$ rpki-client -vvf rpkica.twnic.tw/rpki/SECUNET/0/3130332e3139382e3135322e302f32332d3234203d3e2037353336.roa File: 3130332e3139382e3135322e302f32332d3234203d3e2037353336.roa (raw, json) Hash identifier: RqA+16NcNPgMT4YMF2BTGjQjH/2+48khaUyObZRFtRE= Subject key identifier: 45:EF:E0:BF:17:80:F3:31:6B:49:25:9A:D6:19:B1:F2:A7:79:E7:AB Certificate issuer: /CN=4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6 Certificate serial: 2A5EF01F813C29743307CB852115BEC281FA4B02 Authority key identifier: 4D:4D:BD:28:BB:EB:89:20:B3:7A:A6:04:8A:C2:7D:52:46:6A:C7:E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SECUNET/0/3130332e3139382e3135322e302f32332d3234203d3e2037353336.roa Signing time: Mon 11 May 2026 17:58:19 +0000 ROA not before: Mon 11 May 2026 17:53:19 +0000 ROA not after: Mon 10 May 2027 17:58:19 +0000 asID: 7536 IP address blocks: 103.198.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SECUNET/0/4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.crl rsync://rpkica.twnic.tw/rpki/SECUNET/0/4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:5e:f0:1f:81:3c:29:74:33:07:cb:85:21:15:be:c2:81:fa:4b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6 Validity Not Before: May 11 17:53:19 2026 GMT Not After : May 10 17:58:19 2027 GMT Subject: CN=45EFE0BF1780F3316B49259AD619B1F2A779E7AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:14:c6:72:07:f4:46:34:37:d1:4d:b5:5d:71: 0f:7c:58:97:b7:08:bd:b8:1a:ee:34:9e:bf:bb:1a: f4:08:5b:27:bc:38:1b:3b:99:2d:d1:b8:8d:d5:62: 9d:90:f6:04:35:89:b5:1d:77:e0:8a:25:26:1b:32: 8d:6e:dc:6a:25:30:fc:39:ee:64:83:65:a5:40:e6: 17:45:d2:d5:13:fd:5f:11:3c:a6:bc:fd:5e:88:0c: f6:0c:c7:7c:b8:95:11:30:42:b6:e3:9c:9b:cd:6b: 4b:73:e2:ae:4f:f3:a7:76:bf:57:96:fb:cf:f1:cc: 34:71:17:8b:1b:d4:84:22:de:44:f5:10:9f:fd:ca: 42:e4:2e:e7:be:67:75:e4:06:e7:e7:31:09:92:30: 06:40:57:13:76:78:0a:69:d2:e8:6c:7b:a3:e0:ea: 5b:69:11:a9:43:ef:f3:de:b5:c7:18:97:a4:5f:59: 9c:d7:d9:a0:5e:76:e1:43:5a:ad:0c:c1:ed:0d:a1: f2:04:0b:e0:73:5c:5e:e1:79:23:ea:61:a5:ab:37: fa:c8:36:9b:23:78:79:f5:34:ae:ca:80:0e:35:d3: 65:7a:3d:46:5e:3c:33:53:53:72:d7:70:90:d0:41: 43:41:c5:82:cf:c0:06:a1:94:51:4d:e2:a1:30:8b: ba:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EF:E0:BF:17:80:F3:31:6B:49:25:9A:D6:19:B1:F2:A7:79:E7:AB X509v3 Authority Key Identifier: keyid:4D:4D:BD:28:BB:EB:89:20:B3:7A:A6:04:8A:C2:7D:52:46:6A:C7:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SECUNET/0/4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4D4DBD28BBEB8920B37AA6048AC27D52466AC7E6.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SECUNET/0/3130332e3139382e3135322e302f32332d3234203d3e2037353336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.198.152.