$ rpki-client -vvf rpkica.twnic.tw/rpki/NETGUARD/0/3130332e3136302e3232342e302f32332d3234203d3e20313331363539.roa File: 3130332e3136302e3232342e302f32332d3234203d3e20313331363539.roa (raw, json) Hash identifier: 7S4FcOba0oK0ThFobE5ZoA1Yfm0vEJ1gjov31dZGXJY= Subject key identifier: 5E:D5:4A:81:52:DB:E4:5A:63:CC:D7:37:2C:E8:79:3E:A6:82:D9:72 Certificate issuer: /CN=A79FFFD98D67B1DCF764D6C60D9D8F77B18C80F8 Certificate serial: 307F13BF158BB5A6EE744374598798A73ECD5B44 Authority key identifier: A7:9F:FF:D9:8D:67:B1:DC:F7:64:D6:C6:0D:9D:8F:77:B1:8C:80:F8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A79FFFD98D67B1DCF764D6C60D9D8F77B18C80F8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NETGUARD/0/3130332e3136302e3232342e302f32332d3234203d3e20313331363539.roa Signing time: Mon 11 May 2026 17:31:28 +0000 ROA not before: Mon 11 May 2026 17:26:28 +0000 ROA not after: Mon 10 May 2027 17:31:28 +0000 asID: 131659 IP address blocks: 103.160.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NETGUARD/0/A79FFFD98D67B1DCF764D6C60D9D8F77B18C80F8.crl rsync://rpkica.twnic.tw/rpki/NETGUARD/0/A79FFFD98D67B1DCF764D6C60D9D8F77B18C80F8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A79FFFD98D67B1DCF764D6C60D9D8F77B18C80F8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7f:13:bf:15:8b:b5:a6:ee:74:43:74:59:87:98:a7:3e:cd:5b:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A79FFFD98D67B1DCF764D6C60D9D8F77B18C80F8 Validity Not Before: May 11 17:26:28 2026 GMT Not After : May 10 17:31:28 2027 GMT Subject: CN=5ED54A8152DBE45A63CCD7372CE8793EA682D972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:bb:9b:55:49:33:01:b5:b2:73:fc:9f:2b:8f: 9c:e5:69:c1:d2:ba:5d:f0:d0:b7:68:48:a7:46:5b: db:bc:3e:f2:33:08:31:64:87:78:99:77:6d:5b:8f: e5:3e:6b:79:c0:4b:12:e4:2f:49:3e:1a:c0:f7:65: d6:bb:ca:0b:3b:a0:e1:aa:6e:0e:51:18:e4:e8:a0: bf:e3:23:c3:83:b0:7f:f9:fd:db:71:10:64:d9:ee: a9:5a:22:8d:33:e0:3c:4f:ea:b9:ba:ae:e2:08:c0: 33:a8:07:6b:6a:78:ea:99:6b:50:af:7d:4d:24:31: e8:09:ab:5f:79:ab:4a:e4:a9:61:84:d7:3d:bd:0d: 5b:fb:9d:99:fd:ca:e9:f2:7b:cf:22:eb:ce:be:2b: 71:31:36:86:ef:5c:83:b4:d0:a7:39:cb:a7:c2:98: 68:76:b0:4c:24:6c:f7:56:89:61:82:a9:a5:53:87: 21:7b:f4:f6:42:52:2b:a6:fb:d1:99:88:ef:a0:38: 84:3d:47:20:c3:af:f6:0f:db:94:ba:31:a0:27:d8: 3a:24:55:f6:b0:27:38:87:6a:b1:9a:33:16:0d:9e: e7:cc:ff:fe:d3:c5:76:50:fb:22:db:c0:f2:b3:de: 44:f3:7d:c9:e7:bf:e0:3b:74:79:5c:b2:42:b1:3b: 15:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D5:4A:81:52:DB:E4:5A:63:CC:D7:37:2C:E8:79:3E:A6:82:D9:72 X509v3 Authority Key Identifier: keyid:A7:9F:FF:D9:8D:67:B1:DC:F7:64:D6:C6:0D:9D:8F:77:B1:8C:80:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NETGUARD/0/A79FFFD98D67B1DCF764D6C60D9D8F77B18C80F8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A79FFFD98D67B1DCF764D6C60D9D8F77B18C80F8.