$ rpki-client -vvf rpkica.twnic.tw/rpki/DOWTEK/0/3136322e342e3233362e302f32342d3234203d3e20313937353337.roa File: 3136322e342e3233362e302f32342d3234203d3e20313937353337.roa (raw, json) Hash identifier: +tTGktskMMOWc8Ety/WMBt1UkK/mDxd3gLrUS6bHiGw= Subject key identifier: 43:4B:B1:4A:22:DC:D0:4D:CC:3B:A2:93:6D:50:54:75:CD:FE:C7:33 Certificate issuer: /CN=4DC8A0E80696AD1A2419ACE881334BE812506228 Certificate serial: 4C180B4468D4051106EE4CF8DC60D27D00528C30 Authority key identifier: 4D:C8:A0:E8:06:96:AD:1A:24:19:AC:E8:81:33:4B:E8:12:50:62:28 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/4DC8A0E80696AD1A2419ACE881334BE812506228.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DOWTEK/0/3136322e342e3233362e302f32342d3234203d3e20313937353337.roa Signing time: Tue 16 Jun 2026 07:23:51 +0000 ROA not before: Tue 16 Jun 2026 07:18:51 +0000 ROA not after: Tue 15 Jun 2027 07:23:51 +0000 asID: 197537 IP address blocks: 162.4.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.crl rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/4DC8A0E80696AD1A2419ACE881334BE812506228.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 11:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:18:0b:44:68:d4:05:11:06:ee:4c:f8:dc:60:d2:7d:00:52:8c:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DC8A0E80696AD1A2419ACE881334BE812506228 Validity Not Before: Jun 16 07:18:51 2026 GMT Not After : Jun 15 07:23:51 2027 GMT Subject: CN=434BB14A22DCD04DCC3BA2936D505475CDFEC733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5b:3e:ac:a4:a0:f1:cc:42:d1:80:b2:f9:60: 8e:c9:1f:9d:67:f9:22:eb:14:6f:98:22:79:cf:3c: 36:96:4e:4b:2e:dc:79:da:d8:dc:ff:44:b4:36:77: c5:03:e4:80:bf:15:b3:dd:f1:db:0c:e4:47:ed:59: 59:72:c4:f6:52:bb:24:1a:6a:ce:01:7e:58:28:ed: 00:3f:75:8a:82:10:47:30:fd:69:a9:26:93:85:55: 34:ce:99:dc:a4:0b:b6:7d:06:d7:24:36:36:7f:41: 1a:40:38:6e:8c:79:99:10:10:f8:a9:2e:95:06:a0: 4a:fb:49:30:76:62:2d:80:47:d3:50:54:ce:e2:0b: 37:c8:74:ae:f8:74:40:eb:27:06:9f:ae:85:35:2b: 97:0c:2a:00:c8:da:8c:22:38:13:5b:7a:b6:02:be: d5:c2:d2:28:22:1d:9d:cf:7c:ec:23:13:85:2a:c3: 64:10:00:94:9e:f8:1b:8f:30:db:41:2e:2f:5f:9d: fe:ad:86:1f:78:1e:03:36:f5:58:70:43:4d:5e:f6: bf:dd:fa:85:81:62:77:c1:81:a0:90:f7:12:5e:e3: 20:29:65:08:30:0d:f1:a6:a6:00:2b:18:02:36:f7: 79:43:fa:ea:18:34:dd:c6:62:a5:64:02:c4:77:62: cd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4B:B1:4A:22:DC:D0:4D:CC:3B:A2:93:6D:50:54:75:CD:FE:C7:33 X509v3 Authority Key Identifier: keyid:4D:C8:A0:E8:06:96:AD:1A:24:19:AC:E8:81:33:4B:E8:12:50:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/4DC8A0E80696AD1A2419ACE881334BE812506228.