$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e35362e302f32312d3231203d3e203138343239.roa File: 32372e3134372e35362e302f32312d3231203d3e203138343239.roa (raw, json) Hash identifier: jzdfq5w8ofpFFa4Uhzt+xuxFL3I/9nuAsT9FMPcQbbQ= Subject key identifier: 17:B1:47:7D:0D:C1:8E:E6:29:75:29:85:F7:82:92:3D:A4:87:23:C3 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 5A4F0271A8322F7C520671309205B98C09D7B61E Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e35362e302f32312d3231203d3e203138343239.roa Signing time: Mon 11 May 2026 17:04:38 +0000 ROA not before: Mon 11 May 2026 16:59:38 +0000 ROA not after: Mon 10 May 2027 17:04:38 +0000 asID: 18429 IP address blocks: 27.147.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:4f:02:71:a8:32:2f:7c:52:06:71:30:92:05:b9:8c:09:d7:b6:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 16:59:38 2026 GMT Not After : May 10 17:04:38 2027 GMT Subject: CN=17B1477D0DC18EE629752985F782923DA48723C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:14:a9:7b:f7:ec:b8:c2:1f:ed:a2:25:bb:8d: 37:c8:c9:3a:07:7a:dc:c8:db:39:e3:26:83:43:60: d4:c0:9c:96:19:e7:c7:c4:f5:d7:d6:e2:e5:01:1a: 71:65:19:14:c3:4c:21:d4:1c:56:40:c7:15:82:d0: d4:5b:89:85:7c:49:dd:55:17:2b:2c:5b:f8:a7:b5: 76:28:13:69:5e:b1:5c:da:46:e8:7c:01:67:33:67: 92:23:80:a8:78:cb:33:65:98:cc:33:c4:79:32:2d: c3:82:48:08:8c:07:b1:56:aa:ba:71:2f:40:15:0f: b2:81:41:ab:ff:1a:e7:7d:d1:00:55:e6:e2:83:67: fd:d9:ff:b2:67:94:45:c5:27:2a:d4:da:24:88:1c: 6d:07:99:96:3f:06:6d:90:59:68:61:80:90:58:f8: 37:86:8d:c1:b5:8c:b5:7f:2a:0e:64:51:a4:0f:a8: fd:73:1f:b0:a6:33:b3:44:25:2a:f3:44:c2:fb:e9: e4:17:5f:83:19:24:cd:1b:cd:02:1e:7d:4b:22:8b: f0:c6:29:d6:6b:68:f3:b3:d5:ab:3b:d7:3f:84:0a: 04:52:d2:6b:bd:f2:4b:26:f3:53:b7:6d:f8:9e:01: fb:2a:80:5a:2d:f4:72:9b:b1:a5:c1:e5:cb:20:aa: be:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B1:47:7D:0D:C1:8E:E6:29:75:29:85:F7:82:92:3D:A4:87:23:C3 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e35362e302f32312d3231203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.147.56.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:b9:87:e2:2c:01:f3:6c:6c:c8:e7:5f:3c:ed:09:c6:a6:ae: b8:0e:d0:ed:43:96:e7:08:a4:9f:b4:ee:ea:8b:68:03:50:b2: 20:42:9a:09:a5:55:36:3c:cc:ba:cd:55:05:59:a0:54:99:0b: 9a:b2:33:f7:94:75:bb:d7:26:70:2c:95:b3:aa:51:99:90:89: 80:9e:9b:5c:91:16:b0:64:1b:5c:2f:58:fb:55:2c:ee:20:48: b6:44:a2:6d:dd:c2:bf:e4:89:93:89:82:d9:79:d2:8d:12:74: 2a:bd:e6:f4:a7:a8:a5:62:dc:76:b3:f8:86:2d:bd:41:1b:70: 73:d4:de:4a:6a:7d:1d:13:0d:2d:4c:8a:24:cd:ad:86:de:ac: 8a:20:61:90:66:a4:7a:e8:2e:f4:2c:b9:3a:a2:ff:d3:40:4c: 54:50:50:6a:98:11:99:a6:04:04:52:a6:e0:67:4d:ec:a9:fe: fd:93:71:16:ef:87:7a:f2:62:36:d6:90:5d:43:5f:dd:5d:e4: 44:e5:f6:8c:2c:db:5e:ec:7c:f0:dc:83:9d:c7:b7:e5:3a:07: f6:65:31:96:4e:1c:bb:6f:29:3e:26:25:e1:ea:3b:2e:ac:a5: 24:f5:e6:65:9c:0f:4f:9b:aa:80:b8:53:9a:bd:33:7e:db:8b: 3f:be:0e:a8 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUWk8CcagyL3xSBnEwkgW5jAnXth4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNjU5MzhaFw0yNzA1MTAxNzA0MzhaMDMxMTAvBgNV BAMTKDE3QjE0NzdEMERDMThFRTYyOTc1Mjk4NUY3ODI5MjNEQTQ4NzIzQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfFKl79+y4wh/toiW7jTfIyToH etzI2znjJoNDYNTAnJYZ58fE9dfW4uUBGnFlGRTDTCHUHFZAxxWC0NRbiYV8Sd1V FyssW/intXYoE2lesVzaRuh8AWczZ5IjgKh4yzNlmMwzxHkyLcOCSAiMB7FWqrpx L0AVD7KBQav/Gud90QBV5uKDZ/3Z/7JnlEXFJyrU2iSIHG0HmZY/Bm2QWWhhgJBY +DeGjcG1jLV/Kg5kUaQPqP1zH7CmM7NEJSrzRML76eQXX4MZJM0bzQIefUsii/DG KdZraPOz1as71z+ECgRS0mu98ksm81O3bfieAfsqgFot9HKbsaXB5csgqr5JAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUF7FHfQ3BjuYpdSmF94KSPaSHI8MwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMyMzcyZTMxMzQzNzJl MzUzNjJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAMbkzgwDQYJKoZIhvcNAQELBQADggEBAI65h+IsAfNsbMjnXzztCcamrrgO0O1D lucIpJ+07uqLaANQsiBCmgmlVTY8zLrNVQVZoFSZC5qyM/eUdbvXJnAslbOqUZmQ iYCem1yRFrBkG1wvWPtVLO4gSLZEom3dwr/kiZOJgtl50o0SdCq95vSnqKVi3Haz +IYtvUEbcHPU3kpqfR0TDS1MiiTNrYberIogYZBmpHroLvQsuTqi/9NATFRQUGqY EZmmBARSpuBnTeyp/v2TcRbvh3ryYjbWkF1DX91d5ETl9ows217sfPDcg53Ht+U6 B/ZlMZZOHLtvKT4mJeHqOy6spST15mWcD0+bqoC4U5q9M37biz++Dqg= -----END CERTIFICATE-----Generated at Wed May 13 21:48:31 2026 by rpki-client