$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3133332e302f32342d3234203d3e203338383433.roa File: 3132342e3135302e3133332e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: RJtJ2dt4pTnlRqetFan6TfAicmtr5kbHSk2mFZaYhYs= Subject key identifier: FC:FE:60:2A:52:91:3F:28:94:4C:EB:D7:D2:5E:17:34:66:FD:83:B8 Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 40B8C6C4A56638A2ABDB0B0F751B65DB6D2F6438 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3133332e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:08:20 +0000 ROA not before: Mon 11 May 2026 17:03:20 +0000 ROA not after: Mon 10 May 2027 17:08:20 +0000 asID: 38843 IP address blocks: 124.150.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b8:c6:c4:a5:66:38:a2:ab:db:0b:0f:75:1b:65:db:6d:2f:64:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:03:20 2026 GMT Not After : May 10 17:08:20 2027 GMT Subject: CN=FCFE602A52913F28944CEBD7D25E173466FD83B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e3:54:82:ef:1e:41:0b:a0:c5:13:ef:54:13: c1:f8:89:2c:87:3e:16:c1:06:1f:d3:fa:13:11:e0: e3:e5:86:b0:11:10:77:53:46:67:a8:f6:03:64:7f: 19:4c:78:14:89:af:0f:ed:73:a9:95:05:f4:45:93: aa:d0:af:b1:90:4e:75:1f:ef:af:37:2e:59:e8:1b: 17:0f:d2:d6:54:6a:da:b7:78:62:26:d6:a1:92:d0: ae:30:1c:e1:0b:6a:c6:bb:8c:1a:4d:e4:58:76:de: 47:40:26:1d:2c:13:05:eb:9d:64:7b:8d:16:d4:cc: 61:34:c0:73:2f:70:bc:7e:66:31:d5:66:7f:ae:f0: cc:5e:83:95:3a:a7:60:6e:5b:8e:5d:d5:3f:d7:c2: c5:9b:61:6b:3f:26:28:f3:7a:11:3d:d3:0e:ea:c0: 1b:5a:a8:0c:e4:19:d6:ad:13:0c:3e:67:60:5b:7b: 30:94:26:e5:3b:00:c0:f4:2f:ad:19:c4:60:6f:f6: 24:e4:8d:c6:2b:da:b0:65:f5:6f:8d:93:e6:fb:f7: 0d:0e:02:86:6a:62:2b:52:15:39:a8:67:ea:67:7a: 19:98:95:d9:a1:d3:5c:77:8f:88:3a:26:0f:be:32: aa:e8:c0:d5:2a:a9:97:7a:49:81:6f:3b:2e:9c:2c: da:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:FE:60:2A:52:91:3F:28:94:4C:EB:D7:D2:5E:17:34:66:FD:83:B8 X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3133332e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.150.133.0/24 Signature Algorithm: sha256WithRSAEncryption 05:9a:47:f2:e9:85:3c:ea:0a:47:36:29:6e:fa:49:52:aa:78: 30:72:ce:1b:55:ee:00:21:bb:a2:45:f5:4c:d5:28:b3:eb:b3: 16:b8:a1:49:22:5f:fc:cc:4b:f9:54:bd:41:46:67:10:b5:d5: 58:ea:67:d7:20:c9:4e:0d:f6:a9:db:2e:cd:35:8b:7e:1e:7c: 5d:ff:bc:19:a1:a0:97:06:6b:67:09:e0:ba:01:bc:0d:17:02: 34:f8:b7:5c:75:d4:a5:67:c2:68:21:9c:93:78:a0:f8:29:3e: 10:5a:67:69:ac:e7:b4:59:2f:76:b6:a7:4c:65:09:d1:8d:01: cc:4d:1a:8e:c0:91:5a:85:c5:92:fa:d3:bd:a5:7c:19:8a:27: ee:7e:09:89:e8:68:56:23:62:73:60:a1:39:10:10:d1:32:af: 05:df:b8:33:98:9c:65:c0:61:89:d8:00:23:59:f8:1a:74:8a: ec:f9:72:60:71:19:84:92:68:c7:19:18:da:7f:d3:ee:15:8a: a4:03:1f:89:bd:ed:18:25:db:1d:67:99:3b:bc:48:a5:30:d3: ec:29:bd:a2:fb:6c:20:a9:c4:19:2b:c4:74:1a:8a:5a:5f:9a: be:54:e5:b2:02:db:2d:fa:ca:09:83:b8:9e:03:e6:fa:d8:5a: 67:84:11:75 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUQLjGxKVmOKKr2wsPdRtl220vZDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzAzMjBaFw0yNzA1MTAxNzA4MjBaMDMxMTAvBgNV BAMTKEZDRkU2MDJBNTI5MTNGMjg5NDRDRUJEN0QyNUUxNzM0NjZGRDgzQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB41SC7x5BC6DFE+9UE8H4iSyH PhbBBh/T+hMR4OPlhrAREHdTRmeo9gNkfxlMeBSJrw/tc6mVBfRFk6rQr7GQTnUf 7683LlnoGxcP0tZUatq3eGIm1qGS0K4wHOELasa7jBpN5Fh23kdAJh0sEwXrnWR7 jRbUzGE0wHMvcLx+ZjHVZn+u8Mxeg5U6p2BuW45d1T/XwsWbYWs/JijzehE90w7q wBtaqAzkGdatEww+Z2BbezCUJuU7AMD0L60ZxGBv9iTkjcYr2rBl9W+Nk+b79w0O AoZqYitSFTmoZ+pnehmYldmh01x3j4g6Jg++MqrowNUqqZd6SYFvOy6cLNr1AgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQU/P5gKlKRPyiUTOvX0l4XNGb9g7gwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMTMyMzQyZTMxMzUzMDJl MzEzMzMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzODM4MzQzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHyWhTANBgkqhkiG9w0BAQsFAAOCAQEABZpH8umFPOoKRzYpbvpJUqp4MHLO G1XuACG7okX1TNUos+uzFrihSSJf/MxL+VS9QUZnELXVWOpn1yDJTg32qdsuzTWL fh58Xf+8GaGglwZrZwngugG8DRcCNPi3XHXUpWfCaCGck3ig+Ck+EFpnaazntFkv dranTGUJ0Y0BzE0ajsCRWoXFkvrTvaV8GYon7n4JiehoViNic2ChORAQ0TKvBd+4 M5icZcBhidgAI1n4GnSK7PlyYHEZhJJoxxkY2n/T7hWKpAMfib3tGCXbHWeZO7xI pTDT7Cm9ovtsIKnEGSvEdBqKWl+avlTlsgLbLfrKCYO4ngPm+thaZ4QRdQ== -----END CERTIFICATE-----Generated at Wed May 13 21:17:21 2026 by rpki-client