$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/3132332e35302e33322e302f32312d3234203d3e203138343239.roa File: 3132332e35302e33322e302f32312d3234203d3e203138343239.roa (raw, json) Hash identifier: A4Y67XNkklLwkOPf+DOj9wYNZGDbRKTduw+16CaJ+yY= Subject key identifier: 34:4C:05:8F:D5:68:3B:CB:32:45:90:0B:56:D5:81:DF:57:62:F5:62 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 7217B1E06C0EA6FD1B72DA754332E745EF1F40C7 Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/3132332e35302e33322e302f32312d3234203d3e203138343239.roa Signing time: Mon 11 May 2026 17:26:53 +0000 ROA not before: Mon 11 May 2026 17:21:53 +0000 ROA not after: Mon 10 May 2027 17:26:53 +0000 asID: 18429 IP address blocks: 123.50.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:17:b1:e0:6c:0e:a6:fd:1b:72:da:75:43:32:e7:45:ef:1f:40:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 17:21:53 2026 GMT Not After : May 10 17:26:53 2027 GMT Subject: CN=344C058FD5683BCB3245900B56D581DF5762F562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7c:9c:be:f4:69:91:ea:4a:62:2d:a3:29:04: bf:7e:80:bd:11:65:2f:d8:22:d6:00:92:a8:01:6a: 5d:17:05:39:f8:42:f4:bf:03:ef:87:fb:8b:9b:7f: 83:3e:19:85:31:71:63:b6:13:0e:ad:09:50:e2:30: dd:ec:3e:06:c5:bd:e9:c7:15:1e:c1:e9:b0:33:14: 0c:37:db:40:70:f4:f7:94:d7:41:82:4b:4d:33:61: 6c:c0:e5:3f:3b:2a:cc:0b:13:47:fa:d5:f5:c2:e6: 5e:dc:2d:5b:1f:3b:43:78:47:71:23:f7:3c:69:a3: 0f:33:1d:3e:27:0f:c5:b1:d5:3b:4c:27:55:b8:d1: bd:99:43:b0:2b:d5:b0:b0:ee:7c:d5:ef:01:9b:b5: 67:4d:91:03:9b:4b:81:34:29:90:98:fe:bd:eb:da: f1:02:08:bf:d4:6a:01:ae:14:88:3a:bb:ff:a1:51: ad:8b:7d:d1:c9:3c:1e:4a:72:a1:85:c1:44:22:74: 9a:8f:96:22:37:f5:ab:75:dd:53:13:fb:96:42:aa: 01:0b:e5:fb:3c:b1:7a:d5:c4:a8:87:a1:b8:57:ac: 5a:ac:24:c9:d3:a9:8c:12:fa:49:99:fa:7d:1a:1c: 1d:eb:07:6b:a3:3c:e8:58:4a:47:8c:c6:59:96:6e: ac:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:4C:05:8F:D5:68:3B:CB:32:45:90:0B:56:D5:81:DF:57:62:F5:62 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/3132332e35302e33322e302f32312d3234203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.50.32.0/21 Signature Algorithm: sha256WithRSAEncryption 92:0d:1b:be:ca:59:0d:e9:b3:64:4f:5a:96:26:a2:e7:ab:05: 06:cc:67:72:a9:1d:bf:2a:00:59:27:6c:a3:ae:bc:ac:64:3d: c2:25:dd:0f:a3:96:aa:06:c9:90:2e:6c:10:36:41:83:4a:f8: df:02:b4:c9:f3:de:54:cb:93:a6:6e:3e:de:55:d6:ff:2c:d4: 5b:ec:69:75:f0:30:93:d9:3c:29:c5:d2:ad:7e:74:41:34:2a: 52:47:76:86:4e:16:44:a6:98:7c:64:c0:e8:25:e9:95:2b:89: e9:3f:5e:4a:50:5f:16:1b:05:55:e4:e7:7e:f5:fe:b8:20:94: b1:95:c6:c0:40:09:42:1d:4e:42:79:ad:09:66:65:ff:4c:e4: 89:c3:84:1a:27:3e:29:fe:9b:db:3e:79:63:15:4f:27:c0:7c: e0:b5:26:ef:82:0f:69:48:7c:46:0e:cf:ce:6d:a7:6b:f3:f2: 98:ae:da:11:95:4b:55:41:75:53:42:e3:16:6c:75:aa:cb:1e: 77:8f:d0:0a:34:5c:21:5e:86:d1:5d:df:f7:e8:52:e3:1c:9f: 54:92:42:1e:80:ec:ac:1c:36:1d:52:90:71:34:5b:bc:13:6b: 7e:b6:00:44:62:55:0f:4b:1a:41:cf:e1:ab:6b:df:8d:b8:a7: 87:79:52:7f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUchex4GwOpv0bctp1QzLnRe8fQMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNzIxNTNaFw0yNzA1MTAxNzI2NTNaMDMxMTAvBgNV BAMTKDM0NEMwNThGRDU2ODNCQ0IzMjQ1OTAwQjU2RDU4MURGNTc2MkY1NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDifJy+9GmR6kpiLaMpBL9+gL0R ZS/YItYAkqgBal0XBTn4QvS/A++H+4ubf4M+GYUxcWO2Ew6tCVDiMN3sPgbFvenH FR7B6bAzFAw320Bw9PeU10GCS00zYWzA5T87KswLE0f61fXC5l7cLVsfO0N4R3Ej 9zxpow8zHT4nD8Wx1TtMJ1W40b2ZQ7Ar1bCw7nzV7wGbtWdNkQObS4E0KZCY/r3r 2vECCL/UagGuFIg6u/+hUa2LfdHJPB5KcqGFwUQidJqPliI39at13VMT+5ZCqgEL 5fs8sXrVxKiHobhXrFqsJMnTqYwS+kmZ+n0aHB3rB2ujPOhYSkeMxlmWbqxbAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUNEwFj9VoO8syRZALVtWB31di9WIwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMxMzIzMzJlMzUzMDJl MzMzMjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAN7MiAwDQYJKoZIhvcNAQELBQADggEBAJING77KWQ3ps2RPWpYmouerBQbMZ3Kp Hb8qAFknbKOuvKxkPcIl3Q+jlqoGyZAubBA2QYNK+N8CtMnz3lTLk6ZuPt5V1v8s 1FvsaXXwMJPZPCnF0q1+dEE0KlJHdoZOFkSmmHxkwOgl6ZUriek/XkpQXxYbBVXk 5371/rgglLGVxsBACUIdTkJ5rQlmZf9M5InDhBonPin+m9s+eWMVTyfAfOC1Ju+C D2lIfEYOz85tp2vz8piu2hGVS1VBdVNC4xZsdarLHneP0Ao0XCFehtFd3/foUuMc n1SSQh6A7KwcNh1SkHE0W7wTa362AERiVQ9LGkHP4atr3424p4d5Un8= -----END CERTIFICATE-----Generated at Wed May 13 21:08:11 2026 by rpki-client