$ rpki-client -vvf rpkica.twnic.tw/rpki/KAIWEI/0/3230322e34372e3137322e302f32332d3332203d3e20313331363432.roa File: 3230322e34372e3137322e302f32332d3332203d3e20313331363432.roa (raw, json) Hash identifier: jG91Krj1u+UI6h33hZ+oxVLH/EozDMQyfvuXwZfwC/k= Subject key identifier: B2:D9:55:5C:4B:1B:94:34:9B:D1:7F:15:D5:E2:D9:65:99:8A:28:90 Certificate issuer: /CN=084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD Certificate serial: 54ED64D8E6979227A61D37E6845BD86194516F63 Authority key identifier: 08:4F:CA:ED:B5:0B:B0:39:5F:4B:B9:1B:91:C0:F2:E4:E8:4C:B7:BD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KAIWEI/0/3230322e34372e3137322e302f32332d3332203d3e20313331363432.roa Signing time: Mon 11 May 2026 17:38:03 +0000 ROA not before: Mon 11 May 2026 17:33:03 +0000 ROA not after: Mon 10 May 2027 17:38:03 +0000 asID: 131642 IP address blocks: 202.47.172.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KAIWEI/0/084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.crl rsync://rpkica.twnic.tw/rpki/KAIWEI/0/084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ed:64:d8:e6:97:92:27:a6:1d:37:e6:84:5b:d8:61:94:51:6f:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD Validity Not Before: May 11 17:33:03 2026 GMT Not After : May 10 17:38:03 2027 GMT Subject: CN=B2D9555C4B1B94349BD17F15D5E2D965998A2890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d2:79:8a:8c:e4:d3:eb:d7:e3:ba:2f:87:a0: d4:7f:c8:90:03:90:b0:bd:45:d8:c1:8e:82:e1:9b: 8f:0c:25:5f:0f:c2:7d:27:66:9a:07:2d:45:2f:d6: 04:a6:b5:b7:e1:bc:fe:cd:48:62:04:16:87:e7:a3: 5b:74:05:d3:13:7d:57:a7:50:b1:65:16:23:fd:a6: e2:dc:f6:c5:bf:98:aa:2a:5c:39:00:7a:47:88:cf: 04:d6:81:aa:21:a2:cc:a2:a2:70:9c:64:e9:be:d6: 9d:ff:ce:1d:0b:a5:9b:e9:50:a7:2b:b2:2c:c6:9d: 41:0d:76:86:bd:84:35:6a:51:97:e8:07:1d:cc:a4: 57:da:f4:da:38:28:8a:ef:27:77:3f:3a:85:ea:e8: 00:3a:54:3d:0a:fa:f7:43:46:1e:3a:66:4e:6c:0d: d1:86:e3:7c:cd:5f:84:0e:81:dd:c3:fd:7f:05:fd: aa:ca:0a:f3:5e:51:1f:34:9a:0c:dc:65:98:75:af: 37:ef:c2:bd:c8:56:08:3b:14:7e:f5:4d:f8:a0:51: 40:df:9e:34:33:c8:c1:11:0d:9a:79:f2:0e:16:f3: 91:10:4b:05:92:ee:ab:79:c1:fc:db:b2:00:f7:c1: 9b:de:92:85:c8:0c:94:46:ab:5c:aa:6d:6b:b4:58: fb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D9:55:5C:4B:1B:94:34:9B:D1:7F:15:D5:E2:D9:65:99:8A:28:90 X509v3 Authority Key Identifier: keyid:08:4F:CA:ED:B5:0B:B0:39:5F:4B:B9:1B:91:C0:F2:E4:E8:4C:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KAIWEI/0/084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/084FCAEDB50BB0395F4BB91B91C0F2E4E84CB7BD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KAIWEI/0/3230322e34372e3137322e302f32332d3332203d3e20313331363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.172.0/23 