$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/3132342e3135352e3137302e302f32332d3233203d3e203138343239.roa File: 3132342e3135352e3137302e302f32332d3233203d3e203138343239.roa (raw, json) Hash identifier: ZV606B5QS3/2jMcl7LTfYt2f40KddlwMyUDXgD33HX4= Subject key identifier: 41:25:2E:33:19:C9:DD:64:62:11:D5:CD:A5:EA:3F:48:54:93:DA:E1 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 72F786C18FB55752BE80FA0C38C1C71268378B35 Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/3132342e3135352e3137302e302f32332d3233203d3e203138343239.roa Signing time: Mon 11 May 2026 17:27:13 +0000 ROA not before: Mon 11 May 2026 17:22:13 +0000 ROA not after: Mon 10 May 2027 17:27:13 +0000 asID: 18429 IP address blocks: 124.155.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f7:86:c1:8f:b5:57:52:be:80:fa:0c:38:c1:c7:12:68:37:8b:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 17:22:13 2026 GMT Not After : May 10 17:27:13 2027 GMT Subject: CN=41252E3319C9DD646211D5CDA5EA3F485493DAE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7e:a3:37:8e:e7:61:e6:14:8f:a9:65:29:b1: bd:6f:6a:a3:f5:3d:c3:d0:34:0e:6d:c0:47:f4:03: d3:6c:a8:00:fa:5e:f5:ee:94:d8:e5:71:50:2c:b8: 6e:8f:00:75:46:55:44:eb:77:ea:66:55:2e:56:09: 66:97:81:c4:7e:22:9e:0b:14:44:df:28:8b:bf:7a: 58:29:c0:8d:79:3e:c7:ba:37:56:df:73:b1:81:64: b5:57:4e:3f:56:92:d3:89:cd:8e:14:89:92:07:80: 98:83:1c:95:f2:82:ec:de:0e:d8:4f:b2:f0:f1:5c: b4:1e:8d:8b:87:bf:9d:7c:e5:26:26:9f:44:b8:35: 72:40:80:42:3c:62:55:ab:d2:95:cf:03:04:f9:dc: 46:ee:b9:c4:e9:28:93:23:6d:7f:08:42:35:56:42: 58:9d:c4:dc:4a:4e:ee:4f:df:52:e0:8b:f9:69:fa: 49:17:3e:b7:fd:36:b8:f8:97:77:05:7d:63:73:95: 00:b9:b7:19:c6:3f:5e:50:dd:f3:57:ce:38:86:43: b6:24:98:a5:51:f9:de:50:f6:70:06:b1:d7:1b:95: c1:40:1f:48:b6:9f:99:5a:a1:a9:32:8a:cf:c2:f9: b1:e1:36:4b:7a:bc:df:af:69:cb:4a:3a:42:24:a4: 9a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:25:2E:33:19:C9:DD:64:62:11:D5:CD:A5:EA:3F:48:54:93:DA:E1 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/3132342e3135352e3137302e302f32332d3233203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.155.170.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:37:b2:34:77:5f:80:1c:e0:dc:fd:93:76:7b:89:97:86:e7: 2d:bc:aa:9a:9c:bb:81:38:a6:91:96:a9:7a:34:6a:2e:89:1e: 05:36:f1:31:15:af:60:e9:a5:da:90:80:b8:2c:03:b2:99:4f: 46:ed:04:e8:74:83:c0:b9:96:d0:8f:09:76:14:22:6a:27:db: c7:30:21:8d:22:dd:67:4d:df:a0:ba:14:f1:7a:2a:3c:be:75: 99:f1:ec:58:f4:00:c2:6f:bb:a1:3c:59:f4:93:35:12:2a:4e: 6d:17:a3:16:2f:f6:08:3c:e8:34:2c:75:d2:2c:2e:f1:8b:eb: b3:26:c7:ef:15:b4:e8:7a:6b:91:a3:42:f7:df:04:39:fd:2d: df:81:75:ca:3f:3f:14:1b:8e:14:8e:ba:79:79:79:0e:0e:d7: 8d:03:c4:be:fe:4d:ac:1d:3f:53:7b:8f:a4:d9:95:6b:1c:a8: 5f:71:5d:e6:d6:98:de:53:7c:c9:9f:93:da:a2:c4:fa:6a:47: 21:dd:c6:e1:9e:e5:bf:9a:2e:3d:c6:1e:3e:15:a0:45:4f:4b: a1:45:cb:90:29:7d:43:48:c9:f9:34:ea:3d:27:6d:e6:28:2d: 29:2c:33:9e:6f:b8:c7:5b:ac:29:42:f6:ed:05:df:07:91:b7: 4b:66:ab:dd -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUcveGwY+1V1K+gPoMOMHHEmg3izUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNzIyMTNaFw0yNzA1MTAxNzI3MTNaMDMxMTAvBgNV BAMTKDQxMjUyRTMzMTlDOURENjQ2MjExRDVDREE1RUEzRjQ4NTQ5M0RBRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDfqM3judh5hSPqWUpsb1vaqP1 PcPQNA5twEf0A9NsqAD6XvXulNjlcVAsuG6PAHVGVUTrd+pmVS5WCWaXgcR+Ip4L FETfKIu/elgpwI15Pse6N1bfc7GBZLVXTj9WktOJzY4UiZIHgJiDHJXyguzeDthP svDxXLQejYuHv5185SYmn0S4NXJAgEI8YlWr0pXPAwT53EbuucTpKJMjbX8IQjVW QlidxNxKTu5P31Lgi/lp+kkXPrf9Nrj4l3cFfWNzlQC5txnGP15Q3fNXzjiGQ7Yk mKVR+d5Q9nAGsdcblcFAH0i2n5laoakyis/C+bHhNkt6vN+vactKOkIkpJr1AgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUQSUuMxnJ3WRiEdXNpeo/SFST2uEwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMxMzIzNDJlMzEzNTM1 MmUzMTM3MzAyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMTM4MzQzMjM5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBfJuqMA0GCSqGSIb3DQEBCwUAA4IBAQAbN7I0d1+AHODc/ZN2e4mXhuct vKqanLuBOKaRlql6NGouiR4FNvExFa9g6aXakIC4LAOymU9G7QTodIPAuZbQjwl2 FCJqJ9vHMCGNIt1nTd+guhTxeio8vnWZ8exY9ADCb7uhPFn0kzUSKk5tF6MWL/YI POg0LHXSLC7xi+uzJsfvFbToemuRo0L33wQ5/S3fgXXKPz8UG44Ujrp5eXkODteN A8S+/k2sHT9Te4+k2ZVrHKhfcV3m1pjeU3zJn5PaosT6akch3cbhnuW/mi49xh4+ FaBFT0uhRcuQKX1DSMn5NOo9J23mKC0pLDOeb7jHW6wpQvbtBd8HkbdLZqvd -----END CERTIFICATE-----Generated at Wed May 13 21:08:20 2026 by rpki-client