$ rpki-client -vvf rpkica.twnic.tw/rpki/DYXNET/0/36312e3234372e3136382e302f32312d3231203d3e2039323434.roa File: 36312e3234372e3136382e302f32312d3231203d3e2039323434.roa (raw, json) Hash identifier: yJYnyLxqCiz6yoVKYK54rTjzmF9VmGcpnqZIG+inTu0= Subject key identifier: 96:7C:DD:A9:8F:95:0E:71:2A:90:BA:C0:2C:0D:F6:6F:D8:A1:E5:DA Certificate issuer: /CN=157D536924EE6C5A7711625C6906CB5139BE6605 Certificate serial: 5890A7FBC0B9885E89F4DD3C4428C00FF88D6773 Authority key identifier: 15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DYXNET/0/36312e3234372e3136382e302f32312d3231203d3e2039323434.roa Signing time: Mon 11 May 2026 16:54:39 +0000 ROA not before: Mon 11 May 2026 16:49:39 +0000 ROA not after: Mon 10 May 2027 16:54:39 +0000 asID: 9244 IP address blocks: 61.247.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:90:a7:fb:c0:b9:88:5e:89:f4:dd:3c:44:28:c0:0f:f8:8d:67:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157D536924EE6C5A7711625C6906CB5139BE6605 Validity Not Before: May 11 16:49:39 2026 GMT Not After : May 10 16:54:39 2027 GMT Subject: CN=967CDDA98F950E712A90BAC02C0DF66FD8A1E5DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a0:f0:35:46:14:92:0b:b3:2b:48:90:b0:ba: 95:96:cd:78:61:8e:42:e1:70:49:b8:61:65:62:89: e4:2f:a5:40:06:09:ef:b4:e6:49:ef:36:98:40:f1: ea:d0:0a:41:b2:92:11:76:58:7b:7b:0b:f7:ba:7c: bb:32:2a:aa:85:a9:51:59:ef:ba:b1:eb:56:e6:93: 3a:a5:1a:93:49:19:31:cf:57:9d:49:2a:68:4a:36: fb:aa:9b:bc:ff:c7:6b:47:df:01:c8:80:7c:98:73: 83:94:58:d9:b6:95:ec:7e:87:8f:6f:a7:63:e5:21: 8f:2e:90:41:c0:ec:2b:41:82:65:24:95:7a:16:09: d0:48:d7:25:1d:7e:7c:38:7e:48:fb:8b:5b:bc:2d: 28:34:c7:3f:8a:cf:5c:b9:95:e7:04:a4:cb:a5:d1: 6e:8c:44:e2:64:e1:89:12:2f:46:ee:e2:e8:a2:2e: 4d:18:f1:ad:38:b2:94:1c:64:7c:38:01:3a:59:3b: a7:f1:b5:88:99:f2:b3:eb:4e:f9:a1:6d:81:59:90: 05:15:e5:57:31:14:02:23:00:cf:4c:90:87:56:81: 91:3d:10:f0:a4:7e:da:8c:6b:eb:73:9e:e7:4c:91: e5:4a:e6:76:9d:72:aa:45:ca:11:93:b3:5d:5c:87: de:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:7C:DD:A9:8F:95:0E:71:2A:90:BA:C0:2C:0D:F6:6F:D8:A1:E5:DA X509v3 Authority Key Identifier: keyid:15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/36312e3234372e3136382e302f32312d3231203d3e2039323434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.247.168.0/21 Signature Algorithm: sha256WithRSAEncryption 83:24:ed:fe:4b:c8:d8:d5:3d:58:94:6a:31:10:81:30:c5:7e: