$ rpki-client -vvf rpkica.twnic.tw/rpki/NKBNET/0/3130332e3133302e34382e302f32322d3234203d3e2039393232.roa File: 3130332e3133302e34382e302f32322d3234203d3e2039393232.roa (raw, json) Hash identifier: aCIxecjNLFEVzEOiCgmZ0K9yJGY1pe87ewnv5AFzkXs= Subject key identifier: EB:7D:64:96:92:4E:8D:E3:82:06:A5:DE:73:34:71:50:A2:78:A6:2A Certificate issuer: /CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Certificate serial: 44BC4B794F926CA4222B7D084C728458F69068C8 Authority key identifier: 5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NKBNET/0/3130332e3133302e34382e302f32322d3234203d3e2039393232.roa Signing time: Mon 11 May 2026 16:42:07 +0000 ROA not before: Mon 11 May 2026 16:37:07 +0000 ROA not after: Mon 10 May 2027 16:42:07 +0000 asID: 9922 IP address blocks: 103.130.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:bc:4b:79:4f:92:6c:a4:22:2b:7d:08:4c:72:84:58:f6:90:68:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Validity Not Before: May 11 16:37:07 2026 GMT Not After : May 10 16:42:07 2027 GMT Subject: CN=EB7D6496924E8DE38206A5DE73347150A278A62A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:87:6d:31:f4:fd:c2:62:88:0e:c3:ec:16:3d: a4:67:b1:63:0b:76:f1:1b:f3:59:67:56:3f:93:04: cb:35:ab:d0:67:68:49:b3:89:fa:e5:50:47:39:55: dd:18:db:a6:9c:47:d3:5b:9c:8a:8e:a0:d7:af:b9: 1b:2a:ef:42:ea:47:cc:39:b2:4c:60:64:df:d2:3f: 92:11:a5:19:5e:c7:da:64:75:a3:9c:f0:56:dc:c5: 14:76:f3:db:0f:f0:d7:4d:15:4a:cc:a4:ea:c9:2c: 47:e8:98:30:73:0b:1a:c7:a3:f4:46:7a:05:5b:f0: 5c:32:0c:e1:0d:7d:ba:36:97:86:d2:16:cf:08:04: 81:6d:7f:2d:d1:90:23:78:91:ae:ca:e2:3f:44:e0: 72:bd:9e:ca:33:38:04:bb:03:32:8c:7a:5d:b6:ae: 69:ac:82:e5:50:c3:cb:1a:f8:23:05:71:d0:c3:73: 0e:11:ff:e1:3f:ba:a3:8b:dc:2a:95:c1:ce:8c:89: d2:ee:94:af:62:cd:68:0d:0d:0d:c1:20:c0:2d:48: 4e:99:2d:30:62:7f:a3:3a:e3:57:97:32:3d:ba:7b: 17:68:c2:a5:4a:f5:d9:08:eb:77:b8:14:ee:aa:11: e8:2d:73:18:33:75:56:3c:52:e9:87:6c:a0:10:2f: f2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:7D:64:96:92:4E:8D:E3:82:06:A5:DE:73:34:71:50:A2:78:A6:2A X509v3 Authority Key Identifier: keyid:5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/3130332e3133302e34382e302f32322d3234203d3e2039393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.48.0/22 Signature Algorithm: sha256WithRSAEncryption de:22:f3:3c:bd:2a:e6:12:a3:88:b6:3b:e3:88:ab:21:dd:0a: b5:1c:9e:f2:8d:7d:c8:4e:b4:c0:fd:6f:90:a1:25:5d:6a:86: 1f:f5:88:6a:80:e1:90:d2:d8:4c:2a:a4:93:b0:ef:ec:42:cf: a5:0c:5c:2a:41:73:b9:f9:bf:01:14:e6:cf:08:16:0d:c0:71: f9:66:14:65:c2:b7:fc:a5:24:6e:d8:b2:8b:14:85:2d:00:fb: 56:bb:25:62:37:8d:28:f8:6f:98:3e:7a:5f:d2:31:31:0b:ce: ff:ab:84:af:85:ca:c3:2f:76:c8:61:77:73:1b:53:78:92:b8: 42:46:d2:3d:03:7a:8f:91:a8:ab:4b:8b:5f:a1:12:1f:61:49: c7:d9:47:81:28:82:a7:a0:55:ad:f1:d0:60:c6:04:65:49:2a: 4d:26:65:f7:fd:15:2f:69:e8:bb:da:eb:71:b3:43:8c:5b:a0: 17:55:c2:d7:1b:a5:ac:d0:72:8e:8b:32:fd:e5:4f:f2:84:9e: b7:12:37:28:e3:85:d7:a1:7d:ce:60:56:2b:28:9a:d4:e2:b4: 9d:28:e0:95:fc:79:c6:c8:c5:56:f7:5a:e5:50:7e:aa:22:ee: 3a:bb:70:6e:72:10:4f:df:0e:48:09:65:fc:a6:71:84:67:71: f5:81:00:91 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIURLxLeU+SbKQiK30ITHKEWPaQaMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVD NTg4QkE5RTAeFw0yNjA1MTExNjM3MDdaFw0yNzA1MTAxNjQyMDdaMDMxMTAvBgNV BAMTKEVCN0Q2NDk2OTI0RThERTM4MjA2QTVERTczMzQ3MTUwQTI3OEE2MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbh20x9P3CYogOw+wWPaRnsWML dvEb81lnVj+TBMs1q9BnaEmzifrlUEc5Vd0Y26acR9NbnIqOoNevuRsq70LqR8w5 skxgZN/SP5IRpRlex9pkdaOc8FbcxRR289sP8NdNFUrMpOrJLEfomDBzCxrHo/RG egVb8FwyDOENfbo2l4bSFs8IBIFtfy3RkCN4ka7K4j9E4HK9nsozOAS7AzKMel22 rmmsguVQw8sa+CMFcdDDcw4R/+E/uqOL3CqVwc6MidLulK9izWgNDQ3BIMAtSE6Z LTBif6M641eXMj26exdowqVK9dkI63e4FO6qEegtcxgzdVY8UumHbKAQL/I5AgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQU631klpJOjeOCBqXeczRxUKJ4piowHwYDVR0j BBgwFoAUWivuJDlbNvT/qVdT9nMVFcWIup4wDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVU LzAvNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVDNTg4QkE5RS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS81QTJCRUUyNDM5NUIzNkY0RkZBOTU3NTNGNjcz MTUxNUM1ODhCQTlFLmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVULzAvMzEzMDMzMmUzMTMz MzAyZTM0MzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzOTM5MzIzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmeCMDANBgkqhkiG9w0BAQsFAAOCAQEA3iLzPL0q5hKjiLY744irId0KtRye 8o19yE60wP1vkKElXWqGH/WIaoDhkNLYTCqkk7Dv7ELPpQxcKkFzufm/ARTmzwgW DcBx+WYUZcK3/KUkbtiyixSFLQD7VrslYjeNKPhvmD56X9IxMQvO/6uEr4XKwy92 yGF3cxtTeJK4QkbSPQN6j5Goq0uLX6ESH2FJx9lHgSiCp6BVrfHQYMYEZUkqTSZl 9/0VL2nou9rrcbNDjFugF1XC1xulrNByjosy/eVP8oSetxI3KOOF16F9zmBWKyia 1OK0nSjglfx5xsjFVvda5VB+qiLuOrtwbnIQT98OSAll/KZxhGdx9YEAkQ== -----END CERTIFICATE-----Generated at Wed May 13 21:10:53 2026 by rpki-client