$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/3132342e3139392e39362e302f32302d3230203d3e2034373832.roa File: 3132342e3139392e39362e302f32302d3230203d3e2034373832.roa (raw, json) Hash identifier: 7acpyK5V9E2LR1y17/549QCIrRIx//QUMCroyuhMnD8= Subject key identifier: 39:45:61:F1:F7:D0:F8:FD:A8:24:7D:84:9B:CF:6A:7C:A5:6C:78:52 Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 731B2B1159D39BA3E04B9035704001EC5260BA5F Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/3132342e3139392e39362e302f32302d3230203d3e2034373832.roa Signing time: Mon 11 May 2026 16:45:57 +0000 ROA not before: Mon 11 May 2026 16:40:57 +0000 ROA not after: Mon 10 May 2027 16:45:57 +0000 asID: 4782 IP address blocks: 124.199.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:1b:2b:11:59:d3:9b:a3:e0:4b:90:35:70:40:01:ec:52:60:ba:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 11 16:40:57 2026 GMT Not After : May 10 16:45:57 2027 GMT Subject: CN=394561F1F7D0F8FDA8247D849BCF6A7CA56C7852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:26:d8:c8:93:9c:18:ca:ec:d6:6d:75:a3:77: 36:e3:16:ee:6e:60:6a:f9:55:6a:2f:32:b1:0b:18: f7:27:8f:25:59:97:55:b7:0f:10:89:72:cb:17:ff: a1:4a:ac:1f:b8:d5:bc:a5:63:7e:41:d4:44:fd:e5: 5b:f9:48:eb:25:f5:81:70:78:06:1f:74:74:a5:46: 0e:fc:b2:11:01:8c:c2:35:02:0a:1d:cb:82:00:8e: 51:6d:b1:f7:cc:ec:e3:9a:c7:ba:e2:be:5e:6e:25: c4:a6:ea:9b:f4:0c:ef:d4:40:35:f1:5a:02:7a:e1: ab:72:18:64:c0:c7:88:6e:34:52:26:0e:cf:89:2f: 83:da:d0:a5:ed:ee:ce:60:67:c3:c4:4f:5d:34:3e: 28:4b:c0:21:22:25:ce:f2:92:b5:0c:26:48:37:69: be:f8:d9:fe:4c:d8:0c:7c:c4:5c:f2:5a:0f:5f:20: e3:1e:8c:48:4c:0c:50:58:14:33:52:ae:dd:77:01: d9:2e:db:4e:3b:93:f2:3b:33:c9:54:78:46:af:53: 7b:7c:99:8a:de:5a:43:e6:51:30:11:16:af:08:29: 26:df:ad:ec:8c:fb:e0:d9:b9:35:37:dc:b9:6c:2f: 0f:38:26:32:63:80:e4:06:13:84:69:3e:f9:a6:ee: 4a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:45:61:F1:F7:D0:F8:FD:A8:24:7D:84:9B:CF:6A:7C:A5:6C:78:52 X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/3132342e3139392e39362e302f32302d3230203d3e2034373832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.199.96.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:0a:e8:b9:4a:38:8b:ed:06:29:1d:26:81:65:af:6a:47:ca: 47:e1:ff:c3:f8:a1:d1:4a:31:cc:71:5e:1d:18:ab:6e:2c:26: ec:b7:c6:ce:61:d3:93:75:ee:3c:8b:a2:ec:d1:e8:b0:78:52: 7a:8a:b2:ab:f3:95:1c:d1:dc:44:01:5d:a9:3c:cf:b7:bc:93: 33:f4:49:4f:8e:ab:f3:50:d8:32:14:b6:c1:b8:2c:78:ad:9d: 74:f3:1f:dc:ef:d2:87:d8:d4:87:05:1a:08:fa:07:7f:cb:e1: 3f:92:8c:4e:a1:c5:65:a3:08:d7:a4:8d:d3:a7:69:92:14:87: d4:64:c8:28:2f:9a:83:12:23:f8:75:67:25:55:f7:58:c1:db: af:d1:f2:bc:62:f4:e6:f3:16:6a:54:54:0b:55:d5:fd:69:df: d3:49:7e:02:45:cf:c6:4a:7e:b7:a8:a7:a6:da:56:4c:5b:3b: cd:4a:bd:4b:64:f3:c4:cd:58:30:69:94:37:8d:30:d3:73:75: 31:19:0b:3b:eb:00:46:0d:b4:26:19:c2:f5:8b:f5:52:94:da: a5:05:70:36:28:59:cd:da:c8:dc:09:6a:d9:ee:39:56:ef:fd: ca:55:24:81:d4:ea:68:59:2e:e3:02:87:67:7b:9a:24:0a:e6: 22:78:2d:fa -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUcxsrEVnTm6PgS5A1cEAB7FJgul8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTExNjQwNTdaFw0yNzA1MTAxNjQ1NTdaMDMxMTAvBgNV BAMTKDM5NDU2MUYxRjdEMEY4RkRBODI0N0Q4NDlCQ0Y2QTdDQTU2Qzc4NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzJtjIk5wYyuzWbXWjdzbjFu5u YGr5VWovMrELGPcnjyVZl1W3DxCJcssX/6FKrB+41bylY35B1ET95Vv5SOsl9YFw eAYfdHSlRg78shEBjMI1Agody4IAjlFtsffM7OOax7rivl5uJcSm6pv0DO/UQDXx WgJ64atyGGTAx4huNFImDs+JL4Pa0KXt7s5gZ8PET100PihLwCEiJc7ykrUMJkg3 ab742f5M2Ax8xFzyWg9fIOMejEhMDFBYFDNSrt13Adku2047k/I7M8lUeEavU3t8 mYreWkPmUTARFq8IKSbfreyM++DZuTU33LlsLw84JjJjgOQGE4RpPvmm7krXAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUOUVh8ffQ+P2oJH2Em89qfKVseFIwHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzEzMjM0MmUzMTM5MzkyZTM5 MzYyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzNDM3MzgzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHzH YDANBgkqhkiG9w0BAQsFAAOCAQEAfgrouUo4i+0GKR0mgWWvakfKR+H/w/ih0Uox zHFeHRirbiwm7LfGzmHTk3XuPIui7NHosHhSeoqyq/OVHNHcRAFdqTzPt7yTM/RJ T46r81DYMhS2wbgseK2ddPMf3O/Sh9jUhwUaCPoHf8vhP5KMTqHFZaMI16SN06dp khSH1GTIKC+agxIj+HVnJVX3WMHbr9HyvGL05vMWalRUC1XV/Wnf00l+AkXPxkp+ t6inptpWTFs7zUq9S2TzxM1YMGmUN40w03N1MRkLO+sARg20JhnC9Yv1UpTapQVw NihZzdrI3Alq2e45Vu/9ylUkgdTqaFku4wKHZ3uaJArmIngt+g== -----END CERTIFICATE-----Generated at Wed May 13 21:08:34 2026 by rpki-client