$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3138322e3233332e302e302f31362d3234203d3e203138303432.roa File: 3138322e3233332e302e302f31362d3234203d3e203138303432.roa (raw, json) Hash identifier: pyBQnWq+Ugu5lNbh0bQ7Ic+a/2BHRspxRN2JZYAAzL8= Subject key identifier: 98:5A:07:68:AF:95:95:A7:9A:26:5E:85:65:44:77:75:96:D2:02:57 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 424C085119C0981DE6504CCDFCF293CA543B1256 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3138322e3233332e302e302f31362d3234203d3e203138303432.roa Signing time: Mon 22 Jun 2026 02:23:50 +0000 ROA not before: Mon 22 Jun 2026 02:18:50 +0000 ROA not after: Mon 21 Jun 2027 02:23:50 +0000 asID: 18042 IP address blocks: 182.233.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:4c:08:51:19:c0:98:1d:e6:50:4c:cd:fc:f2:93:ca:54:3b:12:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 02:18:50 2026 GMT Not After : Jun 21 02:23:50 2027 GMT Subject: CN=985A0768AF9595A79A265E856544777596D20257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cf:d5:30:a2:73:a8:b3:27:e6:1f:3f:ba:6e: f3:ac:c5:49:33:94:af:b1:99:c8:51:ec:7c:99:7d: 8a:6e:19:3c:17:71:f4:67:c7:b2:3d:69:40:53:5c: c8:1e:c8:0e:7c:71:90:2c:98:13:55:15:50:1d:08: 9f:9b:e8:d6:ef:1c:8a:7e:b8:75:8a:a3:be:bd:66: 25:3b:aa:6b:a6:86:45:fe:0d:0e:85:a6:d2:0b:ed: f9:99:a9:8b:8c:d1:d7:08:ce:bd:6e:9d:1e:6a:0c: fa:6f:e8:30:18:c9:ec:f8:14:84:77:0a:58:a0:a5: 8b:4b:fe:0c:91:eb:a0:55:11:ea:ab:dc:31:ee:f3: 03:31:23:40:71:67:a2:5b:d1:4b:a3:98:8a:10:6e: 01:29:bb:6f:db:9b:e3:ec:b2:9b:a2:5b:1e:bd:f0: f5:3f:27:f2:94:2d:69:77:cf:0d:71:df:a1:db:47: 70:77:fd:00:8c:48:1c:0b:1e:64:5a:1d:cc:1d:f6: b4:65:c3:b1:71:7c:10:c3:16:8b:8b:5d:20:a7:cc: ea:eb:9f:fd:e4:dc:dc:d2:16:1b:62:43:04:bc:fb: b0:21:48:45:e4:d0:56:9d:70:f7:32:8c:6d:2d:8e: de:5f:be:37:77:be:3b:f4:32:bc:a7:a6:6a:ae:89: ae:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:5A:07:68:AF:95:95:A7:9A:26:5E:85:65:44:77:75:96:D2:02:57 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3138322e3233332e302e302f31362d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.233.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:dc:c0:f1:3b:b8:af:5d:c8:2a:a2:88:c5:6b:a9:c6:3f:6b: 71:38:ba:6c:db:51:e1:4d:b5:08:87:47:37:8a:d1:b6:2f:28: bd:ef:0e:ee:85:8d:98:c0:9f:63:3f:4a:43:47:00:61:e5:54: 13:e3:eb:e7:d1:69:7e:8c:3a:92:5e:0c:56:63:ba:ff:ca:19: 19:4c:f0:19:5a:93:5e:8e:dd:ff:ef:c5:34:c8:68:15:61:fb: b0:0f:00:aa:3f:c2:79:76:3d:72:94:56:99:5c:8b:48:26:e9: 37:81:ae:7d:78:06:01:84:c5:19:46:be:7a:b7:e8:e7:59:48: 93:8a:27:2d:7f:39:26:70:27:48:00:45:59:cf:bb:91:38:f3: 65:4a:a5:16:5c:72:f2:5c:ee:ea:c6:9c:43:03:22:e2:81:f0: b1:58:d8:64:35:e4:81:fe:8e:c4:08:e7:c3:24:b4:af:e7:08: 52:b8:a6:f7:52:7c:9a:e4:e5:5c:4b:ae:03:ae:c7:b9:01:ae: 52:ea:80:1d:0f:72:44:5a:14:04:81:35:c9:ce:f7:c7:5d:45: 2b:c0:0d:88:a3:7b:d2:0b:26:e5:09:06:b3:00:67:5d:40:66: d6:8a:0c:61:76:a7:21:e2:63:af:d9:6c:a3:40:75:4b:d9:27: 11:24:aa:65 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIUQkwIURnAmB3mUEzN/PKTylQ7ElYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMjE4NTBaFw0yNzA2MjEwMjIzNTBaMDMxMTAvBgNV BAMTKDk4NUEwNzY4QUY5NTk1QTc5QTI2NUU4NTY1NDQ3Nzc1OTZEMjAyNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuz9UwonOosyfmHz+6bvOsxUkz lK+xmchR7HyZfYpuGTwXcfRnx7I9aUBTXMgeyA58cZAsmBNVFVAdCJ+b6NbvHIp+ uHWKo769ZiU7qmumhkX+DQ6FptIL7fmZqYuM0dcIzr1unR5qDPpv6DAYyez4FIR3 CligpYtL/gyR66BVEeqr3DHu8wMxI0BxZ6Jb0UujmIoQbgEpu2/bm+PsspuiWx69 8PU/J/KULWl3zw1x36HbR3B3/QCMSBwLHmRaHcwd9rRlw7FxfBDDFouLXSCnzOrr n/3k3NzSFhtiQwS8+7AhSEXk0FadcPcyjG0tjt5fvjd3vjv0Mrynpmquia51AgMB AAGjggHaMIIB1jAdBgNVHQ4EFgQUmFoHaK+VlaeaJl6FZUR3dZbSAlcwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzEzODMyMmUzMjMzMzMyZTMw MmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDALbp MA0GCSqGSIb3DQEBCwUAA4IBAQBD3MDxO7ivXcgqoojFa6nGP2txOLps21HhTbUI h0c3itG2Lyi97w7uhY2YwJ9jP0pDRwBh5VQT4+vn0Wl+jDqSXgxWY7r/yhkZTPAZ WpNejt3/78U0yGgVYfuwDwCqP8J5dj1ylFaZXItIJuk3ga59eAYBhMUZRr56t+jn WUiTiictfzkmcCdIAEVZz7uROPNlSqUWXHLyXO7qxpxDAyLigfCxWNhkNeSB/o7E COfDJLSv5whSuKb3Unya5OVcS64Drse5Aa5S6oAdD3JEWhQEgTXJzvfHXUUrwA2I o3vSCyblCQazAGddQGbWigxhdqch4mOv2WyjQHVL2ScRJKpl -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:15 2026 by rpki-client