:35:08:bf:9a:ff:96:02:a5:40: 65:04:b9:c9:c4:4d:4d:71:91:b2:92:23:5a:c3:f2: 88:39:aa:cf:49:c2:aa:da:26:87:bc:35:a5:82:7f: 03:e9:e1:b4:08:8b:16:e4:34:4c:4d:9e:79:a8:23: 38:71:18:e4:53:f6:a2:c6:bc:03:e5:33:5e:d2:97: f4:aa:57:f3:94:1c:1a:e8:d4:e5:b7:f5:bb:d3:c7: 9c:7a:cb:e4:db:54:61:41:23:ec:b4:d3:f1:c2:c7: bc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:31:91:BF:F7:D6:FE:D1:09:6C:3B:0E:0B:E6:5E:B2:2A:B0:59:A3 X509v3 Authority Key Identifier: keyid:2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/3130332e3136302e3232302e302f32332d3234203d3e2037353339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.220.0/23 Signature Algorithm: sha256WithRSAEncryption b3:60:12:ae:b0:3e:be:d0:18:81:f3:7b:f9:8c:dc:22:f5:e4: bf:b2:10:a9:b7:23:58:56:33:de:42:6c:18:7d:06:e2:28:44: 74:58:e3:b1:d6:b9:f8:08:b5:45:ee:48:d4:6d:4f:23:ff:50: 5a:fb:b8:7d:34:da:81:f2:5b:db:d1:3a:81:21:ff:78:2b:12: 42:38:03:16:8b:e2:86:a3:27:c3:71:90:b1:35:5e:91:a7:db: 76:a2:f3:2b:d8:79:5e:f2:bb:da:d0:b6:a9:99:c0:3e:c6:9f: 3c:74:e7:44:28:35:c3:34:97:f1:8c:d7:c7:c7:d1:8f:73:47: 1c:5c:77:09:c9:0c:91:d0:7d:cd:89:88:e1:90:6d:9e:ac:c2: 75:1b:75:cb:40:62:31:26:db:fd:71:1d:4d:64:65:29:1d:34: 5d:54:1a:62:05:53:aa:18:43:c1:ff:86:bc:b8:58:ce:e4:e9: f8:28:8b:ec:5f:83:0f:6c:76:5e:e4:70:b4:4f:f0:79:18:8e: 9a:7c:c1:48:cb:37:ae:2b:f2:ce:0b:5d:32:27:44:84:96:3b: 19:5c:09:15:e5:d1:ac:80:99:ce:0f:40:4d:d4:9c:9b:96:16: 3b:83:9b:a1:27:02:6b:c5:85:de:dc:57:2f:bf:f2:c9:98:b8: d1:8a:fd:e0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUUwCphpD7v2ra2sRRYC2wBdrKLqcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkM0ODM4RUQ4NzJFMzhFOTc0NTZCNzRDMzNFNDE3OEM0 RTEyNTNBMjAeFw0yNjA1MTExNzMxNDhaFw0yNzA1MTAxNzM2NDhaMDMxMTAvBgNV BAMTKDUzMzE5MUJGRjdENkZFRDEwOTZDM0IwRTBCRTY1RUIyMkFCMDU5QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCib4lqYoE20/ILC9SVaz+1aG7r NdDdRlGZz9zFGpBU9eVBTJzRJ+9DxW1I52R9qYczLH469yTsEqc3Jorah0ZjB2zU fn25mojRAfuK7/ZrO2UOE87JnwBw91bcsvFaznkm4lzllBVFxDbqlhbrjlcReQM8 4lQYa98tGtVPIMCrpz54/9o/xy/QsWlgrnI+0RxSRgTHVjf/PHiPCjUIv5r/lgKl QGUEucnETU1xkbKSI1rD8og5qs9JwqraJoe8NaWCfwPp4bQIixbkNExNnnmoIzhx GORT9qLGvAPlM17Sl/SqV/OUHBro1OW39bvTx5x6y+TbVGFBI+y00/HCx7wDAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUUzGRv/fW/tEJbDsOC+ZesiqwWaMwHwYDVR0j BBgwFoAULEg47YcuOOl0VrdMM+QXjE4SU6IwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNIQy8w LzJDNDgzOEVEODcyRTM4RTk3NDU2Qjc0QzMzRTQxNzhDNEUxMjUzQTIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMkM0ODM4RUQ4NzJFMzhFOTc0NTZCNzRDMzNFNDE3 OEM0RTEyNTNBMi5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSEMvMC8zMTMwMzMyZTMxMzYzMDJl MzIzMjMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzczNTMzMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnoNwwDQYJKoZIhvcNAQELBQADggEBALNgEq6wPr7QGIHze/mM3CL15L+yEKm3 I1hWM95CbBh9BuIoRHRY47HWufgItUXuSNRtTyP/UFr7uH002oHyW9vROoEh/3gr EkI4AxaL4oajJ8NxkLE1XpGn23ai8yvYeV7yu9rQtqmZwD7Gnzx050QoNcM0l/GM 18fH0Y9zRxxcdwnJDJHQfc2JiOGQbZ6swnUbdctAYjEm2/1xHU1kZSkdNF1UGmIF U6oYQ8H/hry4WM7k6fgoi+xfgw9sdl7kcLRP8HkYjpp8wUjLN64r8s4LXTInRISW OxlcCRXl0ayAmc4PQE3UnJuWFjuDm6EnAmvFhd7cVy+/8smYuNGK/eA= -----END CERTIFICATE-----Generated at Wed May 13 21:13:35 2026 by rpki-client