$ rpki-client -vvf rpkica.twnic.tw/rpki/DCTV/0/32372e302e3135322e302f32322d3234203d3e20313331363037.roa File: 32372e302e3135322e302f32322d3234203d3e20313331363037.roa (raw, json) Hash identifier: DvXwVOOH787nnj2iKzFJiQBBroV8f+Ma+r+Jza0TzM4= Subject key identifier: B8:07:4D:63:30:51:A1:2F:A4:25:E0:30:86:89:9C:2A:E1:05:70:16 Certificate issuer: /CN=5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C Certificate serial: 501A66E87D52A4DC02924D6B952EA7212F4C2B4A Authority key identifier: 5A:4C:57:23:25:82:51:A2:F2:23:37:EC:5A:BE:9F:2B:1A:E2:FB:4C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DCTV/0/32372e302e3135322e302f32322d3234203d3e20313331363037.roa Signing time: Mon 11 May 2026 16:45:53 +0000 ROA not before: Mon 11 May 2026 16:40:53 +0000 ROA not after: Mon 10 May 2027 16:45:53 +0000 asID: 131607 IP address blocks: 27.0.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DCTV/0/5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.crl rsync://rpkica.twnic.tw/rpki/DCTV/0/5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:1a:66:e8:7d:52:a4:dc:02:92:4d:6b:95:2e:a7:21:2f:4c:2b:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C Validity Not Before: May 11 16:40:53 2026 GMT Not After : May 10 16:45:53 2027 GMT Subject: CN=B8074D633051A12FA425E03086899C2AE1057016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:42:e2:f7:b4:23:d5:c1:65:e7:c2:1d:b4:a2: cb:5f:5c:6e:f1:a1:2f:1b:5a:9b:ae:8c:33:bc:c8: 90:66:a9:65:9c:8c:bb:b3:18:de:09:dd:e7:66:2f: 90:70:b7:50:fa:32:a9:ce:aa:db:f2:20:1e:09:f7: ff:0b:42:01:31:62:17:5e:a3:53:bd:b7:a6:36:f8: a4:ac:84:f2:a0:09:6f:3e:7f:37:34:b5:e5:1f:53: 2b:35:27:f3:07:f5:03:1f:e9:4e:f7:63:3e:86:67: 7d:04:58:fe:c6:96:30:d1:42:4b:55:69:56:a0:28: c7:91:3f:7b:e9:00:e6:73:a8:e0:cd:e2:81:43:ec: c6:a4:f7:3e:45:45:be:7d:c6:50:6b:c0:bf:e1:92: 65:3b:64:65:c7:90:84:d0:8a:32:62:83:25:48:b1: f1:e8:c1:34:1f:aa:40:e0:25:e6:6d:82:a4:f1:e3: 8f:e3:2c:a8:6f:cc:a4:97:d2:39:4a:bd:e5:96:b8: 25:1e:cd:f7:83:75:ed:e2:ad:8f:d0:08:2a:93:55: 26:7d:05:e0:05:54:b2:92:52:0c:e9:4f:1e:a9:b0: 4c:ce:1d:37:91:c4:1e:df:da:3d:69:3e:58:37:b7: b1:39:bb:1e:d8:c0:e2:c6:87:d1:30:3f:d1:90:96: ee:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:07:4D:63:30:51:A1:2F:A4:25:E0:30:86:89:9C:2A:E1:05:70:16 X509v3 Authority Key Identifier: keyid:5A:4C:57:23:25:82:51:A2:F2:23:37:EC:5A:BE:9F:2B:1A:E2:FB:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DCTV/0/5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A4C5723258251A2F22337EC5ABE9F2B1AE2FB4C.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DCTV/0/32372e302e3135322e302f32322d3234203d3e20313331363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.152.