$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230322e322e35322e302f32322d3234203d3e2039343136.roa File: 3230322e322e35322e302f32322d3234203d3e2039343136.roa (raw, json) Hash identifier: gpG1Hfp7HdoBiYlLV5sH12kRcacMsPdPUemix5JwHKw= Subject key identifier: DA:54:FB:A3:82:26:1D:D0:9A:D2:ED:52:1B:00:95:E6:AB:60:5D:BE Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6E8FB27622C7AA8DCD47768DB6E81FE390116173 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230322e322e35322e302f32322d3234203d3e2039343136.roa Signing time: Mon 22 Jun 2026 02:43:50 +0000 ROA not before: Mon 22 Jun 2026 02:38:50 +0000 ROA not after: Mon 21 Jun 2027 02:43:50 +0000 asID: 9416 IP address blocks: 202.2.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:8f:b2:76:22:c7:aa:8d:cd:47:76:8d:b6:e8:1f:e3:90:11:61:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 02:38:50 2026 GMT Not After : Jun 21 02:43:50 2027 GMT Subject: CN=DA54FBA382261DD09AD2ED521B0095E6AB605DBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d5:e4:db:2d:1f:8b:79:eb:e1:46:44:53:56: be:52:de:fd:ab:e9:09:f8:73:a2:84:8f:60:1b:8c: 93:5d:2d:c8:38:ba:5c:b2:80:cf:3e:94:08:04:53: 20:20:91:a7:4e:0f:2a:96:f8:72:29:20:90:b5:b9: 71:4b:81:f4:c2:23:4b:f9:e7:8c:82:00:77:96:6e: b4:3b:4c:10:fe:56:87:22:18:42:e4:e4:8b:d0:13: 1a:eb:ec:ab:8b:b0:d3:9d:1d:2e:e3:56:22:af:b9: 45:aa:8b:b9:26:b6:e9:2c:df:38:bd:15:3b:8e:e2: 52:86:2f:32:52:6b:5b:e0:00:5e:7a:32:92:82:46: e0:92:78:69:09:b7:be:67:99:6f:f5:30:1f:c5:65: bb:4d:7c:8d:79:3b:bb:8f:ae:a3:c8:00:0e:82:a5: be:c7:56:87:cc:a9:1b:1f:fc:5b:ed:fd:cf:32:a5: af:70:b6:e1:84:90:f4:0d:91:d8:99:9f:19:a2:ba: 32:73:10:d4:92:dd:a4:f9:03:84:26:f7:22:b7:dd: 32:c8:fe:f4:78:c7:c4:4f:6a:bd:4d:d0:75:a2:15: a6:d8:ec:7e:7c:f9:d2:8c:5f:cc:59:aa:b4:a0:71: 99:80:e8:18:6e:78:d6:86:77:21:8f:d5:56:c7:49: 5d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:54:FB:A3:82:26:1D:D0:9A:D2:ED:52:1B:00:95:E6:AB:60:5D:BE X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230322e322e35322e302f32322d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.2.52.0/22 Signature Algorithm: sha256WithRSAEncryption c1:cd:f7:a4:8f:3e:ee:53:9c:40:c7:b7:10:f8:69:01:75:2b: fe:6a:f8:a7:39:3e:e9:16:f3:86:3a:c5:9e:52:e1:7d:a3:1d: b9:73:ff:b7:ec:05:fc:2a:a8:83:48:e3:30:df:5a:41:29:f6: b8:2c:f6:9a:e0:c1:d5:0c:9d:5b:4c:f0:47:c3:23:93:a6:27: dc:db:32:52:b8:00:fd:9b:21:57:56:7c:3c:c3:0f:e0:c8:2f: d2:cb:de:cc:86:af:54:67:48:fb:35:6a:a0:af:ea:73:64:ea: 2a:5f:45:ce:3b:a0:3e:a2:bb:4e:1f:32:fa:57:74:13:ec:39: 6d:75:e7:9a:0f:62:1c:f0:df:c3:ec:21:cd:aa:79:97:85:bb: be:42:43:76:b2:20:35:27:0c:04:b4:91:7f:d7:8a:04:c6:ca: 37:f9:e0:b6:37:80:2c:35:bd:72:29:4b:9f:be:2e:aa:df:85: 59:b7:0b:e4:e3:87:78:d2:79:f7:b0:15:63:ff:3b:99:61:81: 37:63:b5:21:f9:43:c2:67:db:c4:5e:ab:c2:a6:66:0d:5c:e8: c4:3e:0a:4a:9e:04:55:1f:27:db:e3:35:34:13:c0:fc:13:2a: b1:6d:e8:b6:fd:1c:66:29:7b:9f:03:c0:d1:50:c3:11:d8:5a: 45:da:28:0f -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIUbo+ydiLHqo3NR3aNtugf45ARYXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMjM4NTBaFw0yNzA2MjEwMjQzNTBaMDMxMTAvBgNV BAMTKERBNTRGQkEzODIyNjFERDA5QUQyRUQ1MjFCMDA5NUU2QUI2MDVEQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCP1eTbLR+LeevhRkRTVr5S3v2r 6Qn4c6KEj2AbjJNdLcg4ulyygM8+lAgEUyAgkadODyqW+HIpIJC1uXFLgfTCI0v5 54yCAHeWbrQ7TBD+VociGELk5IvQExrr7KuLsNOdHS7jViKvuUWqi7kmtuks3zi9 FTuO4lKGLzJSa1vgAF56MpKCRuCSeGkJt75nmW/1MB/FZbtNfI15O7uPrqPIAA6C pb7HVofMqRsf/Fvt/c8ypa9wtuGEkPQNkdiZnxmiujJzENSS3aT5A4Qm9yK33TLI /vR4x8RPar1N0HWiFabY7H58+dKMX8xZqrSgcZmA6BhueNaGdyGP1VbHSV2NAgMB AAGjggHXMIIB0zAdBgNVHQ4EFgQU2lT7o4ImHdCa0u1SGwCV5qtgXb4wHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMyMmUzMjJlMzUzMjJl MzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM5MzQzMTM2LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCygI0MA0G CSqGSIb3DQEBCwUAA4IBAQDBzfekjz7uU5xAx7cQ+GkBdSv+avinOT7pFvOGOsWe UuF9ox25c/+37AX8KqiDSOMw31pBKfa4LPaa4MHVDJ1bTPBHwyOTpifc2zJSuAD9 myFXVnw8ww/gyC/Sy97Mhq9UZ0j7NWqgr+pzZOoqX0XOO6A+ortOHzL6V3QT7Dlt deeaD2Ic8N/D7CHNqnmXhbu+QkN2siA1JwwEtJF/14oExso3+eC2N4AsNb1yKUuf vi6q34VZtwvk44d40nn3sBVj/zuZYYE3Y7Uh+UPCZ9vEXqvCpmYNXOjEPgpKngRV Hyfb4zU0E8D8Eyqxbei2/RxmKXufA8DRUMMR2FpF2igP -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:58 2026 by rpki-client