$ rpki-client -vvf rpkica.twnic.tw/rpki/IDT/0/3230322e3134382e3231302e302f32332d3234203d3e20313532313739.roa File: 3230322e3134382e3231302e302f32332d3234203d3e20313532313739.roa (raw, json) Hash identifier: w66ZmETlDQxyi38rji0gzk1176tFqIfyztFJ3VNSIbg= Subject key identifier: 72:1E:2B:8F:88:97:9C:1C:53:F7:5D:58:A2:ED:F1:DF:63:CA:E5:A1 Certificate issuer: /CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Certificate serial: 4F86BE812DEF986C16C18C263617902A9430FE62 Authority key identifier: 35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IDT/0/3230322e3134382e3231302e302f32332d3234203d3e20313532313739.roa Signing time: Mon 11 May 2026 17:56:21 +0000 ROA not before: Mon 11 May 2026 17:51:21 +0000 ROA not after: Mon 10 May 2027 17:56:21 +0000 asID: 152179 IP address blocks: 202.148.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:86:be:81:2d:ef:98:6c:16:c1:8c:26:36:17:90:2a:94:30:fe:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Validity Not Before: May 11 17:51:21 2026 GMT Not After : May 10 17:56:21 2027 GMT Subject: CN=721E2B8F88979C1C53F75D58A2EDF1DF63CAE5A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:99:18:d8:bf:52:10:5b:ad:71:78:d4:0d:45: ea:74:c6:ec:18:8d:9c:f0:21:03:29:7e:94:1e:75: 7c:93:6f:f1:44:a3:b5:17:e3:ad:1b:32:74:2e:99: c4:3e:9a:b2:df:b5:75:ee:43:5e:7d:46:25:4f:74: 5a:c6:45:2b:29:9f:a3:40:60:67:64:68:83:fa:e7: 4c:9f:18:aa:1f:3b:9d:53:e3:0b:56:ba:7d:f9:2f: 0a:db:fe:26:04:ac:60:e9:57:36:ef:92:ef:98:d9: 08:b3:0f:f8:81:47:04:0e:96:bf:9c:6c:c9:f5:77: 16:69:c4:a4:ce:15:49:03:56:9c:53:78:66:21:30: 73:79:1f:15:10:27:79:41:a2:31:d5:2b:1c:cd:21: 48:75:a5:ba:a4:a4:20:1e:78:dc:0b:73:de:46:a6: 2c:a2:46:76:ea:ff:62:de:02:38:68:a1:a0:90:fb: 31:31:0c:db:a9:2e:74:28:09:09:93:d6:77:be:8f: d5:c3:57:60:92:88:0c:88:bc:1c:9f:49:f5:10:3a: 21:08:43:ec:18:1b:60:de:77:57:23:03:d3:29:68: dc:57:e0:69:7a:16:98:58:b4:d6:c2:e2:c6:d4:44: 00:f8:71:ad:42:b0:1b:d2:15:28:6b:44:6e:6c:e5: d4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1E:2B:8F:88:97:9C:1C:53:F7:5D:58:A2:ED:F1:DF:63:CA:E5:A1 X509v3 Authority Key Identifier: keyid:35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IDT/0/3230322e3134382e3231302e302f32332d3234203d3e20313532313739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.210.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:c9:b9:34:dd:d2:b3:a3:be:30:05:49:a2:56:44:f2:80:66: 6f:6b:33:93:e2:e4:55:43:d8:da:eb:3a:8a:52:b4:ca:a8:1c: 98:17:0a:78:e5:35:50:8d:4d:6f:1a:03:c7:69:fd:b3:d2:52: 4a:87:ac:97:6a:9b:fe:ff:09:87:b7:54:ad:12:a6:4a:d2:88: 51:e7:05:67:94:c0:63:9c:64:43:a3:aa:7c:8b:69:78:02:e8: ce:48:cb:f8:4d:df:dd:d4:ad:df:29:9e:1d:2a:9b:95:8a:38: 9c:08:bd:93:5f:67:71:66:17:1f:31:f3:65:ca:ef:ab:d7:a9: b2:70:5b:c4:10:49:f0:bc:b9:20:01:d0:85:46:4e:66:c8:04: be:d4:39:8c:e4:f7:f9:8d:30:12:fd:d1:2e:2d:8b:20:2f:e2: 9a:82:55:cd:b1:a3:11:30:4a:18:9b:d2:14:5f:2c:00:ed:60: b9:9b:6c:bf:56:ad:a0:a0:3d:99:d8:3e:ad:3d:d9:93:2b:30: 16:6c:52:29:6d:98:4e:c9:e3:1c:84:4b:ec:b6:e4:8f:b1:ec: 39:8d:f2:27:60:b7:bf:2d:e0:b4:f2:58:6d:3b:e6:6e:64:d9: f3:d3:6f:a9:88:36:ef:87:53:d3:12:c5:0f:bd:30:aa:6f:c2: 5f:9a:4c:1e -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUT4a+gS3vmGwWwYwmNheQKpQw/mIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3 QjgyOUU0RDAeFw0yNjA1MTExNzUxMjFaFw0yNzA1MTAxNzU2MjFaMDMxMTAvBgNV BAMTKDcyMUUyQjhGODg5NzlDMUM1M0Y3NUQ1OEEyRURGMURGNjNDQUU1QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5mRjYv1IQW61xeNQNRep0xuwY jZzwIQMpfpQedXyTb/FEo7UX460bMnQumcQ+mrLftXXuQ159RiVPdFrGRSspn6NA YGdkaIP650yfGKofO51T4wtWun35Lwrb/iYErGDpVzbvku+Y2QizD/iBRwQOlr+c bMn1dxZpxKTOFUkDVpxTeGYhMHN5HxUQJ3lBojHVKxzNIUh1pbqkpCAeeNwLc95G piyiRnbq/2LeAjhooaCQ+zExDNupLnQoCQmT1ne+j9XDV2CSiAyIvByfSfUQOiEI Q+wYG2Ded1cjA9MpaNxX4Gl6FphYtNbC4sbURAD4ca1CsBvSFShrRG5s5dTHAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUch4rj4iXnBxT911You3x32PK5aEwHwYDVR0j BBgwFoAUNchmvgAN6rhwyXvtctCngHuCnk0wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAv MzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3QjgyOUU0RC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8zNUM4NjZCRTAwMERFQUI4NzBDOTdCRUQ3MkQwQTc4 MDdCODI5RTRELmNlcjB9BggrBgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuGYXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAvMzIzMDMyMmUzMTM0MzgyZTMy MzEzMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzUzMjMxMzczOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAcqU0jANBgkqhkiG9w0BAQsFAAOCAQEAK8m5NN3Ss6O+MAVJolZE8oBmb2sz k+LkVUPY2us6ilK0yqgcmBcKeOU1UI1NbxoDx2n9s9JSSoesl2qb/v8Jh7dUrRKm StKIUecFZ5TAY5xkQ6OqfItpeALozkjL+E3f3dSt3ymeHSqblYo4nAi9k19ncWYX HzHzZcrvq9epsnBbxBBJ8Ly5IAHQhUZOZsgEvtQ5jOT3+Y0wEv3RLi2LIC/imoJV zbGjETBKGJvSFF8sAO1guZtsv1atoKA9mdg+rT3ZkyswFmxSKW2YTsnjHIRL7Lbk j7HsOY3yJ2C3vy3gtPJYbTvmbmTZ89NvqYg274dT0xLFD70wqm/CX5pMHg== -----END CERTIFICATE-----Generated at Wed May 13 21:12:09 2026 by rpki-client