$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e35362e302f32342d3234203d3e203338383531.roa File: 3230332e3133332e35362e302f32342d3234203d3e203338383531.roa (raw, json) Hash identifier: LhFxNMyL+AfqNvFihvWGIooBiajZ6+KCt81QzmBUajI= Subject key identifier: E1:B6:6D:15:E2:CD:65:8B:AC:42:21:22:B4:B2:9F:46:33:B6:9B:1B Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 5B50BC0F5D9804B838B84755E97DE043F7E25C06 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e35362e302f32342d3234203d3e203338383531.roa Signing time: Mon 22 Jun 2026 03:03:48 +0000 ROA not before: Mon 22 Jun 2026 02:58:48 +0000 ROA not after: Mon 21 Jun 2027 03:03:48 +0000 asID: 38851 IP address blocks: 203.133.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:50:bc:0f:5d:98:04:b8:38:b8:47:55:e9:7d:e0:43:f7:e2:5c:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 02:58:48 2026 GMT Not After : Jun 21 03:03:48 2027 GMT Subject: CN=E1B66D15E2CD658BAC422122B4B29F4633B69B1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bc:11:ad:ef:e9:a5:62:39:4f:61:16:c0:2b: 36:3d:ff:89:9c:b2:17:48:05:f0:8d:0c:ce:dd:aa: 9c:cb:1a:53:fe:74:a1:dd:f9:fe:93:62:46:77:db: b9:06:c5:19:db:90:9d:ff:b2:79:00:0f:2e:30:01: 27:4b:7f:ca:00:a8:cd:94:f0:e1:f0:bc:e7:eb:86: 2e:97:c0:2b:71:0d:d4:b0:c1:0e:d2:71:25:9f:66: ca:1c:37:46:50:a3:83:39:ec:95:b8:f0:8e:df:04: 79:26:c3:e2:a1:41:3d:d0:c4:e9:bf:bd:de:ac:09: db:1d:7b:40:13:04:e8:79:5d:52:3e:08:6b:5d:64: c3:b0:c3:46:b6:44:1a:be:c6:ee:8a:94:b6:9f:23: ab:81:45:93:c7:80:b0:60:d3:dc:1d:7a:3d:43:eb: cf:ae:46:43:db:be:34:3f:c8:8f:a8:30:80:30:2b: b1:f9:83:b8:34:85:28:0d:c3:79:d3:ed:b7:eb:c8: 83:ed:ca:52:ca:9c:cf:2d:94:df:0b:3a:8b:8e:d0: e2:83:d3:b9:6e:23:fd:ca:fa:d3:04:5a:58:5b:82: 51:02:a5:be:86:d8:74:41:c3:db:c2:27:4f:31:aa: 25:13:14:0c:88:3b:7f:8e:5f:97:0e:83:42:7f:c2: c1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B6:6D:15:E2:CD:65:8B:AC:42:21:22:B4:B2:9F:46:33:B6:9B:1B X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e35362e302f32342d3234203d3e203338383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.133.56.0/24 Signature Algorithm: sha256WithRSAEncryption 19:2b:db:72:3b:72:98:67:a0:e7:73:3e:d5:82:bd:4b:33:1f: ef:d3:2d:2c:ec:52:f0:4f:71:64:a7:52:cd:55:02:f4:82:d2: 7d:fd:cb:14:1d:e9:10:33:73:00:63:c0:ce:ae:96:57:26:4e: da:ec:5d:b3:d3:25:38:13:c5:f6:13:fb:a3:4f:a8:7a:61:c6: c6:39:e2:70:8f:38:3e:c6:fa:26:d6:6a:25:4a:86:ae:10:e2: e2:74:65:dc:d9:e3:3d:02:26:5f:b7:25:a1:4c:10:e9:06:d9: 05:51:70:0c:f7:d1:28:90:0e:26:29:af:9e:3c:1c:3a:49:8a: 7e:01:21:4b:09:6b:1c:a0:84:d3:57:a0:5e:f6:76:4d:ec:fb: e3:c9:67:a6:76:d5:90:57:29:f3:6c:a3:d5:9c:bb:1b:f6:35: 34:05:96:fd:bf:b0:86:2f:e8:de:29:ca:05:af:14:57:95:08: b3:b3:26:77:5e:da:4b:5f:84:ac:37:ed:e8:6d:8e:d2:d9:e6: e5:f4:20:82:2e:d3:da:e2:98:4c:b9:9e:29:35:d7:54:6b:46: cd:8c:fd:f7:3d:ff:d2:5f:53:67:25:b7:2c:46:a9:f3:8b:e7: 24:8b:da:c8:f6:63:36:ab:1e:2a:c6:d3:48:f4:eb:28:3d:8a: a0:7d:61:4d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUW1C8D12YBLg4uEdV6X3gQ/fiXAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMjU4NDhaFw0yNzA2MjEwMzAzNDhaMDMxMTAvBgNV BAMTKEUxQjY2RDE1RTJDRDY1OEJBQzQyMjEyMkI0QjI5RjQ2MzNCNjlCMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnvBGt7+mlYjlPYRbAKzY9/4mc shdIBfCNDM7dqpzLGlP+dKHd+f6TYkZ327kGxRnbkJ3/snkADy4wASdLf8oAqM2U 8OHwvOfrhi6XwCtxDdSwwQ7ScSWfZsocN0ZQo4M57JW48I7fBHkmw+KhQT3QxOm/ vd6sCdsde0ATBOh5XVI+CGtdZMOww0a2RBq+xu6KlLafI6uBRZPHgLBg09wdej1D 68+uRkPbvjQ/yI+oMIAwK7H5g7g0hSgNw3nT7bfryIPtylLKnM8tlN8LOouO0OKD 07luI/3K+tMEWlhbglECpb6G2HRBw9vCJ08xqiUTFAyIO3+OX5cOg0J/wsGpAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQU4bZtFeLNZYusQiEitLKfRjO2mxswHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMTMzMzMyZTM1 MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNTMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA y4U4MA0GCSqGSIb3DQEBCwUAA4IBAQAZK9tyO3KYZ6Dncz7Vgr1LMx/v0y0s7FLw T3Fkp1LNVQL0gtJ9/csUHekQM3MAY8DOrpZXJk7a7F2z0yU4E8X2E/ujT6h6YcbG OeJwjzg+xvom1molSoauEOLidGXc2eM9AiZftyWhTBDpBtkFUXAM99EokA4mKa+e PBw6SYp+ASFLCWscoITTV6Be9nZN7PvjyWemdtWQVynzbKPVnLsb9jU0BZb9v7CG L+jeKcoFrxRXlQizsyZ3XtpLX4SsN+3obY7S2ebl9CCCLtPa4phMuZ4pNddUa0bN jP33Pf/SX1NnJbcsRqnzi+cki9rI9mM2qx4qxtNI9OsoPYqgfWFN -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:52 2026 by rpki-client