$ rpki-client -vvf rpkica.twnic.tw/rpki/FET/0/AS18419.roa File: AS18419.roa (raw, json) Hash identifier: ZCSuzYNR48mOflulSwJ+VbxIrexVtbA8N4ku0JnE5MM= Subject key identifier: D6:06:77:23:85:62:23:95:36:BA:82:D7:79:49:EE:90:5F:62:98:DD Certificate issuer: /CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Certificate serial: 5AFA0C7B3BCCC1E66EF85C37AF015AAE88991435 Authority key identifier: 71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject info access: rsync://rpkica.twnic.tw/rpki/FET/0/AS18419.roa Signing time: Thu 11 Jun 2026 09:03:49 +0000 ROA not before: Thu 11 Jun 2026 08:58:49 +0000 ROA not after: Thu 10 Jun 2027 09:03:49 +0000 asID: 18419 IP address blocks: 124.218.0.0/18 maxlen: 24 124.218.96.0/21 maxlen: 24 124.218.96.0/22 maxlen: 24 124.218.100.0/22 maxlen: 24 124.218.104.0/22 maxlen: 24 124.218.108.0/22 maxlen: 24 124.218.112.0/21 maxlen: 24 124.218.116.0/22 maxlen: 24 124.218.120.0/21 maxlen: 24 124.218.192.0/18 maxlen: 24 124.218.192.0/19 maxlen: 24 124.218.224.0/21 maxlen: 24 124.218.232.0/21 maxlen: 24 210.85.32.0/21 maxlen: 24 218.34.96.0/21 maxlen: 24 218.34.104.0/23 maxlen: 24 218.35.0.0/21 maxlen: 24 218.35.8.0/21 maxlen: 24 218.35.16.0/21 maxlen: 24 218.35.24.0/23 maxlen: 24 218.35.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 20:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:fa:0c:7b:3b:cc:c1:e6:6e:f8:5c:37:af:01:5a:ae:88:99:14:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Validity Not Before: Jun 11 08:58:49 2026 GMT Not After : Jun 10 09:03:49 2027 GMT Subject: CN=D60677238562239536BA82D77949EE905F6298DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ed:fe:91:b2:63:1c:69:3a:ae:06:bd:6a:9f: 79:07:63:20:86:b1:9a:31:10:65:01:35:5e:6c:f2: d4:85:48:34:a1:f3:90:f7:02:63:d9:49:28:14:2b: b3:e8:a4:c8:95:63:66:92:06:ce:f4:cf:60:a4:ad: 8b:a8:70:89:6b:cd:77:ba:ed:af:cb:0d:27:03:af: 50:fd:02:21:64:1d:19:bf:f6:6a:05:37:dc:47:d8: e8:1e:36:d4:75:ae:b8:9e:51:43:09:ef:47:db:5a: c8:2e:d8:29:3b:08:a2:a7:5c:42:32:8d:5e:57:0a: 23:23:33:12:75:ec:aa:0b:fc:b4:5f:0e:5c:f4:0a: f0:49:8f:7c:0f:e8:09:08:5d:2c:6b:59:53:7f:f9: 86:64:02:d3:a5:3d:e9:48:57:0e:c8:4d:79:f1:8a: d7:d8:8a:8b:f4:f7:66:f9:15:0f:7a:b6:61:68:d7: bc:28:d7:2d:12:38:a7:45:60:b9:ba:66:24:4d:a0: 03:01:8d:48:c8:cd:f5:9a:15:97:99:e4:89:2d:ec: cf:6e:f1:be:84:be:b1:a2:1c:03:b8:2c:19:3f:5f: 1e:10:fd:e0:83:8e:d9:af:f8:6c:46:67:7b:f6:de: 9d:ba:6e:c3:cc:17:e5:19:e1:ea:b1:07:d2:a1:1b: fb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:06:77:23:85:62:23:95:36:BA:82:D7:79:49:EE:90:5F:62:98:DD X509v3 Authority Key Identifier: keyid:71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/FET/0/AS18419.