$ rpki-client -vvf rpkica.twnic.tw/rpki/CARL-NET/0/3231312e37392e3130322e302f32332d3234203d3e203231383539.roa File: 3231312e37392e3130322e302f32332d3234203d3e203231383539.roa (raw, json) Hash identifier: L57nfmyeojiXaTZf4zjU8tXgEtvksvbfz2DcpLr9SbM= Subject key identifier: 25:50:94:C3:38:03:02:A8:55:C6:0E:95:C4:F8:E4:49:30:2F:89:02 Certificate issuer: /CN=73E6AC8F948D0C97D941F26531617C19223508E6 Certificate serial: 6BFB39A90E6BC219FDFD147912019F7B82820CCB Authority key identifier: 73:E6:AC:8F:94:8D:0C:97:D9:41:F2:65:31:61:7C:19:22:35:08:E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/73E6AC8F948D0C97D941F26531617C19223508E6.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CARL-NET/0/3231312e37392e3130322e302f32332d3234203d3e203231383539.roa Signing time: Mon 11 May 2026 17:56:43 +0000 ROA not before: Mon 11 May 2026 17:51:43 +0000 ROA not after: Mon 10 May 2027 17:56:43 +0000 asID: 21859 IP address blocks: 211.79.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CARL-NET/0/73E6AC8F948D0C97D941F26531617C19223508E6.crl rsync://rpkica.twnic.tw/rpki/CARL-NET/0/73E6AC8F948D0C97D941F26531617C19223508E6.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/73E6AC8F948D0C97D941F26531617C19223508E6.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:fb:39:a9:0e:6b:c2:19:fd:fd:14:79:12:01:9f:7b:82:82:0c:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73E6AC8F948D0C97D941F26531617C19223508E6 Validity Not Before: May 11 17:51:43 2026 GMT Not After : May 10 17:56:43 2027 GMT Subject: CN=255094C3380302A855C60E95C4F8E449302F8902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:83:56:3d:23:35:5b:59:bb:4c:99:97:59:14: e5:9f:a0:8c:99:96:e7:44:07:11:31:c0:67:59:6d: 66:c7:0a:7b:1a:2a:2d:73:a2:37:28:50:4d:f8:77: 53:b2:ad:b2:13:cb:51:42:bc:63:85:0f:0c:35:31: 4d:89:dc:f3:53:0c:d9:a1:4c:cb:61:86:80:10:85: 9f:89:2e:fb:d4:c4:7d:d0:ed:d2:a4:00:92:ed:12: 50:9e:4c:db:35:6f:4c:d3:98:63:13:5c:e4:c1:7d: 98:4e:51:28:fe:d3:bd:1e:2a:74:2d:50:12:26:4f: 93:bc:13:a6:cb:f8:c3:0e:f2:37:af:78:b0:e0:4d: bc:93:cf:61:9a:f5:4b:c6:5b:d6:b7:26:b2:e3:d1: 3a:a6:d0:c5:19:15:e3:13:35:b7:08:29:f7:31:38: d2:62:82:d3:ac:45:b4:e3:53:a3:8b:8e:53:18:2c: 61:f1:54:57:5a:28:d5:d8:b5:52:6c:b4:43:6b:19: 5f:c2:07:79:99:09:f9:b3:92:e9:18:b0:9f:2b:4d: 2e:a4:0a:5f:3b:03:03:3f:25:ec:f0:21:e6:34:f2: af:0b:6d:1d:f3:fb:cc:f9:69:79:d9:a6:00:e9:07: 21:53:f4:66:b4:ee:4a:3f:4c:ba:b7:c0:fc:e0:22: c2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:50:94:C3:38:03:02:A8:55:C6:0E:95:C4:F8:E4:49:30:2F:89:02 X509v3 Authority Key Identifier: keyid:73:E6:AC:8F:94:8D:0C:97:D9:41:F2:65:31:61:7C:19:22:35:08:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CARL-NET/0/73E6AC8F948D0C97D941F26531617C19223508E6.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/73E6AC8F948D0C97D941F26531617C19223508E6.