$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/36312e35372e3135322e302f32312d3231203d3e203138343239.roa File: 36312e35372e3135322e302f32312d3231203d3e203138343239.roa (raw, json) Hash identifier: 2SVyvMw477IvvhGemwOhePTajB4mNooaC+8Ji4nDP4A= Subject key identifier: 1B:50:52:4E:C7:7E:2C:F3:9C:66:C4:D9:04:EA:BC:2A:C5:84:EC:BF Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 24A758BB80DE9D4BAC393E0F02173B8F8894B62F Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/36312e35372e3135322e302f32312d3231203d3e203138343239.roa Signing time: Mon 11 May 2026 17:04:42 +0000 ROA not before: Mon 11 May 2026 16:59:42 +0000 ROA not after: Mon 10 May 2027 17:04:42 +0000 asID: 18429 IP address blocks: 61.57.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:a7:58:bb:80:de:9d:4b:ac:39:3e:0f:02:17:3b:8f:88:94:b6:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 16:59:42 2026 GMT Not After : May 10 17:04:42 2027 GMT Subject: CN=1B50524EC77E2CF39C66C4D904EABC2AC584ECBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c2:7c:c3:6e:c7:ab:66:93:01:24:fc:6e:0c: 55:4c:76:03:9c:0c:a8:df:93:83:ed:01:dd:5e:d8: 32:47:48:df:55:de:02:62:5f:89:24:6a:84:c6:b2: 00:a6:42:50:28:4c:78:7b:df:74:2c:59:4a:0e:30: 25:e2:ab:24:a2:70:42:32:0e:32:74:88:06:00:aa: 79:cb:a7:33:0e:21:f7:ce:32:b3:5c:2d:e2:e4:ea: 33:9d:fd:66:85:87:95:75:9e:94:60:94:bf:f3:04: 87:d0:ca:43:28:b6:8d:c3:d8:09:77:5e:e1:48:36: de:dc:91:91:55:46:06:9c:49:bb:64:77:0a:34:5f: 7f:68:b4:f9:d3:8d:98:0a:44:93:04:ce:dc:90:11: d1:ac:05:b5:f2:ea:59:c7:3a:dd:24:99:81:dd:39: e6:4a:bb:b9:dd:3f:1e:45:6b:b1:54:53:6d:d4:43: be:b7:81:e8:94:b1:50:42:a1:93:fe:a3:c3:1c:51: 78:f3:fa:f2:e5:1a:cb:6d:3c:3f:b6:ef:1b:64:e2: d5:0a:e4:85:ab:5a:43:bb:7f:eb:11:03:fe:4d:82: 31:9d:0b:80:8b:e1:e4:00:f8:3a:27:2c:75:f0:23: bf:fd:d0:e9:85:f3:a7:72:f9:1c:66:78:2c:23:ef: 06:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:50:52:4E:C7:7E:2C:F3:9C:66:C4:D9:04:EA:BC:2A:C5:84:EC:BF X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/36312e35372e3135322e302f32312d3231203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.57.152.0/21 Signature Algorithm: sha256WithRSAEncryption 57:cf:c8:35:f7:59:74:c3:82:27:1c:f2:27:53:b1:d1:07:49: 60:73:ae:90:d9:2c:54:0f:ab:fd:66:97:4a:51:95:e2:c2:bb: ab:44:44:0a:5e:9a:5b:57:35:fb:bb:fa:31:a5:9c:cc:d2:78: e4:6e:3f:5e:a0:a2:99:73:0b:24:56:96:85:24:ec:41:54:29: d8:94:87:e5:8e:53:44:82:68:98:25:34:40:53:3c:d8:e1:2b: 35:ef:9c:0c:87:13:b5:aa:ef:c6:f5:26:e5:80:88:5b:15:26: 4a:5a:b4:90:62:5f:02:01:3e:a3:61:a4:7e:26:58:07:d5:f7: 46:0e:45:35:5f:97:6e:bf:2a:6b:6b:d5:ef:bd:d2:ba:3f:ff: 19:55:f7:79:11:a3:3a:ba:81:f3:86:e3:60:d6:22:df:cf:6b: f1:bf:73:7f:46:4b:7e:67:72:f2:b5:e6:de:c3:9c:c3:6a:40: 7a:44:a8:28:28:a6:e4:92:30:c9:d1:f3:38:16:0d:b4:b8:83: 8d:9c:4e:35:fe:80:09:6e:04:e0:20:ab:69:d6:b6:46:ca:62: f0:08:4c:61:a7:02:f3:05:44:90:29:2a:8c:e9:ea:f3:48:a7: 6b:c7:72:c0:5b:a2:54:0b:e3:9f:33:55:97:d4:98:49:c0:29: ba:15:9d:d2 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUJKdYu4DenUusOT4PAhc7j4iUti8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNjU5NDJaFw0yNzA1MTAxNzA0NDJaMDMxMTAvBgNV BAMTKDFCNTA1MjRFQzc3RTJDRjM5QzY2QzREOTA0RUFCQzJBQzU4NEVDQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcwnzDbserZpMBJPxuDFVMdgOc DKjfk4PtAd1e2DJHSN9V3gJiX4kkaoTGsgCmQlAoTHh733QsWUoOMCXiqySicEIy DjJ0iAYAqnnLpzMOIffOMrNcLeLk6jOd/WaFh5V1npRglL/zBIfQykMoto3D2Al3 XuFINt7ckZFVRgacSbtkdwo0X39otPnTjZgKRJMEztyQEdGsBbXy6lnHOt0kmYHd OeZKu7ndPx5Fa7FUU23UQ763geiUsVBCoZP+o8McUXjz+vLlGsttPD+27xtk4tUK 5IWrWkO7f+sRA/5NgjGdC4CL4eQA+DonLHXwI7/90OmF86dy+RxmeCwj7wZjAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUG1BSTsd+LPOcZsTZBOq8KsWE7L8wHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzM2MzEyZTM1MzcyZTMx MzUzMjJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAM9OZgwDQYJKoZIhvcNAQELBQADggEBAFfPyDX3WXTDgicc8idTsdEHSWBzrpDZ LFQPq/1ml0pRleLCu6tERApemltXNfu7+jGlnMzSeORuP16goplzCyRWloUk7EFU KdiUh+WOU0SCaJglNEBTPNjhKzXvnAyHE7Wq78b1JuWAiFsVJkpatJBiXwIBPqNh pH4mWAfV90YORTVfl26/Kmtr1e+90ro//xlV93kRozq6gfOG42DWIt/Pa/G/c39G S35ncvK15t7DnMNqQHpEqCgopuSSMMnR8zgWDbS4g42cTjX+gAluBOAgq2nWtkbK YvAITGGnAvMFRJApKozp6vNIp2vHcsBbolQL458zVZfUmEnAKboVndI= -----END CERTIFICATE-----Generated at Wed May 13 21:08:19 2026 by rpki-client