$ rpki-client -vvf rpkica.twnic.tw/rpki/HST/0/3231312e37362e3139302e302f32332d3234203d3e20313331363636.roa File: 3231312e37362e3139302e302f32332d3234203d3e20313331363636.roa (raw, json) Hash identifier: dIKzwOV/Rg8kX37DO7rzZtMhciZlDJrIMJrJMoEYC/o= Subject key identifier: A2:28:C4:C4:22:08:99:5A:32:18:F1:CA:D4:59:33:D2:C6:08:B7:0A Certificate issuer: /CN=E87D26C09449CEB4EE5FD7CC200B073CA53BCA44 Certificate serial: 12BC33B1912EBEE53A9B8FDD202B68C29B65850B Authority key identifier: E8:7D:26:C0:94:49:CE:B4:EE:5F:D7:CC:20:0B:07:3C:A5:3B:CA:44 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HST/0/3231312e37362e3139302e302f32332d3234203d3e20313331363636.roa Signing time: Mon 11 May 2026 17:52:39 +0000 ROA not before: Mon 11 May 2026 17:47:39 +0000 ROA not after: Mon 10 May 2027 17:52:39 +0000 asID: 131666 IP address blocks: 211.76.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HST/0/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.crl rsync://rpkica.twnic.tw/rpki/HST/0/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:bc:33:b1:91:2e:be:e5:3a:9b:8f:dd:20:2b:68:c2:9b:65:85:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E87D26C09449CEB4EE5FD7CC200B073CA53BCA44 Validity Not Before: May 11 17:47:39 2026 GMT Not After : May 10 17:52:39 2027 GMT Subject: CN=A228C4C42208995A3218F1CAD45933D2C608B70A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:6f:a3:4d:36:bd:1d:a0:a9:40:48:2e:e8:d8: 60:8c:c3:56:4e:55:ae:82:29:0d:fc:a5:52:b2:44: f4:38:73:28:39:07:b0:d7:2c:35:9a:06:c3:da:6a: dc:9b:e5:3a:4c:84:ce:ad:fa:1e:97:6f:2c:9a:4f: e9:f8:af:49:76:10:06:8e:2b:d2:b9:e8:53:5b:f9: aa:cc:58:cd:e0:07:83:9a:d5:fd:f7:72:91:7e:b0: 50:bb:e4:5f:b2:80:d8:36:dd:e3:29:05:6b:b1:f5: b3:b9:21:71:b0:7f:24:d3:eb:b6:0d:bf:04:4b:28: 25:70:a4:8f:1e:96:1b:95:a7:8b:71:4c:8f:0d:fa: 24:4e:b3:f8:b8:94:8c:ab:69:f0:43:c3:fa:b1:29: c3:0a:d0:f6:4f:70:e8:b4:85:01:78:ce:00:49:e9: a7:17:80:91:85:d9:ee:c0:6b:46:3a:5f:5f:29:0e: 03:b8:21:b4:fa:38:bf:e2:dd:c6:ed:83:41:3d:84: 04:73:07:93:ab:a9:2b:6c:19:e7:0e:dc:c9:61:b6: 96:7d:69:ef:4f:1e:90:06:f9:07:57:f1:df:dc:53: 23:02:71:6f:b1:32:0e:be:68:67:dd:96:77:52:b2: 9e:3a:3b:05:9c:1b:91:e7:a5:d0:54:53:44:2d:20: ca:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:28:C4:C4:22:08:99:5A:32:18:F1:CA:D4:59:33:D2:C6:08:B7:0A X509v3 Authority Key Identifier: keyid:E8:7D:26:C0:94:49:CE:B4:EE:5F:D7:CC:20:0B:07:3C:A5:3B:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HST/0/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HST/0/3231312e37362e3139302e302f32332d3234203d3e20313331363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.76.190.0/23 