$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e302e302f32312d3232203d3e203138343239.roa File: 32372e3134372e302e302f32312d3232203d3e203138343239.roa (raw, json) Hash identifier: i+6SCDskOfz9y+JbXfCetcWBUvI8VHwnpsnX10NPop4= Subject key identifier: CC:0F:63:9F:6D:15:F7:54:78:E0:D7:82:E8:0C:4A:03:3B:5C:74:48 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 6C3220F18C52E685BDBBD79CD08402F0CE4D8739 Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e302e302f32312d3232203d3e203138343239.roa Signing time: Mon 11 May 2026 17:17:50 +0000 ROA not before: Mon 11 May 2026 17:12:50 +0000 ROA not after: Mon 10 May 2027 17:17:50 +0000 asID: 18429 IP address blocks: 27.147.0.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:32:20:f1:8c:52:e6:85:bd:bb:d7:9c:d0:84:02:f0:ce:4d:87:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 17:12:50 2026 GMT Not After : May 10 17:17:50 2027 GMT Subject: CN=CC0F639F6D15F75478E0D782E80C4A033B5C7448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cb:0a:ba:20:74:42:3e:dd:82:13:9e:49:df: ba:d7:9e:89:b6:03:a5:d6:1d:3c:8b:0c:d7:1c:4e: 99:fb:38:0f:5a:c7:36:c7:e8:83:32:eb:a4:c3:b4: 40:6d:f0:30:23:ce:92:8b:e1:dc:00:05:5e:d4:5c: 61:4e:71:45:b0:ca:27:a5:b2:69:69:4f:4b:a0:79: 07:01:0c:4c:e3:c7:02:ae:b4:48:23:f9:14:e8:65: f6:5a:27:6d:32:63:ff:0a:ac:7a:c4:b1:43:3b:29: 62:fd:d4:76:84:0b:5e:d7:8b:a5:72:df:3c:11:8e: a1:4b:0b:63:80:d4:03:ab:20:a9:32:38:da:ed:37: f3:92:0d:b1:e9:5e:1a:09:ed:9e:de:29:d6:a3:b6: 79:c2:3c:97:06:0d:12:36:34:c2:21:e7:8a:5e:5f: c8:dd:1b:1c:26:24:d9:6e:57:13:fd:3b:4f:f4:e5: a2:8c:9c:5b:58:49:c9:95:07:5f:cc:8e:57:41:f6: 51:ef:49:5e:c5:cc:54:7a:ce:08:c6:ae:fb:21:0b: f1:26:85:4b:fe:95:27:90:ec:75:bf:a6:75:6c:6a: 78:94:65:f3:75:1c:b8:41:72:29:e9:67:cc:11:33: c1:87:da:f2:1b:61:f3:d9:80:a7:a7:d0:60:29:04: 8d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0F:63:9F:6D:15:F7:54:78:E0:D7:82:E8:0C:4A:03:3B:5C:74:48 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e302e302f32312d3232203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.147.0.0/21 Signature Algorithm: sha256WithRSAEncryption 0a:68:68:f4:db:69:ca:60:04:da:9e:b5:0a:59:0e:fe:c8:94: c6:94:23:b6:a0:39:2c:cd:2e:8d:7d:1f:6f:8a:26:ad:8a:18: b5:e5:54:86:ac:d9:d0:05:35:79:45:c4:3e:fb:d2:2f:7d:00: 10:80:3b:1e:33:2c:17:0e:14:03:9a:8f:17:84:dd:d5:2a:47: 3a:be:8e:94:b1:b9:c1:dc:7f:59:4e:d3:d6:9f:de:1d:ae:e0: 7c:84:1d:69:90:fe:be:06:ed:dc:5f:c4:21:e4:ef:17:6a:b9: 75:d3:06:a5:15:70:f9:ce:f4:ad:aa:09:ee:1c:d4:53:87:1b: 3d:ce:5f:1e:e4:5c:c7:fb:ef:1e:a0:94:ad:dc:e7:ab:a5:01: 1b:af:6b:d3:b9:fd:fc:ca:12:86:60:d1:f7:ff:21:be:8b:64: 2e:b3:10:bc:4b:e7:b9:77:ce:14:71:5f:ac:8b:d8:a6:b8:ad: 0a:5f:78:78:98:5c:ac:41:0d:21:95:14:7d:32:1d:19:0f:e3: b1:5d:dd:9b:24:33:e0:b4:3a:53:54:63:38:20:7d:6a:9f:97: 37:f3:49:9c:59:75:ac:1c:c5:21:4a:ed:9d:9e:95:47:77:38: 32:ea:3c:3a:01:86:dc:68:1a:4e:be:f8:dd:12:e7:94:ba:ac: 19:4a:57:4a -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUbDIg8YxS5oW9u9ec0IQC8M5NhzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNzEyNTBaFw0yNzA1MTAxNzE3NTBaMDMxMTAvBgNV BAMTKENDMEY2MzlGNkQxNUY3NTQ3OEUwRDc4MkU4MEM0QTAzM0I1Qzc0NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGywq6IHRCPt2CE55J37rXnom2 A6XWHTyLDNccTpn7OA9axzbH6IMy66TDtEBt8DAjzpKL4dwABV7UXGFOcUWwyiel smlpT0ugeQcBDEzjxwKutEgj+RToZfZaJ20yY/8KrHrEsUM7KWL91HaEC17Xi6Vy 3zwRjqFLC2OA1AOrIKkyONrtN/OSDbHpXhoJ7Z7eKdajtnnCPJcGDRI2NMIh54pe X8jdGxwmJNluVxP9O0/05aKMnFtYScmVB1/MjldB9lHvSV7FzFR6zgjGrvshC/Em hUv+lSeQ7HW/pnVsaniUZfN1HLhBcinpZ8wRM8GH2vIbYfPZgKen0GApBI0TAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUzA9jn20V91R44NeC6AxKAztcdEgwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHcGCCsGAQUFBwELBGswaTBnBggrBgEFBQcwC4ZbcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMyMzcyZTMxMzQzNzJl MzAyZTMwMmYzMjMxMmQzMjMyMjAzZDNlMjAzMTM4MzQzMjM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD G5MAMA0GCSqGSIb3DQEBCwUAA4IBAQAKaGj022nKYATanrUKWQ7+yJTGlCO2oDks zS6NfR9viiatihi15VSGrNnQBTV5RcQ++9IvfQAQgDseMywXDhQDmo8XhN3VKkc6 vo6UsbnB3H9ZTtPWn94druB8hB1pkP6+Bu3cX8Qh5O8Xarl10walFXD5zvStqgnu HNRThxs9zl8e5FzH++8eoJSt3OerpQEbr2vTuf38yhKGYNH3/yG+i2QusxC8S+e5 d84UcV+si9imuK0KX3h4mFysQQ0hlRR9Mh0ZD+OxXd2bJDPgtDpTVGM4IH1qn5c3 80mcWXWsHMUhSu2dnpVHdzgy6jw6AYbcaBpOvvjdEueUuqwZSldK -----END CERTIFICATE-----Generated at Wed May 13 21:08:20 2026 by rpki-client