$ rpki-client -vvf rpkica.twnic.tw/rpki/FET/0/AS4780.roa File: AS4780.roa (raw, json) Hash identifier: MIMTo66cIQpFqSlUp6grdxwZBb1uOWWFJFxhbAsHX8U= Subject key identifier: 92:02:08:1F:29:C7:9F:F8:CD:BC:91:E1:A0:87:6C:C6:3E:F1:AC:CB Certificate issuer: /CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Certificate serial: 7768F42C3682373653589544E91EB06C242DA1A8 Authority key identifier: 71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject info access: rsync://rpkica.twnic.tw/rpki/FET/0/AS4780.roa Signing time: Thu 21 May 2026 02:21:50 +0000 ROA not before: Thu 21 May 2026 02:16:50 +0000 ROA not after: Thu 20 May 2027 02:21:50 +0000 asID: 4780 IP address blocks: 210.58.128.0/19 maxlen: 24 210.85.0.0/22 maxlen: 24 210.85.16.0/20 maxlen: 24 210.85.48.0/20 maxlen: 24 219.91.0.0/17 maxlen: 24 222.157.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 20:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:68:f4:2c:36:82:37:36:53:58:95:44:e9:1e:b0:6c:24:2d:a1:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71FA20FC269CE9805B2C67E59B357AA684246D10 Validity Not Before: May 21 02:16:50 2026 GMT Not After : May 20 02:21:50 2027 GMT Subject: CN=9202081F29C79FF8CDBC91E1A0876CC63EF1ACCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:57:bc:e1:f2:47:d5:3a:66:bb:fa:a9:1d:34: 9c:00:d6:0b:8a:88:5c:29:1c:cd:6f:2e:82:45:63: 65:ba:d1:5d:ae:37:50:43:73:9c:69:4c:0a:21:1c: e2:bd:bb:59:6f:a0:b3:2f:46:cb:49:fc:6b:65:71: e3:75:2d:3f:e8:42:6d:bd:53:f7:51:a7:c5:4c:ea: a4:ea:10:cf:b3:38:73:a1:bd:4f:67:d2:e5:4e:59: 10:c2:6d:85:dc:5a:44:45:3d:74:2d:bd:e6:1d:92: 9e:2f:9f:14:07:70:41:32:e5:23:98:71:0b:f6:b7: 5d:2d:a5:d6:15:a3:29:a5:40:37:9e:b3:49:76:a8: 65:84:4f:58:97:65:02:f7:ec:3b:4e:87:2b:d6:2d: 27:e7:7b:95:4b:e6:c6:f3:65:d7:e3:85:4f:93:c2: 6b:e7:58:19:25:31:e0:01:24:fa:74:97:c5:33:7c: 5a:34:69:4b:47:65:3c:29:3a:a3:28:0b:83:18:8e: a6:3e:19:e9:e6:6a:d2:ba:5a:a2:c7:a7:29:ea:b0: ac:0d:d8:89:bf:05:65:16:13:aa:14:da:ff:fc:7d: 33:ec:a1:09:65:d0:67:bd:5a:72:62:c1:34:4a:bf: 0e:4f:aa:d2:4f:eb:14:a6:37:b4:54:d8:63:30:d7: 7b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:02:08:1F:29:C7:9F:F8:CD:BC:91:E1:A0:87:6C:C6:3E:F1:AC:CB X509v3 Authority Key Identifier: keyid:71:FA:20:FC:26:9C:E9:80:5B:2C:67:E5:9B:35:7A:A6:84:24:6D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/FET/0/71FA20FC269CE9805B2C67E59B357AA684246D10.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/71FA20FC269CE9805B2C67E59B357AA684246D10.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/FET/0/AS4780.