$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e302e302f31362d3234203d3e203138303432.roa File: 3230332e3230332e302e302f31362d3234203d3e203138303432.roa (raw, json) Hash identifier: f2CrKvY7Kn0eGTyXjqiP6rhefaPtdSnYdE6E/68tHIw= Subject key identifier: 23:ED:F4:4A:49:A1:1E:0A:2F:DD:16:92:45:60:E1:BC:2A:3A:E0:E6 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 2B8DB63FB28BEDF9F1254114241C859BCD5C0CAC Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e302e302f31362d3234203d3e203138303432.roa Signing time: Thu 25 Jun 2026 02:43:53 +0000 ROA not before: Thu 25 Jun 2026 02:38:53 +0000 ROA not after: Thu 24 Jun 2027 02:43:53 +0000 asID: 18042 IP address blocks: 203.203.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:8d:b6:3f:b2:8b:ed:f9:f1:25:41:14:24:1c:85:9b:cd:5c:0c:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:53 2026 GMT Not After : Jun 24 02:43:53 2027 GMT Subject: CN=23EDF44A49A11E0A2FDD16924560E1BC2A3AE0E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:53:eb:00:5a:bb:d9:5a:05:1d:6e:15:0a:74: 44:70:af:c4:9f:16:de:52:3f:89:86:fd:99:a8:69: e0:b9:70:ce:59:d4:11:d5:d7:6b:3e:17:d5:e3:db: dd:44:bb:e1:b0:c5:39:8f:35:3a:c5:c0:9f:e1:5b: 71:36:5b:f2:9c:db:fb:84:85:7f:e0:46:fb:e4:2d: e2:3f:f4:ea:ff:64:a0:81:73:5c:5b:9c:cb:a0:60: 38:8d:d3:6c:be:9b:44:50:6a:44:ec:c4:46:fc:1c: 68:2a:69:4e:bd:12:41:41:fb:63:25:29:23:2a:96: 5e:19:dd:ef:62:d5:d5:d3:29:f3:1b:4e:e9:7d:a0: 61:e3:0b:dc:1f:4f:5a:cd:c6:d5:6f:5d:69:12:e3: 34:12:02:74:1f:71:ab:d0:a4:f9:2f:85:ad:3a:d6: 5d:cd:c0:f1:c4:50:c3:79:7d:67:f9:72:02:d2:a9: 90:41:6a:42:53:35:b0:6e:42:4a:bf:cb:8c:32:c0: 07:9a:20:1d:c9:da:21:49:41:6d:e5:ce:56:3d:1c: 95:ae:59:f3:a2:34:53:79:0f:7f:07:32:30:94:b5: b3:9e:18:62:7d:ee:c7:94:1a:58:7c:9c:c7:2c:ea: fa:22:29:46:e5:7a:a2:5f:87:40:bc:17:f6:93:5d: 2a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:ED:F4:4A:49:A1:1E:0A:2F:DD:16:92:45:60:E1:BC:2A:3A:E0:E6 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e302e302f31362d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.203.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4b:75:1c:1b:8d:e1:7b:47:fe:28:95:43:0f:88:76:d4:f4:bf: a8:f0:f2:9d:1e:46:69:80:e5:39:da:51:85:e5:f8:3c:44:9c: f5:55:c3:5f:de:bf:23:26:bc:99:87:48:7a:fd:de:d3:d1:ff: e3:9a:df:24:73:fc:83:50:f8:d0:10:c6:06:0f:0b:4d:14:e8: 4d:d8:aa:3a:9d:ef:dc:b4:25:2c:12:61:a5:5e:03:10:6a:bd: e4:9a:00:20:d5:7d:a8:c7:1c:2c:47:02:d3:9c:e7:43:af:0e: 98:74:b0:d6:9a:69:c2:06:97:36:ab:27:31:a4:55:8f:e5:2f: c8:75:8b:ee:9c:0b:4f:6c:78:98:b5:a4:9f:07:53:f1:1e:34: 2d:53:d5:6a:48:cf:ad:91:ee:d2:7b:33:17:89:9d:33:12:7f: 6d:7a:b3:a7:8f:35:2a:94:20:92:c2:40:82:7e:d4:f4:00:df: 08:74:50:1a:96:29:83:ef:73:a2:a2:8d:af:dc:d0:2e:fd:73: ab:73:70:48:ea:89:47:43:77:91:4c:6d:9b:43:ea:2b:a3:a1: c8:76:8a:1e:20:be:6e:8f:6f:c5:a7:c4:f8:33:8f:ca:18:d2: 89:fc:8c:cb:e9:e8:7c:20:6c:06:99:ed:02:7f:04:cb:bb:00: 19:29:b8:ea -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIUK422P7KL7fnxJUEUJByFm81cDKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTNaFw0yNzA2MjQwMjQzNTNaMDMxMTAvBgNV BAMTKDIzRURGNDRBNDlBMTFFMEEyRkREMTY5MjQ1NjBFMUJDMkEzQUUwRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIU+sAWrvZWgUdbhUKdERwr8Sf Ft5SP4mG/ZmoaeC5cM5Z1BHV12s+F9Xj291Eu+GwxTmPNTrFwJ/hW3E2W/Kc2/uE hX/gRvvkLeI/9Or/ZKCBc1xbnMugYDiN02y+m0RQakTsxEb8HGgqaU69EkFB+2Ml KSMqll4Z3e9i1dXTKfMbTul9oGHjC9wfT1rNxtVvXWkS4zQSAnQfcavQpPkvha06 1l3NwPHEUMN5fWf5cgLSqZBBakJTNbBuQkq/y4wywAeaIB3J2iFJQW3lzlY9HJWu WfOiNFN5D38HMjCUtbOeGGJ97seUGlh8nMcs6voiKUbleqJfh0C8F/aTXSqRAgMB AAGjggHaMIIB1jAdBgNVHQ4EFgQUI+30SkmhHgov3RaSRWDhvCo64OYwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMjMwMzMyZTMw MmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMvL MA0GCSqGSIb3DQEBCwUAA4IBAQBLdRwbjeF7R/4olUMPiHbU9L+o8PKdHkZpgOU5 2lGF5fg8RJz1VcNf3r8jJryZh0h6/d7T0f/jmt8kc/yDUPjQEMYGDwtNFOhN2Ko6 ne/ctCUsEmGlXgMQar3kmgAg1X2oxxwsRwLTnOdDrw6YdLDWmmnCBpc2qycxpFWP 5S/IdYvunAtPbHiYtaSfB1PxHjQtU9VqSM+tke7SezMXiZ0zEn9terOnjzUqlCCS wkCCftT0AN8IdFAalimD73Oioo2v3NAu/XOrc3BI6olHQ3eRTG2bQ+oro6HIdooe IL5uj2/Fp8T4M4/KGNKJ/IzL6eh8IGwGme0CfwTLuwAZKbjq -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:00 2026 by rpki-client