$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e36342e302f31382d3234203d3e2039343136.roa File: 3230332e3133332e36342e302f31382d3234203d3e2039343136.roa (raw, json) Hash identifier: 03/1Lvj6FxYU53cahNSgyH6WNJTnp7iLGS4hcgwjqP4= Subject key identifier: 0E:D3:72:5B:4C:97:84:89:86:2A:40:EE:58:B9:A0:E6:B7:27:4C:34 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6C14129529A4E0A976758D2482F63586EC5326C1 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e36342e302f31382d3234203d3e2039343136.roa Signing time: Thu 25 Jun 2026 02:43:54 +0000 ROA not before: Thu 25 Jun 2026 02:38:54 +0000 ROA not after: Thu 24 Jun 2027 02:43:54 +0000 asID: 9416 IP address blocks: 203.133.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:14:12:95:29:a4:e0:a9:76:75:8d:24:82:f6:35:86:ec:53:26:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:54 2026 GMT Not After : Jun 24 02:43:54 2027 GMT Subject: CN=0ED3725B4C978489862A40EE58B9A0E6B7274C34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0e:4f:18:7d:ba:d3:0f:ea:37:96:ff:c4:98: 4d:37:42:ad:e1:b3:5e:2f:9c:79:65:00:42:98:48: 5e:59:cc:5f:30:8e:ba:1d:a5:55:2c:bf:57:e4:f4: ef:c2:f5:0b:24:69:c8:9c:e2:0c:9e:cf:0a:3f:7c: 66:f0:c1:cc:1a:a2:fe:ee:ae:8f:e8:bc:32:31:d9: ca:9b:d4:6e:4a:b5:67:0d:20:e9:ab:77:4d:a4:4b: 94:77:a0:39:ff:e5:06:28:87:f5:31:b9:a4:95:44: d8:aa:b9:7a:2d:c2:ac:51:13:f0:c1:68:a3:ee:dc: 89:67:c0:1d:7b:f7:25:cb:5c:2a:d2:b7:81:b2:43: a4:13:63:60:4d:30:e8:69:6d:a6:78:ed:53:e3:54: bf:f1:e4:1c:d2:81:08:da:ce:42:3f:22:83:7a:bc: a2:64:0f:31:e7:22:7a:f9:2b:eb:ed:57:ad:f3:0c: 6d:5e:6a:f5:3e:a8:31:7f:88:b2:17:53:94:62:5f: 0f:d5:ba:20:ea:de:89:cb:45:f0:50:34:44:93:6c: 2f:57:7e:7d:e1:88:1b:06:07:3e:0d:0c:f4:36:fd: 4a:42:9b:91:09:9e:bb:14:29:55:ce:b1:9f:dc:46: 67:b1:48:f4:9c:ae:43:39:5e:17:9a:fc:2d:4a:ef: 45:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D3:72:5B:4C:97:84:89:86:2A:40:EE:58:B9:A0:E6:B7:27:4C:34 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3133332e36342e302f31382d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.133.64.0/18 Signature Algorithm: sha256WithRSAEncryption 57:62:51:59:ba:51:1a:01:80:32:38:03:d9:ca:94:e1:ec:21: 08:f9:7e:5c:09:f8:54:94:0d:e1:ed:4c:6b:9f:b3:2d:99:e3: 15:36:9f:7f:1d:81:5d:6e:be:9b:99:22:1f:7b:30:ee:79:e2: 05:18:e2:91:13:24:63:5e:8a:87:f5:dc:6a:f5:f0:86:2c:a0: 1d:af:d4:65:3a:07:f0:70:75:2a:4e:90:26:e4:a6:81:1b:a3: a4:52:a8:9c:71:fa:e3:05:11:e3:2e:d4:1b:b0:3d:ca:65:96: c4:96:68:d4:e2:46:e4:69:41:77:09:fe:49:78:85:e7:11:9c: 90:fe:67:4d:19:d5:a4:6e:06:72:ca:0a:35:84:81:c9:24:b9: c7:e8:f1:46:fd:0e:5f:82:cc:2e:c1:9b:9b:93:d2:f7:e8:81: 3a:b6:9a:d2:08:6f:37:65:0e:f1:7a:c2:03:31:da:d2:aa:7d: 71:d4:bc:ba:85:8a:cc:fd:3d:48:c7:03:35:62:fa:a0:20:68: c9:56:b9:52:82:11:29:12:4b:c9:18:00:ae:ef:b1:4f:ea:47: 5a:12:81:a4:c2:d4:7f:1c:ca:96:48:41:f4:87:bf:ac:a6:84: ad:4f:86:5d:d6:10:12:7f:5b:76:9e:53:4a:6e:10:a9:5e:87: 02:be:71:b6 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUbBQSlSmk4Kl2dY0kgvY1huxTJsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTRaFw0yNzA2MjQwMjQzNTRaMDMxMTAvBgNV BAMTKDBFRDM3MjVCNEM5Nzg0ODk4NjJBNDBFRTU4QjlBMEU2QjcyNzRDMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Dk8YfbrTD+o3lv/EmE03Qq3h s14vnHllAEKYSF5ZzF8wjrodpVUsv1fk9O/C9Qskacic4gyezwo/fGbwwcwaov7u ro/ovDIx2cqb1G5KtWcNIOmrd02kS5R3oDn/5QYoh/UxuaSVRNiquXotwqxRE/DB aKPu3IlnwB179yXLXCrSt4GyQ6QTY2BNMOhpbaZ47VPjVL/x5BzSgQjazkI/IoN6 vKJkDzHnInr5K+vtV63zDG1eavU+qDF/iLIXU5RiXw/VuiDq3onLRfBQNESTbC9X fn3hiBsGBz4NDPQ2/UpCm5EJnrsUKVXOsZ/cRmexSPScrkM5Xhea/C1K70X/AgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUDtNyW0yXhImGKkDuWLmg5rcnTDQwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMTMzMzMyZTM2 MzQyZTMwMmYzMTM4MmQzMjM0MjAzZDNlMjAzOTM0MzEzNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBsuF QDANBgkqhkiG9w0BAQsFAAOCAQEAV2JRWbpRGgGAMjgD2cqU4ewhCPl+XAn4VJQN 4e1Ma5+zLZnjFTaffx2BXW6+m5kiH3sw7nniBRjikRMkY16Kh/XcavXwhiygHa/U ZToH8HB1Kk6QJuSmgRujpFKonHH64wUR4y7UG7A9ymWWxJZo1OJG5GlBdwn+SXiF 5xGckP5nTRnVpG4GcsoKNYSBySS5x+jxRv0OX4LMLsGbm5PS9+iBOraa0ghvN2UO 8XrCAzHa0qp9cdS8uoWKzP09SMcDNWL6oCBoyVa5UoIRKRJLyRgAru+xT+pHWhKB pMLUfxzKlkhB9Ie/rKaErU+GXdYQEn9bdp5TSm4QqV6HAr5xtg== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:56 2026 by rpki-client