$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/36312e36372e36342e302f31392d3139203d3e2034373832.roa File: 36312e36372e36342e302f31392d3139203d3e2034373832.roa (raw, json) Hash identifier: hP1Ce0puK87bnBkuUoZR08dKEnokYQB4baKFChuzk+E= Subject key identifier: 70:97:2F:ED:E0:BB:27:1C:43:DA:CC:9B:22:F5:65:78:FA:D8:72:0D Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 08E3D6DDAD11C66D5C59D3909DF9DDF3FF2B2DA5 Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/36312e36372e36342e302f31392d3139203d3e2034373832.roa Signing time: Mon 11 May 2026 16:48:34 +0000 ROA not before: Mon 11 May 2026 16:43:34 +0000 ROA not after: Mon 10 May 2027 16:48:34 +0000 asID: 4782 IP address blocks: 61.67.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:e3:d6:dd:ad:11:c6:6d:5c:59:d3:90:9d:f9:dd:f3:ff:2b:2d:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 11 16:43:34 2026 GMT Not After : May 10 16:48:34 2027 GMT Subject: CN=70972FEDE0BB271C43DACC9B22F56578FAD8720D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:3f:12:67:92:cd:d1:bc:48:e7:df:b7:78:2c: 42:2c:1e:cf:16:12:8a:51:ee:bd:2f:df:4a:a0:52: dd:b6:2c:06:ca:5a:41:ae:cc:92:64:fb:c5:44:bf: c4:b1:d2:d4:e2:a8:ab:07:02:9f:bf:0e:79:87:2d: c0:0d:50:e3:a0:38:eb:f4:cf:9e:52:7e:4c:26:00: ff:91:89:97:f1:5c:ef:af:4f:1f:1b:89:5e:58:f5: 8e:86:0d:6b:36:34:00:43:c8:4f:a3:4b:2c:e1:da: 42:47:e9:85:fc:7d:2e:9d:22:bc:ec:a4:97:4b:6a: 55:1e:d3:13:11:81:23:7b:4e:c2:49:ed:7e:05:81: 5f:51:69:d1:51:55:a4:28:30:73:52:d3:55:22:4f: e7:59:9f:8e:b6:c2:37:66:e7:cc:da:63:10:ff:ab: fb:26:8d:b5:d7:08:2c:63:90:41:b4:15:b4:b9:d3: 0a:46:5e:b3:9f:2b:c9:59:a9:35:51:36:65:3e:de: 7b:95:61:20:09:48:c0:09:ec:86:b5:70:fd:65:de: 4e:8b:15:ea:ab:31:bb:ba:04:05:04:87:f9:5c:c5: e8:f4:8f:8e:73:af:91:77:80:66:05:e0:21:76:53: 29:bf:67:e6:81:d3:99:f9:0e:e0:ed:d6:af:f5:89: a7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:97:2F:ED:E0:BB:27:1C:43:DA:CC:9B:22:F5:65:78:FA:D8:72:0D X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/36312e36372e36342e302f31392d3139203d3e2034373832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.67.64.0/19 Signature Algorithm: sha256WithRSAEncryption 88:68:b0:86:78:99:b1:3b:27:d6:47:b0:16:7f:dc:e8:9b:a2: 9c:5d:fe:37:3b:14:25:fc:a0:12:27:ab:90:b5:b2:5c:1b:0d: 08:47:a7:1b:4b:1a:94:21:35:34:4f:8f:19:8d:27:74:ee:b0: 60:8a:e6:70:d7:92:f9:4e:c2:19:99:fb:f7:ae:70:bf:c0:c6: 90:14:c9:32:8d:94:ae:70:c2:06:19:d7:01:61:41:1f:c3:7f: f4:e8:92:cf:79:08:7c:b5:10:d8:ae:13:2e:68:01:63:8b:7b: 7b:26:85:2e:03:d9:03:90:4b:d3:72:36:f8:8e:52:ce:31:be: 70:d6:72:66:35:6a:19:44:26:4d:bb:26:7f:e1:38:af:d3:5a: 17:3a:ce:ef:08:4e:06:33:71:25:12:88:47:df:9e:00:56:e8: 18:f7:09:7d:0d:94:5f:a8:d1:dd:7d:3c:03:ce:52:f4:7b:2d: 1d:d3:6d:35:b8:f9:6d:53:44:4e:c3:d2:b5:ad:dc:3b:2d:47: 24:61:dd:b5:bf:41:99:ca:c6:2b:61:b4:64:7e:7b:e2:fc:65: e6:ec:e1:6f:31:42:9a:bb:b3:f1:bf:cc:f6:e2:e1:7c:53:47: b5:5d:d0:78:f4:8b:f3:04:b3:90:3f:f3:8e:51:d0:7b:7f:54: 9f:be:87:1b -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIUCOPW3a0Rxm1cWdOQnfnd8/8rLaUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTExNjQzMzRaFw0yNzA1MTAxNjQ4MzRaMDMxMTAvBgNV BAMTKDcwOTcyRkVERTBCQjI3MUM0M0RBQ0M5QjIyRjU2NTc4RkFEODcyMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIPxJnks3RvEjn37d4LEIsHs8W EopR7r0v30qgUt22LAbKWkGuzJJk+8VEv8Sx0tTiqKsHAp+/DnmHLcANUOOgOOv0 z55SfkwmAP+RiZfxXO+vTx8biV5Y9Y6GDWs2NABDyE+jSyzh2kJH6YX8fS6dIrzs pJdLalUe0xMRgSN7TsJJ7X4FgV9RadFRVaQoMHNS01UiT+dZn462wjdm58zaYxD/ q/smjbXXCCxjkEG0FbS50wpGXrOfK8lZqTVRNmU+3nuVYSAJSMAJ7Ia1cP1l3k6L FeqrMbu6BAUEh/lcxej0j45zr5F3gGYF4CF2Uym/Z+aB05n5DuDt1q/1iacrAgMB AAGjggHXMIIB0zAdBgNVHQ4EFgQUcJcv7eC7JxxD2sybIvVlePrYcg0wHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzYzMTJlMzYzNzJlMzYzNDJl MzAyZjMxMzkyZDMxMzkyMDNkM2UyMDM0MzczODMyLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPUNAMA0G CSqGSIb3DQEBCwUAA4IBAQCIaLCGeJmxOyfWR7AWf9zom6KcXf43OxQl/KASJ6uQ tbJcGw0IR6cbSxqUITU0T48ZjSd07rBgiuZw15L5TsIZmfv3rnC/wMaQFMkyjZSu cMIGGdcBYUEfw3/06JLPeQh8tRDYrhMuaAFji3t7JoUuA9kDkEvTcjb4jlLOMb5w 1nJmNWoZRCZNuyZ/4Tiv01oXOs7vCE4GM3ElEohH354AVugY9wl9DZRfqNHdfTwD zlL0ey0d0201uPltU0ROw9K1rdw7LUckYd21v0GZysYrYbRkfnvi/GXm7OFvMUKa u7Pxv8z24uF8U0e1XdB49IvzBLOQP/OOUdB7f1Sfvocb -----END CERTIFICATE-----Generated at Wed May 13 21:08:34 2026 by rpki-client