$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e302e302f31362d3234203d3e2039343136.roa File: 3230332e3230332e302e302f31362d3234203d3e2039343136.roa (raw, json) Hash identifier: uidBeYKEqrgQjnlE3HQonKUUgWZ90aGlrNiWoO2ydbQ= Subject key identifier: 78:50:43:A0:B3:F2:99:99:00:A8:6A:E4:CF:8B:F2:75:FD:08:21:DB Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 4DA98F0AB92684F1C69EE1664303F34D11D3DAD0 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e302e302f31362d3234203d3e2039343136.roa Signing time: Thu 25 Jun 2026 02:43:56 +0000 ROA not before: Thu 25 Jun 2026 02:38:56 +0000 ROA not after: Thu 24 Jun 2027 02:43:56 +0000 asID: 9416 IP address blocks: 203.203.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a9:8f:0a:b9:26:84:f1:c6:9e:e1:66:43:03:f3:4d:11:d3:da:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:56 2026 GMT Not After : Jun 24 02:43:56 2027 GMT Subject: CN=785043A0B3F2999900A86AE4CF8BF275FD0821DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:82:a7:ab:a3:fe:ca:f0:6d:9a:e5:b3:fb:01: 12:65:45:58:80:c3:c2:b1:87:19:de:88:33:96:5a: b3:66:05:5b:5b:11:42:6e:6b:2f:41:73:c1:9d:61: 87:97:c5:d1:81:9e:b3:c4:e1:09:56:af:85:09:12: 2e:9d:f0:5d:82:34:c4:5f:6f:46:26:5b:17:dd:7e: 72:6e:3f:74:c6:a2:67:b5:ee:c6:04:dc:ad:56:e5: 48:70:eb:f8:0e:9b:f2:e7:a0:ee:f8:88:bd:80:16: 6e:66:d1:33:cb:3f:e6:3e:fd:68:10:f7:97:99:35: 40:35:18:06:60:8d:bf:4c:55:79:8c:05:16:8a:17: 29:b6:81:c8:36:8b:fe:a9:6a:0a:d0:89:eb:af:59: 1c:0f:96:d5:34:b9:d8:fb:9b:2d:2b:f1:d7:b5:29: 69:39:95:77:5a:49:8f:3e:e7:de:25:0b:de:67:68: 77:71:81:35:de:1e:c3:7d:aa:46:77:d6:30:e0:76: e6:93:db:3e:4e:70:40:02:97:9a:a4:5f:34:ab:73: 1b:94:b9:8d:f9:eb:da:05:c9:40:50:b7:64:40:52: 8b:9b:d4:46:22:ab:f0:18:85:e9:12:34:d9:9d:ff: 5e:21:8e:94:05:65:85:19:38:f1:44:df:0a:f3:eb: 30:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:50:43:A0:B3:F2:99:99:00:A8:6A:E4:CF:8B:F2:75:FD:08:21:DB X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e302e302f31362d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.203.0.0/16 Signature Algorithm: sha256WithRSAEncryption 49:af:f6:d1:e4:59:56:34:e2:60:ae:79:d3:ab:b8:e0:cd:81: aa:70:1a:00:61:4b:06:b6:79:93:d6:f9:93:71:50:24:3c:ca: 92:f3:07:5f:a1:14:49:30:2d:7a:c8:dc:17:c8:77:10:f7:bf: 4b:dc:a7:fb:6d:be:7a:5b:85:d9:a5:fb:f8:ce:78:b4:a3:44: cb:da:e1:55:0e:b0:c2:48:b7:9a:90:72:e9:4a:45:c4:5d:5a: 12:ed:5f:17:9b:11:35:06:2b:4a:2a:88:71:64:d7:c6:2a:d4: 0b:7c:7c:42:30:c8:5b:fe:14:59:49:cf:52:b0:59:70:06:e9: f1:cf:0d:35:f1:12:b9:9c:24:a3:3e:a8:3f:e3:a6:b5:56:25: a5:72:8b:2a:52:4d:37:27:88:65:67:23:67:83:26:ef:8b:a1: 1e:7a:59:45:db:5b:02:7e:29:4f:d8:10:eb:f0:b4:f0:be:bb: ae:8c:37:5c:95:bd:67:0f:eb:73:68:97:c8:0b:0f:43:0d:06: bf:22:c6:ec:b8:bd:b1:76:28:1d:72:f9:61:e6:a1:fd:1f:c4: 53:e1:61:99:12:65:f3:4d:24:e6:67:ff:96:1a:4a:0b:43:3f: 74:83:8c:d8:83:1a:76:79:ac:7c:3f:4c:a0:e3:32:08:d4:21: 5e:83:36:30 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgIUTamPCrkmhPHGnuFmQwPzTRHT2tAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTZaFw0yNzA2MjQwMjQzNTZaMDMxMTAvBgNV BAMTKDc4NTA0M0EwQjNGMjk5OTkwMEE4NkFFNENGOEJGMjc1RkQwODIxREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtgqero/7K8G2a5bP7ARJlRViA w8KxhxneiDOWWrNmBVtbEUJuay9Bc8GdYYeXxdGBnrPE4QlWr4UJEi6d8F2CNMRf b0YmWxfdfnJuP3TGome17sYE3K1W5Uhw6/gOm/LnoO74iL2AFm5m0TPLP+Y+/WgQ 95eZNUA1GAZgjb9MVXmMBRaKFym2gcg2i/6pagrQieuvWRwPltU0udj7my0r8de1 KWk5lXdaSY8+594lC95naHdxgTXeHsN9qkZ31jDgduaT2z5OcEACl5qkXzSrcxuU uY3569oFyUBQt2RAUoub1EYiq/AYhekSNNmd/14hjpQFZYUZOPFE3wrz6zBDAgMB AAGjggHYMIIB1DAdBgNVHQ4EFgQUeFBDoLPymZkAqGrkz4vydf0IIdswHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMjMwMzMyZTMw MmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzkzNDMxMzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDLyzAN BgkqhkiG9w0BAQsFAAOCAQEASa/20eRZVjTiYK5506u44M2BqnAaAGFLBrZ5k9b5 k3FQJDzKkvMHX6EUSTAtesjcF8h3EPe/S9yn+22+eluF2aX7+M54tKNEy9rhVQ6w wki3mpBy6UpFxF1aEu1fF5sRNQYrSiqIcWTXxirUC3x8QjDIW/4UWUnPUrBZcAbp 8c8NNfESuZwkoz6oP+OmtVYlpXKLKlJNNyeIZWcjZ4Mm74uhHnpZRdtbAn4pT9gQ 6/C08L67row3XJW9Zw/rc2iXyAsPQw0GvyLG7Li9sXYoHXL5Yeah/R/EU+FhmRJl 800k5mf/lhpKC0M/dIOM2IMadnmsfD9MoOMyCNQhXoM2MA== -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:03 2026 by rpki-client