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/0/3136322e342e3233362e302f32342d3234203d3e20313937353337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.4.236.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:d7:3f:12:1f:40:b2:75:c1:29:71:39:67:03:f4:6c:6a:f6: 95:74:00:8c:ed:de:ec:2c:43:6f:58:7f:08:69:1d:58:26:33: ff:43:39:9e:2f:5b:db:04:e9:14:2b:7b:3b:60:29:3b:7f:01: 5d:c8:9a:38:93:a7:ee:44:90:87:b9:2f:a5:7a:a8:50:e2:a9: 2e:f0:b4:2f:38:c2:35:b7:c6:00:c3:62:f7:c0:f5:fe:a8:b4: 36:a1:29:41:86:3d:7e:0a:85:88:5c:4f:88:f9:57:6c:2f:6b: 29:b5:57:16:9e:d0:f1:f1:99:c6:dd:f2:ea:0b:6f:93:68:a2: cd:a3:03:dd:4c:59:04:7b:93:b4:c3:df:ae:a0:34:d9:7f:f0: 75:3d:fe:3e:9a:ba:92:c1:39:16:3b:c3:67:1a:cd:37:96:94: 05:bd:f8:21:68:9f:b0:f1:a8:8d:df:ec:1c:48:ba:b8:9d:b7: 49:96:be:cf:0d:f3:e8:aa:fc:ff:f1:e9:f2:51:8e:de:19:57: 0c:bb:24:18:24:93:78:0e:f4:51:1a:66:3d:e9:10:2e:ac:ec: 55:fd:a7:55:9a:02:1d:47:53:53:8c:3c:a1:40:02:aa:b8:3d: 1e:d7:58:2e:11:14:7a:24:13:68:cc:e7:2a:60:42:be:5c:83: fb:ad:dd:d6 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUTBgLRGjUBREG7kz43GDSfQBSjDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERDOEEwRTgwNjk2QUQxQTI0MTlBQ0U4ODEzMzRCRTgx MjUwNjIyODAeFw0yNjA2MTYwNzE4NTFaFw0yNzA2MTUwNzIzNTFaMDMxMTAvBgNV BAMTKDQzNEJCMTRBMjJEQ0QwNERDQzNCQTI5MzZENTA1NDc1Q0RGRUM3MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEWz6spKDxzELRgLL5YI7JH51n +SLrFG+YInnPPDaWTksu3Hna2Nz/RLQ2d8UD5IC/FbPd8dsM5EftWVlyxPZSuyQa as4Bflgo7QA/dYqCEEcw/WmpJpOFVTTOmdykC7Z9BtckNjZ/QRpAOG6MeZkQEPip LpUGoEr7STB2Yi2AR9NQVM7iCzfIdK74dEDrJwafroU1K5cMKgDI2owiOBNberYC vtXC0igiHZ3PfOwjE4Uqw2QQAJSe+BuPMNtBLi9fnf6thh94HgM29VhwQ01e9r/d +oWBYnfBgaCQ9xJe4yApZQgwDfGmpgArGAI293lD+uoYNN3GYqVkAsR3Ys2FAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUQ0uxSiLc0E3MO6KTbVBUdc3+xzMwHwYDVR0j BBgwFoAUTcig6AaWrRokGazogTNL6BJQYigwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XVEVL LzAvNERDOEEwRTgwNjk2QUQxQTI0MTlBQ0U4ODEzMzRCRTgxMjUwNjIyOC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMC80REM4QTBFODA2OTZBRDFBMjQxOUFDRTg4MTMz NEJFODEyNTA2MjI4LmNlcjB8BggrBgEFBQcBCwRwMG4wbAYIKwYBBQUHMAuGYHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XVEVLLzAvMzEzNjMyMmUzNDJl MzIzMzM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzOTM3MzUzMzM3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAogTsMA0GCSqGSIb3DQEBCwUAA4IBAQBa1z8SH0CydcEpcTlnA/RsavaV dACM7d7sLENvWH8IaR1YJjP/QzmeL1vbBOkUK3s7YCk7fwFdyJo4k6fuRJCHuS+l eqhQ4qku8LQvOMI1t8YAw2L3wPX+qLQ2oSlBhj1+CoWIXE+I+VdsL2sptVcWntDx 8ZnG3fLqC2+TaKLNowPdTFkEe5O0w9+uoDTZf/B1Pf4+mrqSwTkWO8NnGs03lpQF vfghaJ+w8aiN3+wcSLq4nbdJlr7PDfPoqvz/8enyUY7eGVcMuyQYJJN4DvRRGmY9 6RAurOxV/adVmgIdR1NTjDyhQAKquD0e11guERR6JBNozOcqYEK+XIP7rd3W -----END CERTIFICATE-----Generated at Tue Jun 16 19:58:42 2026 by rpki-client