af:6c:e1:1c:b4:98:3f:4d:1e:24:ce:c2:e1:7c:9b:34:33:f2: 88:50:df:f4:b4:38:28:c3:e3:57:66:04:b3:8d:9a:e4:ba:58: f0:f1:14:25:a7:b3:3a:f3:0a:0b:4e:66:26:48:8f:dd:ff:4d: 34:aa:fe:8f:10:2d:45:16:d1:0c:36:c4:fd:1c:40:72:67:70: 36:b4:b1:90:81:d4:b0:3f:29:d6:fe:8d:b9:24:11:65:b3:44: 15:53:d8:df:6c:7e:c5:b6:30:92:7e:86:64:f5:21:4c:57:9e: d0:c8:fe:18:7b:d4:2b:e5:f1:1c:7d:9b:90:da:a2:4e:b5:ef: 19:f0:7b:b5:97:72:c1:b0:e6:a6:74:9c:c4:bc:16:fa:49:70: 28:62:97:ee:cc:0c:a8:c3:cb:f3:1a:da:d6:e1:2c:bf:97:ab: ce:57:21:e4:d3:f1:41:d1:30:2c:39:2e:f7:4d:4e:63:29:83: d0:9d:db:c0:44:16:42:f4:15:e6:41:1d:c0:85:ca:65:50:18: 68:01:88:35:18:10:30:fa:dc:28:b8:54:e4:7b:9a:31:ce:8f: 2d:64:a2:4e:44:65:aa:65:71:92:0d:96:65:36:7b:0c:74:9d: bc:21:81:4f -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUWJCn+8C5iF6J9N08RCjAD/iNZ3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEz OUJFNjYwNTAeFw0yNjA1MTExNjQ5MzlaFw0yNzA1MTAxNjU0MzlaMDMxMTAvBgNV BAMTKDk2N0NEREE5OEY5NTBFNzEyQTkwQkFDMDJDMERGNjZGRDhBMUU1REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4oPA1RhSSC7MrSJCwupWWzXhh jkLhcEm4YWViieQvpUAGCe+05knvNphA8erQCkGykhF2WHt7C/e6fLsyKqqFqVFZ 77qx61bmkzqlGpNJGTHPV51JKmhKNvuqm7z/x2tH3wHIgHyYc4OUWNm2lex+h49v p2PlIY8ukEHA7CtBgmUklXoWCdBI1yUdfnw4fkj7i1u8LSg0xz+Kz1y5lecEpMul 0W6MROJk4YkSL0bu4uiiLk0Y8a04spQcZHw4ATpZO6fxtYiZ8rPrTvmhbYFZkAUV 5VcxFAIjAM9MkIdWgZE9EPCkftqMa+tznudMkeVK5nadcqpFyhGTs11ch96lAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUlnzdqY+VDnEqkLrALA32b9ih5dowHwYDVR0j BBgwFoAUFX1TaSTubFp3EWJcaQbLUTm+ZgUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVU LzAvMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEzOUJFNjYwNS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8xNTdENTM2OTI0RUU2QzVBNzcxMTYyNUM2OTA2 Q0I1MTM5QkU2NjA1LmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVULzAvMzYzMTJlMzIzNDM3 MmUzMTM2MzgyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzOTMyMzQzNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAz33qDANBgkqhkiG9w0BAQsFAAOCAQEAgyTt/kvI2NU9WJRqMRCBMMV+r2zh HLSYP00eJM7C4XybNDPyiFDf9LQ4KMPjV2YEs42a5LpY8PEUJaezOvMKC05mJkiP 3f9NNKr+jxAtRRbRDDbE/RxAcmdwNrSxkIHUsD8p1v6NuSQRZbNEFVPY32x+xbYw kn6GZPUhTFee0Mj+GHvUK+XxHH2bkNqiTrXvGfB7tZdywbDmpnScxLwW+klwKGKX 7swMqMPL8xra1uEsv5erzlch5NPxQdEwLDku901OYymD0J3bwEQWQvQV5kEdwIXK ZVAYaAGINRgQMPrcKLhU5HuaMc6PLWSiTkRlqmVxkg2WZTZ7DHSdvCGBTw== -----END CERTIFICATE-----Generated at Wed May 13 21:51:36 2026 by rpki-client