$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDBASE/1/3136352e3130312e32392e302f32342d3234203d3e203136353039.roa File: 3136352e3130312e32392e302f32342d3234203d3e203136353039.roa (raw, json) Hash identifier: yjG8MYF6nfrkwkNu+HFEW+1IrLrwkYkIiZ19QyWO3Dk= Subject key identifier: 45:20:CA:49:7E:38:A6:1E:E0:56:A4:14:5C:7D:22:59:99:6B:42:04 Certificate issuer: /CN=385249635956536ABAE4461A37AC4824F9DC8FD6 Certificate serial: 30FFA65DA7198EB7518A080208C44F5240A877BE Authority key identifier: 38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/3136352e3130312e32392e302f32342d3234203d3e203136353039.roa Signing time: Sat 20 Jun 2026 15:23:48 +0000 ROA not before: Sat 20 Jun 2026 15:18:48 +0000 ROA not after: Sat 19 Jun 2027 15:23:48 +0000 asID: 16509 IP address blocks: 165.101.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.crl rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 12:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ff:a6:5d:a7:19:8e:b7:51:8a:08:02:08:c4:4f:52:40:a8:77:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=385249635956536ABAE4461A37AC4824F9DC8FD6 Validity Not Before: Jun 20 15:18:48 2026 GMT Not After : Jun 19 15:23:48 2027 GMT Subject: CN=4520CA497E38A61EE056A4145C7D2259996B4204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:bf:95:f1:2a:0d:77:03:b3:92:66:45:e7:3b: 0a:db:f1:49:17:76:37:06:22:13:45:64:e0:1a:00: 08:97:e8:e4:b5:2a:28:94:70:1e:62:48:cc:f1:dc: 62:f0:7b:61:b0:d2:eb:2e:ae:d0:68:f0:69:87:58: 73:9d:6a:80:7f:e3:5d:e7:c0:a6:87:5a:e7:bc:a7: 8f:d4:cd:10:fe:70:01:8d:3f:e0:41:81:b5:17:29: 23:d6:3c:ae:c1:e6:d3:11:52:5e:33:5e:a1:e7:53: f6:38:f9:07:10:b4:65:80:fa:05:90:94:ce:22:c5: 8c:24:25:aa:a9:7b:33:36:c1:48:f6:f3:b4:0a:3c: b9:96:f8:58:6e:cd:31:0c:4a:0e:8e:c2:36:0c:95: a5:07:0d:ad:4f:26:5b:21:d3:c6:51:d0:4c:05:2e: 80:ad:20:97:d4:9a:b1:9f:fb:ca:8f:dd:dc:6d:83: 91:6e:13:d0:08:fa:8d:71:98:7b:33:91:2e:31:dd: 8e:0c:05:08:aa:21:1b:88:ff:0e:bd:47:08:1c:d6: cd:d2:5f:9d:8c:b2:49:7a:10:bf:cb:4e:97:58:fb: 2e:d0:d7:49:7f:3c:1c:1b:23:2a:26:90:52:0e:d3: fc:9b:4e:fa:ba:01:b4:fd:69:6a:94:2b:d3:96:e2: 66:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:20:CA:49:7E:38:A6:1E:E0:56:A4:14:5C:7D:22:59:99:6B:42:04 X509v3 Authority Key Identifier: keyid:38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/3136352e3130312e32392e302f32342d3234203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.29.0/24 Signature Algorithm: sha256WithRSAEncryption 57:0f:c9:e8:af:fe:06:a0:8b:6b:58:28:68:97:cc:30:8b:94: 