$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e302e302f31372d3137203d3e2039343136.roa File: 3230332e3133332e302e302f31372d3137203d3e2039343136.roa (raw, json) Hash identifier: e5NhUCFCi/Lofdr541782zHPo13SqVNImOfjfyv0jzA= Subject key identifier: E4:8F:DC:56:B6:00:26:52:33:9D:20:9B:42:E7:80:1C:6A:2C:53:40 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6538ACC857114FEA78FF72A77AF86640B849E77F Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e302e302f31372d3137203d3e2039343136.roa Signing time: Mon 22 Jun 2026 09:52:56 +0000 ROA not before: Mon 22 Jun 2026 09:47:56 +0000 ROA not after: Mon 21 Jun 2027 09:52:56 +0000 asID: 9416 IP address blocks: 203.133.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:38:ac:c8:57:11:4f:ea:78:ff:72:a7:7a:f8:66:40:b8:49:e7:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 09:47:56 2026 GMT Not After : Jun 21 09:52:56 2027 GMT Subject: CN=E48FDC56B6002652339D209B42E7801C6A2C5340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:16:bd:f3:d1:a9:cc:14:e8:b0:3b:43:2d:c6: 4f:bd:04:4d:e7:e2:f9:bb:18:16:3c:70:87:57:38: af:c2:25:08:7c:69:49:c5:8b:9b:b6:06:6b:ed:84: 83:97:07:fa:94:60:1f:88:47:77:d7:64:bd:3d:25: 82:b4:da:0a:c3:80:24:ae:21:66:49:0f:e6:ff:f8: d5:69:1e:02:64:aa:bc:a7:d0:fc:16:15:75:99:f5: 10:14:ed:ad:65:db:64:3d:67:66:13:83:cf:8b:42: 07:92:7c:29:96:fd:a3:c3:56:a0:00:7b:c1:14:02: d5:fc:fa:c7:f4:0a:58:e4:75:f8:5a:77:0e:f0:ab: 15:de:80:8d:4d:c0:b9:c6:10:df:af:c9:dc:13:1e: 3b:0f:d5:46:9d:7b:8b:f9:50:31:df:ab:8d:74:2f: d8:5e:28:68:ea:80:e3:e8:0a:cb:9e:13:75:d7:13: bc:47:ee:2e:88:48:f6:e7:70:c0:d9:d2:34:10:9c: cc:ff:7f:b8:93:62:ec:51:99:73:e6:07:f0:19:d9: 7e:23:28:48:55:54:fc:a0:c6:cd:d6:a3:4c:aa:6a: cf:39:cc:f1:01:62:14:0f:a0:1c:7e:ca:bb:12:37: c0:21:c2:ae:10:0a:32:d4:14:ce:db:8b:28:e5:25: 54:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:8F:DC:56:B6:00:26:52:33:9D:20:9B:42:E7:80:1C:6A:2C:53:40 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e302e302f31372d3137203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.133.0.0/17 Signature Algorithm: sha256WithRSAEncryption 35:c6:a1:2e:6e:2f:76:40:e9:af:88:9d:9f:91:ae:d5:89:6f: f8:f1:49:e1:f3:ea:fd:2a:f9:76:a5:7d:ca:fe:30:d2:9a:d3: 55:b4:82:02:11:03:76:8b:7d:17:44:84:bd:36:17:04:c0:2b: e7:a3:fe:e7:6a:b3:5e:c4:ed:50:81:21:4c:e4:ec:94:16:0e: 32:96:78:d9:b0:0d:d2:17:88:01:00:5c:31:8a:72:1c:6d:79: e1:0c:d3:f3:6a:c8:72:90:f0:52:1a:1c:ae:d1:10:b5:3f:fc: 53:ef:12:ee:f2:43:4c:bb:d3:da:fe:1d:d3:5a:bd:9d:d3:ad: 79:9a:fd:5b:f3:8d:d4:32:f6:c6:bf:f9:4e:70:87:35:85:42: b3:67:d3:2a:81:68:62:51:3d:4b:f4:65:6c:c2:7f:21:49:94: a3:33:8a:d9:69:7a:09:06:15:2b:84:58:0c:ba:4f:0c:4a:cd: 1f:93:b8:24:4c:17:6e:7a:b2:c1:26:38:43:b2:e5:48:c1:9e: 4d:be:03:85:be:97:c5:ce:56:63:5c:67:5f:a9:06:09:a0:4f: d8:1a:9a:e4:33:3c:56:00:29:95:df:6f:0f:6c:73:54:3c:d7: 63:0c:25:c8:c3:33:68:21:e1:c4:16:5c:bc:db:b8:f4:a2:8d: cd:6d:69:e7 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUZTisyFcRT+p4/3KnevhmQLhJ538wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwOTQ3NTZaFw0yNzA2MjEwOTUyNTZaMDMxMTAvBgNV BAMTKEU0OEZEQzU2QjYwMDI2NTIzMzlEMjA5QjQyRTc4MDFDNkEyQzUzNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwFr3z0anMFOiwO0Mtxk+9BE3n 4vm7GBY8cIdXOK/CJQh8aUnFi5u2BmvthIOXB/qUYB+IR3fXZL09JYK02grDgCSu IWZJD+b/+NVpHgJkqryn0PwWFXWZ9RAU7a1l22Q9Z2YTg8+LQgeSfCmW/aPDVqAA e8EUAtX8+sf0Cljkdfhadw7wqxXegI1NwLnGEN+vydwTHjsP1Uade4v5UDHfq410 L9heKGjqgOPoCsueE3XXE7xH7i6ISPbncMDZ0jQQnMz/f7iTYuxRmXPmB/AZ2X4j KEhVVPygxs3Wo0yqas85zPEBYhQPoBx+yrsSN8Ahwq4QCjLUFM7biyjlJVSzAgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQU5I/cVrYAJlIznSCbQueAHGosU0AwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMTMzMzMyZTMw MmUzMDJmMzEzNzJkMzEzNzIwM2QzZTIwMzkzNDMxMzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfLhQAw DQYJKoZIhvcNAQELBQADggEBADXGoS5uL3ZA6a+InZ+RrtWJb/jxSeHz6v0q+Xal fcr+MNKa01W0ggIRA3aLfRdEhL02FwTAK+ej/udqs17E7VCBIUzk7JQWDjKWeNmw DdIXiAEAXDGKchxteeEM0/NqyHKQ8FIaHK7RELU//FPvEu7yQ0y709r+HdNavZ3T rXma/VvzjdQy9sa/+U5whzWFQrNn0yqBaGJRPUv0ZWzCfyFJlKMzitlpegkGFSuE WAy6TwxKzR+TuCRMF256ssEmOEOy5UjBnk2+A4W+l8XOVmNcZ1+pBgmgT9gamuQz PFYAKZXfbw9sc1Q812MMJcjDM2gh4cQWXLzbuPSijc1taec= -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:58 2026 by rpki-client