$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3138322e3233342e302e302f31352d3234203d3e203138303432.roa File: 3138322e3233342e302e302f31352d3234203d3e203138303432.roa (raw, json) Hash identifier: vKz0Hd3nCkc0c0F/xfgGZeTVUEYjgYAmYUaLwmYi5f8= Subject key identifier: 86:40:EA:BB:04:1D:32:EA:C8:0F:9D:B3:C2:80:6E:F7:E9:17:A8:99 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 294523A6F99F5250308B069BEA80627B2BB08BEC Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3138322e3233342e302e302f31352d3234203d3e203138303432.roa Signing time: Mon 22 Jun 2026 02:43:50 +0000 ROA not before: Mon 22 Jun 2026 02:38:50 +0000 ROA not after: Mon 21 Jun 2027 02:43:50 +0000 asID: 18042 IP address blocks: 182.234.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:45:23:a6:f9:9f:52:50:30:8b:06:9b:ea:80:62:7b:2b:b0:8b:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 02:38:50 2026 GMT Not After : Jun 21 02:43:50 2027 GMT Subject: CN=8640EABB041D32EAC80F9DB3C2806EF7E917A899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:76:6c:73:7e:98:55:6c:d7:8c:46:88:6b:dc: 5c:3d:7d:ad:24:ef:a8:23:59:0b:5b:0f:05:86:99: ec:0f:bc:9a:af:31:eb:cc:06:40:ad:c0:cc:a6:65: 25:a9:c9:a8:89:e8:bf:65:02:0e:98:1b:a9:6f:ea: 18:66:bc:d6:e2:94:51:27:96:e6:c3:5b:f5:06:41: 1a:b8:94:80:32:e5:9e:c7:96:9a:0f:0c:b7:a7:31: cf:cd:1a:be:58:6b:ab:b8:7f:69:1a:f5:21:ba:4e: 63:8c:f8:11:fd:31:6e:59:0f:7f:d0:90:3c:66:2b: 29:1e:33:fb:44:c9:9e:ce:27:7f:25:7d:5b:c0:4f: 93:53:bd:74:b7:88:fb:f6:45:62:54:25:2c:53:82: 2e:40:0e:49:44:f8:5b:f6:80:1d:fe:3b:63:8b:69: 53:26:0e:48:54:3d:30:28:7b:39:ec:c4:96:37:6a: 43:89:75:11:4d:93:0c:cb:6d:d2:1e:c4:33:bb:71: 69:e9:a0:e6:dc:36:03:ec:9f:dd:6e:79:f1:06:f0: 76:47:bf:fb:ba:a7:5c:86:24:31:6e:af:8f:ac:03: 13:56:c3:69:49:dc:d3:0c:2e:d2:e4:b5:c9:7c:53: 79:34:35:89:31:ab:1b:c3:15:3d:1e:d7:27:da:5d: 5a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:40:EA:BB:04:1D:32:EA:C8:0F:9D:B3:C2:80:6E:F7:E9:17:A8:99 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3138322e3233342e302e302f31352d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.234.0.0/15 Signature Algorithm: sha256WithRSAEncryption 39:a8:be:87:18:8d:39:bb:03:a8:90:07:89:64:03:ba:12:c0: 08:82:f6:88:6a:e0:fc:88:4e:3f:94:d9:26:e7:81:87:61:af: fe:e5:eb:b9:a3:59:cf:a0:e3:aa:8d:d6:82:77:89:bc:ae:eb: 00:a5:42:0a:71:4b:9f:44:ee:ed:0f:68:75:e2:84:04:ea:a6: 4f:cc:63:8b:16:38:18:d0:f6:ab:fa:da:58:f1:48:bc:af:9b: 8e:22:fa:99:ab:de:bc:80:4d:29:d5:80:5c:0d:a2:69:31:93: ac:3d:6d:49:de:75:cd:d4:1a:5a:31:07:41:ff:be:16:bd:ae: 0e:ae:1a:86:38:84:53:f1:05:2e:42:3d:0c:25:9b:64:26:25: 69:d9:c5:d0:39:82:71:7d:0f:ad:b8:1f:40:84:87:65:84:ac: 0e:e6:1e:80:04:66:23:ad:be:13:d3:d1:bf:ce:5a:fd:c3:93: dd:a9:5e:20:01:e4:60:f2:93:ca:6e:5e:1a:11:26:df:89:0a: e6:6f:cc:ac:91:5b:0e:cc:56:1f:3f:f0:48:e2:74:48:41:51: 16:a1:98:7e:db:04:dc:24:42:a2:26:51:3e:07:4e:d7:f6:fc: 18:15:f0:37:0e:e5:e3:11:8a:c0:a0:28:2b:01:65:2e:e3:bb: 73:4e:ac:7e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIUKUUjpvmfUlAwiwab6oBieyuwi+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMjM4NTBaFw0yNzA2MjEwMjQzNTBaMDMxMTAvBgNV BAMTKDg2NDBFQUJCMDQxRDMyRUFDODBGOURCM0MyODA2RUY3RTkxN0E4OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvdmxzfphVbNeMRohr3Fw9fa0k 76gjWQtbDwWGmewPvJqvMevMBkCtwMymZSWpyaiJ6L9lAg6YG6lv6hhmvNbilFEn lubDW/UGQRq4lIAy5Z7HlpoPDLenMc/NGr5Ya6u4f2ka9SG6TmOM+BH9MW5ZD3/Q kDxmKykeM/tEyZ7OJ38lfVvAT5NTvXS3iPv2RWJUJSxTgi5ADklE+Fv2gB3+O2OL aVMmDkhUPTAoeznsxJY3akOJdRFNkwzLbdIexDO7cWnpoObcNgPsn91uefEG8HZH v/u6p1yGJDFur4+sAxNWw2lJ3NMMLtLktcl8U3k0NYkxqxvDFT0e1yfaXVpNAgMB AAGjggHaMIIB1jAdBgNVHQ4EFgQUhkDquwQdMurID52zwoBu9+kXqJkwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzEzODMyMmUzMjMzMzQyZTMw MmUzMDJmMzEzNTJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAbbq MA0GCSqGSIb3DQEBCwUAA4IBAQA5qL6HGI05uwOokAeJZAO6EsAIgvaIauD8iE4/ lNkm54GHYa/+5eu5o1nPoOOqjdaCd4m8rusApUIKcUufRO7tD2h14oQE6qZPzGOL FjgY0Par+tpY8Ui8r5uOIvqZq968gE0p1YBcDaJpMZOsPW1J3nXN1BpaMQdB/74W va4OrhqGOIRT8QUuQj0MJZtkJiVp2cXQOYJxfQ+tuB9AhIdlhKwO5h6ABGYjrb4T 09G/zlr9w5PdqV4gAeRg8pPKbl4aESbfiQrmb8yskVsOzFYfP/BI4nRIQVEWoZh+ 2wTcJEKiJlE+B07X9vwYFfA3DuXjEYrAoCgrAWUu47tzTqx+ -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:03 2026 by rpki-client