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CARL-NET/0/3231312e37392e3130322e302f32332d3234203d3e203231383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.79.102.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:01:54:74:02:97:8a:9a:f2:37:10:de:18:fc:09:20:3f:49: 8a:3b:5b:93:a8:de:ad:b9:86:11:a5:46:04:40:76:cc:c0:2d: 9a:3a:cf:60:d2:43:19:fc:6e:0e:c3:9b:59:a3:60:8a:fa:e0: 09:ba:63:31:8e:97:1e:c6:c8:73:56:28:6f:10:4a:de:89:f1: 29:81:2e:01:d7:f9:0c:0d:e4:e4:13:c8:85:73:02:ed:92:68: 76:34:ac:18:2a:0c:52:cf:ba:01:b4:58:36:4c:0d:c6:ac:e2: 7f:1a:ca:51:f2:f8:f0:27:63:45:a6:46:7c:7f:3a:05:74:10: 72:01:bb:fb:76:f8:aa:d3:e9:98:81:14:39:2a:81:cf:2b:a3: 20:17:d9:6c:c1:31:67:cd:c7:f7:aa:1a:8d:fa:d7:1a:cc:f0: 43:92:87:ca:5e:c4:b0:4d:9e:81:c6:ae:b7:37:cb:85:15:d3: c9:b8:64:a1:24:d2:24:52:62:4f:99:b2:d1:ad:02:13:4c:b3: 01:06:24:e4:3b:fe:13:63:41:13:23:5f:99:fd:96:54:0f:a8: 60:17:53:1d:93:cb:69:74:1d:e2:63:57:d7:61:75:ac:67:74: de:f4:79:1d:59:46:a1:35:00:6a:11:37:b2:77:41:25:0d:2d: 27:f9:f3:f8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUa/s5qQ5rwhn9/RR5EgGfe4KCDMswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzNFNkFDOEY5NDhEMEM5N0Q5NDFGMjY1MzE2MTdDMTky MjM1MDhFNjAeFw0yNjA1MTExNzUxNDNaFw0yNzA1MTAxNzU2NDNaMDMxMTAvBgNV BAMTKDI1NTA5NEMzMzgwMzAyQTg1NUM2MEU5NUM0RjhFNDQ5MzAyRjg5MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwg1Y9IzVbWbtMmZdZFOWfoIyZ ludEBxExwGdZbWbHCnsaKi1zojcoUE34d1OyrbITy1FCvGOFDww1MU2J3PNTDNmh TMthhoAQhZ+JLvvUxH3Q7dKkAJLtElCeTNs1b0zTmGMTXOTBfZhOUSj+070eKnQt UBImT5O8E6bL+MMO8jeveLDgTbyTz2Ga9UvGW9a3JrLj0Tqm0MUZFeMTNbcIKfcx ONJigtOsRbTjU6OLjlMYLGHxVFdaKNXYtVJstENrGV/CB3mZCfmzkukYsJ8rTS6k Cl87AwM/JezwIeY08q8LbR3z+8z5aXnZpgDpByFT9Ga07ko/TLq3wPzgIsLZAgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQUJVCUwzgDAqhVxg6VxPjkSTAviQIwHwYDVR0j BBgwFoAUc+asj5SNDJfZQfJlMWF8GSI1COYwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FSTC1O RVQvMC83M0U2QUM4Rjk0OEQwQzk3RDk0MUYyNjUzMTYxN0MxOTIyMzUwOEU2LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzczRTZBQzhGOTQ4RDBDOTdEOTQxRjI2NTMx NjE3QzE5MjIzNTA4RTYuY2VyMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcwC4Zi cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DQVJMLU5FVC8wLzMyMzEzMTJl MzczOTJlMzEzMDMyMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMTM4MzUzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdNPZjANBgkqhkiG9w0BAQsFAAOCAQEAiwFUdAKXipryNxDeGPwJ ID9Jijtbk6jerbmGEaVGBEB2zMAtmjrPYNJDGfxuDsObWaNgivrgCbpjMY6XHsbI c1YobxBK3onxKYEuAdf5DA3k5BPIhXMC7ZJodjSsGCoMUs+6AbRYNkwNxqzifxrK UfL48CdjRaZGfH86BXQQcgG7+3b4qtPpmIEUOSqBzyujIBfZbMExZ83H96oajfrX GszwQ5KHyl7EsE2egcautzfLhRXTybhkoSTSJFJiT5my0a0CE0yzAQYk5Dv+E2NB EyNfmf2WVA+oYBdTHZPLaXQd4mNX12F1rGd03vR5HVlGoTUAahE3sndBJQ0tJ/nz +A== -----END CERTIFICATE-----Generated at Wed May 13 21:11:11 2026 by rpki-client