Signature Algorithm: sha256WithRSAEncryption 60:e8:e4:d1:fc:b0:c0:3e:e9:d1:e8:c7:59:04:16:3e:fc:b0: 5d:60:99:3b:e8:48:7d:f7:5b:aa:ca:60:80:58:10:b1:0e:d0: 0e:5f:6c:22:4c:69:6d:40:e1:a7:fd:ed:de:e4:d9:ef:13:56: a5:50:c9:e2:bc:da:fe:7a:0d:52:be:15:fe:a3:b5:0a:ac:a2: 1b:29:b9:be:f0:72:07:1c:77:f3:24:75:41:0f:0a:ac:09:ae: 72:86:52:8a:c0:f0:ef:26:f5:bc:cb:66:29:46:00:94:74:d4: 13:90:b8:88:19:f8:05:29:fc:89:a2:7b:cb:a8:74:23:e2:39: e2:8b:9e:bc:d3:0e:a4:bd:e0:02:3c:71:ff:bc:59:99:fb:a0: 32:1b:4d:73:87:20:22:0a:92:41:97:23:0e:1a:80:d5:ab:ee: e8:ff:b7:a6:0f:2c:b1:c2:b2:87:0c:8d:fe:58:18:3d:c2:b2: a1:52:98:43:9b:ee:8b:48:59:66:97:89:24:46:67:a2:73:5d: 34:ba:e2:17:f5:cc:4a:51:59:5d:58:4f:4f:e4:8f:5d:c6:71: 4b:9e:f7:8a:05:3b:8a:40:25:27:2c:2b:4f:bc:6d:31:a0:d3: 4d:ab:d1:60:8e:a7:b1:d8:83:c6:6a:86:d3:a5:1f:4b:22:a8: 28:17:d3:76 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUErwzsZEuvuU6m4/dICtowptlhQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg3RDI2QzA5NDQ5Q0VCNEVFNUZEN0NDMjAwQjA3M0NB NTNCQ0E0NDAeFw0yNjA1MTExNzQ3MzlaFw0yNzA1MTAxNzUyMzlaMDMxMTAvBgNV BAMTKEEyMjhDNEM0MjIwODk5NUEzMjE4RjFDQUQ0NTkzM0QyQzYwOEI3MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4b6NNNr0doKlASC7o2GCMw1ZO Va6CKQ38pVKyRPQ4cyg5B7DXLDWaBsPaatyb5TpMhM6t+h6XbyyaT+n4r0l2EAaO K9K56FNb+arMWM3gB4Oa1f33cpF+sFC75F+ygNg23eMpBWux9bO5IXGwfyTT67YN vwRLKCVwpI8elhuVp4txTI8N+iROs/i4lIyrafBDw/qxKcMK0PZPcOi0hQF4zgBJ 6acXgJGF2e7Aa0Y6X18pDgO4IbT6OL/i3cbtg0E9hARzB5OrqStsGecO3MlhtpZ9 ae9PHpAG+QdX8d/cUyMCcW+xMg6+aGfdlndSsp46OwWcG5HnpdBUU0QtIMp1AgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUoijExCIImVoyGPHK1Fkz0sYItwowHwYDVR0j BBgwFoAU6H0mwJRJzrTuX9fMIAsHPKU7ykQwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFNULzAv RTg3RDI2QzA5NDQ5Q0VCNEVFNUZEN0NDMjAwQjA3M0NBNTNCQ0E0NC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9FODdEMjZDMDk0NDlDRUI0RUU1RkQ3Q0MyMDBCMDcz Q0E1M0JDQTQ0LmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFNULzAvMzIzMTMxMmUzNzM2MmUzMTM5 MzAyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzNjM2MzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHTTL4wDQYJKoZIhvcNAQELBQADggEBAGDo5NH8sMA+6dHox1kEFj78sF1gmTvo SH33W6rKYIBYELEO0A5fbCJMaW1A4af97d7k2e8TVqVQyeK82v56DVK+Ff6jtQqs ohspub7wcgccd/MkdUEPCqwJrnKGUorA8O8m9bzLZilGAJR01BOQuIgZ+AUp/Imi e8uodCPiOeKLnrzTDqS94AI8cf+8WZn7oDIbTXOHICIKkkGXIw4agNWr7uj/t6YP LLHCsocMjf5YGD3CsqFSmEOb7otIWWaXiSRGZ6JzXTS64hf1zEpRWV1YT0/kj13G cUue94oFO4pAJScsK0+8bTGg002r0WCOp7HYg8ZqhtOlH0siqCgX03Y= -----END CERTIFICATE-----Generated at Wed May 13 21:11:27 2026 by rpki-client