$ rpki-client -vvf rpkica.twnic.tw/rpki/FET/0/AS18049.roa File: AS18049.roa (raw, json) Hash identifier: Bei2X31oyp7s9F9iVIOorTxmFiMUb3zaPgCFCKPZfMc= Subject key identifier: 6C:4B:AA:84:36:93:5F:D0:F6:14:1B:58:C0:48:C7:5A:FB:9D:01:24 Certificate issuer: /CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Certificate serial: 3C32F0EE20846B5947CD53018BA929D2EC615168 Authority key identifier: 71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject info access: rsync://rpkica.twnic.tw/rpki/FET/0/AS18049.roa Signing time: Fri 12 Jun 2026 02:23:49 +0000 ROA not before: Fri 12 Jun 2026 02:18:49 +0000 ROA not after: Fri 11 Jun 2027 02:23:49 +0000 asID: 18049 IP address blocks: 60.244.128.0/17 maxlen: 24 60.244.136.0/21 maxlen: 24 60.244.172.0/22 maxlen: 24 60.244.176.0/22 maxlen: 24 218.34.106.0/23 maxlen: 24 218.34.108.0/22 maxlen: 24 218.34.112.0/20 maxlen: 24 218.34.128.0/21 maxlen: 24 218.34.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 20:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:32:f0:ee:20:84:6b:59:47:cd:53:01:8b:a9:29:d2:ec:61:51:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Validity Not Before: Jun 12 02:18:49 2026 GMT Not After : Jun 11 02:23:49 2027 GMT Subject: CN=6C4BAA8436935FD0F6141B58C048C75AFB9D0124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fe:9f:6c:c1:5e:4b:32:df:00:11:7b:bb:12: ea:d9:70:55:9f:c8:b3:24:5b:8b:99:34:87:b2:eb: 5e:89:ce:c9:47:f9:c9:d3:c1:80:17:67:c2:12:a1: e0:f1:53:75:84:5e:12:95:b2:12:1c:eb:6a:6d:a9: 1d:1c:56:f5:4f:7c:e1:af:99:ce:b2:d2:e2:b0:a1: 72:bf:a2:fb:eb:5e:72:f2:b1:46:57:41:27:a7:ab: 2b:28:6f:30:56:50:7b:b5:8b:b0:48:de:44:33:0e: 23:6a:0a:f3:0d:7f:07:e2:a4:7a:2d:20:a1:88:fc: 5c:09:be:c2:5d:8a:53:57:cb:0a:fa:ec:98:7f:a6: 7f:df:6f:b9:dd:6a:30:2e:f8:63:25:fd:ad:aa:38: e3:d0:93:43:1a:bd:a8:1f:b4:6d:4d:11:a0:90:cf: c6:f7:77:2b:46:b2:9c:9f:fd:a8:ce:69:29:ed:d3: f9:1f:b4:e3:81:25:48:8e:b7:5b:b7:87:12:4a:1f: 43:9c:bb:cf:e0:ba:9a:9c:4e:0f:9b:6e:c4:99:95: 17:9e:ba:4d:ec:63:b0:22:eb:e0:4a:1a:0b:ba:06: e5:d0:ce:37:80:e0:19:0b:67:70:cc:b2:a3:90:35: 6e:8b:94:df:c6:ad:0e:ec:7d:8f:db:8a:67:b8:98: ac:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4B:AA:84:36:93:5F:D0:F6:14:1B:58:C0:48:C7:5A:FB:9D:01:24 X509v3 Authority Key Identifier: keyid:71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/FET/0/AS18049.