$ rpki-client -vvf rpkica.twnic.tw/rpki/DOWTEK/0/3136322e342e3233372e302f32342d3234203d3e20323032373336.roa File: 3136322e342e3233372e302f32342d3234203d3e20323032373336.roa (raw, json) Hash identifier: w52thh8Ebtpos+XU7qjpIWopgPCDyo6UfDelxnyPqdM= Subject key identifier: 30:39:7D:00:C9:4E:C5:98:A2:67:27:6C:18:60:34:50:40:58:CC:17 Certificate issuer: /CN=4DC8A0E80696AD1A2419ACE881334BE812506228 Certificate serial: 25CB80A3ABE6D7A338E58EC73D410AE9207C728A Authority key identifier: 4D:C8:A0:E8:06:96:AD:1A:24:19:AC:E8:81:33:4B:E8:12:50:62:28 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/4DC8A0E80696AD1A2419ACE881334BE812506228.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DOWTEK/0/3136322e342e3233372e302f32342d3234203d3e20323032373336.roa Signing time: Tue 16 Jun 2026 07:23:50 +0000 ROA not before: Tue 16 Jun 2026 07:18:50 +0000 ROA not after: Tue 15 Jun 2027 07:23:50 +0000 asID: 202736 IP address blocks: 162.4.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.crl rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/4DC8A0E80696AD1A2419ACE881334BE812506228.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 11:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:cb:80:a3:ab:e6:d7:a3:38:e5:8e:c7:3d:41:0a:e9:20:7c:72:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DC8A0E80696AD1A2419ACE881334BE812506228 Validity Not Before: Jun 16 07:18:50 2026 GMT Not After : Jun 15 07:23:50 2027 GMT Subject: CN=30397D00C94EC598A267276C186034504058CC17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:64:f2:e2:7b:b8:a9:ae:21:20:ac:27:37:14: 02:d0:e0:ae:f6:a8:69:fa:f3:1d:b2:ce:da:1e:5c: fc:6f:bd:45:80:48:ef:8f:3a:c8:7e:d6:10:ed:e9: 8d:fe:fd:97:ad:b7:83:ad:10:b9:d6:59:50:6a:7e: 06:59:15:22:12:42:23:6b:a0:35:8f:a2:57:77:98: 6a:e5:3e:3d:f6:ca:ea:89:86:09:eb:7d:73:81:49: d5:8a:72:5f:e7:82:0b:f7:3a:20:fe:30:e3:3d:f4: 65:be:1b:f8:1c:a1:2f:97:d3:04:d1:2f:34:81:5f: f0:7f:ff:73:bf:7b:e1:f6:f2:12:7b:2c:ca:9b:13: 73:93:55:3a:15:66:92:1a:20:62:61:42:13:3e:60: f3:94:e0:70:f3:00:8c:51:c5:7d:a1:e7:a3:c9:f0: 0d:ca:96:e9:c2:b8:b8:ae:6e:13:10:0b:11:d2:1b: d2:2e:05:cb:46:de:62:b1:7a:dc:08:ca:9c:b5:74: 34:6e:1f:51:9e:e8:78:3d:0f:62:7c:69:29:9e:72: b6:8e:ce:bc:05:e1:18:ca:0c:2c:58:21:ad:8f:c9: ad:4b:8f:02:79:ed:3b:48:da:32:80:96:1f:83:a7: 8f:70:b7:ae:90:4c:b4:5f:b4:0c:dd:cd:64:75:0f: ba:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:39:7D:00:C9:4E:C5:98:A2:67:27:6C:18:60:34:50:40:58:CC:17 X509v3 Authority Key Identifier: keyid:4D:C8:A0:E8:06:96:AD:1A:24:19:AC:E8:81:33:4B:E8:12:50:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/4DC8A0E80696AD1A2419ACE881334BE812506228.