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:0e:26:7b:28:8a:a0:b2:c6:35:6d:e7:3a:af:05:88:f8:24: 7b:27:b0:61:41:dc:15:42:30:87:10:e1:9c:fa:69:cc:d1:72: 47:26:12:c0:69:6b:56:0a:92:d1:59:04:f1:b0:24:60:dc:3f: 09:e0:a5:b5:72:f6:4a:91:5f:a9:5c:45:4e:76:c8:e7:fb:65: 11:ee:91:32:6c:06:a0:8b:ac:5c:58:68:da:29:0b:5b:b4:b0: 95:bb:be:c9:a0:fa:ae:7c:23:3b:a7:1b:ef:4b:ec:b0:a0:57: ad:2e:39:65:01:58:72:b5:5e:9c:c5:c9:d9:90:26:62:08:86: b5:09:85:f9:d8:a3:2a:07:1e:a8:02:7a:56:fc:58:de:f2:5b: 5c:f7:6e:18:f6:b2:fd:d5:f8:1b:3c:fb:15:ce:b5:62:f5:b1: 48:e5:2b:f4:e4:35:cf:bb:7f:7c:ad:d6:eb:47:9b:c7:1e:8f: 4b:3f:e3:d3:95:3c:39:06:4d:90:80:c4:6a:df:bb:24:85:28: 09:c0:77:db:05:fd:2b:89:dd:ae:a2:23:dc:09:59:1c:de:63: c5:66:3c:4c:c2:7d:a3:f9:ac:8b:8d:48:75:8c:7a:78:90:3f: cd:23:f2:c5:22:0f:63:b2:c6:8b:b5:5e:35:ad:63:36:af:be: eb:ac:fe:f1 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUUBpm6H1SpNwCkk1rlS6nIS9MK0owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE0QzU3MjMyNTgyNTFBMkYyMjMzN0VDNUFCRTlGMkIx QUUyRkI0QzAeFw0yNjA1MTExNjQwNTNaFw0yNzA1MTAxNjQ1NTNaMDMxMTAvBgNV BAMTKEI4MDc0RDYzMzA1MUExMkZBNDI1RTAzMDg2ODk5QzJBRTEwNTcwMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVQuL3tCPVwWXnwh20ostfXG7x oS8bWpuujDO8yJBmqWWcjLuzGN4J3edmL5Bwt1D6MqnOqtvyIB4J9/8LQgExYhde o1O9t6Y2+KSshPKgCW8+fzc0teUfUys1J/MH9QMf6U73Yz6GZ30EWP7GljDRQktV aVagKMeRP3vpAOZzqODN4oFD7Mak9z5FRb59xlBrwL/hkmU7ZGXHkITQijJigyVI sfHowTQfqkDgJeZtgqTx44/jLKhvzKSX0jlKveWWuCUezfeDde3irY/QCCqTVSZ9 BeAFVLKSUgzpTx6psEzOHTeRxB7f2j1pPlg3t7E5ux7YwOLGh9EwP9GQlu5dAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUuAdNYzBRoS+kJeAwhomcKuEFcBYwHwYDVR0j BBgwFoAUWkxXIyWCUaLyIzfsWr6fKxri+0wwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRENUVi8w LzVBNEM1NzIzMjU4MjUxQTJGMjIzMzdFQzVBQkU5RjJCMUFFMkZCNEMuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvNUE0QzU3MjMyNTgyNTFBMkYyMjMzN0VDNUFCRTlG MkIxQUUyRkI0Qy5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RDVFYvMC8zMjM3MmUzMDJlMzEzNTMy MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzEzMzMxMzYzMDM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC GwCYMA0GCSqGSIb3DQEBCwUAA4IBAQANDiZ7KIqgssY1bec6rwWI+CR7J7BhQdwV QjCHEOGc+mnM0XJHJhLAaWtWCpLRWQTxsCRg3D8J4KW1cvZKkV+pXEVOdsjn+2UR 7pEybAagi6xcWGjaKQtbtLCVu77JoPqufCM7pxvvS+ywoFetLjllAVhytV6cxcnZ kCZiCIa1CYX52KMqBx6oAnpW/Fje8ltc924Y9rL91fgbPPsVzrVi9bFI5Sv05DXP u398rdbrR5vHHo9LP+PTlTw5Bk2QgMRq37skhSgJwHfbBf0rid2uoiPcCVkc3mPF ZjxMwn2j+ayLjUh1jHp4kD/NI/LFIg9jssaLtV41rWM2r77rrP7x -----END CERTIFICATE-----Generated at Wed May 13 21:11:26 2026 by rpki-client