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 60.244.128.0/17 218.34.106.0-218.34.137.255 Signature Algorithm: sha256WithRSAEncryption 07:62:47:41:5d:35:09:81:f3:6f:02:c1:2a:1e:ce:93:b4:cc: 3a:4a:ec:8a:cc:e9:e2:ab:c6:39:be:1c:af:b3:40:a5:b7:19: c6:a2:39:1f:81:9e:31:a4:d1:ea:ea:8e:62:49:d0:5c:cf:b2: c8:80:1f:dc:f0:04:4d:bd:95:9b:e1:84:b0:5a:96:3d:ba:0d: 83:03:fb:fd:fd:e7:6c:89:57:44:d5:c3:c3:bf:42:e4:0d:71: ea:92:64:b0:7d:9a:7f:76:59:7d:02:f7:2a:ca:90:fe:e9:d8: 97:bb:ee:e1:77:54:89:f7:1a:61:e6:b0:93:5e:ec:02:ac:b6: da:6d:56:96:32:cf:e4:51:2a:52:f0:1f:e7:a2:50:0f:48:17: ec:84:73:51:7c:2d:d8:36:44:a7:cf:23:78:a2:41:d4:a4:94: 33:75:19:d0:69:de:cd:c7:33:26:c6:54:39:e7:69:e0:14:d3: b3:5a:85:c6:92:5d:8d:7c:df:34:9a:87:20:0b:ae:61:ac:34: f1:00:00:9f:bb:3e:d7:0c:d2:5e:18:97:1b:e9:44:be:fd:a1: 39:0a:6f:9d:6a:91:09:4b:77:80:98:b0:89:49:74:7d:06:e4: 34:25:2a:be:65:b1:2f:d6:66:01:09:14:f0:b4:04:ea:49:e0: c8:3c:bd:c4 -----BEGIN CERTIFICATE----- MIIEsjCCA5qgAwIBAgIUPDLw7iCEa1lHzVMBi6kp0uxhUWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4 NDI0NkQxMDAeFw0yNjA2MTIwMjE4NDlaFw0yNzA2MTEwMjIzNDlaMDMxMTAvBgNV BAMTKDZDNEJBQTg0MzY5MzVGRDBGNjE0MUI1OEMwNDhDNzVBRkI5RDAxMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4/p9swV5LMt8AEXu7EurZcFWf yLMkW4uZNIey616JzslH+cnTwYAXZ8ISoeDxU3WEXhKVshIc62ptqR0cVvVPfOGv mc6y0uKwoXK/ovvrXnLysUZXQSenqysobzBWUHu1i7BI3kQzDiNqCvMNfwfipHot IKGI/FwJvsJdilNXywr67Jh/pn/fb7ndajAu+GMl/a2qOOPQk0MavagftG1NEaCQ z8b3dytGspyf/ajOaSnt0/kftOOBJUiOt1u3hxJKH0Ocu8/gupqcTg+bbsSZlRee uk3sY7Ai6+BKGgu6BuXQzjeA4BkLZ3DMsqOQNW6LlN/GrQ7sfY/bime4mKy3AgMB AAGjggG8MIIBuDAdBgNVHQ4EFgQUbEuqhDaTX9D2FBtYwEjHWvudASQwHwYDVR0j BBgwFoAUcfog/Cac6YBbLGflmzV6poQkbRAwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAv NzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4NDI0NkQxMC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MUZBMjBGQzI2OUNFOTgwNUIyQzY3RTU5QjM1N0FB Njg0MjQ2RDEwLmNlcjBKBggrBgEFBQcBCwQ+MDwwOgYIKwYBBQUHMAuGLnJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAvQVMxODA0OS5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAtBggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFAME Bzz0gDAMAwQB2iJqAwQB2iKIMA0GCSqGSIb3DQEBCwUAA4IBAQAHYkdBXTUJgfNv AsEqHs6TtMw6SuyKzOniq8Y5vhyvs0CltxnGojkfgZ4xpNHq6o5iSdBcz7LIgB/c 8ARNvZWb4YSwWpY9ug2DA/v9/edsiVdE1cPDv0LkDXHqkmSwfZp/dll9AvcqypD+ 6diXu+7hd1SJ9xph5rCTXuwCrLbabVaWMs/kUSpS8B/nolAPSBfshHNRfC3YNkSn zyN4okHUpJQzdRnQad7NxzMmxlQ552ngFNOzWoXGkl2NfN80mocgC65hrDTxAACf uz7XDNJeGJcb6US+/aE5Cm+dapEJS3eAmLCJSXR9BuQ0JSq+ZbEv1mYBCRTwtATq SeDIPL3E -----END CERTIFICATE-----Generated at Sat Jun 13 11:27:23 2026 by rpki-client