Signature Algorithm: sha256WithRSAEncryption 11:d7:85:9c:4b:d7:49:10:3d:5b:80:c5:e2:aa:45:76:4d:4b: 84:c8:05:8f:6e:72:ce:b3:ab:a0:b6:78:75:3f:13:a8:a3:4d: 96:a8:56:a6:89:ef:95:de:b6:24:59:86:fe:e8:b3:1f:aa:a4: 9e:60:83:76:8a:6a:90:77:b2:d9:dc:cd:d1:6d:da:08:0e:d5: 31:8d:6b:cd:81:91:0e:f9:ca:99:53:be:a3:7e:e1:2b:a6:78: 7d:36:f7:d2:2f:de:74:87:6e:24:cd:87:1a:31:c4:be:3a:4b: 10:ee:e3:f5:57:fe:14:6f:2e:7e:2f:b4:42:bd:f4:9c:bf:b2: c3:95:79:95:71:6e:86:3d:1f:5c:f3:96:f3:90:cd:08:93:6e: e0:a2:ba:39:f7:d5:e8:80:1a:63:e3:52:5e:c9:5c:6d:3f:18: 1d:19:62:46:12:69:38:4f:15:03:63:2a:20:c4:d1:47:50:df: a7:6a:71:f2:11:cb:11:d3:a8:84:3d:31:6f:93:3b:81:f0:f1: 75:f8:1c:bb:0a:11:68:24:b1:e2:1a:de:22:7b:9d:65:13:f2: 17:fc:e6:a7:cd:75:eb:a5:b3:2b:2a:c6:43:2d:3c:88:99:2c: 85:14:6c:c1:7c:a2:90:3e:c8:c7:81:1c:28:49:a4:6e:49:ed: 20:d8:d5:1a -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIUVO1k2OaXkiemHTfmhFvYYZRRb2MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0RkNBRURCNTBCQjAzOTVGNEJCOTFCOTFDMEYyRTRF ODRDQjdCRDAeFw0yNjA1MTExNzMzMDNaFw0yNzA1MTAxNzM4MDNaMDMxMTAvBgNV BAMTKEIyRDk1NTVDNEIxQjk0MzQ5QkQxN0YxNUQ1RTJEOTY1OTk4QTI4OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC30nmKjOTT69fjui+HoNR/yJAD kLC9RdjBjoLhm48MJV8Pwn0nZpoHLUUv1gSmtbfhvP7NSGIEFofno1t0BdMTfVen ULFlFiP9puLc9sW/mKoqXDkAekeIzwTWgaohosyionCcZOm+1p3/zh0LpZvpUKcr sizGnUENdoa9hDVqUZfoBx3MpFfa9No4KIrvJ3c/OoXq6AA6VD0K+vdDRh46Zk5s DdGG43zNX4QOgd3D/X8F/arKCvNeUR80mgzcZZh1rzfvwr3IVgg7FH71TfigUUDf njQzyMERDZp58g4W85EQSwWS7qt5wfzbsgD3wZvekoXIDJRGq1yqbWu0WPsnAgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQUstlVXEsblDSb0X8V1eLZZZmKKJAwHwYDVR0j BBgwFoAUCE/K7bULsDlfS7kbkcDy5OhMt70wDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0FJV0VJ LzAvMDg0RkNBRURCNTBCQjAzOTVGNEJCOTFCOTFDMEYyRTRFODRDQjdCRC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8wODRGQ0FFREI1MEJCMDM5NUY0QkI5MUI5MUMw RjJFNEU4NENCN0JELmNlcjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0FJV0VJLzAvMzIzMDMyMmUzNDM3 MmUzMTM3MzIyZTMwMmYzMjMzMmQzMzMyMjAzZDNlMjAzMTMzMzEzNjM0MzIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAHKL6wwDQYJKoZIhvcNAQELBQADggEBABHXhZxL10kQPVuAxeKqRXZN S4TIBY9ucs6zq6C2eHU/E6ijTZaoVqaJ75XetiRZhv7osx+qpJ5gg3aKapB3stnc zdFt2ggO1TGNa82BkQ75yplTvqN+4SumeH0299Iv3nSHbiTNhxoxxL46SxDu4/VX /hRvLn4vtEK99Jy/ssOVeZVxboY9H1zzlvOQzQiTbuCiujn31eiAGmPjUl7JXG0/ GB0ZYkYSaThPFQNjKiDE0UdQ36dqcfIRyxHTqIQ9MW+TO4Hw8XX4HLsKEWgkseIa 3iJ7nWUT8hf85qfNdeulsysqxkMtPIiZLIUUbMF8opA+yMeBHChJpG5J7SDY1Ro= -----END CERTIFICATE-----Generated at Wed May 13 21:17:23 2026 by rpki-client