$ rpki-client -vvf rpkica.twnic.tw/rpki/EDTNS/0/36312e35362e32352e302f32342d3234203d3e203138343131.roa File: 36312e35362e32352e302f32342d3234203d3e203138343131.roa (raw, json) Hash identifier: qLfcOZVogzNc0fPW8DS0BFg+aXm72rn141irJHfF/2A= Subject key identifier: 75:D5:8A:FC:5A:1A:D9:97:E6:AF:1F:15:18:1D:A0:8E:B4:E3:6D:B0 Certificate issuer: /CN=D31DE8192962A403BB6809455D9C0776F79CC527 Certificate serial: 0ADFBB7822501A364860748EE5CB6801FD3AA1CB Authority key identifier: D3:1D:E8:19:29:62:A4:03:BB:68:09:45:5D:9C:07:76:F7:9C:C5:27 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/D31DE8192962A403BB6809455D9C0776F79CC527.cer Subject info access: rsync://rpkica.twnic.tw/rpki/EDTNS/0/36312e35362e32352e302f32342d3234203d3e203138343131.roa Signing time: Mon 11 May 2026 17:04:09 +0000 ROA not before: Mon 11 May 2026 16:59:09 +0000 ROA not after: Mon 10 May 2027 17:04:09 +0000 asID: 18411 IP address blocks: 61.56.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/EDTNS/0/D31DE8192962A403BB6809455D9C0776F79CC527.crl rsync://rpkica.twnic.tw/rpki/EDTNS/0/D31DE8192962A403BB6809455D9C0776F79CC527.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/D31DE8192962A403BB6809455D9C0776F79CC527.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:df:bb:78:22:50:1a:36:48:60:74:8e:e5:cb:68:01:fd:3a:a1:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D31DE8192962A403BB6809455D9C0776F79CC527 Validity Not Before: May 11 16:59:09 2026 GMT Not After : May 10 17:04:09 2027 GMT Subject: CN=75D58AFC5A1AD997E6AF1F15181DA08EB4E36DB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3e:d4:96:c2:9b:92:9c:6e:c5:e6:38:10:9e: 90:78:43:e6:dd:c9:cc:27:83:98:c7:1a:1c:0c:2b: 4d:d2:b0:79:49:f7:65:9f:bf:ad:c1:00:3a:f6:28: 13:49:ff:ed:e0:74:c9:ec:46:2f:1f:a8:ef:a3:51: da:bb:d4:44:cc:ed:fb:40:b8:17:71:4a:d8:c0:e0: 91:2a:2e:72:d5:54:a0:d6:c7:f4:e9:d7:4c:8e:0a: ee:3c:fb:17:88:f4:84:5f:02:9b:6a:d9:c5:3d:7c: d4:42:00:b5:c1:c2:5a:ea:3c:71:71:3a:36:d4:af: 5e:10:51:64:15:af:e1:7b:62:3e:68:3f:d1:d4:b7: f5:62:2e:9b:26:73:60:df:a5:9b:0f:dc:a8:67:53: ff:86:e3:7b:d1:b2:ae:3a:d4:9b:81:16:78:53:06: 18:9f:9b:62:5c:66:aa:93:be:2c:44:54:d0:5f:32: 17:b7:64:83:06:72:29:0f:86:86:e3:2e:7c:20:69: 43:c5:f2:e2:27:b5:57:3e:23:ee:d9:70:b9:2b:3c: 60:13:3e:c2:03:65:96:3e:a0:89:f2:b4:9a:94:6a: 41:f4:85:f1:1c:26:51:44:bc:ca:7c:62:ef:f5:39: 57:ec:e0:1b:18:cb:1c:1c:20:6e:99:aa:0c:77:bd: 93:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D5:8A:FC:5A:1A:D9:97:E6:AF:1F:15:18:1D:A0:8E:B4:E3:6D:B0 X509v3 Authority Key Identifier: keyid:D3:1D:E8:19:29:62:A4:03:BB:68:09:45:5D:9C:07:76:F7:9C:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/EDTNS/0/D31DE8192962A403BB6809455D9C0776F79CC527.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/D31DE8192962A403BB6809455D9C0776F79CC527.