$ rpki-client -vvf rpkica.twnic.tw/rpki/DYXNET/0/3231302e36372e39362e302f32302d3230203d3e2039323434.roa File: 3231302e36372e39362e302f32302d3230203d3e2039323434.roa (raw, json) Hash identifier: C02rXsQ6Y93MLpg6oZMwS2YNlT8ftQ8gTIwWkyT1p/c= Subject key identifier: 7D:FA:24:25:7C:7C:82:9F:36:AA:2C:5D:E9:84:21:47:DE:19:57:2D Certificate issuer: /CN=157D536924EE6C5A7711625C6906CB5139BE6605 Certificate serial: 68433C551146E86A33323798BEBE5A045C50DA44 Authority key identifier: 15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DYXNET/0/3231302e36372e39362e302f32302d3230203d3e2039323434.roa Signing time: Mon 11 May 2026 16:54:31 +0000 ROA not before: Mon 11 May 2026 16:49:31 +0000 ROA not after: Mon 10 May 2027 16:54:31 +0000 asID: 9244 IP address blocks: 210.67.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:43:3c:55:11:46:e8:6a:33:32:37:98:be:be:5a:04:5c:50:da:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157D536924EE6C5A7711625C6906CB5139BE6605 Validity Not Before: May 11 16:49:31 2026 GMT Not After : May 10 16:54:31 2027 GMT Subject: CN=7DFA24257C7C829F36AA2C5DE9842147DE19572D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:23:2b:43:27:16:73:45:0f:28:6e:54:73:c5: 33:80:17:e2:68:d6:93:53:9d:ad:87:5b:50:9c:25: cb:67:47:0e:8a:c0:1f:da:ad:6e:ed:e1:d4:ed:1b: dd:95:a6:f0:39:dd:04:7a:d5:05:8a:70:39:2e:cd: 34:11:9d:35:5a:27:3f:ad:10:b7:ab:a3:9f:3b:6e: 8d:85:4a:a9:47:00:73:de:7d:c6:cd:5d:cf:10:71: 09:a4:32:21:7b:5f:b8:02:46:42:fe:ac:e6:21:bd: 57:f5:7d:19:24:3f:fc:d0:32:4a:dd:64:cd:e2:5b: d4:53:df:cc:63:18:a8:c7:d7:1c:7f:57:ee:8f:03: 63:c8:44:a7:9e:54:a0:ed:9c:d9:65:28:e3:da:97: b2:7b:60:64:61:65:56:e9:05:b4:5e:04:9f:6c:2a: 6d:09:1d:80:fe:da:12:be:a3:95:c0:08:67:fd:29: 0d:d3:53:82:96:84:13:a3:d7:a4:4d:12:f8:43:dc: 0f:fa:33:1e:1b:f3:0f:02:d8:40:96:60:98:88:e9: 71:41:34:ee:0c:57:71:39:a3:eb:56:3f:23:39:32: 83:8c:56:5f:28:02:7e:10:fd:01:c9:cf:f5:6c:33: 6e:b5:dd:7f:23:26:d9:4b:6e:21:7f:dc:d3:60:41: f3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FA:24:25:7C:7C:82:9F:36:AA:2C:5D:E9:84:21:47:DE:19:57:2D X509v3 Authority Key Identifier: keyid:15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/3231302e36372e39362e302f32302d3230203d3e2039323434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.67.96.0/20 Signature Algorithm: sha256WithRSAEncryption 99:5f:09:80:a8:b9:8d:a7:0d:4d:62:d7:92:78:fa:a6:cc:27: b0:da:8a:61:39:f4:90:46:cb:13:b2:f1:34:9b:e3:36:4e:aa: f8:62:77:f0:62:3f:9f:6b:1f:be:91:25:28:9c:3b:7c:e2:87: 41:3d:4d:4b:61:d4:e0:6d:ae:6e:38:5d:df:db:d4:6b:a2:21: 60:1b:e9:0a:86:21:71:df:e1:58:37:c8:51:13:92:78:33:eb: ff:ce:cc:fd:38:2c:cb:6b:c3:d6:b2:4c:c3:c2:35:fb:99:6c: e1:b0:70:1a:c8:ab:1f:50:3d:9f:a5:d2:cf:68:31:56:8f:3d: e8:1d:07:e8:83:a4:50:27:cf:28:79:ea:84:8b:1a:43:78:dc: ac:b4:33:b8:44:ea:b8:ee:8e:f4:8d:c5:f8:5a:5e:75:2a:d0: 5c:da:3b:d6:42:7f:53:4b:4f:d9:a3:d7:ff:bd:c7:d0:00:6a: 1b:20:fc:ca:9b:6c:3c:14:c0:ea:71:38:e1:49:11:16:f6:22: 50:d1:c1:f3:ad:af:09:36:7f:75:12:8c:45:c5:53:5e:c6:11: 40:85:29:b6:4f:4d:35:e3:cd:8a:31:dc:61:55:43:f9:52:01: 11:28:ec:48:5d:94:04:0c:91:90:f4:94:5c:ac:18:67:80:d6: fb:99:13:40 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUaEM8VRFG6GozMjeYvr5aBFxQ2kQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEz OUJFNjYwNTAeFw0yNjA1MTExNjQ5MzFaFw0yNzA1MTAxNjU0MzFaMDMxMTAvBgNV BAMTKDdERkEyNDI1N0M3QzgyOUYzNkFBMkM1REU5ODQyMTQ3REUxOTU3MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdIytDJxZzRQ8oblRzxTOAF+Jo 1pNTna2HW1CcJctnRw6KwB/arW7t4dTtG92VpvA53QR61QWKcDkuzTQRnTVaJz+t ELero587bo2FSqlHAHPefcbNXc8QcQmkMiF7X7gCRkL+rOYhvVf1fRkkP/zQMkrd ZM3iW9RT38xjGKjH1xx/V+6PA2PIRKeeVKDtnNllKOPal7J7YGRhZVbpBbReBJ9s Km0JHYD+2hK+o5XACGf9KQ3TU4KWhBOj16RNEvhD3A/6Mx4b8w8C2ECWYJiI6XFB NO4MV3E5o+tWPyM5MoOMVl8oAn4Q/QHJz/VsM2613X8jJtlLbiF/3NNgQfPfAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUffokJXx8gp82qixd6YQhR94ZVy0wHwYDVR0j BBgwFoAUFX1TaSTubFp3EWJcaQbLUTm+ZgUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVU LzAvMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEzOUJFNjYwNS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8xNTdENTM2OTI0RUU2QzVBNzcxMTYyNUM2OTA2 Q0I1MTM5QkU2NjA1LmNlcjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVULzAvMzIzMTMwMmUzNjM3 MmUzOTM2MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzkzMjM0MzQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATSQ2AwDQYJKoZIhvcNAQELBQADggEBAJlfCYCouY2nDU1i15J4+qbMJ7DaimE5 9JBGyxOy8TSb4zZOqvhid/BiP59rH76RJSicO3zih0E9TUth1OBtrm44Xd/b1Gui IWAb6QqGIXHf4Vg3yFETkngz6//OzP04LMtrw9ayTMPCNfuZbOGwcBrIqx9QPZ+l 0s9oMVaPPegdB+iDpFAnzyh56oSLGkN43Ky0M7hE6rjujvSNxfhaXnUq0FzaO9ZC f1NLT9mj1/+9x9AAahsg/MqbbDwUwOpxOOFJERb2IlDRwfOtrwk2f3USjEXFU17G EUCFKbZPTTXjzYox3GFVQ/lSAREo7EhdlAQMkZD0lFysGGeA1vuZE0A= -----END CERTIFICATE-----Generated at Wed May 13 21:10:53 2026 by rpki-client