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NETGUARD/0/3130332e3136302e3232342e302f32332d3234203d3e20313331363539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.224.0/23 Signature Algorithm: sha256WithRSAEncryption ac:23:bb:6f:c9:56:b5:d8:34:31:0c:fa:a7:b4:1a:2a:45:bf: 59:f5:de:f0:63:ef:84:fb:13:09:4a:25:5b:b1:2b:2a:72:82: c7:d2:d7:81:7c:80:fb:a3:5e:66:ee:8a:5f:46:1e:91:1e:49: 88:52:4c:a1:80:09:58:6a:d3:63:ac:7a:43:0b:47:4a:0a:35: f2:c5:41:5e:65:9a:8a:f8:6a:ff:26:89:00:76:4d:de:86:fe: 85:5d:5d:73:f4:f5:e7:ba:1e:25:39:97:44:04:d4:c5:9d:04: b0:6e:96:79:b4:62:0b:f8:bf:83:a8:2d:c2:af:15:2c:5f:72: 44:a4:34:b0:de:5f:88:d7:da:8c:85:a8:a8:3f:80:57:a7:63: 52:a3:f9:f0:46:63:78:e9:bc:30:c7:36:7a:e1:52:a3:6f:0e: 8f:eb:f6:25:82:56:12:dc:89:46:4e:62:0b:2c:1c:ea:a8:77: a0:a4:f6:a9:c1:59:de:29:0a:24:1b:78:f2:86:cd:64:63:73: 21:ed:bd:35:ca:cd:fd:78:d0:0f:a4:dd:c0:3a:8a:ba:ac:dd: 35:c0:32:d1:8e:ba:74:7e:e6:c4:20:be:0a:72:40:e8:6e:4e: 3d:72:71:f5:41:b8:4d:dd:d1:26:56:66:86:47:b9:fa:e3:6b: 6e:77:26:8b -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUMH8TvxWLtabudEN0WYeYpz7NW0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc5RkZGRDk4RDY3QjFEQ0Y3NjRENkM2MEQ5RDhGNzdC MThDODBGODAeFw0yNjA1MTExNzI2MjhaFw0yNzA1MTAxNzMxMjhaMDMxMTAvBgNV BAMTKDVFRDU0QTgxNTJEQkU0NUE2M0NDRDczNzJDRTg3OTNFQTY4MkQ5NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpu5tVSTMBtbJz/J8rj5zlacHS ul3w0LdoSKdGW9u8PvIzCDFkh3iZd21bj+U+a3nASxLkL0k+GsD3Zda7ygs7oOGq bg5RGOTooL/jI8ODsH/5/dtxEGTZ7qlaIo0z4DxP6rm6ruIIwDOoB2tqeOqZa1Cv fU0kMegJq195q0rkqWGE1z29DVv7nZn9yunye88i686+K3ExNobvXIO00Kc5y6fC mGh2sEwkbPdWiWGCqaVThyF79PZCUium+9GZiO+gOIQ9RyDDr/YP25S6MaAn2Dok VfawJziHarGaMxYNnufM//7TxXZQ+yLbwPKz3kTzfcnnv+A7dHlcskKxOxVjAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUXtVKgVLb5FpjzNc3LOh5PqaC2XIwHwYDVR0j BBgwFoAUp5//2Y1nsdz3ZNbGDZ2Pd7GMgPgwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkVUR1VB UkQvMC9BNzlGRkZEOThENjdCMURDRjc2NEQ2QzYwRDlEOEY3N0IxOEM4MEY4LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xL0E3OUZGRkQ5OEQ2N0IxRENGNzY0RDZDNjBE OUQ4Rjc3QjE4QzgwRjguY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuG ZnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkVUR1VBUkQvMC8zMTMwMzMy ZTMxMzYzMDJlMzIzMjM0MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzMxMzYz NTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ6DgMA0GCSqGSIb3DQEBCwUAA4IBAQCsI7tvyVa12DQx DPqntBoqRb9Z9d7wY++E+xMJSiVbsSsqcoLH0teBfID7o15m7opfRh6RHkmIUkyh gAlYatNjrHpDC0dKCjXyxUFeZZqK+Gr/JokAdk3ehv6FXV1z9PXnuh4lOZdEBNTF nQSwbpZ5tGIL+L+DqC3CrxUsX3JEpDSw3l+I19qMhaioP4BXp2NSo/nwRmN46bww xzZ64VKjbw6P6/YlglYS3IlGTmILLBzqqHegpPapwVneKQokG3jyhs1kY3Mh7b01 ys39eNAPpN3AOoq6rN01wDLRjrp0fubEIL4KckDobk49cnH1QbhN3dEmVmaGR7n6 42tudyaL -----END CERTIFICATE-----Generated at Wed May 13 21:08:41 2026 by rpki-client