$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e302e302f31372d3234203d3e203138303432.roa File: 3230332e3133332e302e302f31372d3234203d3e203138303432.roa (raw, json) Hash identifier: wlzKMSWhpC/L7TXvoFC+pZZ2PFZYz4VsR5degmHJxv0= Subject key identifier: 0B:25:82:AE:0C:F9:81:DC:86:E8:8B:B1:83:56:17:5D:4C:BC:87:3E Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 3582DA8678958028F035189EE50A78CA99D07B05 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e302e302f31372d3234203d3e203138303432.roa Signing time: Thu 25 Jun 2026 02:43:59 +0000 ROA not before: Thu 25 Jun 2026 02:38:59 +0000 ROA not after: Thu 24 Jun 2027 02:43:59 +0000 asID: 18042 IP address blocks: 203.133.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:82:da:86:78:95:80:28:f0:35:18:9e:e5:0a:78:ca:99:d0:7b:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:59 2026 GMT Not After : Jun 24 02:43:59 2027 GMT Subject: CN=0B2582AE0CF981DC86E88BB18356175D4CBC873E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2f:e2:17:95:4b:6e:f4:88:68:71:8d:ab:bb: 2c:21:27:d7:30:42:74:19:45:b8:26:98:8d:d5:47: 60:93:87:d6:0d:45:53:ba:8f:29:1b:98:d2:17:c1: c0:8d:1f:3b:a0:90:14:68:9d:18:77:b4:0a:d7:0f: 11:dc:61:a1:77:fa:b3:99:f1:98:9d:27:0f:4d:63: 2d:15:ce:12:fb:80:a6:27:19:cd:0d:0c:22:92:20: 70:4c:40:e7:26:fb:7e:0c:e8:75:3c:8e:10:de:d7: 08:2b:00:3b:4b:03:93:af:3a:ac:37:d0:c3:0b:ae: 24:63:5e:09:f5:16:c1:8f:8f:fd:36:de:4c:4b:58: 21:ea:ef:e3:55:bc:bb:b2:c7:fd:f3:e5:71:37:90: 4d:cf:52:ee:57:ed:f8:17:b8:ea:0d:bf:a5:bb:b6: 3a:8a:1a:df:d2:50:4b:f7:6a:96:28:80:35:78:ca: d8:2f:47:84:10:11:6f:1d:a9:c5:d4:61:a2:6b:08: 33:33:3b:e9:4b:8b:0c:7b:d0:58:03:41:5d:5f:35: a9:da:37:7e:ff:53:30:c1:e7:d1:41:93:08:2a:18: cf:52:9d:48:f9:07:d0:f8:60:d6:23:f4:b2:35:c6: e8:58:cc:c7:30:a1:1e:1a:fa:c1:85:37:e9:15:cc: b5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:25:82:AE:0C:F9:81:DC:86:E8:8B:B1:83:56:17:5D:4C:BC:87:3E X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e302e302f31372d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.133.0.0/17 Signature Algorithm: sha256WithRSAEncryption 54:d5:75:59:62:cd:0d:3b:97:5b:3e:ea:c3:cf:9a:05:e3:4d: 8e:b1:b2:7f:f3:c9:22:09:92:d9:e3:c5:94:f9:0d:d4:40:be: 4f:3a:fc:5e:02:0f:32:57:de:87:c1:db:27:d7:72:3b:95:60: db:17:e7:4e:e3:6c:e0:df:41:82:58:8e:ae:49:27:c3:90:e2: 59:9f:ed:81:2e:70:fd:da:ce:31:70:16:30:57:ea:56:e2:48: 77:31:9b:4a:9e:c2:81:a1:d6:a2:bf:82:08:d9:44:2b:e1:ee: d1:66:67:e2:95:06:12:d5:2c:9e:28:8c:58:de:0a:17:46:d0: 1b:4f:bd:02:1d:35:e8:c8:43:49:22:71:a9:93:71:13:21:5f: 49:35:08:92:b0:5f:5a:e6:df:98:d8:36:15:a3:1a:8d:d0:25: 35:9f:48:60:33:a2:73:0c:06:bc:ae:8f:38:3e:55:19:4e:a9: 38:d7:2d:be:e3:4b:e2:18:2c:37:9b:d8:53:af:60:93:bd:ec: 7b:c0:bf:6f:71:e8:71:98:ee:3a:ab:1b:14:13:62:6b:29:61: 17:0c:4a:a0:32:1f:69:fe:e2:9c:6f:e7:0a:57:bc:05:5f:62: 94:5a:43:16:e4:4d:7f:34:61:d3:8f:ab:47:80:dc:66:6b:bf: 92:97:63:dd -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUNYLahniVgCjwNRie5Qp4ypnQewUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTlaFw0yNzA2MjQwMjQzNTlaMDMxMTAvBgNV BAMTKDBCMjU4MkFFMENGOTgxREM4NkU4OEJCMTgzNTYxNzVENENCQzg3M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5L+IXlUtu9IhocY2ruywhJ9cw QnQZRbgmmI3VR2CTh9YNRVO6jykbmNIXwcCNHzugkBRonRh3tArXDxHcYaF3+rOZ 8ZidJw9NYy0VzhL7gKYnGc0NDCKSIHBMQOcm+34M6HU8jhDe1wgrADtLA5OvOqw3 0MMLriRjXgn1FsGPj/023kxLWCHq7+NVvLuyx/3z5XE3kE3PUu5X7fgXuOoNv6W7 tjqKGt/SUEv3apYogDV4ytgvR4QQEW8dqcXUYaJrCDMzO+lLiwx70FgDQV1fNana N37/UzDB59FBkwgqGM9SnUj5B9D4YNYj9LI1xuhYzMcwoR4a+sGFN+kVzLUNAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUCyWCrgz5gdyG6Iuxg1YXXUy8hz4wHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMTMzMzMyZTMw MmUzMDJmMzEzNzJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB8uF ADANBgkqhkiG9w0BAQsFAAOCAQEAVNV1WWLNDTuXWz7qw8+aBeNNjrGyf/PJIgmS 2ePFlPkN1EC+Tzr8XgIPMlfeh8HbJ9dyO5Vg2xfnTuNs4N9BgliOrkknw5DiWZ/t gS5w/drOMXAWMFfqVuJIdzGbSp7CgaHWor+CCNlEK+Hu0WZn4pUGEtUsniiMWN4K F0bQG0+9Ah016MhDSSJxqZNxEyFfSTUIkrBfWubfmNg2FaMajdAlNZ9IYDOicwwG vK6POD5VGU6pONctvuNL4hgsN5vYU69gk73se8C/b3HocZjuOqsbFBNiaylhFwxK oDIfaf7inG/nCle8BV9ilFpDFuRNfzRh04+rR4DcZmu/kpdj3Q== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:54 2026 by rpki-client