$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e302e302f31382d3234203d3e203138343239.roa File: 32372e3134372e302e302f31382d3234203d3e203138343239.roa (raw, json) Hash identifier: 5z5f/TY+/50AUpKJmszZuzW9LEavhbkyLU3Ye/xedyg= Subject key identifier: 1D:04:1C:42:B7:DE:78:49:89:14:AC:71:13:89:8C:3D:AA:AB:0F:95 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 23FEB63E9BD166A1DF2CA15FF9A3291CDA9FD2EC Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e302e302f31382d3234203d3e203138343239.roa Signing time: Mon 11 May 2026 17:27:10 +0000 ROA not before: Mon 11 May 2026 17:22:10 +0000 ROA not after: Mon 10 May 2027 17:27:10 +0000 asID: 18429 IP address blocks: 27.147.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:fe:b6:3e:9b:d1:66:a1:df:2c:a1:5f:f9:a3:29:1c:da:9f:d2:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 17:22:10 2026 GMT Not After : May 10 17:27:10 2027 GMT Subject: CN=1D041C42B7DE78498914AC7113898C3DAAAB0F95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ac:e8:ea:d0:b8:9c:5b:03:ad:db:6a:26:48: a0:5c:98:b1:1c:9e:93:ec:34:89:58:d0:14:44:04: b6:3b:61:19:48:7b:9a:42:21:be:72:e3:c3:ac:f1: f4:e3:08:17:5e:b8:68:f1:38:7d:82:6d:03:36:77: 32:6e:19:33:0c:d5:f6:b1:9e:29:06:6e:e7:c4:d0: a9:dc:81:1c:67:20:ff:1b:e2:ec:23:58:33:d7:7e: 98:62:67:65:a9:9d:55:66:bc:13:c3:10:92:39:86: 35:54:44:28:a4:ae:76:93:a4:57:35:8b:34:f5:cf: 33:ac:9f:7c:4c:11:0d:26:65:a6:2c:40:2c:55:2a: 4c:83:d9:20:bd:cc:b8:57:87:31:0a:a3:4b:46:05: 12:16:47:05:2a:b2:d4:d3:02:a8:6b:c0:bc:8f:1d: 5d:37:81:55:e3:f1:24:2c:ad:2c:07:70:f4:a1:1c: ac:5e:af:c0:bd:67:cb:e7:04:08:8e:90:d8:98:19: fe:6a:8c:fb:83:af:db:6d:35:cb:16:ee:44:8f:b2: 6b:bc:80:63:91:87:8d:fa:a7:3a:bc:27:39:3c:ef: ec:c5:5e:8d:13:90:14:a4:32:ce:5d:61:5e:27:c9: 0b:f4:f1:b7:fa:28:c1:ab:33:9f:e2:15:c6:a6:6c: 7a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:04:1C:42:B7:DE:78:49:89:14:AC:71:13:89:8C:3D:AA:AB:0F:95 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e302e302f31382d3234203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.147.0.0/18 Signature Algorithm: sha256WithRSAEncryption 4b:26:cd:5e:3c:13:ee:d2:b5:76:ec:35:38:99:79:1b:6c:e1: f5:78:a3:db:6b:5b:2c:70:a9:62:0c:d7:e6:e3:89:9c:5d:ac: be:cc:be:a5:f5:ff:21:70:de:cd:09:5a:55:3b:65:98:0a:c1: 90:e9:63:20:b8:0d:82:89:af:f6:d5:d1:14:7b:73:16:50:9e: 39:9a:f8:57:23:32:b6:d4:8e:9e:f3:09:89:97:23:30:89:01: 32:94:31:19:98:dd:43:91:8a:a1:d4:9f:43:3d:36:16:c5:79: df:a5:f2:39:49:d1:d4:72:b7:40:19:d9:db:7d:6d:47:00:cb: fa:d1:d8:b5:01:c3:b5:f0:35:81:76:24:9f:f3:79:b0:35:07: 20:81:a2:d2:4b:5d:ed:bb:08:19:4b:b1:00:c8:25:fd:9e:11: a5:43:75:79:52:fe:03:b1:67:b9:66:3c:0b:28:89:b3:e8:41: 0b:83:e7:3e:f5:3b:11:c2:e6:a4:74:92:a2:4c:97:3e:99:39: 6b:19:8c:6b:d2:65:72:a0:76:b8:47:7b:64:4f:4b:72:5e:96: 17:c4:f4:32:2c:0b:8b:1e:d2:41:cd:49:7f:7b:9d:88:1a:82: 51:fb:9b:48:c6:9a:d3:50:98:5e:bb:6e:74:1b:5a:8c:80:50: 36:a9:74:96 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUI/62PpvRZqHfLKFf+aMpHNqf0uwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNzIyMTBaFw0yNzA1MTAxNzI3MTBaMDMxMTAvBgNV BAMTKDFEMDQxQzQyQjdERTc4NDk4OTE0QUM3MTEzODk4QzNEQUFBQjBGOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDarOjq0LicWwOt22omSKBcmLEc npPsNIlY0BREBLY7YRlIe5pCIb5y48Os8fTjCBdeuGjxOH2CbQM2dzJuGTMM1fax nikGbufE0KncgRxnIP8b4uwjWDPXfphiZ2WpnVVmvBPDEJI5hjVURCikrnaTpFc1 izT1zzOsn3xMEQ0mZaYsQCxVKkyD2SC9zLhXhzEKo0tGBRIWRwUqstTTAqhrwLyP HV03gVXj8SQsrSwHcPShHKxer8C9Z8vnBAiOkNiYGf5qjPuDr9ttNcsW7kSPsmu8 gGORh436pzq8Jzk87+zFXo0TkBSkMs5dYV4nyQv08bf6KMGrM5/iFcambHqXAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUHQQcQrfeeEmJFKxxE4mMPaqrD5UwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHcGCCsGAQUFBwELBGswaTBnBggrBgEFBQcwC4ZbcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMyMzcyZTMxMzQzNzJl MzAyZTMwMmYzMTM4MmQzMjM0MjAzZDNlMjAzMTM4MzQzMjM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG G5MAMA0GCSqGSIb3DQEBCwUAA4IBAQBLJs1ePBPu0rV27DU4mXkbbOH1eKPba1ss cKliDNfm44mcXay+zL6l9f8hcN7NCVpVO2WYCsGQ6WMguA2Cia/21dEUe3MWUJ45 mvhXIzK21I6e8wmJlyMwiQEylDEZmN1DkYqh1J9DPTYWxXnfpfI5SdHUcrdAGdnb fW1HAMv60di1AcO18DWBdiSf83mwNQcggaLSS13tuwgZS7EAyCX9nhGlQ3V5Uv4D sWe5ZjwLKImz6EELg+c+9TsRwuakdJKiTJc+mTlrGYxr0mVyoHa4R3tkT0tyXpYX xPQyLAuLHtJBzUl/e52IGoJR+5tIxprTUJheu250G1qMgFA2qXSW -----END CERTIFICATE-----Generated at Wed May 13 21:08:20 2026 by rpki-client