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/EDTNS/0/36312e35362e32352e302f32342d3234203d3e203138343131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.56.25.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:6c:d0:50:23:8b:eb:44:44:d9:94:3f:e3:1c:fd:2f:cf:ff: 72:00:f5:dd:48:b8:46:83:ec:b0:b9:97:a9:85:26:de:aa:50: 6d:58:bd:59:d9:74:d6:c3:ea:ad:ca:e2:29:69:9a:2b:5c:86: 4a:cf:e7:81:d2:9f:ea:83:f3:64:9c:3c:f5:be:25:c5:47:c9: 0b:87:fc:73:e6:a9:d6:fe:42:fc:67:fa:83:d6:39:07:06:2d: dd:89:7e:32:a2:18:c4:74:79:15:2a:72:8c:cf:9b:35:e3:48: 24:5c:4f:55:74:fb:9d:79:76:c0:2c:9d:a2:73:f4:10:af:d8: c8:bb:98:4f:5d:c3:66:a2:d2:73:7a:cb:68:dc:14:20:75:8e: 02:8c:f3:61:ad:22:d7:ec:60:e5:26:ff:c5:cf:48:84:08:ca: 9d:e2:71:4f:55:a5:9b:fe:9b:b2:23:e7:d2:9f:9f:60:14:09: 96:84:b4:16:e3:50:cb:07:1d:49:3e:60:89:61:bb:f8:20:44: d5:11:6d:01:a0:eb:a3:e3:62:3c:94:3f:d6:de:15:f8:07:dc: a0:03:8e:cd:0f:6e:1d:7f:c1:96:1e:2e:4b:6a:f4:9b:a5:b3: b3:a7:5c:04:c9:aa:05:34:57:32:dd:5a:2a:42:18:64:f3:aa: e7:94:9a:7c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUCt+7eCJQGjZIYHSO5ctoAf06ocswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDMxREU4MTkyOTYyQTQwM0JCNjgwOTQ1NUQ5QzA3NzZG NzlDQzUyNzAeFw0yNjA1MTExNjU5MDlaFw0yNzA1MTAxNzA0MDlaMDMxMTAvBgNV BAMTKDc1RDU4QUZDNUExQUQ5OTdFNkFGMUYxNTE4MURBMDhFQjRFMzZEQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqPtSWwpuSnG7F5jgQnpB4Q+bd ycwng5jHGhwMK03SsHlJ92Wfv63BADr2KBNJ/+3gdMnsRi8fqO+jUdq71ETM7ftA uBdxStjA4JEqLnLVVKDWx/Tp10yOCu48+xeI9IRfAptq2cU9fNRCALXBwlrqPHFx OjbUr14QUWQVr+F7Yj5oP9HUt/ViLpsmc2DfpZsP3KhnU/+G43vRsq461JuBFnhT Bhifm2JcZqqTvixEVNBfMhe3ZIMGcikPhobjLnwgaUPF8uIntVc+I+7ZcLkrPGAT PsIDZZY+oInytJqUakH0hfEcJlFEvMp8Yu/1OVfs4BsYyxwcIG6Zqgx3vZOFAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUddWK/Foa2Zfmrx8VGB2gjrTjbbAwHwYDVR0j BBgwFoAU0x3oGSlipAO7aAlFXZwHdvecxScwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRURUTlMv MC9EMzFERTgxOTI5NjJBNDAzQkI2ODA5NDU1RDlDMDc3NkY3OUNDNTI3LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0QzMURFODE5Mjk2MkE0MDNCQjY4MDk0NTVEOUMw Nzc2Rjc5Q0M1MjcuY2VyMHcGCCsGAQUFBwELBGswaTBnBggrBgEFBQcwC4ZbcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9FRFROUy8wLzM2MzEyZTM1MzYyZTMy MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM4MzQzMTMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA PTgZMA0GCSqGSIb3DQEBCwUAA4IBAQAebNBQI4vrRETZlD/jHP0vz/9yAPXdSLhG g+ywuZephSbeqlBtWL1Z2XTWw+qtyuIpaZorXIZKz+eB0p/qg/NknDz1viXFR8kL h/xz5qnW/kL8Z/qD1jkHBi3diX4yohjEdHkVKnKMz5s140gkXE9VdPudeXbALJ2i c/QQr9jIu5hPXcNmotJzesto3BQgdY4CjPNhrSLX7GDlJv/Fz0iECMqd4nFPVaWb /puyI+fSn59gFAmWhLQW41DLBx1JPmCJYbv4IETVEW0BoOuj42I8lD/W3hX4B9yg A47ND24df8GWHi5LavSbpbOzp1wEyaoFNFcy3VoqQhhk86rnlJp8 -----END CERTIFICATE-----Generated at Wed May 13 21:13:36 2026 by rpki-client