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/0/3136322e342e3233372e302f32342d3234203d3e20323032373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.4.237.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:6d:5f:66:4f:9f:6d:84:fe:c6:7b:7f:a5:7b:6f:56:c1:22: 80:d1:fa:75:98:6c:b5:6b:22:2f:95:52:71:8d:e6:4f:db:3b: fa:70:f6:27:82:95:c0:ee:b0:2d:21:00:49:ac:b5:a7:03:ab: 38:19:89:fe:d1:3a:7d:92:27:1d:43:7f:1e:a0:cb:28:09:80: ef:5f:27:8b:e6:6e:51:af:4a:c4:e7:73:b0:d8:62:85:72:b6: 6a:74:d7:a8:58:ab:04:b1:ba:06:b9:a0:84:5d:ea:e0:e8:e2: 71:42:3e:87:1a:a0:9e:0b:ca:a5:24:43:68:b8:af:4e:cf:f7: 9c:3a:80:aa:9b:f8:76:6d:b8:fd:45:86:72:e2:32:75:16:01: 8e:9e:c1:78:b0:6d:6e:e7:5d:b8:20:f6:62:06:65:2c:4a:b6: 12:cf:f1:bb:53:43:5c:66:92:02:46:27:c5:6d:d5:84:d4:b5: bb:d1:5a:bf:2f:2a:28:cf:88:dd:ed:a0:40:03:72:a6:c1:a5: ea:d1:0a:9a:ef:b3:64:ae:97:87:dc:06:37:60:78:3a:59:e2: ad:c9:25:83:cd:3e:ae:f4:51:83:02:36:da:59:35:e4:9f:d3: 7e:1e:97:92:75:57:86:77:d8:70:87:d3:c8:23:5a:ca:62:32: 22:25:0f:fa -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUJcuAo6vm16M45Y7HPUEK6SB8coowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERDOEEwRTgwNjk2QUQxQTI0MTlBQ0U4ODEzMzRCRTgx MjUwNjIyODAeFw0yNjA2MTYwNzE4NTBaFw0yNzA2MTUwNzIzNTBaMDMxMTAvBgNV BAMTKDMwMzk3RDAwQzk0RUM1OThBMjY3Mjc2QzE4NjAzNDUwNDA1OENDMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgZPLie7ipriEgrCc3FALQ4K72 qGn68x2yztoeXPxvvUWASO+POsh+1hDt6Y3+/Zett4OtELnWWVBqfgZZFSISQiNr oDWPold3mGrlPj32yuqJhgnrfXOBSdWKcl/nggv3OiD+MOM99GW+G/gcoS+X0wTR LzSBX/B//3O/e+H28hJ7LMqbE3OTVToVZpIaIGJhQhM+YPOU4HDzAIxRxX2h56PJ 8A3KlunCuLiubhMQCxHSG9IuBctG3mKxetwIypy1dDRuH1Ge6Hg9D2J8aSmecraO zrwF4RjKDCxYIa2Pya1LjwJ57TtI2jKAlh+Dp49wt66QTLRftAzdzWR1D7oxAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUMDl9AMlOxZiiZydsGGA0UEBYzBcwHwYDVR0j BBgwFoAUTcig6AaWrRokGazogTNL6BJQYigwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XVEVL LzAvNERDOEEwRTgwNjk2QUQxQTI0MTlBQ0U4ODEzMzRCRTgxMjUwNjIyOC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMC80REM4QTBFODA2OTZBRDFBMjQxOUFDRTg4MTMz NEJFODEyNTA2MjI4LmNlcjB8BggrBgEFBQcBCwRwMG4wbAYIKwYBBQUHMAuGYHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XVEVLLzAvMzEzNjMyMmUzNDJl MzIzMzM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDMyMzczMzM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAogTtMA0GCSqGSIb3DQEBCwUAA4IBAQAubV9mT59thP7Ge3+le29WwSKA 0fp1mGy1ayIvlVJxjeZP2zv6cPYngpXA7rAtIQBJrLWnA6s4GYn+0Tp9kicdQ38e oMsoCYDvXyeL5m5Rr0rE53Ow2GKFcrZqdNeoWKsEsboGuaCEXerg6OJxQj6HGqCe C8qlJENouK9Oz/ecOoCqm/h2bbj9RYZy4jJ1FgGOnsF4sG1u5124IPZiBmUsSrYS z/G7U0NcZpICRifFbdWE1LW70Vq/Lyooz4jd7aBAA3KmwaXq0Qqa77NkrpeH3AY3 YHg6WeKtySWDzT6u9FGDAjbaWTXkn9N+HpeSdVeGd9hwh9PII1rKYjIiJQ/6 -----END CERTIFICATE-----Generated at Tue Jun 16 19:50:14 2026 by rpki-client