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.58.128.0/19 210.85.0.0/22 210.85.16.0/20 210.85.48.0/20 219.91.0.0/17 222.157.64.0/19 Signature Algorithm: sha256WithRSAEncryption bc:81:49:a8:d3:c7:99:5e:ba:56:f4:4e:fe:6b:7a:c5:6c:df: e0:2a:b7:99:e3:8d:f1:dc:c1:6d:49:a4:85:2c:e4:52:be:cd: c5:fb:8e:e6:c8:10:69:9a:0f:97:33:73:86:09:b5:c8:e1:ff: 74:b8:cb:84:84:03:fa:b5:e9:9b:7a:9e:cb:40:9e:7d:e2:08: 3d:c7:c8:c5:25:43:1a:00:e8:c1:b7:a8:8c:11:22:9b:3c:f7: cd:7d:e3:93:56:29:1f:8e:8f:c6:b4:3d:aa:b2:9c:e0:57:05: 23:13:92:cf:cc:9f:00:55:9b:8c:5e:fa:c0:d8:75:57:41:45: d4:0b:13:4a:7d:11:d5:6b:98:8e:3d:24:90:10:5d:b7:b1:4f: 12:75:ec:d0:be:78:f4:18:fd:ab:b8:30:96:22:5c:98:5d:14: 28:5e:00:1b:ad:84:48:b5:fd:60:7c:f7:aa:ae:79:c7:48:90: f2:1b:91:7a:d7:09:00:ee:fe:74:6a:34:07:d8:fe:2f:7b:bc: 88:1c:81:ee:db:7d:e7:78:a2:28:d3:2e:4e:7f:8a:62:76:bb: 9a:b3:4e:9f:07:4c:c4:4d:fd:7b:f8:d9:f3:bc:ad:e1:a8:9b: 49:7a:c1:cb:f3:bd:fc:19:3a:da:f1:bb:42:11:b2:07:44:f9: 5a:72:16:d2 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIUd2j0LDaCNzZTWJVE6R6wbCQtoagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4 NDI0NkQxMDAeFw0yNjA1MjEwMjE2NTBaFw0yNzA1MjAwMjIxNTBaMDMxMTAvBgNV BAMTKDkyMDIwODFGMjlDNzlGRjhDREJDOTFFMUEwODc2Q0M2M0VGMUFDQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChV7zh8kfVOma7+qkdNJwA1guK iFwpHM1vLoJFY2W60V2uN1BDc5xpTAohHOK9u1lvoLMvRstJ/GtlceN1LT/oQm29 U/dRp8VM6qTqEM+zOHOhvU9n0uVOWRDCbYXcWkRFPXQtveYdkp4vnxQHcEEy5SOY cQv2t10tpdYVoymlQDees0l2qGWET1iXZQL37DtOhyvWLSfne5VL5sbzZdfjhU+T wmvnWBklMeABJPp0l8UzfFo0aUtHZTwpOqMoC4MYjqY+GenmatK6WqLHpynqsKwN 2Im/BWUWE6oU2v/8fTPsoQll0Ge9WnJiwTRKvw5PqtJP6xSmN7RU2GMw13tbAgMB AAGjggHLMIIBxzAdBgNVHQ4EFgQUkgIIHynHn/jNvJHhoIdsxj7xrMswHwYDVR0j BBgwFoAUcfog/Cac6YBbLGflmzV6poQkbRAwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAv NzFGQTIwRkMyNjlDRTk4MDVCMkM2N0U1OUIzNTdBQTY4NDI0NkQxMC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS83MUZBMjBGQzI2OUNFOTgwNUIyQzY3RTU5QjM1N0FB Njg0MjQ2RDEwLmNlcjBJBggrBgEFBQcBCwQ9MDswOQYIKwYBBQUHMAuGLXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRkVULzAvQVM0NzgwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQF 0jqAAwQC0lUAAwQE0lUQAwQE0lUwAwQH21sAAwQF3p1AMA0GCSqGSIb3DQEBCwUA A4IBAQC8gUmo08eZXrpW9E7+a3rFbN/gKreZ443x3MFtSaSFLORSvs3F+47myBBp mg+XM3OGCbXI4f90uMuEhAP6tembep7LQJ594gg9x8jFJUMaAOjBt6iMESKbPPfN feOTVikfjo/GtD2qspzgVwUjE5LPzJ8AVZuMXvrA2HVXQUXUCxNKfRHVa5iOPSSQ EF23sU8SdezQvnj0GP2ruDCWIlyYXRQoXgAbrYRItf1gfPeqrnnHSJDyG5F61wkA 7v50ajQH2P4ve7yIHIHu233neKIo0y5Of4pidruas06fB0zETf17+NnzvK3hqJtJ esHL8738GTra8btCEbIHRPlachbS -----END CERTIFICATE-----Generated at Sat Jun 13 11:27:36 2026 by rpki-client