$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e32342e302f32312d3231203d3e203138343239.roa File: 32372e3134372e32342e302f32312d3231203d3e203138343239.roa (raw, json) Hash identifier: XEVEN0c/PW+1vJafIYt9jyqO81tq+R933lOrADOPriE= Subject key identifier: BC:52:8A:36:9D:63:33:E6:51:62:00:8F:E4:2B:31:64:26:67:B9:D4 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 5F0638D64B958178D1B62BF8300AEF49EB4283E7 Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e32342e302f32312d3231203d3e203138343239.roa Signing time: Mon 11 May 2026 17:04:35 +0000 ROA not before: Mon 11 May 2026 16:59:35 +0000 ROA not after: Mon 10 May 2027 17:04:35 +0000 asID: 18429 IP address blocks: 27.147.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:06:38:d6:4b:95:81:78:d1:b6:2b:f8:30:0a:ef:49:eb:42:83:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 16:59:35 2026 GMT Not After : May 10 17:04:35 2027 GMT Subject: CN=BC528A369D6333E65162008FE42B31642667B9D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3a:08:9f:d6:f6:3d:95:07:a7:a0:91:b4:b4: 69:18:9c:82:07:a2:ae:47:ea:e4:52:fe:e9:c5:52: b6:15:90:ef:1b:7f:aa:df:a0:f8:84:33:d5:9a:44: 78:fa:a6:17:1d:a3:7c:34:23:d7:f2:38:e9:8b:60: 7e:5f:e6:55:93:34:30:3b:5b:e4:36:d9:aa:ce:ce: f9:7f:ea:c3:75:e2:21:05:fe:5e:03:d8:22:bb:55: 06:64:f1:79:2c:77:84:30:4f:b1:df:13:cd:67:da: 4b:db:72:32:25:90:15:7d:10:d3:2f:1c:dc:74:ec: 91:62:92:98:a4:83:53:68:53:ef:7e:8d:cd:3e:18: af:4a:89:5a:94:81:cf:22:d6:e8:16:80:d7:f4:ad: 8c:e9:66:61:39:35:75:41:29:8e:02:f5:b8:ed:3b: 91:36:a6:66:f4:80:1e:0c:54:a3:54:3b:ec:d8:a0: 7f:d8:55:f9:75:4c:c5:7a:af:2a:5c:a0:bf:a4:86: b9:88:22:3c:ca:53:39:2b:7b:22:3b:7e:a6:c0:24: d2:f2:bb:d1:aa:74:68:fd:72:f0:73:d1:9b:25:d8: 58:19:5d:da:c5:1f:31:d6:7c:bb:58:e5:d9:24:95: 10:ae:a1:16:11:ed:e1:90:35:19:b2:b6:20:02:dd: f2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:52:8A:36:9D:63:33:E6:51:62:00:8F:E4:2B:31:64:26:67:B9:D4 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e32342e302f32312d3231203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.147.24.0/21 Signature Algorithm: sha256WithRSAEncryption a7:b6:77:0a:05:8f:13:5d:4c:9e:9e:e6:82:7c:ba:7e:8b:6a: d3:24:a6:be:ef:58:6d:97:36:ff:aa:83:89:fe:ba:e1:d2:f2: 76:bc:18:c4:eb:e4:94:4c:cf:a5:e7:0c:d7:96:3f:9d:a3:ae: a2:96:43:7f:af:0d:6c:44:ff:74:1d:8d:70:a4:27:57:28:9f: 20:23:35:6b:30:3f:b6:20:bd:2a:8e:80:28:b8:1a:ce:9f:7c: e5:8a:0d:b9:f5:0e:94:ea:7a:c3:2c:aa:4d:57:70:f5:ef:12: 21:90:fa:96:6a:45:6d:26:19:ef:a7:61:32:99:b6:e3:ea:64: 4c:61:66:1b:af:90:cb:df:8a:80:d2:a9:1a:c5:d6:06:1c:87: 2d:4e:1f:d3:39:17:6d:21:47:07:04:b6:55:d1:aa:da:4f:4a: 42:0f:95:a6:8c:2f:94:ca:44:e2:ed:36:2c:f4:de:5f:57:3f: 26:55:44:91:da:30:d8:52:95:44:bd:67:df:be:bd:88:fd:7c: a6:2e:4b:ef:a4:d0:7b:03:26:12:76:da:8f:d0:9c:39:ad:f2: bb:a1:ca:a8:b4:9a:ff:df:76:23:a9:5e:08:00:62:b5:94:9e: e2:21:fd:0d:2a:a3:ca:c5:32:a8:e6:7e:76:6b:71:55:9a:4d: 44:4f:7b:be -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUXwY41kuVgXjRtiv4MArvSetCg+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNjU5MzVaFw0yNzA1MTAxNzA0MzVaMDMxMTAvBgNV BAMTKEJDNTI4QTM2OUQ2MzMzRTY1MTYyMDA4RkU0MkIzMTY0MjY2N0I5RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqOgif1vY9lQenoJG0tGkYnIIH oq5H6uRS/unFUrYVkO8bf6rfoPiEM9WaRHj6phcdo3w0I9fyOOmLYH5f5lWTNDA7 W+Q22arOzvl/6sN14iEF/l4D2CK7VQZk8Xksd4QwT7HfE81n2kvbcjIlkBV9ENMv HNx07JFikpikg1NoU+9+jc0+GK9KiVqUgc8i1ugWgNf0rYzpZmE5NXVBKY4C9bjt O5E2pmb0gB4MVKNUO+zYoH/YVfl1TMV6rypcoL+khrmIIjzKUzkreyI7fqbAJNLy u9GqdGj9cvBz0Zsl2FgZXdrFHzHWfLtY5dkklRCuoRYR7eGQNRmytiAC3fLrAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUvFKKNp1jM+ZRYgCP5CsxZCZnudQwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMyMzcyZTMxMzQzNzJl MzIzNDJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAMbkxgwDQYJKoZIhvcNAQELBQADggEBAKe2dwoFjxNdTJ6e5oJ8un6LatMkpr7v WG2XNv+qg4n+uuHS8na8GMTr5JRMz6XnDNeWP52jrqKWQ3+vDWxE/3QdjXCkJ1co nyAjNWswP7YgvSqOgCi4Gs6ffOWKDbn1DpTqesMsqk1XcPXvEiGQ+pZqRW0mGe+n YTKZtuPqZExhZhuvkMvfioDSqRrF1gYchy1OH9M5F20hRwcEtlXRqtpPSkIPlaaM L5TKROLtNiz03l9XPyZVRJHaMNhSlUS9Z9++vYj9fKYuS++k0HsDJhJ22o/QnDmt 8ruhyqi0mv/fdiOpXggAYrWUnuIh/Q0qo8rFMqjmfnZrcVWaTURPe74= -----END CERTIFICATE-----Generated at Wed May 13 21:08:23 2026 by rpki-client