$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3138322e3233332e302e302f31362d3234203d3e2039343136.roa File: 3138322e3233332e302e302f31362d3234203d3e2039343136.roa (raw, json) Hash identifier: 16J3vcu2Vb74UAA/JFNEtfRKF40+9iw3Ok2HqCK6Fro= Subject key identifier: 2D:94:F8:5F:CA:82:41:98:6C:B6:85:9C:D0:5F:8C:24:B2:DE:96:A0 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6EE6DC93C278E453437D1165B8BAED62E1683C33 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3138322e3233332e302e302f31362d3234203d3e2039343136.roa Signing time: Mon 22 Jun 2026 02:43:52 +0000 ROA not before: Mon 22 Jun 2026 02:38:52 +0000 ROA not after: Mon 21 Jun 2027 02:43:52 +0000 asID: 9416 IP address blocks: 182.233.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:e6:dc:93:c2:78:e4:53:43:7d:11:65:b8:ba:ed:62:e1:68:3c:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 02:38:52 2026 GMT Not After : Jun 21 02:43:52 2027 GMT Subject: CN=2D94F85FCA8241986CB6859CD05F8C24B2DE96A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:14:7a:43:bd:fc:6d:65:14:b8:b3:a0:cf:51: 15:1d:a8:1c:40:5d:4a:ac:cc:ca:ae:6a:39:ec:a8: 3e:8e:51:4b:00:ed:7f:c1:68:07:d4:3e:12:af:9e: b8:5d:85:19:df:8c:90:9b:4f:9b:7a:27:41:f5:02: aa:f5:0a:8c:ba:68:a8:90:dd:b3:28:db:9a:bd:39: 39:5b:10:c6:1a:55:95:d6:08:a6:b1:97:e7:61:16: 99:d1:3a:6f:92:42:b9:fe:b6:3b:aa:42:5e:5a:4d: 76:94:8f:2e:64:69:8b:b0:10:b7:62:3c:11:0c:c1: eb:f3:92:bb:29:d0:11:1d:cd:e9:88:a6:db:fb:f5: dd:32:b7:bf:3a:71:d3:f0:b8:80:7b:9c:c5:d8:19: 31:70:ef:27:99:84:b2:e8:fa:6d:c2:d7:8d:d8:4c: 6f:4a:08:87:1d:66:70:5e:9a:23:27:bb:8c:11:d1: f9:5c:04:af:f5:22:a4:58:1d:13:ef:27:39:21:4e: f3:c9:fa:04:d7:8d:1f:19:bc:84:2f:61:e5:38:aa: 11:4b:ce:86:fe:01:ca:b7:a7:9d:92:96:74:53:a8: 61:85:02:c7:16:39:56:2f:de:d7:39:12:7f:df:c5: 38:e9:65:fe:3c:15:92:d7:3d:fc:40:7a:f0:2e:d2: 76:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:94:F8:5F:CA:82:41:98:6C:B6:85:9C:D0:5F:8C:24:B2:DE:96:A0 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3138322e3233332e302e302f31362d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.233.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:20:b4:13:53:cd:78:c9:58:88:34:3a:32:b7:3a:e6:d8:81: 43:55:1b:44:03:16:97:20:66:34:01:f7:55:b3:f8:0f:c9:f3: ad:2d:dd:62:3e:f6:7f:a7:f2:29:55:c1:95:f1:71:cb:8b:59: 11:f4:94:ab:70:ec:89:af:61:75:04:8e:d3:8f:ad:9e:06:59: fc:04:40:91:0c:97:d4:79:77:29:80:9d:6c:56:c2:41:a6:50: 7c:b2:4b:66:2a:98:9f:fe:59:fe:e0:87:b2:f2:55:f8:66:dd: 1f:bb:a6:eb:19:b3:23:e9:18:e2:65:db:a7:be:c2:83:74:e9: 01:55:cf:b4:e2:14:5a:d5:c6:7c:5b:2e:59:d3:f8:b2:64:47: 52:ea:23:cb:19:87:72:4a:03:0c:c6:8f:80:d5:17:d3:1e:f3: 36:7b:6f:72:fd:3d:52:15:a7:44:ec:7c:82:d0:84:fe:60:f1: f5:b3:42:ea:fa:ad:22:91:0f:6c:81:1d:9d:cd:cc:32:6f:46: 9d:db:34:b0:82:d2:ba:53:01:6c:e7:df:97:0d:6b:b4:a7:1e: 7b:c5:83:ac:f5:25:cf:fd:d2:69:58:65:de:cf:ec:28:60:48: 74:06:8d:34:89:ed:db:c2:5d:d5:7c:54:65:8a:4e:e1:51:c7: e2:21:cf:24 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgIUbubck8J45FNDfRFluLrtYuFoPDMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMjM4NTJaFw0yNzA2MjEwMjQzNTJaMDMxMTAvBgNV BAMTKDJEOTRGODVGQ0E4MjQxOTg2Q0I2ODU5Q0QwNUY4QzI0QjJERTk2QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWFHpDvfxtZRS4s6DPURUdqBxA XUqszMquajnsqD6OUUsA7X/BaAfUPhKvnrhdhRnfjJCbT5t6J0H1Aqr1Coy6aKiQ 3bMo25q9OTlbEMYaVZXWCKaxl+dhFpnROm+SQrn+tjuqQl5aTXaUjy5kaYuwELdi PBEMwevzkrsp0BEdzemIptv79d0yt786cdPwuIB7nMXYGTFw7yeZhLLo+m3C143Y TG9KCIcdZnBemiMnu4wR0flcBK/1IqRYHRPvJzkhTvPJ+gTXjR8ZvIQvYeU4qhFL zob+Acq3p52SlnRTqGGFAscWOVYv3tc5En/fxTjpZf48FZLXPfxAevAu0naJAgMB AAGjggHYMIIB1DAdBgNVHQ4EFgQULZT4X8qCQZhstoWc0F+MJLLelqAwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzEzODMyMmUzMjMzMzMyZTMw MmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzkzNDMxMzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwC26TAN BgkqhkiG9w0BAQsFAAOCAQEATiC0E1PNeMlYiDQ6Mrc65tiBQ1UbRAMWlyBmNAH3 VbP4D8nzrS3dYj72f6fyKVXBlfFxy4tZEfSUq3Dsia9hdQSO04+tngZZ/ARAkQyX 1Hl3KYCdbFbCQaZQfLJLZiqYn/5Z/uCHsvJV+GbdH7um6xmzI+kY4mXbp77Cg3Tp AVXPtOIUWtXGfFsuWdP4smRHUuojyxmHckoDDMaPgNUX0x7zNntvcv09UhWnROx8 gtCE/mDx9bNC6vqtIpEPbIEdnc3MMm9Gnds0sILSulMBbOfflw1rtKcee8WDrPUl z/3SaVhl3s/sKGBIdAaNNInt28Jd1XxUZYpO4VHH4iHPJA== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:53 2026 by rpki-client