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:20:d8:f9:07:88:01:d8:41:19:a5:d0:e3:6f:8e:a4:63:0d: 30:26:8c:cb:50:5f:1d:4f:f1:41:f7:ef:c3:9d:30:22:87:b1: 4b:be:ef:fa:6b:38:58:3b:3d:ce:ce:4d:59:b6:80:52:11:47: 12:b1:fb:99:45:2b:c6:09:40:f5:19:3d:1c:b1:d8:c4:8d:d3: 16:8b:71:89:ae:5b:00:15:bf:1e:eb:3c:df:db:63:e9:aa:33: 27:dd:5d:53:c4:97:7f:5f:4b:f3:67:f8:74:c4:f5:b5:8a:9b: 4f:1e:83:9a:d0:f3:ce:52:e1:94:6b:68:9d:e2:4c:43:3b:60: 88:7a:8f:72:83:e3:d0:8f:93:c1:63:8d:4e:ca:e0:03:08:4e: 99:de:3c:31:46:9c:a4:af:ec:ca:8b:6a:16:d3:d3:77:15:a3: 9e:a0:d9:c4:9c:f3:e2:9f:79:57:1f:c3:04:06:68:9e:cc:0c: 14:85:ad:80:14:21:fc:0e:9c:1b:a1:db:d4:0a:7c:b4:7a:68: f0:5a:81:67:dc:8d:33:a2:e6:e8:2d:74:4a:5e:38:cb:21:d2: c7:a2:87:fa:92:ff:2b:8d:04:83:18:cc:a1:b8:22:4b:18:3a: 90:ec:d1:9e:ab:3e:26:52:be:b6:06:a5:09:a1:c6:df:10:fa: d2:c1:53:e2 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIUKl7wH4E8KXQzB8uFIRW+woH6SwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ0REJEMjhCQkVCODkyMEIzN0FBNjA0OEFDMjdENTI0 NjZBQzdFNjAeFw0yNjA1MTExNzUzMTlaFw0yNzA1MTAxNzU4MTlaMDMxMTAvBgNV BAMTKDQ1RUZFMEJGMTc4MEYzMzE2QjQ5MjU5QUQ2MTlCMUYyQTc3OUU3QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHFMZyB/RGNDfRTbVdcQ98WJe3 CL24Gu40nr+7GvQIWye8OBs7mS3RuI3VYp2Q9gQ1ibUdd+CKJSYbMo1u3GolMPw5 7mSDZaVA5hdF0tUT/V8RPKa8/V6IDPYMx3y4lREwQrbjnJvNa0tz4q5P86d2v1eW +8/xzDRxF4sb1IQi3kT1EJ/9ykLkLue+Z3XkBufnMQmSMAZAVxN2eApp0uhse6Pg 6ltpEalD7/PetccYl6RfWZzX2aBeduFDWq0Mwe0NofIEC+BzXF7heSPqYaWrN/rI NpsjeHn1NK7KgA4102V6PUZePDNTU3LXcJDQQUNBxYLPwAahlFFN4qEwi7o1AgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQURe/gvxeA8zFrSSWa1hmx8qd556swHwYDVR0j BBgwFoAUTU29KLvriSCzeqYEisJ9UkZqx+YwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0VDVU5F VC8wLzRENERCRDI4QkJFQjg5MjBCMzdBQTYwNDhBQzI3RDUyNDY2QUM3RTYuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvNEQ0REJEMjhCQkVCODkyMEIzN0FBNjA0OEFD MjdENTI0NjZBQzdFNi5jZXIwfQYIKwYBBQUHAQsEcTBvMG0GCCsGAQUFBzALhmFy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NFQ1VORVQvMC8zMTMwMzMyZTMx MzkzODJlMzEzNTMyMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzczNTMzMzYucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnxpgwDQYJKoZIhvcNAQELBQADggEBAI0g2PkHiAHYQRml0ONvjqRj DTAmjMtQXx1P8UH378OdMCKHsUu+7/prOFg7Pc7OTVm2gFIRRxKx+5lFK8YJQPUZ PRyx2MSN0xaLcYmuWwAVvx7rPN/bY+mqMyfdXVPEl39fS/Nn+HTE9bWKm08eg5rQ 885S4ZRraJ3iTEM7YIh6j3KD49CPk8FjjU7K4AMITpnePDFGnKSv7MqLahbT03cV o56g2cSc8+KfeVcfwwQGaJ7MDBSFrYAUIfwOnBuh29QKfLR6aPBagWfcjTOi5ugt dEpeOMsh0seih/qS/yuNBIMYzKG4IksYOpDs0Z6rPiZSvrYGpQmhxt8Q+tLBU+I= -----END CERTIFICATE-----Generated at Wed May 13 21:17:23 2026 by rpki-client