$ rpki-client -vvf rpkica.twnic.tw/rpki/SMTRTCH/0/3130332e33372e342e302f32342d3234203d3e2039363738.roa File: 3130332e33372e342e302f32342d3234203d3e2039363738.roa (raw, json) Hash identifier: hQIZ2hKwplVh7xrppd5ykMhUFjuzMmmFpmHvfAwSwiU= Subject key identifier: FF:8C:0A:EC:35:DC:F8:F1:F7:5A:BD:59:61:C6:04:AF:A0:E3:2F:9A Certificate issuer: /CN=08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE Certificate serial: 40835A08EDEDD8BE0DE1038B8687A5E604E7A9A4 Authority key identifier: 08:A0:3C:F9:C1:D3:AF:93:CF:DB:0A:2C:1D:87:8D:A6:02:75:D4:FE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/3130332e33372e342e302f32342d3234203d3e2039363738.roa Signing time: Mon 11 May 2026 17:26:39 +0000 ROA not before: Mon 11 May 2026 17:21:39 +0000 ROA not after: Mon 10 May 2027 17:26:39 +0000 asID: 9678 IP address blocks: 103.37.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.crl rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:83:5a:08:ed:ed:d8:be:0d:e1:03:8b:86:87:a5:e6:04:e7:a9:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE Validity Not Before: May 11 17:21:39 2026 GMT Not After : May 10 17:26:39 2027 GMT Subject: CN=FF8C0AEC35DCF8F1F75ABD5961C604AFA0E32F9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:65:a3:24:70:4f:a1:e7:44:30:3e:29:2b:fa: 98:15:d2:14:d3:5c:c4:af:0a:33:e8:ac:d9:ee:6a: d9:2a:de:c9:d8:23:51:96:be:79:67:eb:6b:86:e6: b1:0c:22:87:7c:a3:63:f7:40:1e:ed:13:62:a3:0a: bb:26:8d:f7:e3:f4:3a:af:14:52:ac:ab:12:a7:9b: e0:ad:5b:ea:b7:9b:b8:cd:65:10:44:f5:cd:62:25: 8b:88:74:62:0e:de:71:65:ca:00:bf:91:91:d2:04: cf:6f:21:69:d7:e7:5d:b0:fa:88:e9:a0:49:2f:48: 31:d0:37:c8:51:84:d9:a2:14:ec:4c:c9:79:d7:87: 19:d7:d1:a0:61:cf:66:76:8f:d4:49:26:6e:6f:c8: 24:48:be:e5:c4:8a:9a:df:dd:07:13:7a:6d:04:42: d4:cc:ce:38:d3:91:48:fa:c5:b1:26:c6:63:88:1a: ca:a9:a8:d8:6f:91:ba:b6:14:45:76:cd:cf:db:b0: 33:07:d9:5c:b6:00:66:34:f8:6b:fd:12:98:d5:16: 66:24:3c:c4:d9:12:7f:c1:df:3b:37:3d:82:c6:17: c9:38:94:1e:0e:fb:56:c8:37:cc:49:e9:c8:e3:ed: b8:93:60:85:4d:f0:06:18:44:b0:87:39:5d:90:14: e9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8C:0A:EC:35:DC:F8:F1:F7:5A:BD:59:61:C6:04:AF:A0:E3:2F:9A X509v3 Authority Key Identifier: keyid:08:A0:3C:F9:C1:D3:AF:93:CF:DB:0A:2C:1D:87:8D:A6:02:75:D4:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/3130332e33372e342e302f32342d3234203d3e2039363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.37.4.