$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/3132332e35302e36312e302f32342d3234203d3e203138343239.roa File: 3132332e35302e36312e302f32342d3234203d3e203138343239.roa (raw, json) Hash identifier: k/lMeaITiKqhiaqJMmdHNPTNo2KvPAqAPW7YWDgfORw= Subject key identifier: 2D:18:A3:B8:19:2D:1D:1C:E7:EC:B3:CF:B6:6B:4C:B6:2C:DA:B4:A4 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 1D79D2CF1F7F5C798FB73DE7CCA61617D2224FF2 Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/3132332e35302e36312e302f32342d3234203d3e203138343239.roa Signing time: Mon 11 May 2026 17:04:42 +0000 ROA not before: Mon 11 May 2026 16:59:42 +0000 ROA not after: Mon 10 May 2027 17:04:42 +0000 asID: 18429 IP address blocks: 123.50.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:79:d2:cf:1f:7f:5c:79:8f:b7:3d:e7:cc:a6:16:17:d2:22:4f:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 16:59:42 2026 GMT Not After : May 10 17:04:42 2027 GMT Subject: CN=2D18A3B8192D1D1CE7ECB3CFB66B4CB62CDAB4A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:16:09:1a:59:77:61:62:e2:92:be:df:60:e6: 45:c5:56:65:ac:e7:ba:21:ac:6d:bb:ac:47:1a:a8: 2d:9a:a7:1b:11:b0:8a:eb:5c:48:7e:35:8a:fe:20: e8:f7:da:3f:a4:f1:61:06:ae:57:38:5a:d3:2d:5a: df:a7:78:49:6a:e6:25:7e:42:47:31:5e:b1:66:8c: 39:3b:9b:c1:cb:60:16:23:99:02:a0:3f:0e:f7:f9: 61:92:a2:8b:bc:d9:f6:84:4e:ce:08:fd:af:13:be: 7f:30:8e:7f:03:65:08:46:e8:a1:7d:4c:c7:f6:ec: 0a:62:bd:a6:fb:d4:52:8b:50:17:dc:6f:3e:8e:9a: ac:35:f4:ce:4a:8d:e6:b3:7c:70:6e:82:6e:33:0a: 00:4a:c3:65:b1:d4:9f:e5:b0:3d:77:6e:c7:98:46: 87:0a:3f:39:a1:e5:34:fe:23:53:31:aa:c6:dc:ac: 97:b9:04:8b:93:29:91:f2:6b:84:ec:ee:7e:32:3a: 21:58:04:ba:56:d7:79:2b:51:bc:e2:24:64:a0:f2: 72:f0:fc:2d:87:1b:6c:05:da:2c:10:1d:a2:e4:e2: 4d:61:1a:6d:1d:c2:51:b9:74:1a:83:bf:68:56:51: 1d:e1:59:6b:e8:d2:87:33:02:93:c6:b0:6e:43:e1: 8d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:18:A3:B8:19:2D:1D:1C:E7:EC:B3:CF:B6:6B:4C:B6:2C:DA:B4:A4 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/3132332e35302e36312e302f32342d3234203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.50.61.0/24 Signature Algorithm: sha256WithRSAEncryption 54:e6:66:5f:8d:f2:59:37:24:f2:63:4b:86:96:13:50:a8:61: 70:16:59:64:6f:e5:2d:a3:ad:a2:25:38:8e:53:e8:55:0d:46: 45:86:ae:33:ab:9f:17:9f:e4:b4:df:da:31:a7:93:3b:f6:4d: fa:f3:04:14:04:00:30:e4:73:17:57:28:fa:45:79:33:fb:fd: 4d:4f:01:4b:55:43:cc:fc:3a:24:4c:66:2d:09:1a:66:93:ff: 50:42:17:aa:ab:8f:11:6c:c9:45:1d:ee:a1:d4:d8:02:e5:8b: 49:c0:5e:d6:59:22:83:33:cc:74:8d:a5:40:93:e8:66:ff:d0: cc:6c:cd:3b:5c:6b:8c:28:9d:48:6d:7a:55:8b:c0:06:18:7a: 88:61:f9:b0:ea:68:46:58:97:c1:52:8c:66:dc:b6:60:15:2d: b9:67:0a:23:58:5a:3e:57:4a:0c:5e:f9:a9:6c:27:31:56:bb: 3e:94:eb:4c:52:a1:bf:59:26:ce:fd:f9:19:c8:95:74:fb:bf: 8b:17:73:6d:96:2e:1d:84:a4:73:ba:00:27:80:83:2e:4f:61: 7c:b0:50:f6:4e:59:51:27:4f:f7:ff:51:ef:a9:c1:f3:a6:dd: c2:a7:73:e3:de:11:46:2a:d3:0a:a5:ca:a2:91:85:e2:c6:27: 43:46:8c:8d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUHXnSzx9/XHmPtz3nzKYWF9IiT/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNjU5NDJaFw0yNzA1MTAxNzA0NDJaMDMxMTAvBgNV BAMTKDJEMThBM0I4MTkyRDFEMUNFN0VDQjNDRkI2NkI0Q0I2MkNEQUI0QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkFgkaWXdhYuKSvt9g5kXFVmWs 57ohrG27rEcaqC2apxsRsIrrXEh+NYr+IOj32j+k8WEGrlc4WtMtWt+neElq5iV+ QkcxXrFmjDk7m8HLYBYjmQKgPw73+WGSoou82faETs4I/a8Tvn8wjn8DZQhG6KF9 TMf27Apivab71FKLUBfcbz6Omqw19M5KjeazfHBugm4zCgBKw2Wx1J/lsD13bseY RocKPzmh5TT+I1MxqsbcrJe5BIuTKZHya4Ts7n4yOiFYBLpW13krUbziJGSg8nLw /C2HG2wF2iwQHaLk4k1hGm0dwlG5dBqDv2hWUR3hWWvo0oczApPGsG5D4Y2ZAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQULRijuBktHRzn7LPPtmtMtizatKQwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMxMzIzMzJlMzUzMDJl MzYzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAB7Mj0wDQYJKoZIhvcNAQELBQADggEBAFTmZl+N8lk3JPJjS4aWE1CoYXAWWWRv 5S2jraIlOI5T6FUNRkWGrjOrnxef5LTf2jGnkzv2TfrzBBQEADDkcxdXKPpFeTP7 /U1PAUtVQ8z8OiRMZi0JGmaT/1BCF6qrjxFsyUUd7qHU2ALli0nAXtZZIoMzzHSN pUCT6Gb/0MxszTtca4wonUhtelWLwAYYeohh+bDqaEZYl8FSjGbctmAVLblnCiNY Wj5XSgxe+alsJzFWuz6U60xSob9ZJs79+RnIlXT7v4sXc22WLh2EpHO6ACeAgy5P YXywUPZOWVEnT/f/Ue+pwfOm3cKnc+PeEUYq0wqlyqKRheLGJ0NGjI0= -----END CERTIFICATE-----Generated at Wed May 13 21:08:13 2026 by rpki-client