$ rpki-client -vvf rpkica.twnic.tw/rpki/TAIFO7716/0/3130312e332e3139322e302f32302d3234203d3e203138303436.roa File: 3130312e332e3139322e302f32302d3234203d3e203138303436.roa (raw, json) Hash identifier: DCKFllTlSbLNbzuoC0euAPFPDrrzy0IpFaoas/QL4IM= Subject key identifier: D5:C5:A9:C0:6D:8B:92:8A:6E:AC:79:B4:28:B9:DE:08:3D:A6:3B:5D Certificate issuer: /CN=E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B Certificate serial: 7B1D2B86E3FE71D5B613160EE067B11328353CC8 Authority key identifier: E7:E1:DA:39:A6:AC:AC:13:A4:43:4C:0B:07:A1:5F:DD:6D:C3:93:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TAIFO7716/0/3130312e332e3139322e302f32302d3234203d3e203138303436.roa Signing time: Mon 11 May 2026 17:40:10 +0000 ROA not before: Mon 11 May 2026 17:35:10 +0000 ROA not after: Mon 10 May 2027 17:40:10 +0000 asID: 18046 IP address blocks: 101.3.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TAIFO7716/0/E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B.crl rsync://rpkica.twnic.tw/rpki/TAIFO7716/0/E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:1d:2b:86:e3:fe:71:d5:b6:13:16:0e:e0:67:b1:13:28:35:3c:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B Validity Not Before: May 11 17:35:10 2026 GMT Not After : May 10 17:40:10 2027 GMT Subject: CN=D5C5A9C06D8B928A6EAC79B428B9DE083DA63B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d3:b3:58:f8:3a:5f:14:b0:cd:e3:3c:20:28: eb:d6:65:75:ae:5a:32:24:e8:5e:a5:6a:10:84:1a: b1:6c:ae:82:30:9d:54:49:9d:8d:45:3e:04:29:d1: 73:29:5a:94:cf:14:a0:93:7a:b8:b9:ee:c3:31:03: 9a:c4:65:46:6e:59:f3:88:9b:cc:91:eb:db:ca:b1: 22:3b:f6:ac:8f:74:a8:6a:5b:d2:b3:d9:9f:3e:04: e1:a1:18:74:33:59:d4:81:29:55:63:95:17:78:07: 77:e0:ab:5e:cb:cb:ae:9c:63:70:fa:2b:4c:53:5b: 5d:a8:4c:b4:3c:c1:48:b6:7f:f4:99:13:ac:68:44: 1d:67:d5:a8:c9:3b:5a:8c:ed:37:27:74:8f:6b:97: 95:a1:be:71:0c:d9:2f:1c:dd:ef:36:b2:a6:80:08: 96:e7:9d:78:51:cf:01:40:ed:32:47:37:67:da:3e: 21:f1:13:38:ef:9d:f5:2b:a8:88:db:1b:e9:6b:e2: d5:78:7d:dc:76:d1:da:70:e8:bb:0a:c7:5e:47:19: 61:85:c4:c8:03:c7:1d:bd:ef:8b:b8:0b:9e:f1:78: 79:e3:e4:15:d4:c9:e2:cf:5b:da:81:75:bf:e3:19: 5a:ac:4a:0e:b5:e1:0f:73:4b:e9:54:b2:0a:21:35: ab:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C5:A9:C0:6D:8B:92:8A:6E:AC:79:B4:28:B9:DE:08:3D:A6:3B:5D X509v3 Authority Key Identifier: keyid:E7:E1:DA:39:A6:AC:AC:13:A4:43:4C:0B:07:A1:5F:DD:6D:C3:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TAIFO7716/0/E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TAIFO7716/0/3130312e332e3139322e302f32302d3234203d3e203138303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.3.192.0/20 Signature Algorithm: sha256WithRSAEncryption 3f:ef:61:9f:84:4e:82:dd:2f:bf:d4:8c:ed:2d:8b:69:fa:6a: 06:0c:9b:de:a6:08:62:d1:e0:86:48:f8:74:cc:7a:01:c2:0d: cb:5e:a8:dd:fa:66:06:6f:e7:26:7d:25:2c:66:31:73:53:48: d2:f0:ec:e4:eb:36:02:d0:18:de:95:e5:3f:ea:53:20:a8:79: 78:42:e9:b5:5f:38:47:e5:07:14:54:1c:47:0f:31:ee:25:fb: 69:6a:49:a2:36:dd:0d:47:ae:9d:fe:db:85:31:b8:a3:4e:0a: 55:cc:b3:2a:2f:a3:63:36:eb:73:20:11:a1:57:71:7e:d0:38: 66:38:ce:ae:c3:d1:74:50:59:4f:d2:52:af:1b:49:88:c7:4d: 77:09:b7:fc:05:db:61:5c:33:54:4c:fc:be:d3:f3:06:be:23: 63:01:41:6f:35:8a:d9:c8:62:24:79:f1:b9:59:25:96:08:89: 2f:e4:1e:d5:89:f8:4c:d3:32:48:ac:ac:fb:48:f9:62:cf:6f: d7:54:f9:0c:a2:ce:d6:40:bf:45:26:58:10:f7:39:b6:30:c2: e3:3a:9e:cb:bd:98:48:b9:dc:46:f7:27:9e:2d:6b:a9:05:22: 2a:7e:81:76:f9:69:91:aa:3f:33:85:30:5c:80:92:61:ba:7a: 43:35:53:11 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUex0rhuP+cdW2ExYO4GexEyg1PMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdFMURBMzlBNkFDQUMxM0E0NDM0QzBCMDdBMTVGREQ2 REMzOTM0QjAeFw0yNjA1MTExNzM1MTBaFw0yNzA1MTAxNzQwMTBaMDMxMTAvBgNV BAMTKEQ1QzVBOUMwNkQ4QjkyOEE2RUFDNzlCNDI4QjlERTA4M0RBNjNCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC507NY+DpfFLDN4zwgKOvWZXWu WjIk6F6lahCEGrFsroIwnVRJnY1FPgQp0XMpWpTPFKCTeri57sMxA5rEZUZuWfOI m8yR69vKsSI79qyPdKhqW9Kz2Z8+BOGhGHQzWdSBKVVjlRd4B3fgq17Ly66cY3D6 K0xTW12oTLQ8wUi2f/SZE6xoRB1n1ajJO1qM7TcndI9rl5WhvnEM2S8c3e82sqaA CJbnnXhRzwFA7TJHN2faPiHxEzjvnfUrqIjbG+lr4tV4fdx20dpw6LsKx15HGWGF xMgDxx2974u4C57xeHnj5BXUyeLPW9qBdb/jGVqsSg614Q9zS+lUsgohNaszAgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQU1cWpwG2LkopurHm0KLneCD2mO10wHwYDVR0j BBgwFoAU5+HaOaasrBOkQ0wLB6Ff3W3Dk0swDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFJRk83 NzE2LzAvRTdFMURBMzlBNkFDQUMxM0E0NDM0QzBCMDdBMTVGREQ2REMzOTM0Qi5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9FN0UxREEzOUE2QUNBQzEzQTQ0MzRDMEIw N0ExNUZERDZEQzM5MzRCLmNlcjB9BggrBgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuG YXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFJRk83NzE2LzAvMzEzMDMx MmUzMzJlMzEzOTMyMmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzEzODMwMzQzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBGUDwDANBgkqhkiG9w0BAQsFAAOCAQEAP+9hn4ROgt0vv9SM7S2L afpqBgyb3qYIYtHghkj4dMx6AcINy16o3fpmBm/nJn0lLGYxc1NI0vDs5Os2AtAY 3pXlP+pTIKh5eELptV84R+UHFFQcRw8x7iX7aWpJojbdDUeunf7bhTG4o04KVcyz Ki+jYzbrcyARoVdxftA4ZjjOrsPRdFBZT9JSrxtJiMdNdwm3/AXbYVwzVEz8vtPz Br4jYwFBbzWK2chiJHnxuVkllgiJL+Qe1Yn4TNMySKys+0j5Ys9v11T5DKLO1kC/ RSZYEPc5tjDC4zqey72YSLncRvcnni1rqQUiKn6Bdvlpkao/M4UwXICSYbp6QzVT EQ== -----END CERTIFICATE-----Generated at Wed May 13 21:52:10 2026 by rpki-client