$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3138372e302e302f31372d3234203d3e2039343136.roa File: 3230332e3138372e302e302f31372d3234203d3e2039343136.roa (raw, json) Hash identifier: wOezRCQjkQgw3eCPiQoz9n1rUUrKggeY8YIAbfjw18o= Subject key identifier: 14:AF:A6:45:DA:78:4D:1D:0E:99:2C:51:27:33:26:E0:C1:E6:51:46 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 0FF8A522A79C3DF5C94E5580C164E834FFB3A43C Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3138372e302e302f31372d3234203d3e2039343136.roa Signing time: Thu 25 Jun 2026 02:43:54 +0000 ROA not before: Thu 25 Jun 2026 02:38:54 +0000 ROA not after: Thu 24 Jun 2027 02:43:54 +0000 asID: 9416 IP address blocks: 203.187.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:f8:a5:22:a7:9c:3d:f5:c9:4e:55:80:c1:64:e8:34:ff:b3:a4:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:54 2026 GMT Not After : Jun 24 02:43:54 2027 GMT Subject: CN=14AFA645DA784D1D0E992C51273326E0C1E65146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fe:9a:54:09:1b:f6:f7:93:26:e4:96:23:af: bd:e4:dd:df:a5:b0:f3:80:32:a5:c4:65:60:49:86: c4:a8:f4:83:f8:a1:63:5b:a5:27:1c:a6:6f:79:99: 91:c0:33:c7:34:ae:e2:92:d9:99:7e:31:e6:af:07: 30:b7:eb:bf:be:02:a9:6e:d3:53:c0:d6:86:b3:49: 53:32:9f:fa:9f:75:d1:7b:b8:e7:5a:3a:3b:8e:c4: 23:0d:e9:1b:59:0f:cf:b0:24:76:55:05:f6:ad:2b: 48:c5:31:b3:85:33:69:9c:0a:cb:21:ad:c7:63:a7: 2f:f4:02:f2:45:81:5d:90:5f:4b:a8:b0:43:00:93: b6:7a:61:1c:47:6b:68:22:e7:3c:b0:07:f1:4e:ea: 2d:91:67:ae:7b:24:27:17:49:39:bd:72:81:ac:3d: 54:89:b0:2a:6f:b3:e6:5a:13:20:3b:bf:35:70:77: 80:aa:37:7d:9e:84:36:db:f9:0a:ee:48:71:7c:49: 83:5a:6a:bd:2d:ef:de:39:34:dd:ca:30:6c:ef:ed: 29:12:25:a7:db:bd:16:d1:98:45:67:86:99:95:b6: 22:dc:5d:83:b6:f4:56:18:6f:97:98:c4:eb:30:c7: 37:fa:39:cd:03:d9:e5:03:94:d7:2f:d4:3b:2b:af: 38:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AF:A6:45:DA:78:4D:1D:0E:99:2C:51:27:33:26:E0:C1:E6:51:46 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3138372e302e302f31372d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.187.0.0/17 Signature Algorithm: sha256WithRSAEncryption 93:c6:b0:d8:42:6c:2a:47:fe:b9:74:23:83:f1:c0:f7:90:f1: 79:db:15:76:dd:b2:43:7c:86:e3:2e:9e:de:42:25:db:3b:a5: 0c:af:64:ac:13:25:6a:26:4d:28:2c:8b:47:47:cb:96:b3:ff: d6:42:c4:b5:d9:74:72:70:54:e6:71:8c:5a:61:89:1b:2f:ae: dd:6a:b6:af:6e:7e:0a:38:6f:bd:32:e2:dd:5d:34:b3:95:6f: cd:31:e2:72:ac:a9:d4:c6:0c:b2:51:39:d4:1d:a2:b9:ca:05: 6b:fd:a8:bb:66:02:f4:2d:11:73:62:10:fe:91:a6:36:be:10: 89:9e:d5:d8:db:ad:3d:8c:3f:13:db:39:64:68:3b:25:a9:ec: 21:ed:ae:28:b5:2d:22:b8:0a:a8:f5:d7:da:d9:0a:53:5a:1a: 20:1b:d7:98:bf:8c:3d:f6:8d:47:a8:b1:2a:67:f8:04:17:98: 7a:d8:20:f2:5c:24:54:5f:f4:41:d5:d9:e7:aa:06:c2:2c:d3: 54:2b:7d:fd:4c:ed:d3:13:c0:69:b4:8a:de:28:9c:aa:44:3f: 18:94:7b:4b:2a:d4:a7:6c:e3:b7:cf:4b:49:f4:3f:79:b1:e6: 2f:f8:b1:71:af:ab:2c:fb:ec:cb:8b:f8:cf:01:c7:a8:55:81: 3b:e2:c6:31 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUD/ilIqecPfXJTlWAwWToNP+zpDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTRaFw0yNzA2MjQwMjQzNTRaMDMxMTAvBgNV BAMTKDE0QUZBNjQ1REE3ODREMUQwRTk5MkM1MTI3MzMyNkUwQzFFNjUxNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy/ppUCRv295Mm5JYjr73k3d+l sPOAMqXEZWBJhsSo9IP4oWNbpSccpm95mZHAM8c0ruKS2Zl+MeavBzC367++Aqlu 01PA1oazSVMyn/qfddF7uOdaOjuOxCMN6RtZD8+wJHZVBfatK0jFMbOFM2mcCssh rcdjpy/0AvJFgV2QX0uosEMAk7Z6YRxHa2gi5zywB/FO6i2RZ657JCcXSTm9coGs PVSJsCpvs+ZaEyA7vzVwd4CqN32ehDbb+QruSHF8SYNaar0t7945NN3KMGzv7SkS JafbvRbRmEVnhpmVtiLcXYO29FYYb5eYxOswxzf6Oc0D2eUDlNcv1DsrrzinAgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQUFK+mRdp4TR0OmSxRJzMm4MHmUUYwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMTM4MzcyZTMw MmUzMDJmMzEzNzJkMzIzNDIwM2QzZTIwMzkzNDMxMzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfLuwAw DQYJKoZIhvcNAQELBQADggEBAJPGsNhCbCpH/rl0I4PxwPeQ8XnbFXbdskN8huMu nt5CJds7pQyvZKwTJWomTSgsi0dHy5az/9ZCxLXZdHJwVOZxjFphiRsvrt1qtq9u fgo4b70y4t1dNLOVb80x4nKsqdTGDLJROdQdornKBWv9qLtmAvQtEXNiEP6Rpja+ EIme1djbrT2MPxPbOWRoOyWp7CHtrii1LSK4Cqj119rZClNaGiAb15i/jD32jUeo sSpn+AQXmHrYIPJcJFRf9EHV2eeqBsIs01Qrff1M7dMTwGm0it4onKpEPxiUe0sq 1Kds47fPS0n0P3mx5i/4sXGvqyz77MuL+M8Bx6hVgTvixjE= -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:01 2026 by rpki-client