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.218.0.0/18 124.218.96.0/19 124.218.192.0/18 210.85.32.0/21 218.34.96.0-218.34.105.255 218.35.0.0-218.35.25.255 218.35.128.0/18 Signature Algorithm: sha256WithRSAEncryption 04:ea:bd:aa:46:ae:00:2f:fd:52:d2:bc:74:75:5a:15:84:93: 65:7c:16:aa:ea:21:74:97:8c:01:db:4c:1b:72:63:ac:75:e5: 3d:9a:3d:8f:eb:23:90:e2:b7:22:39:09:d3:b9:ff:2a:86:15: 2c:ab:d4:0c:fe:a8:4f:7b:96:5d:e0:0d:6a:1a:bb:e0:f9:aa: cc:d8:76:4d:d7:b2:dc:c6:32:40:23:f3:16:ce:31:f4:a9:bc: 1c:b5:85:38:b8:d8:02:d6:9d:41:b9:c7:92:39:e5:df:32:ba: 54:60:eb:14:98:3d:f2:7c:1f:4f:22:a2:46:7d:1c:95:4e:11: 1d:fc:91:62:f9:12:9d:a7:6a:07:0d:6a:a8:8f:22:47:72:70: ce:c4:3b:92:c8:93:c5:58:91:ae:05:29:cc:97:f7:4d:e3:a9: 7e:aa:8a:73:1d:82:ed:4c:48:84:76:8b:6d:e3:5f:39:ae:6b: 05:58:25:0b:92:e2:95:97:b8:ef:c6:9c:44:de:de:68:2c:5f: 27:42:29:bc:5c:c0:66:b9:c6:cd:f2:e5:b3:15:7a:d0:a4:78: 8a:04:aa:b8:67:d7:ed:40:a4:6f:d2:1e:e5:92:b1:0e:eb:fa: 91:f7:ae:5a:2c:6f:ae:d7:e3:f6:d3:3f:ef:d6:d9:3c:fe:ea: 65:c8:56:f1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUWvoMezvMweZu+Fw3rwFaroiZFDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4 NDI0NkQxMDAeFw0yNjA2MTEwODU4NDlaFw0yNzA2MTAwOTAzNDlaMDMxMTAvBgNV BAMTKEQ2MDY3NzIzODU2MjIzOTUzNkJBODJENzc5NDlFRTkwNUY2Mjk4REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC07f6RsmMcaTquBr1qn3kHYyCG sZoxEGUBNV5s8tSFSDSh85D3AmPZSSgUK7PopMiVY2aSBs70z2CkrYuocIlrzXe6 7a/LDScDr1D9AiFkHRm/9moFN9xH2OgeNtR1rrieUUMJ70fbWsgu2Ck7CKKnXEIy jV5XCiMjMxJ17KoL/LRfDlz0CvBJj3wP6AkIXSxrWVN/+YZkAtOlPelIVw7ITXnx itfYiov092b5FQ96tmFo17wo1y0SOKdFYLm6ZiRNoAMBjUjIzfWaFZeZ5Ikt7M9u 8b6EvrGiHAO4LBk/Xx4Q/eCDjtmv+GxGZ3v23p26bsPMF+UZ4eqxB9KhG/vDAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQU1gZ3I4ViI5U2uoLXeUnukF9imN0wHwYDVR0j BBgwFoAUcfog/Cac6YBbLGflmzV6poQkbRAwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAv NzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4NDI0NkQxMC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MUZBMjBGQzI2OUNFOTgwNUIyQzY3RTU5QjM1N0FB Njg0MjQ2RDEwLmNlcjBKBggrBgEFBQcBCwQ+MDwwOgYIKwYBBQUHMAuGLnJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAvQVMxODQxOS5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjBSBggrBgEFBQcBBwEB/wRDMEEwPwQCAAEwOQME BnzaAAMEBXzaYAMEBnzawAMEA9JVIDAMAwQF2iJgAwQB2iJoMAsDAwDaIwMEAdoj GAMEBtojgDANBgkqhkiG9w0BAQsFAAOCAQEABOq9qkauAC/9UtK8dHVaFYSTZXwW quohdJeMAdtMG3JjrHXlPZo9j+sjkOK3IjkJ07n/KoYVLKvUDP6oT3uWXeANahq7 4PmqzNh2Tdey3MYyQCPzFs4x9Km8HLWFOLjYAtadQbnHkjnl3zK6VGDrFJg98nwf TyKiRn0clU4RHfyRYvkSnadqBw1qqI8iR3JwzsQ7ksiTxViRrgUpzJf3TeOpfqqK cx2C7UxIhHaLbeNfOa5rBVglC5LilZe478acRN7eaCxfJ0IpvFzAZrnGzfLlsxV6 0KR4igSquGfX7UCkb9Ie5ZKxDuv6kfeuWixvrtfj9tM/79bZPP7qZchW8Q== -----END CERTIFICATE-----Generated at Sat Jun 13 11:27:27 2026 by rpki-client