$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e34382e302f32312d3231203d3e203138343239.roa File: 32372e3134372e34382e302f32312d3231203d3e203138343239.roa (raw, json) Hash identifier: ZrgWemM8yyYopF2L77BeSsB2Z62s1iuiocfoxPnIcRc= Subject key identifier: F5:5C:E1:E3:DE:0C:9C:34:F6:13:AB:D5:4F:3A:7D:C2:5D:87:D4:1C Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 6FABCFE61CBFB864EC05E212D8FE1BFD544E8DAB Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e34382e302f32312d3231203d3e203138343239.roa Signing time: Mon 11 May 2026 17:04:37 +0000 ROA not before: Mon 11 May 2026 16:59:37 +0000 ROA not after: Mon 10 May 2027 17:04:37 +0000 asID: 18429 IP address blocks: 27.147.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ab:cf:e6:1c:bf:b8:64:ec:05:e2:12:d8:fe:1b:fd:54:4e:8d:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 16:59:37 2026 GMT Not After : May 10 17:04:37 2027 GMT Subject: CN=F55CE1E3DE0C9C34F613ABD54F3A7DC25D87D41C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0f:ec:9f:15:31:f2:ea:86:67:f6:cf:55:5f: c5:ba:69:f7:4b:6b:5b:6e:26:fe:af:79:43:46:52: 22:10:5b:40:0e:55:b2:cb:3b:75:9c:77:07:19:0a: ad:5b:2a:df:ef:f0:70:87:87:e9:37:ef:c7:03:40: c6:54:91:44:94:32:97:8e:b7:2a:67:b7:b0:aa:12: 96:91:0f:3d:dc:fa:11:f6:ef:0d:63:4a:33:4d:74: 4a:8e:33:b1:0b:cd:10:30:34:33:34:d2:a1:bb:3f: 89:7a:d2:4b:70:27:2b:b5:07:2d:3e:93:ee:38:0e: 0e:85:dd:16:4a:a6:69:38:d6:58:df:04:7c:68:24: c9:73:41:0a:04:84:03:d0:ac:b7:a7:0f:f7:73:f4: a1:dc:ef:ac:36:78:1d:ac:99:73:0f:f3:b3:c1:ad: 5e:a7:fd:4f:2a:e7:1d:0e:23:1a:dd:32:4b:57:aa: 81:c9:5d:df:f0:60:54:55:40:7a:7c:36:3d:80:ce: 63:8b:a7:b7:bb:d0:7a:01:02:f0:9e:53:8f:b3:33: 92:31:79:3f:05:70:ec:18:38:ab:4d:88:5e:f4:2f: 46:90:0a:d0:a1:57:3e:03:6b:10:6e:5e:f0:d7:19: 84:f1:db:68:32:8d:e8:62:21:1e:bc:ab:04:d7:03: f5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:5C:E1:E3:DE:0C:9C:34:F6:13:AB:D5:4F:3A:7D:C2:5D:87:D4:1C X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e34382e302f32312d3231203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.147.48.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:d2:9f:71:63:5c:6f:4d:a4:77:88:93:f9:dc:a6:5b:ab:23: 03:fd:c9:ae:26:61:9b:e3:ef:c6:a8:45:b0:5a:7a:fd:9f:f0: ec:6e:78:fd:99:b4:9a:4a:fe:54:95:3e:12:ab:f3:71:f3:63: f1:17:4d:36:53:29:a8:82:07:38:d6:70:47:74:56:75:1f:53: 7e:ac:45:28:80:98:c3:a4:f1:d0:61:59:e3:f1:4d:d3:e0:e9: a5:d4:f5:be:ce:99:ad:c4:93:8f:26:c4:39:98:ae:48:e0:9a: 4c:b3:3b:30:ca:67:e3:62:aa:31:94:b9:0f:33:0e:6d:3c:58: 3b:3f:5b:0a:0d:45:1b:e9:8d:ba:c6:6a:63:3b:e1:b4:33:28: 75:20:c0:21:56:aa:4e:dd:33:dc:e8:69:9a:1a:b2:e3:3e:d1: 1d:bb:b2:dd:ea:d5:6e:b6:09:88:ee:02:be:90:6c:b7:6f:df: 55:78:d4:29:f0:69:12:90:fc:cc:4f:03:50:d1:11:fd:08:31: 38:cd:12:99:4b:cb:ae:fb:21:c2:51:54:31:5a:52:0f:11:20: d4:71:6a:37:81:ce:66:b4:08:0e:4d:1e:ea:ee:ab:91:76:73: 43:fa:6e:ad:0b:28:ed:ff:2a:ff:64:f0:2c:9c:0b:31:d0:20: cc:05:eb:de -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUb6vP5hy/uGTsBeIS2P4b/VROjaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNjU5MzdaFw0yNzA1MTAxNzA0MzdaMDMxMTAvBgNV BAMTKEY1NUNFMUUzREUwQzlDMzRGNjEzQUJENTRGM0E3REMyNUQ4N0Q0MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4D+yfFTHy6oZn9s9VX8W6afdL a1tuJv6veUNGUiIQW0AOVbLLO3WcdwcZCq1bKt/v8HCHh+k378cDQMZUkUSUMpeO typnt7CqEpaRDz3c+hH27w1jSjNNdEqOM7ELzRAwNDM00qG7P4l60ktwJyu1By0+ k+44Dg6F3RZKpmk41ljfBHxoJMlzQQoEhAPQrLenD/dz9KHc76w2eB2smXMP87PB rV6n/U8q5x0OIxrdMktXqoHJXd/wYFRVQHp8Nj2AzmOLp7e70HoBAvCeU4+zM5Ix eT8FcOwYOKtNiF70L0aQCtChVz4DaxBuXvDXGYTx22gyjehiIR68qwTXA/W3AgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQU9Vzh494MnDT2E6vVTzp9wl2H1BwwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMyMzcyZTMxMzQzNzJl MzQzODJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAMbkzAwDQYJKoZIhvcNAQELBQADggEBAI/Sn3FjXG9NpHeIk/ncplurIwP9ya4m YZvj78aoRbBaev2f8OxueP2ZtJpK/lSVPhKr83HzY/EXTTZTKaiCBzjWcEd0VnUf U36sRSiAmMOk8dBhWePxTdPg6aXU9b7Oma3Ek48mxDmYrkjgmkyzOzDKZ+NiqjGU uQ8zDm08WDs/WwoNRRvpjbrGamM74bQzKHUgwCFWqk7dM9zoaZoasuM+0R27st3q 1W62CYjuAr6QbLdv31V41CnwaRKQ/MxPA1DREf0IMTjNEplLy677IcJRVDFaUg8R INRxajeBzma0CA5NHuruq5F2c0P6bq0LKO3/Kv9k8CycCzHQIMwF694= -----END CERTIFICATE-----Generated at Wed May 13 21:48:29 2026 by rpki-client