$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e35362e302f32312d3234203d3e203138343239.roa File: 32372e3134372e35362e302f32312d3234203d3e203138343239.roa (raw, json) Hash identifier: F98F0Gd6s65z899bUyjxFbGy1k2hcPfd22a564aVJbk= Subject key identifier: 39:9C:84:1C:C0:5E:A4:22:19:B0:13:D3:EE:85:3F:B2:EF:E0:33:4C Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 5DDB24EACBE46DA8A2283F2554111FAF81FA7176 Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e35362e302f32312d3234203d3e203138343239.roa Signing time: Mon 11 May 2026 17:26:57 +0000 ROA not before: Mon 11 May 2026 17:21:57 +0000 ROA not after: Mon 10 May 2027 17:26:57 +0000 asID: 18429 IP address blocks: 27.147.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:db:24:ea:cb:e4:6d:a8:a2:28:3f:25:54:11:1f:af:81:fa:71:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 17:21:57 2026 GMT Not After : May 10 17:26:57 2027 GMT Subject: CN=399C841CC05EA42219B013D3EE853FB2EFE0334C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:07:c6:a7:2f:43:d9:23:15:9c:fe:1a:87:ba: 97:3f:19:6c:bd:3f:c1:a4:9c:85:a3:00:5a:2f:2f: 71:c9:c5:a8:df:04:28:c5:24:d0:f1:91:f2:88:78: c1:14:ca:a9:91:c6:5e:d5:84:18:f7:39:b4:24:39: 89:5d:28:e8:4b:c6:39:c6:69:3f:09:c4:33:e7:c4: bd:d6:8d:4d:fb:59:08:04:91:16:be:9d:a2:e5:1c: 68:ac:98:f1:fa:12:1e:d4:cc:54:8b:63:33:8a:e6: b9:b5:0d:7c:d7:c4:29:13:6f:61:e9:02:2c:9f:47: 8c:e4:89:65:a1:4f:4e:7f:33:13:61:54:e4:b9:80: f7:78:ef:7d:96:bd:7d:cc:5d:53:ce:84:22:f0:65: 16:ab:6d:5c:94:4b:b0:46:67:36:ab:c4:02:2b:4b: 02:a4:d9:d1:8d:39:b4:da:c8:92:d3:ff:35:2a:59: 4f:ba:3f:5d:81:f0:43:0b:4e:e1:d9:f6:3e:17:f2: 19:0b:38:aa:e4:54:c1:b3:9e:71:8e:2f:2a:5f:54: de:c1:50:32:c7:98:99:39:2d:82:1b:e6:35:e3:ad: 0f:62:2f:4c:32:93:da:0b:fd:b1:a5:ff:6a:94:96: 72:e7:a7:37:fe:ff:2b:9b:f9:da:8a:2f:1c:1d:fe: a7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:9C:84:1C:C0:5E:A4:22:19:B0:13:D3:EE:85:3F:B2:EF:E0:33:4C X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e35362e302f32312d3234203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.147.56.0/21 Signature Algorithm: sha256WithRSAEncryption 7d:6a:10:55:77:6a:a0:56:9a:5f:4c:72:45:52:18:8c:8d:1a: e7:07:5e:58:35:4c:d8:ed:c3:b1:27:dd:64:89:19:73:50:77: 82:7a:68:0e:0e:87:c7:50:73:6b:d4:4b:dd:0b:03:d2:07:dc: 08:40:7d:f8:7d:16:e5:21:35:7c:27:8b:24:dc:34:ab:38:71: 57:57:35:d1:14:e0:67:ed:14:90:0f:3b:03:bd:c8:d7:7d:fd: 3d:ad:82:54:4e:b6:b4:f7:c5:f0:8e:9e:e3:56:9e:f4:0a:e0: df:0c:32:fe:77:85:18:b8:31:06:f1:d3:59:d2:2a:a7:e0:fd: 53:c7:16:1b:99:a1:71:0f:db:da:75:80:43:ec:c7:39:24:06: 84:74:97:b1:fb:1c:a6:ce:f3:a4:44:0f:62:56:fe:bf:9e:92: d9:7f:84:85:98:51:3f:93:40:b2:3e:ce:de:90:6b:5d:6b:72: 76:23:ef:06:40:c0:f3:83:96:18:57:e2:e9:78:e9:10:6d:3a: d0:f0:2e:46:eb:0b:e9:86:b7:de:d1:c1:06:fb:88:9e:76:30: 39:75:2f:19:ae:4e:80:18:c9:54:c7:01:e3:b7:9b:ba:7f:66: e4:24:b7:e9:b3:47:f4:08:7e:dc:dd:f9:80:6d:d9:6c:c4:88: e6:9c:2c:16 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUXdsk6svkbaiiKD8lVBEfr4H6cXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNzIxNTdaFw0yNzA1MTAxNzI2NTdaMDMxMTAvBgNV BAMTKDM5OUM4NDFDQzA1RUE0MjIxOUIwMTNEM0VFODUzRkIyRUZFMDMzNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiB8anL0PZIxWc/hqHupc/GWy9 P8GknIWjAFovL3HJxajfBCjFJNDxkfKIeMEUyqmRxl7VhBj3ObQkOYldKOhLxjnG aT8JxDPnxL3WjU37WQgEkRa+naLlHGismPH6Eh7UzFSLYzOK5rm1DXzXxCkTb2Hp AiyfR4zkiWWhT05/MxNhVOS5gPd4732WvX3MXVPOhCLwZRarbVyUS7BGZzarxAIr SwKk2dGNObTayJLT/zUqWU+6P12B8EMLTuHZ9j4X8hkLOKrkVMGznnGOLypfVN7B UDLHmJk5LYIb5jXjrQ9iL0wyk9oL/bGl/2qUlnLnpzf+/yub+dqKLxwd/qdlAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUOZyEHMBepCIZsBPT7oU/su/gM0wwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMyMzcyZTMxMzQzNzJl MzUzNjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAMbkzgwDQYJKoZIhvcNAQELBQADggEBAH1qEFV3aqBWml9MckVSGIyNGucHXlg1 TNjtw7En3WSJGXNQd4J6aA4Oh8dQc2vUS90LA9IH3AhAffh9FuUhNXwniyTcNKs4 cVdXNdEU4GftFJAPOwO9yNd9/T2tglROtrT3xfCOnuNWnvQK4N8MMv53hRi4MQbx 01nSKqfg/VPHFhuZoXEP29p1gEPsxzkkBoR0l7H7HKbO86RED2JW/r+ektl/hIWY UT+TQLI+zt6Qa11rcnYj7wZAwPODlhhX4ul46RBtOtDwLkbrC+mGt97RwQb7iJ52 MDl1LxmuToAYyVTHAeO3m7p/ZuQkt+mzR/QIftzd+YBt2WzEiOacLBY= -----END CERTIFICATE-----Generated at Wed May 13 21:08:43 2026 by rpki-client