$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/3232332e3230302e302e302f31362d3136203d3e2034373832.roa File: 3232332e3230302e302e302f31362d3136203d3e2034373832.roa (raw, json) Hash identifier: MA9+ajK8aX1uKUtp2sxtKQhYTLC2td1kAHyxBVTGWcc= Subject key identifier: 43:99:23:BC:EA:0C:7F:93:10:88:4B:C4:15:F0:A2:B9:1F:B0:E9:5C Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 1A446A230F3E3A1D77FC02F20CB712CD6448A6F3 Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/3232332e3230302e302e302f31362d3136203d3e2034373832.roa Signing time: Mon 11 May 2026 16:45:58 +0000 ROA not before: Mon 11 May 2026 16:40:58 +0000 ROA not after: Mon 10 May 2027 16:45:58 +0000 asID: 4782 IP address blocks: 223.200.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:44:6a:23:0f:3e:3a:1d:77:fc:02:f2:0c:b7:12:cd:64:48:a6:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 11 16:40:58 2026 GMT Not After : May 10 16:45:58 2027 GMT Subject: CN=439923BCEA0C7F9310884BC415F0A2B91FB0E95C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8e:3b:43:b8:7e:ce:8b:3e:ed:7b:56:98:a2: 36:b0:62:5f:e7:a5:58:04:95:16:d8:33:96:84:82: eb:eb:79:22:d8:ac:8c:a1:35:db:b8:99:3a:4b:a1: 32:ea:e6:82:48:89:b8:25:f4:be:14:c7:48:29:5e: ea:75:cb:42:a9:f2:88:f3:0a:5d:e2:58:02:aa:1f: a5:f6:70:52:d5:2d:52:f8:ae:8c:d8:d4:94:33:4d: 6a:7f:36:dc:80:2f:a8:fb:c9:67:34:de:11:30:fa: 9e:fa:3e:e0:ea:cf:04:1a:fb:8e:ea:4c:81:eb:c1: 27:ef:61:9d:6b:de:7b:d0:6e:a1:e4:1c:d6:5e:89: b3:86:b6:ee:fa:c4:75:35:ef:a2:73:2f:26:95:a5: 3b:05:9d:56:01:78:d8:3c:29:9e:6d:6e:c2:e7:14: 8a:27:1a:c4:64:c9:da:78:ae:08:c5:f6:b4:90:3f: 39:6a:9e:52:42:e3:e3:84:9a:a6:68:81:35:86:68: a0:35:24:11:c6:43:33:e4:66:b3:a2:58:98:ab:f8: 10:c6:dc:3a:7d:4a:a0:b0:3a:01:96:80:45:56:74: a8:49:a3:d2:8b:2f:25:a7:cd:d2:b0:de:fc:fe:5a: 3c:59:3f:66:2c:7f:5e:23:22:c3:06:05:38:b8:67: 75:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:99:23:BC:EA:0C:7F:93:10:88:4B:C4:15:F0:A2:B9:1F:B0:E9:5C X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/3232332e3230302e302e302f31362d3136203d3e2034373832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.200.0.0/16 Signature Algorithm: sha256WithRSAEncryption 16:2f:c7:58:19:95:77:48:44:97:78:67:44:89:43:d9:83:3a: b5:68:66:4b:86:5e:1d:c5:fc:f3:fe:83:7f:9f:18:7e:ae:67: 45:dd:a6:8e:0a:86:42:20:ff:6e:95:0e:80:7e:c4:f0:e5:ae: 0f:3a:e5:51:60:4f:67:0d:46:cd:55:99:d8:5c:17:7a:93:be: ad:0e:9f:44:49:38:03:93:3a:63:a6:ba:fb:05:48:2b:c2:ff: 51:75:ce:80:87:59:fe:e3:8f:03:46:d6:42:40:e0:81:f8:f0: 3e:ea:be:4f:a7:0d:31:c9:48:2b:89:84:31:a3:54:a3:37:18: 63:9b:da:19:17:94:74:71:7a:6f:82:9c:4c:70:79:6c:56:2a: 7f:73:fc:13:62:75:74:17:70:95:b7:08:95:e9:ec:ab:79:2c: 63:96:22:25:40:3d:ab:9b:ff:e3:0b:4c:05:5f:4f:02:83:15: 65:38:88:d4:3a:1c:b8:ab:5d:71:39:c5:74:c3:99:8c:8b:49: a7:6a:5b:da:9d:15:38:26:2c:02:9d:9a:f7:48:6f:57:9a:eb: 1d:49:4f:7b:d8:a6:51:7a:95:27:37:73:65:05:70:59:05:9a: 7a:77:6c:b7:6f:1c:13:a5:2a:7e:99:1a:e6:6e:e9:4c:89:98: fe:44:f8:4d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgIUGkRqIw8+Oh13/ALyDLcSzWRIpvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTExNjQwNThaFw0yNzA1MTAxNjQ1NThaMDMxMTAvBgNV BAMTKDQzOTkyM0JDRUEwQzdGOTMxMDg4NEJDNDE1RjBBMkI5MUZCMEU5NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxjjtDuH7Oiz7te1aYojawYl/n pVgElRbYM5aEguvreSLYrIyhNdu4mTpLoTLq5oJIibgl9L4Ux0gpXup1y0Kp8ojz Cl3iWAKqH6X2cFLVLVL4rozY1JQzTWp/NtyAL6j7yWc03hEw+p76PuDqzwQa+47q TIHrwSfvYZ1r3nvQbqHkHNZeibOGtu76xHU176JzLyaVpTsFnVYBeNg8KZ5tbsLn FIonGsRkydp4rgjF9rSQPzlqnlJC4+OEmqZogTWGaKA1JBHGQzPkZrOiWJir+BDG 3Dp9SqCwOgGWgEVWdKhJo9KLLyWnzdKw3vz+WjxZP2Ysf14jIsMGBTi4Z3WNAgMB AAGjggHYMIIB1DAdBgNVHQ4EFgQUQ5kjvOoMf5MQiEvEFfCiuR+w6VwwHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzIzMjMzMmUzMjMwMzAyZTMw MmUzMDJmMzEzNjJkMzEzNjIwM2QzZTIwMzQzNzM4MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDfyDAN BgkqhkiG9w0BAQsFAAOCAQEAFi/HWBmVd0hEl3hnRIlD2YM6tWhmS4ZeHcX88/6D f58Yfq5nRd2mjgqGQiD/bpUOgH7E8OWuDzrlUWBPZw1GzVWZ2FwXepO+rQ6fREk4 A5M6Y6a6+wVIK8L/UXXOgIdZ/uOPA0bWQkDggfjwPuq+T6cNMclIK4mEMaNUozcY Y5vaGReUdHF6b4KcTHB5bFYqf3P8E2J1dBdwlbcIlensq3ksY5YiJUA9q5v/4wtM BV9PAoMVZTiI1DocuKtdcTnFdMOZjItJp2pb2p0VOCYsAp2a90hvV5rrHUlPe9im UXqVJzdzZQVwWQWaendst28cE6Uqfpka5m7pTImY/kT4TQ== -----END CERTIFICATE-----Generated at Wed May 13 21:08:31 2026 by rpki-client