$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3138372e302e302f31372d3234203d3e203138303432.roa File: 3230332e3138372e302e302f31372d3234203d3e203138303432.roa (raw, json) Hash identifier: ZXS2gnlRwLKyFI+zAY0SOzTm+1NKGAxux8XnlWjcpfw= Subject key identifier: 32:B0:1E:DA:56:30:1E:78:88:1B:89:DB:05:BD:2F:77:D9:E9:A8:BF Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 42659236969698315E20B518DFA660511E4D5CC7 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3138372e302e302f31372d3234203d3e203138303432.roa Signing time: Thu 25 Jun 2026 02:43:51 +0000 ROA not before: Thu 25 Jun 2026 02:38:51 +0000 ROA not after: Thu 24 Jun 2027 02:43:51 +0000 asID: 18042 IP address blocks: 203.187.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:65:92:36:96:96:98:31:5e:20:b5:18:df:a6:60:51:1e:4d:5c:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:51 2026 GMT Not After : Jun 24 02:43:51 2027 GMT Subject: CN=32B01EDA56301E78881B89DB05BD2F77D9E9A8BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:71:a1:3f:a1:6a:21:da:3a:e1:7a:31:63:8d: c0:6b:df:9f:5b:52:08:ea:9a:1f:20:13:2e:1e:41: dc:c0:2f:f1:20:c4:45:52:e9:76:d9:f6:bd:64:fd: db:a3:23:b5:9c:e5:b8:fb:c6:23:9d:a0:21:fd:d7: 0e:b6:86:1b:b4:7e:ad:90:2d:fc:e4:82:6e:70:24: ec:32:92:62:c5:8d:d1:e5:47:52:38:22:53:6a:08: c2:17:e5:2e:65:bd:15:60:40:51:ec:ff:77:a2:62: 38:dc:ed:7f:30:42:79:b0:34:13:85:01:78:f6:05: a5:aa:d9:ed:3f:b8:f7:e9:da:84:ab:52:78:1f:62: 29:18:93:df:fd:81:dd:34:91:3a:2e:48:6c:00:e7: e8:8c:cd:63:f9:26:fe:4d:d4:23:12:c3:ce:a6:92: c2:8a:21:e5:af:e8:4e:e4:19:bd:e1:ef:5a:ec:70: 58:78:d5:21:79:7e:64:80:fc:05:6f:a4:e8:97:9b: e1:76:4e:08:2b:c5:5f:9f:d9:7d:33:4a:9b:f5:2a: 3d:f6:93:6f:a7:0e:54:f2:12:8e:a6:9f:43:46:0e: ec:19:fc:32:9f:44:51:82:95:be:7f:8f:9f:e8:bd: b3:6e:6e:5c:99:8d:bb:c2:b0:98:e3:73:c9:9c:4d: 91:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B0:1E:DA:56:30:1E:78:88:1B:89:DB:05:BD:2F:77:D9:E9:A8:BF X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3138372e302e302f31372d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.187.0.0/17 Signature Algorithm: sha256WithRSAEncryption 4f:80:d6:46:42:20:9c:ae:b0:24:5d:c1:f0:fc:21:cd:e7:16: 12:92:b7:60:38:bc:46:91:ad:77:bd:bf:d2:2d:dc:d8:6b:dd: b5:d3:6c:d6:b5:aa:ff:70:6d:9f:7d:1a:70:c6:a6:ad:6d:02: 9c:d1:8e:75:68:5a:27:27:e5:ba:32:0c:1f:52:33:a7:57:01: a8:de:de:fa:f0:8e:10:e3:12:7f:7e:00:03:1f:1d:b3:56:a3: b0:69:b7:b4:8c:72:95:08:a4:48:eb:be:7d:24:6c:f7:b0:8b: 44:c7:2a:1c:3d:b6:32:55:a3:5c:a7:d9:d3:ef:27:92:9f:56: 94:1d:4f:a2:2e:a6:c5:73:12:ca:05:b0:ef:3e:e8:3d:47:bd: 3d:33:c0:77:b9:a7:d7:17:2c:c2:80:19:16:58:ef:de:c4:d3: 46:3e:dd:f2:d5:cb:29:8b:01:ab:22:98:c8:b4:33:94:be:4a: 76:98:49:17:ab:59:b7:a0:5d:24:a7:90:11:06:6b:d3:74:7f: 52:8e:82:74:9b:93:01:c0:b2:76:46:8d:e1:2b:b6:cd:53:0c: ad:3e:3f:61:a8:ad:2f:6e:be:df:8a:a4:dc:17:85:44:94:e7: 02:89:2b:48:b0:23:c4:2d:51:fe:04:a3:a4:cc:7e:99:5d:f3: a5:b8:55:ae -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUQmWSNpaWmDFeILUY36ZgUR5NXMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTFaFw0yNzA2MjQwMjQzNTFaMDMxMTAvBgNV BAMTKDMyQjAxRURBNTYzMDFFNzg4ODFCODlEQjA1QkQyRjc3RDlFOUE4QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2caE/oWoh2jrhejFjjcBr359b Ugjqmh8gEy4eQdzAL/EgxEVS6XbZ9r1k/dujI7Wc5bj7xiOdoCH91w62hhu0fq2Q Lfzkgm5wJOwykmLFjdHlR1I4IlNqCMIX5S5lvRVgQFHs/3eiYjjc7X8wQnmwNBOF AXj2BaWq2e0/uPfp2oSrUngfYikYk9/9gd00kTouSGwA5+iMzWP5Jv5N1CMSw86m ksKKIeWv6E7kGb3h71rscFh41SF5fmSA/AVvpOiXm+F2TggrxV+f2X0zSpv1Kj32 k2+nDlTyEo6mn0NGDuwZ/DKfRFGClb5/j5/ovbNublyZjbvCsJjjc8mcTZHLAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUMrAe2lYwHniIG4nbBb0vd9npqL8wHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMTM4MzcyZTMw MmUzMDJmMzEzNzJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB8u7 ADANBgkqhkiG9w0BAQsFAAOCAQEAT4DWRkIgnK6wJF3B8PwhzecWEpK3YDi8RpGt d72/0i3c2GvdtdNs1rWq/3Btn30acMamrW0CnNGOdWhaJyflujIMH1Izp1cBqN7e +vCOEOMSf34AAx8ds1ajsGm3tIxylQikSOu+fSRs97CLRMcqHD22MlWjXKfZ0+8n kp9WlB1Poi6mxXMSygWw7z7oPUe9PTPAd7mn1xcswoAZFljv3sTTRj7d8tXLKYsB qyKYyLQzlL5KdphJF6tZt6BdJKeQEQZr03R/Uo6CdJuTAcCydkaN4Su2zVMMrT4/ YaitL26+34qk3BeFRJTnAokrSLAjxC1R/gSjpMx+mV3zpbhVrg== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:59 2026 by rpki-client