$ rpki-client -vvf rpkica.twnic.tw/rpki/PIINET/0/3130332e3233342e38312e302f32342d3234203d3e203137373130.roa File: 3130332e3233342e38312e302f32342d3234203d3e203137373130.roa (raw, json) Hash identifier: Zvu3k5iDBaX9iOQpea8Ybb+zcrWBht3qRGl2nLlRl/o= Subject key identifier: 22:14:60:E2:A8:50:67:57:9D:57:D1:DC:4B:CC:0B:F6:94:3E:E7:43 Certificate issuer: /CN=857A2684D7DBC89CE784E4DF16F1A1C03D945585 Certificate serial: 17982FC5E44F40418D0F256C5C513C5BFA8839A3 Authority key identifier: 85:7A:26:84:D7:DB:C8:9C:E7:84:E4:DF:16:F1:A1:C0:3D:94:55:85 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PIINET/0/3130332e3233342e38312e302f32342d3234203d3e203137373130.roa Signing time: Mon 11 May 2026 17:20:15 +0000 ROA not before: Mon 11 May 2026 17:15:15 +0000 ROA not after: Mon 10 May 2027 17:20:15 +0000 asID: 17710 IP address blocks: 103.234.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.crl rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:98:2f:c5:e4:4f:40:41:8d:0f:25:6c:5c:51:3c:5b:fa:88:39:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=857A2684D7DBC89CE784E4DF16F1A1C03D945585 Validity Not Before: May 11 17:15:15 2026 GMT Not After : May 10 17:20:15 2027 GMT Subject: CN=221460E2A85067579D57D1DC4BCC0BF6943EE743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:59:38:bd:73:43:2e:13:72:29:d6:56:30:55: 53:2c:73:2b:84:c3:e0:fb:99:90:8a:73:7f:4e:46: b0:41:d1:18:ab:8e:93:f5:af:88:2f:f0:84:48:bf: d5:c1:51:48:91:ff:80:ed:2f:e3:23:4a:2e:74:ea: 3a:82:13:96:15:11:11:2e:ef:e3:ae:f0:a8:19:ad: da:95:8c:d5:00:18:b4:14:ed:55:06:75:f1:d7:59: 08:fe:b5:40:6e:54:c2:74:cd:ad:db:56:82:a9:9d: 7f:02:09:b6:3b:bc:24:4e:93:55:7e:81:08:10:5b: 3b:b8:73:de:ce:ae:ca:97:5c:ab:23:71:60:8c:6b: 81:bf:9e:f8:82:77:b9:d1:26:ce:2d:68:82:cb:dc: cd:0e:c4:72:2c:87:b6:2d:9b:dd:c7:8b:54:30:af: 74:ce:8f:95:76:f2:b5:a7:02:29:ce:5d:af:a0:18: 26:11:f3:04:ef:db:fa:5b:f3:d9:73:10:37:98:3b: c2:ce:b7:aa:4e:7c:a2:f0:2b:33:44:ec:88:37:60: fa:41:d3:d6:f2:6c:1c:fb:51:dc:23:55:2a:48:c6: d2:ac:5d:36:40:46:23:3b:0f:1a:e1:40:ab:79:05: d3:31:41:04:ca:b9:fe:90:a2:64:7c:32:f9:6c:1f: 56:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:14:60:E2:A8:50:67:57:9D:57:D1:DC:4B:CC:0B:F6:94:3E:E7:43 X509v3 Authority Key Identifier: keyid:85:7A:26:84:D7:DB:C8:9C:E7:84:E4:DF:16:F1:A1:C0:3D:94:55:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PIINET/0/3130332e3233342e38312e302f32342d3234203d3e203137373130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.81.0/24 Signature Algorithm: sha256WithRSAEncryption