55:43:bd:bc:c0:97:c3:43:26:68:01:2a:47:39:ef:83:f1:1a: d1:51:d4:37:17:32:b8:49:67:5f:54:81:69:95:1d:85:25:23: d1:2c:46:9b:91:0f:33:f3:8a:cf:75:82:b0:95:04:27:5f:4b: 0d:81:91:28:61:14:5e:2d:76:c3:65:d6:8e:f7:fd:ef:7c:d9: f2:24:a0:ef:e7:57:59:7a:0b:49:52:02:4f:8d:39:82:76:32: 4e:6e:6d:59:98:37:cb:7b:14:98:a8:b6:9c:33:02:7f:e1:ed: e7:ab:97:68:44:ec:d1:5d:c8:24:16:c4:d5:e3:ee:b4:f5:2d: 62:08:cc:dd:94:4a:c9:d0:52:04:8e:0f:ec:10:0d:b9:18:0c: 17:58:7c:72:d9:f7:f8:d9:af:84:97:1c:eb:5b:61:b7:6b:ed: 6f:5e:7b:70:1a:e7:3b:f3:51:87:61:8e:01:5d:a5:d6:ce:80: 4f:73:05:98:bb:5c:ad:20:0d:43:f0:7d:a0:69:9c:19:15:9e: a2:8c:24:7d:e5:b1:ca:d8:9c:a1:21:36:74:33:56:4c:10:1f: 0b:92:00:d0:fe:66:90:01:d5:52:b1:77:90:fa:1b:c4:e5:3e: 8c:99:ed:d5 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUMP+mXacZjrdRiggCCMRPUkCod74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg1MjQ5NjM1OTU2NTM2QUJBRTQ0NjFBMzdBQzQ4MjRG OURDOEZENjAeFw0yNjA2MjAxNTE4NDhaFw0yNzA2MTkxNTIzNDhaMDMxMTAvBgNV BAMTKDQ1MjBDQTQ5N0UzOEE2MUVFMDU2QTQxNDVDN0QyMjU5OTk2QjQyMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVv5XxKg13A7OSZkXnOwrb8UkX djcGIhNFZOAaAAiX6OS1KiiUcB5iSMzx3GLwe2Gw0usurtBo8GmHWHOdaoB/413n wKaHWue8p4/UzRD+cAGNP+BBgbUXKSPWPK7B5tMRUl4zXqHnU/Y4+QcQtGWA+gWQ lM4ixYwkJaqpezM2wUj287QKPLmW+FhuzTEMSg6OwjYMlaUHDa1PJlsh08ZR0EwF LoCtIJfUmrGf+8qP3dxtg5FuE9AI+o1xmHszkS4x3Y4MBQiqIRuI/w69Rwgc1s3S X52Mskl6EL/LTpdY+y7Q10l/PBwbIyomkFIO0/ybTvq6AbT9aWqUK9OW4mbVAgMB AAGjggHpMIIB5TAdBgNVHQ4EFgQURSDKSX44ph7gVqQUXH0iWZlrQgQwHwYDVR0j BBgwFoAUOFJJY1lWU2q65EYaN6xIJPncj9YwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURC QVNFLzEvMzg1MjQ5NjM1OTU2NTM2QUJBRTQ0NjFBMzdBQzQ4MjRGOURDOEZENi5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMC8zODUyNDk2MzU5NTY1MzZBQkFFNDQ2MUEz N0FDNDgyNEY5REM4RkQ2LmNlcjB/BggrBgEFBQcBCwRzMHEwbwYIKwYBBQUHMAuG Y3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURCQVNFLzEvMzEzNjM1 MmUzMTMwMzEyZTMyMzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM2MzUzMDM5 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQApWUdMA0GCSqGSIb3DQEBCwUAA4IBAQBXD8nor/4GoItrWCho l8wwi5RVQ728wJfDQyZoASpHOe+D8RrRUdQ3FzK4SWdfVIFplR2FJSPRLEabkQ8z 84rPdYKwlQQnX0sNgZEoYRReLXbDZdaO9/3vfNnyJKDv51dZegtJUgJPjTmCdjJO bm1ZmDfLexSYqLacMwJ/4e3nq5doROzRXcgkFsTV4+609S1iCMzdlErJ0FIEjg/s EA25GAwXWHxy2ff42a+ElxzrW2G3a+1vXntwGuc781GHYY4BXaXWzoBPcwWYu1yt IA1D8H2gaZwZFZ6ijCR95bHK2JyhITZ0M1ZMEB8LkgDQ/maQAdVSsXeQ+hvE5T6M me3V -----END CERTIFICATE-----Generated at Tue Jun 30 14:02:56 2026 by rpki-client