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:08:4f:bb:a3:de:72:05:92:1a:90:ef:28:66:01:ad:7b:7c: c9:8b:dd:15:cc:98:3d:0b:87:ee:29:03:cf:33:9b:92:23:cf: 0c:2a:26:d7:0e:41:66:19:57:7a:55:50:3c:b7:b1:dd:03:5f: 7a:34:26:0b:55:8c:91:38:f0:0e:78:08:40:d5:a4:67:a3:9a: 9f:b2:e9:64:ab:01:c6:e2:62:cf:16:10:1b:a6:39:21:b4:62: e7:b4:5c:fa:75:6c:fd:e7:2e:b0:eb:22:52:c6:38:31:70:b8: 89:c1:95:66:07:d8:b2:d6:a9:00:bf:b0:b5:e1:e6:88:8e:ba: 51:b6:d8:61:2e:1c:94:e4:12:87:53:43:a2:30:e4:fe:21:03: 48:6c:b9:3c:19:7b:1d:e8:11:01:5a:ee:a1:ba:fc:b8:ee:9a: df:b0:97:6b:46:cf:1b:fc:46:70:f1:3a:e2:db:c8:ac:fc:8d: 5d:50:30:4a:7a:64:80:47:8b:ef:ae:77:aa:32:47:c0:b3:b2: 49:13:f6:84:6f:91:48:f4:2b:9f:26:3a:9d:e0:90:8c:09:08: c0:b6:74:e9:ed:00:b3:b1:39:27:93:1d:d7:4d:c0:14:eb:be: 83:79:37:05:7d:12:f6:48:f4:a9:eb:4b:4e:2e:b7:8a:43:a7: 54:26:74:92 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUQINaCO3t2L4N4QOLhoel5gTnqaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhBMDNDRjlDMUQzQUY5M0NGREIwQTJDMUQ4NzhEQTYw Mjc1RDRGRTAeFw0yNjA1MTExNzIxMzlaFw0yNzA1MTAxNzI2MzlaMDMxMTAvBgNV BAMTKEZGOEMwQUVDMzVEQ0Y4RjFGNzVBQkQ1OTYxQzYwNEFGQTBFMzJGOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQZaMkcE+h50QwPikr+pgV0hTT XMSvCjPorNnuatkq3snYI1GWvnln62uG5rEMIod8o2P3QB7tE2KjCrsmjffj9Dqv FFKsqxKnm+CtW+q3m7jNZRBE9c1iJYuIdGIO3nFlygC/kZHSBM9vIWnX512w+ojp oEkvSDHQN8hRhNmiFOxMyXnXhxnX0aBhz2Z2j9RJJm5vyCRIvuXEiprf3QcTem0E QtTMzjjTkUj6xbEmxmOIGsqpqNhvkbq2FEV2zc/bsDMH2Vy2AGY0+Gv9EpjVFmYk PMTZEn/B3zs3PYLGF8k4lB4O+1bIN8xJ6cjj7biTYIVN8AYYRLCHOV2QFOnRAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQU/4wK7DXc+PH3Wr1ZYcYEr6DjL5owHwYDVR0j BBgwFoAUCKA8+cHTr5PP2wosHYeNpgJ11P4wDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU01UUlRD SC8wLzA4QTAzQ0Y5QzFEM0FGOTNDRkRCMEEyQzFEODc4REE2MDI3NUQ0RkUuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvMDhBMDNDRjlDMUQzQUY5M0NGREIwQTJDMUQ4 NzhEQTYwMjc1RDRGRS5jZXIwdwYIKwYBBQUHAQsEazBpMGcGCCsGAQUFBzALhlty c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NNVFJUQ0gvMC8zMTMwMzMyZTMz MzcyZTM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzkzNjM3Mzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnJQQwDQYJKoZIhvcNAQELBQADggEBAHoIT7uj3nIFkhqQ7yhmAa17fMmL3RXM mD0Lh+4pA88zm5IjzwwqJtcOQWYZV3pVUDy3sd0DX3o0JgtVjJE48A54CEDVpGej mp+y6WSrAcbiYs8WEBumOSG0Yue0XPp1bP3nLrDrIlLGODFwuInBlWYH2LLWqQC/ sLXh5oiOulG22GEuHJTkEodTQ6Iw5P4hA0hsuTwZex3oEQFa7qG6/Ljumt+wl2tG zxv8RnDxOuLbyKz8jV1QMEp6ZIBHi++ud6oyR8CzskkT9oRvkUj0K58mOp3gkIwJ CMC2dOntALOxOSeTHddNwBTrvoN5NwV9EvZI9KnrS04ut4pDp1QmdJI= -----END CERTIFICATE-----Generated at Wed May 13 21:49:30 2026 by rpki-client