db:05:38:35:d4:2c:d3:a4:c6:f5:b2:5e:7c:3c:5d:c0:bb:52: c9:96:b1:c0:71:a9:1d:39:ca:09:e7:df:8b:21:2d:1f:24:ef: 71:fd:ac:bf:c1:0e:01:78:fc:ea:ba:87:a6:a9:94:f0:d5:73: 3b:dc:1c:01:d1:b7:78:98:7a:6e:10:6a:65:a3:31:f0:c2:7a: c1:6c:65:ea:78:9c:76:b8:2d:22:30:13:39:73:75:4b:80:6d: af:2f:09:98:76:43:5d:b0:c7:3a:a4:1c:9c:86:96:ba:73:5c: db:d0:93:07:01:24:4e:1a:b3:57:43:f0:15:70:95:91:b8:2b: ba:4e:62:c3:7f:2a:61:54:53:bd:5b:46:b5:f9:89:03:ff:a0: 8e:12:ae:4f:b9:bd:98:fd:7f:2a:e3:ec:48:73:3b:c0:22:06: 3b:bb:c5:5f:66:10:5b:a4:3a:98:2f:d6:77:ff:40:e0:59:b4: 09:e5:bd:fe:80:70:99:a9:35:82:b2:40:a1:de:a8:1d:55:c7: 66:30:d3:b3:d8:8c:b0:25:46:3b:19:d4:6e:d5:dd:5a:d8:3e: 30:c0:7e:a4:98:35:e0:88:e4:9e:92:87:f6:20:79:46:1a:bc: 01:90:04:73:dc:ec:a9:ea:58:28:c9:24:11:04:44:8e:3e:14: e5:33:ac:04 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUF5gvxeRPQEGNDyVsXFE8W/qIOaMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3QTI2ODREN0RCQzg5Q0U3ODRFNERGMTZGMUExQzAz RDk0NTU4NTAeFw0yNjA1MTExNzE1MTVaFw0yNzA1MTAxNzIwMTVaMDMxMTAvBgNV BAMTKDIyMTQ2MEUyQTg1MDY3NTc5RDU3RDFEQzRCQ0MwQkY2OTQzRUU3NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8WTi9c0MuE3Ip1lYwVVMscyuE w+D7mZCKc39ORrBB0RirjpP1r4gv8IRIv9XBUUiR/4DtL+MjSi506jqCE5YVEREu 7+Ou8KgZrdqVjNUAGLQU7VUGdfHXWQj+tUBuVMJ0za3bVoKpnX8CCbY7vCROk1V+ gQgQWzu4c97OrsqXXKsjcWCMa4G/nviCd7nRJs4taILL3M0OxHIsh7Ytm93Hi1Qw r3TOj5V28rWnAinOXa+gGCYR8wTv2/pb89lzEDeYO8LOt6pOfKLwKzNE7Ig3YPpB 09bybBz7UdwjVSpIxtKsXTZARiM7DxrhQKt5BdMxQQTKuf6QomR8MvlsH1bFAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUIhRg4qhQZ1edV9HcS8wL9pQ+50MwHwYDVR0j BBgwFoAUhXomhNfbyJznhOTfFvGhwD2UVYUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUElJTkVU LzAvODU3QTI2ODREN0RCQzg5Q0U3ODRFNERGMTZGMUExQzAzRDk0NTU4NS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS84NTdBMjY4NEQ3REJDODlDRTc4NEU0REYxNkYx QTFDMDNEOTQ1NTg1LmNlcjB8BggrBgEFBQcBCwRwMG4wbAYIKwYBBQUHMAuGYHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUElJTkVULzAvMzEzMDMzMmUzMjMz MzQyZTM4MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMTMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ+pRMA0GCSqGSIb3DQEBCwUAA4IBAQDbBTg11CzTpMb1sl58PF3Au1LJ lrHAcakdOcoJ59+LIS0fJO9x/ay/wQ4BePzquoemqZTw1XM73BwB0bd4mHpuEGpl ozHwwnrBbGXqeJx2uC0iMBM5c3VLgG2vLwmYdkNdsMc6pBychpa6c1zb0JMHASRO GrNXQ/AVcJWRuCu6TmLDfyphVFO9W0a1+YkD/6COEq5Pub2Y/X8q4+xIczvAIgY7 u8VfZhBbpDqYL9Z3/0DgWbQJ5b3+gHCZqTWCskCh3qgdVcdmMNOz2IywJUY7GdRu 1d1a2D4wwH6kmDXgiOSekof2IHlGGrwBkARz3Oyp6lgoySQRBESOPhTlM6wE -----END CERTIFICATE-----Generated at Wed May 13 21:48:37 2026 by rpki-client