$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36322e302f32332d3234203d3e203138343239.roa File: 32372e3134372e36322e302f32332d3234203d3e203138343239.roa (raw, json) Hash identifier: Q0tTkuLhAZgYPiCKvVbD9qhvR3Oe16ZvxYYkJl8hI70= Subject key identifier: 51:91:90:AB:30:5A:FC:DA:12:5B:DD:80:E4:C4:BA:49:16:95:08:6D Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 4BB7567EBD7E45C0E8E8CE26571BAF0CC47E315F Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36322e302f32332d3234203d3e203138343239.roa Signing time: Mon 11 May 2026 17:26:48 +0000 ROA not before: Mon 11 May 2026 17:21:48 +0000 ROA not after: Mon 10 May 2027 17:26:48 +0000 asID: 18429 IP address blocks: 27.147.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b7:56:7e:bd:7e:45:c0:e8:e8:ce:26:57:1b:af:0c:c4:7e:31:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 17:21:48 2026 GMT Not After : May 10 17:26:48 2027 GMT Subject: CN=519190AB305AFCDA125BDD80E4C4BA491695086D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f2:4a:f9:76:8c:8c:73:c4:f9:fc:b3:62:c2: 39:37:79:98:4d:cf:49:0d:52:44:ff:c7:b2:e0:15: 2d:c7:de:b2:72:99:0e:2b:92:09:e1:02:b6:7c:ef: ff:0f:a3:d4:a2:58:1e:b1:53:fb:54:a4:2e:2b:26: a0:c5:4e:47:2d:3c:cc:b5:3c:9e:e6:b7:7a:6f:6d: 72:bf:8a:98:bb:b7:f0:b9:b8:ce:a3:7b:0c:29:7b: e5:21:d7:de:15:57:89:b9:6c:a8:3a:16:fb:51:0e: be:26:59:6a:36:f9:a9:10:33:e0:d1:17:20:a3:a2: 9a:76:c4:ce:2d:bf:52:e9:09:27:77:aa:91:88:1b: 37:86:e7:e1:47:ee:35:f5:be:02:f4:2a:ff:e6:f5: f8:b3:cc:84:c4:17:be:96:35:a0:17:33:3b:5c:c9: 4d:f7:ef:61:71:7f:0e:c1:4d:fa:05:23:87:5a:d1: 4e:1f:f7:78:a7:cb:84:6a:f2:68:ed:85:1b:61:37: 1f:84:73:4b:46:f6:5d:c4:fa:d9:63:84:a6:12:fc: 94:a5:22:d1:04:08:ca:86:74:76:db:99:16:8a:0f: aa:bd:5a:28:ab:6a:57:1f:40:63:d6:4d:dc:9d:9b: 77:79:6c:88:a8:67:b1:25:99:ff:cf:31:68:01:95: 89:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:91:90:AB:30:5A:FC:DA:12:5B:DD:80:E4:C4:BA:49:16:95:08:6D X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36322e302f32332d3234203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.147.62.0/23 Signature Algorithm: sha256WithRSAEncryption 62:2f:8e:5f:ae:b6:fc:23:ea:56:d4:e7:da:ba:57:c9:6d:6b: 18:77:33:6b:fe:ae:22:3d:5f:fe:70:c3:7a:0d:c0:b4:ac:ff: 41:0d:0e:81:3f:ba:9c:a6:59:97:5f:e4:87:8d:49:51:76:6a: f1:05:df:d8:5d:aa:a1:c7:bf:ef:dd:30:c2:2e:3c:2e:fd:cf: 58:57:db:bf:ce:d8:cd:fe:bf:cb:91:a3:1f:17:22:ad:8c:cc: 1f:4f:7e:3f:d8:e5:58:4b:65:38:21:5e:64:48:94:b4:e0:54: bb:1a:65:87:17:f8:64:3e:a2:28:b4:95:14:93:c3:f7:8d:9b: 32:5e:25:76:39:ac:0d:8c:41:ae:07:f8:ec:e7:27:74:36:16: 20:51:57:b8:2c:e0:60:f3:48:79:fd:28:ca:bb:d8:22:d3:4a: 8b:ac:04:1f:38:8f:e5:fd:13:e8:6e:12:92:c7:50:5d:5a:9c: ec:3f:39:16:11:a0:85:be:06:44:99:9c:0b:bc:40:8b:0d:68: 0e:7d:08:71:cd:60:99:eb:6c:c2:9c:49:9f:ed:a7:8d:ca:6e: 27:99:6b:01:52:27:7c:3a:6f:df:d2:e9:f0:81:bc:e8:20:e3: a3:0b:08:d7:53:55:61:b0:32:0c:91:05:9c:a7:30:30:b8:bb: 63:2d:bc:41 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUS7dWfr1+RcDo6M4mVxuvDMR+MV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNzIxNDhaFw0yNzA1MTAxNzI2NDhaMDMxMTAvBgNV BAMTKDUxOTE5MEFCMzA1QUZDREExMjVCREQ4MEU0QzRCQTQ5MTY5NTA4NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf8kr5doyMc8T5/LNiwjk3eZhN z0kNUkT/x7LgFS3H3rJymQ4rkgnhArZ87/8Po9SiWB6xU/tUpC4rJqDFTkctPMy1 PJ7mt3pvbXK/ipi7t/C5uM6jewwpe+Uh194VV4m5bKg6FvtRDr4mWWo2+akQM+DR FyCjopp2xM4tv1LpCSd3qpGIGzeG5+FH7jX1vgL0Kv/m9fizzITEF76WNaAXMztc yU3372Fxfw7BTfoFI4da0U4f93iny4Rq8mjthRthNx+Ec0tG9l3E+tljhKYS/JSl ItEECMqGdHbbmRaKD6q9WiiralcfQGPWTdydm3d5bIioZ7Elmf/PMWgBlYmBAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUUZGQqzBa/NoSW92A5MS6SRaVCG0wHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMyMzcyZTMxMzQzNzJl MzYzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEbkz4wDQYJKoZIhvcNAQELBQADggEBAGIvjl+utvwj6lbU59q6V8ltaxh3M2v+ riI9X/5ww3oNwLSs/0ENDoE/upymWZdf5IeNSVF2avEF39hdqqHHv+/dMMIuPC79 z1hX27/O2M3+v8uRox8XIq2MzB9Pfj/Y5VhLZTghXmRIlLTgVLsaZYcX+GQ+oii0 lRSTw/eNmzJeJXY5rA2MQa4H+OznJ3Q2FiBRV7gs4GDzSHn9KMq72CLTSousBB84 j+X9E+huEpLHUF1anOw/ORYRoIW+BkSZnAu8QIsNaA59CHHNYJnrbMKcSZ/tp43K bieZawFSJ3w6b9/S6fCBvOgg46MLCNdTVWGwMgyRBZynMDC4u2MtvEE= -----END CERTIFICATE-----Generated at Wed May 13 21:08:42 2026 by rpki-client