$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/36312e35372e3135362e302f32322d3232203d3e203138343239.roa File: 36312e35372e3135362e302f32322d3232203d3e203138343239.roa (raw, json) Hash identifier: AighS0+PfJa1PWQiG12aYwFmz1ZnOJtrdgXSZIc9puc= Subject key identifier: F2:C0:4B:F3:64:7F:3B:D3:4A:AE:47:53:63:1F:F0:AC:60:8D:93:30 Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Certificate serial: 02046382E98A8394F0CC069869BCFB7D3F72C5A7 Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/36312e35372e3135362e302f32322d3232203d3e203138343239.roa Signing time: Mon 11 May 2026 17:17:28 +0000 ROA not before: Mon 11 May 2026 17:12:28 +0000 ROA not after: Mon 10 May 2027 17:17:28 +0000 asID: 18429 IP address blocks: 61.57.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:04:63:82:e9:8a:83:94:f0:cc:06:98:69:bc:fb:7d:3f:72:c5:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1 Validity Not Before: May 11 17:12:28 2026 GMT Not After : May 10 17:17:28 2027 GMT Subject: CN=F2C04BF3647F3BD34AAE4753631FF0AC608D9330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:00:e3:a6:bc:87:cb:e1:1d:f0:17:b3:ca:78: 57:29:c9:4a:c1:6b:b3:4a:10:4d:3f:5e:57:f2:ad: f1:45:42:82:22:0c:6b:d4:18:a0:da:f6:ff:c5:91: d1:69:a1:50:20:65:a4:58:97:c4:bd:8a:1f:63:db: ac:d6:84:0a:fb:37:35:f4:d9:1d:7f:23:af:e0:7d: b8:cd:1c:5e:99:b2:8a:f4:eb:12:56:3a:ac:51:e9: 7b:10:7f:22:b9:ab:2b:b2:7f:94:b2:72:3d:9f:78: 46:5d:4f:4a:28:92:65:ac:d0:c3:13:ec:d7:2f:d1: 51:39:a8:dc:1b:28:3f:34:9c:5c:ae:b5:ea:74:d6: 84:86:a7:3c:a6:cd:26:f6:a9:98:81:65:c5:0a:fc: 34:dc:46:ac:69:de:c3:17:fa:19:20:d8:30:2c:37: b9:01:c4:7f:db:7c:a6:a5:54:1f:f7:a9:41:d0:68: 0a:2b:6d:c7:71:91:2d:93:18:47:1f:6e:17:2b:a4: 80:1e:37:31:89:ac:c7:39:48:01:63:51:f0:41:87: 00:dd:d7:81:0d:9e:26:ef:ec:c6:a9:3f:71:b4:33: 44:ad:4b:30:e9:01:4a:f6:3b:6e:85:15:99:46:16: 7a:90:8f:6b:a6:65:b4:0a:1c:15:86:c6:1b:4a:1c: aa:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C0:4B:F3:64:7F:3B:D3:4A:AE:47:53:63:1F:F0:AC:60:8D:93:30 X509v3 Authority Key Identifier: keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/36312e35372e3135362e302f32322d3232203d3e203138343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.57.156.0/22 Signature Algorithm: sha256WithRSAEncryption 35:34:d1:6d:17:5a:71:e2:3f:6e:e2:e0:99:90:fe:4d:82:7d: 8c:55:ba:1d:e3:12:4b:77:33:ea:f3:8a:9b:f4:57:39:ac:6f: 4d:19:35:9d:0b:6e:46:0b:46:ba:b4:b2:8a:b9:60:2e:9b:6c: ba:e4:b3:f6:12:2b:5c:e3:dd:7b:32:f8:af:8e:7e:a1:06:5c: 86:e6:12:7c:4e:c7:67:4f:1c:01:27:26:f5:b7:2a:56:a3:0e: 5a:4c:92:fc:ef:52:c6:50:ff:c4:e2:8c:b5:87:c8:f4:c3:07: 59:31:ff:e7:a6:05:0e:5b:6c:3b:89:ea:68:f8:3b:e5:10:ec: 9b:a9:56:28:11:1d:f2:d5:7a:98:16:d8:08:88:fc:83:bf:b2: 7e:6e:76:6b:af:c5:f3:69:b8:52:1c:66:76:a2:e7:c2:08:6c: 7f:29:75:d3:ea:35:af:3b:8f:01:62:72:83:4f:be:88:c5:83: 90:54:d3:e5:11:e4:05:37:c5:d3:78:6a:b1:35:c3:e7:46:39: 18:9d:5a:8a:7f:52:6d:ef:4b:0a:0a:9d:e1:82:96:d1:68:a4: 2e:3a:6b:f7:0c:a0:f2:e6:37:ea:29:a9:c1:51:3d:59:04:91: 54:48:5e:26:af:86:2c:17:d0:04:5c:db:08:fd:90:2d:1f:37: 9e:d1:22:bb -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUAgRjgumKg5TwzAaYabz7fT9yxacwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD REJDRUZEMTAeFw0yNjA1MTExNzEyMjhaFw0yNzA1MTAxNzE3MjhaMDMxMTAvBgNV BAMTKEYyQzA0QkYzNjQ3RjNCRDM0QUFFNDc1MzYzMUZGMEFDNjA4RDkzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYAOOmvIfL4R3wF7PKeFcpyUrB a7NKEE0/XlfyrfFFQoIiDGvUGKDa9v/FkdFpoVAgZaRYl8S9ih9j26zWhAr7NzX0 2R1/I6/gfbjNHF6Zsor06xJWOqxR6XsQfyK5qyuyf5Sycj2feEZdT0ookmWs0MMT 7Ncv0VE5qNwbKD80nFyutep01oSGpzymzSb2qZiBZcUK/DTcRqxp3sMX+hkg2DAs N7kBxH/bfKalVB/3qUHQaAorbcdxkS2TGEcfbhcrpIAeNzGJrMc5SAFjUfBBhwDd 14ENnibv7MapP3G0M0StSzDpAUr2O26FFZlGFnqQj2umZbQKHBWGxhtKHKo/AgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQU8sBL82R/O9NKrkdTYx/wrGCNkzAwHwYDVR0j BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzM2MzEyZTM1MzcyZTMx MzUzNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAI9OZwwDQYJKoZIhvcNAQELBQADggEBADU00W0XWnHiP27i4JmQ/k2CfYxVuh3j Ekt3M+rzipv0Vzmsb00ZNZ0LbkYLRrq0soq5YC6bbLrks/YSK1zj3Xsy+K+OfqEG XIbmEnxOx2dPHAEnJvW3KlajDlpMkvzvUsZQ/8TijLWHyPTDB1kx/+emBQ5bbDuJ 6mj4O+UQ7JupVigRHfLVepgW2AiI/IO/sn5udmuvxfNpuFIcZnai58IIbH8pddPq Na87jwFicoNPvojFg5BU0+UR5AU3xdN4arE1w+dGORidWop/Um3vSwoKneGCltFo pC46a/cMoPLmN+opqcFRPVkEkVRIXiavhiwX0ARc2wj9kC0fN57RIrs= -----END CERTIFICATE-----Generated at Wed May 13 21:08:13 2026 by rpki-client