$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/36312e35372e3134342e302f32312d3231203d3e203138343239.roa File: 36312e35372e3134342e302f32312d3231203d3e203138343239.roa (raw, json) Hash identifier: PvOhxtcG++/+VjBbtV9/TUXxlYBxX6yJSR7BQYH/mJ4= Subject key identifier: 5E:87:E2:AA:F8:8A:59:84:E4:04:63:EF:0D:49:52:C9:E5:6D:54:05 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 3F33C19F312AAEA2EE2217C4E57660A12F30EF82 Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/36312e35372e3134342e302f32312d3231203d3e203138343239.roa Signing time: Mon 11 May 2026 17:04:41 +0000 ROA not before: Mon 11 May 2026 16:59:41 +0000 ROA not after: Mon 10 May 2027 17:04:41 +0000 asID: 18429 IP address blocks: 61.57.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:33:c1:9f:31:2a:ae:a2:ee:22:17:c4:e5:76:60:a1:2f:30:ef:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 16:59:41 2026 GMT Not After : May 10 17:04:41 2027 GMT Subject: CN=5E87E2AAF88A5984E40463EF0D4952C9E56D5405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bc:78:9d:71:c9:4f:9e:0c:d4:e9:74:35:11: a5:8e:8b:37:11:79:a9:03:48:de:aa:c4:f9:77:a4: 99:6e:89:f7:15:fd:a5:8b:44:fa:5d:f6:30:24:57: fa:cc:3c:fc:57:07:ba:80:3b:93:a5:5e:07:01:2a: 32:d6:1c:39:9e:37:e5:1b:63:6a:e5:4d:2a:7f:99: 7a:70:f2:cd:6d:55:78:ff:2b:0b:17:c1:cc:6e:83: 22:08:4e:2d:4c:61:c5:71:c6:f0:77:56:4f:e6:5a: e9:1d:45:95:f5:27:b6:5a:c7:e2:37:e0:a5:b2:c8: cc:d8:ec:23:4a:d5:0e:ca:2f:9f:37:42:e0:6c:74: 2a:4e:f1:c1:8c:25:1e:d6:51:23:50:a1:65:02:5b: 9c:c7:26:fe:09:ee:4e:4b:31:eb:ca:6e:53:bd:20: 31:27:f8:86:5a:8b:ad:3d:05:c5:bd:be:24:83:ee: e8:2c:02:cd:f8:f4:33:4a:bd:6d:e5:82:ab:69:24: 80:e5:ab:fa:c0:3b:d1:af:44:dc:61:81:87:f3:2c: e5:f9:4e:0c:7d:65:ae:92:9f:48:73:fd:ea:79:c1: 56:42:c5:4e:9d:53:aa:28:76:1b:8d:11:57:07:53: 58:74:14:27:a7:00:c1:f6:e1:eb:60:3e:5b:b7:31: 3a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:87:E2:AA:F8:8A:59:84:E4:04:63:EF:0D:49:52:C9:E5:6D:54:05 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/36312e35372e3134342e302f32312d3231203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.57.144.0/21 Signature Algorithm: sha256WithRSAEncryption 94:e8:14:3e:76:4b:fa:00:21:b7:2d:ba:72:95:91:2b:66:44: 03:da:b9:83:f9:33:93:25:a3:78:d7:32:dd:62:c9:39:7b:12: 37:ca:18:76:d6:10:71:12:eb:49:17:a4:cb:b7:11:ef:6a:a2: 65:a4:23:0f:ac:cd:e4:07:d4:54:af:59:ef:a1:f0:9e:de:c6: 2d:3b:aa:4c:48:8a:a9:2f:4d:2b:7c:08:4a:d0:c0:fe:fe:19: db:0f:37:64:a7:b0:4d:6e:1e:7d:6d:9a:28:ca:2b:63:4b:3e: 66:a1:6e:56:e7:76:8c:6b:cb:90:c4:b1:72:d9:39:fb:13:28: 62:44:8a:5b:98:9b:d2:81:62:96:db:2f:85:f3:21:e4:d0:58: 86:dc:fb:7b:62:84:c4:3a:40:df:6f:90:fb:8a:2c:fc:fb:8b: 6d:61:7a:5b:22:7c:ed:98:dd:13:5d:55:17:65:de:92:aa:d4: bb:7b:9a:e1:29:b3:36:0d:ec:42:a4:e4:e3:11:1a:c9:b1:4c: 0f:3a:a9:9d:b9:6d:68:05:87:7a:bd:8f:94:e5:f8:1e:f8:e9: 23:ef:ca:34:59:b8:69:bd:86:82:6e:48:2a:08:50:ad:6a:9b: d3:1f:21:3a:79:97:42:d7:80:9a:06:f1:59:e4:27:9a:46:2e: fa:9b:20:bb -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUPzPBnzEqrqLuIhfE5XZgoS8w74IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNjU5NDFaFw0yNzA1MTAxNzA0NDFaMDMxMTAvBgNV BAMTKDVFODdFMkFBRjg4QTU5ODRFNDA0NjNFRjBENDk1MkM5RTU2RDU0MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtvHidcclPngzU6XQ1EaWOizcR eakDSN6qxPl3pJluifcV/aWLRPpd9jAkV/rMPPxXB7qAO5OlXgcBKjLWHDmeN+Ub Y2rlTSp/mXpw8s1tVXj/KwsXwcxugyIITi1MYcVxxvB3Vk/mWukdRZX1J7Zax+I3 4KWyyMzY7CNK1Q7KL583QuBsdCpO8cGMJR7WUSNQoWUCW5zHJv4J7k5LMevKblO9 IDEn+IZai609BcW9viSD7ugsAs349DNKvW3lgqtpJIDlq/rAO9GvRNxhgYfzLOX5 Tgx9Za6Sn0hz/ep5wVZCxU6dU6oodhuNEVcHU1h0FCenAMH24etgPlu3MTr9AgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUXofiqviKWYTkBGPvDUlSyeVtVAUwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzM2MzEyZTM1MzcyZTMx MzQzNDJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAM9OZAwDQYJKoZIhvcNAQELBQADggEBAJToFD52S/oAIbctunKVkStmRAPauYP5 M5Mlo3jXMt1iyTl7EjfKGHbWEHES60kXpMu3Ee9qomWkIw+szeQH1FSvWe+h8J7e xi07qkxIiqkvTSt8CErQwP7+GdsPN2SnsE1uHn1tmijKK2NLPmahblbndoxry5DE sXLZOfsTKGJEiluYm9KBYpbbL4XzIeTQWIbc+3tihMQ6QN9vkPuKLPz7i21helsi fO2Y3RNdVRdl3pKq1Lt7muEpszYN7EKk5OMRGsmxTA86qZ25bWgFh3q9j5Tl+B74 6SPvyjRZuGm9hoJuSCoIUK1qm9MfITp5l0LXgJoG8VnkJ5pGLvqbILs= -----END CERTIFICATE-----Generated at Wed May 13 21:08:10 2026 by rpki-client