$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/34352e36342e3233322e302f32322d3232203d3e203138343239.roa File: 34352e36342e3233322e302f32322d3232203d3e203138343239.roa (raw, json) Hash identifier: Uk8ZwynRM1Ma0hazvOUPbgrAmspJlNNFj/Wtmoniokk= Subject key identifier: 70:4D:D2:AC:9C:01:F5:6E:67:0B:76:BD:39:CF:FA:66:CA:CF:D4:E7 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 1DCD9D6985DE0810B5BDB7D63FA4AC886B83C2A1 Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/34352e36342e3233322e302f32322d3232203d3e203138343239.roa Signing time: Mon 11 May 2026 17:04:40 +0000 ROA not before: Mon 11 May 2026 16:59:40 +0000 ROA not after: Mon 10 May 2027 17:04:40 +0000 asID: 18429 IP address blocks: 45.64.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:cd:9d:69:85:de:08:10:b5:bd:b7:d6:3f:a4:ac:88:6b:83:c2:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 16:59:40 2026 GMT Not After : May 10 17:04:40 2027 GMT Subject: CN=704DD2AC9C01F56E670B76BD39CFFA66CACFD4E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:06:74:76:27:ae:03:be:8d:eb:f6:2d:df:58: 73:dd:7b:9d:bc:4f:43:5e:ba:0c:a2:83:ac:b9:8a: a4:10:6a:07:ec:a8:9d:03:e5:83:5b:e4:4d:6f:f6: cc:4a:c8:7c:f1:bb:96:dc:65:ee:7a:52:11:08:05: 92:37:14:4e:4e:49:c0:09:42:b4:8f:81:e4:d1:e2: ec:45:67:91:21:38:34:e5:89:cc:85:23:67:da:9a: 6a:63:30:5e:3b:6f:f8:fd:1f:a2:e2:a9:4c:78:03: b0:bf:44:bf:43:ea:2f:52:e5:15:eb:8d:38:2b:92: 0f:95:8a:1e:89:66:68:36:d4:04:77:c7:d8:7d:4f: 52:97:b3:77:cc:7c:ac:cf:06:20:c7:34:77:00:89: 32:28:0e:cc:ed:e7:1f:22:c9:65:fd:a4:72:f8:41: b9:c5:0c:1a:e6:ca:ad:ed:f4:35:ab:f3:b4:0b:b2: 84:1b:05:48:fa:75:05:04:45:7b:f9:72:b4:87:00: 91:57:10:96:5e:fd:84:00:0c:8c:44:be:80:5b:f4: 13:05:9e:aa:e8:13:83:2f:b0:24:e6:68:b0:d7:e1: dc:56:06:14:e4:10:80:0a:74:42:0e:6d:3d:a2:e9: f9:54:5a:c2:46:89:7a:3b:50:fe:6b:49:80:4e:b4: c6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4D:D2:AC:9C:01:F5:6E:67:0B:76:BD:39:CF:FA:66:CA:CF:D4:E7 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/34352e36342e3233322e302f32322d3232203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.232.0/22 Signature Algorithm: sha256WithRSAEncryption 11:1e:28:b7:3b:05:c6:43:56:97:f8:c6:46:c1:13:58:8f:51: 6d:d3:9e:64:2c:12:25:70:63:7b:20:4b:08:fe:c3:a3:23:f4: 8d:91:ab:05:92:f8:c0:4a:e8:6b:39:20:e0:ac:05:40:71:22: 9f:ad:8c:d1:29:03:62:f1:a1:8d:bb:a6:b8:e9:1e:1b:06:a3: 68:85:51:72:3e:9f:b1:cb:9b:94:28:56:47:fb:fd:e9:e6:4b: 25:0a:be:aa:94:1a:fe:b8:11:45:2d:8c:91:4f:d7:4e:79:44: 94:e0:69:a3:e3:0a:fd:91:00:39:7e:36:a4:b3:5a:3d:4e:ba: 79:f7:1b:09:be:80:10:79:ef:f4:66:c3:ab:0b:ab:81:e1:ff: 9a:4e:92:72:a7:c7:58:d7:8f:bc:23:7c:58:05:93:fd:27:bc: 2d:22:63:51:34:43:53:3e:66:71:67:fc:0c:21:39:11:e5:a6: 08:3c:6c:c1:a3:2b:20:20:3e:7b:a4:ef:12:bb:a9:35:5c:eb: 9e:65:4b:c3:26:3f:f7:9c:3c:c9:be:ae:e2:5c:be:00:72:0d: 0a:43:27:6f:40:cc:4d:16:fc:0b:9e:32:24:c6:46:9e:32:46: ac:f8:dd:a8:23:3b:65:fe:2e:d4:04:95:af:59:17:90:03:71: ba:31:44:94 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUHc2daYXeCBC1vbfWP6SsiGuDwqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNjU5NDBaFw0yNzA1MTAxNzA0NDBaMDMxMTAvBgNV BAMTKDcwNEREMkFDOUMwMUY1NkU2NzBCNzZCRDM5Q0ZGQTY2Q0FDRkQ0RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpBnR2J64Dvo3r9i3fWHPde528 T0Neugyig6y5iqQQagfsqJ0D5YNb5E1v9sxKyHzxu5bcZe56UhEIBZI3FE5OScAJ QrSPgeTR4uxFZ5EhODTlicyFI2fammpjMF47b/j9H6LiqUx4A7C/RL9D6i9S5RXr jTgrkg+Vih6JZmg21AR3x9h9T1KXs3fMfKzPBiDHNHcAiTIoDszt5x8iyWX9pHL4 QbnFDBrmyq3t9DWr87QLsoQbBUj6dQUERXv5crSHAJFXEJZe/YQADIxEvoBb9BMF nqroE4MvsCTmaLDX4dxWBhTkEIAKdEIObT2i6flUWsJGiXo7UP5rSYBOtMbLAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUcE3SrJwB9W5nC3a9Oc/6ZsrP1OcwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzM0MzUyZTM2MzQyZTMy MzMzMjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAItQOgwDQYJKoZIhvcNAQELBQADggEBABEeKLc7BcZDVpf4xkbBE1iPUW3TnmQs EiVwY3sgSwj+w6Mj9I2RqwWS+MBK6Gs5IOCsBUBxIp+tjNEpA2LxoY27prjpHhsG o2iFUXI+n7HLm5QoVkf7/enmSyUKvqqUGv64EUUtjJFP1055RJTgaaPjCv2RADl+ NqSzWj1Ounn3Gwm+gBB57/Rmw6sLq4Hh/5pOknKnx1jXj7wjfFgFk/0nvC0iY1E0 Q1M+ZnFn/AwhORHlpgg8bMGjKyAgPnuk7xK7qTVc655lS8MmP/ecPMm+ruJcvgBy DQpDJ29AzE0W/AueMiTGRp4yRqz43agjO2X+LtQEla9ZF5ADcboxRJQ= -----END CERTIFICATE-----Generated at Wed May 13 21:08:21 2026 by rpki-client