$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e302e302f31372d3234203d3e20313331363131.roa File: 3230332e3230332e302e302f31372d3234203d3e20313331363131.roa (raw, json) Hash identifier: NklDDjhJXCcntCf1FASxl9HK1zprqomTlbzo+0G6p8g= Subject key identifier: C0:D7:37:89:D4:FC:BF:C4:54:AE:F1:9E:E9:FB:3F:4C:5A:31:EA:4D Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6E1A358C1816A3B07F6D76D149AA40E65C8CE45C Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e302e302f31372d3234203d3e20313331363131.roa Signing time: Fri 26 Jun 2026 10:23:49 +0000 ROA not before: Fri 26 Jun 2026 10:18:49 +0000 ROA not after: Fri 25 Jun 2027 10:23:49 +0000 asID: 131611 IP address blocks: 203.203.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:1a:35:8c:18:16:a3:b0:7f:6d:76:d1:49:aa:40:e6:5c:8c:e4:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 26 10:18:49 2026 GMT Not After : Jun 25 10:23:49 2027 GMT Subject: CN=C0D73789D4FCBFC454AEF19EE9FB3F4C5A31EA4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7f:21:18:46:72:ea:b7:a4:65:dc:1e:be:e2: a8:b5:14:b5:35:19:87:df:e3:33:fd:35:ae:2c:d1: ad:22:50:af:79:81:ac:23:0c:3b:9d:e2:65:3f:67: 6c:a6:b8:fe:03:80:44:ef:94:8d:b5:85:f2:02:cb: 22:4e:7b:4c:ea:84:07:e0:ac:56:79:ab:22:1c:cd: 69:dd:74:a2:d1:6b:01:a6:dc:6f:d8:9e:c7:97:dc: 79:20:ad:2f:26:a8:b7:54:b8:45:4e:7d:17:fa:2a: 82:8c:2b:11:7a:03:32:56:e1:0f:c7:26:db:c7:0f: da:a2:4b:47:09:4a:15:6c:d0:67:49:68:91:d1:25: 99:90:56:61:77:bf:3f:19:15:e6:93:8b:ef:0b:59: 7a:f1:dd:13:45:71:99:34:19:7a:98:b6:79:6e:f4: 11:16:fa:db:90:c3:d6:47:12:62:3f:aa:e0:21:f5: 17:f3:f7:dc:81:38:65:52:5e:9c:41:27:8d:24:67: a5:7a:89:3f:f6:ec:b7:bb:2a:f4:8a:90:0f:d1:c6: 6d:b3:f6:7f:06:b0:64:97:4b:20:63:42:3b:0c:3e: bb:a1:23:da:52:8f:62:a0:0e:16:ae:2c:ef:2a:55: 8e:a9:18:4b:7b:20:3a:a8:80:ae:86:83:b8:fd:c4: d1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D7:37:89:D4:FC:BF:C4:54:AE:F1:9E:E9:FB:3F:4C:5A:31:EA:4D X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e302e302f31372d3234203d3e20313331363131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.203.0.0/17 Signature Algorithm: sha256WithRSAEncryption a7:6c:b0:ab:b9:33:23:7e:93:0f:e8:5e:d2:5f:c5:a9:26:61: 4a:ee:0e:76:b0:e8:c2:ee:eb:3b:68:38:32:c0:0e:05:fe:a2: 18:ad:08:27:e2:42:fa:42:b1:74:8a:81:86:f0:c1:62:25:ae: a9:3e:74:e7:b8:4a:a3:6b:08:80:8e:f2:41:a8:89:d8:0a:29: c9:d6:9f:db:e7:4d:86:a9:ed:79:7f:42:8d:d5:36:b2:79:9b: 6e:3f:57:41:55:62:6e:19:f3:2f:50:4e:a3:c7:81:01:80:61: 98:9c:10:2e:15:da:12:30:6e:5c:c2:e3:22:6f:2b:ab:a5:c2: ba:12:af:5b:60:53:a2:38:6d:c6:b8:b5:5b:0b:33:97:c6:67: 8e:87:b2:93:db:4c:ee:db:be:5e:c6:52:20:09:3f:3f:49:a6: b4:8d:fb:6f:fe:c8:0e:29:73:4a:0b:8d:0c:16:cd:26:79:a8: 8a:36:94:81:a4:06:d2:fd:a8:e8:18:4c:16:99:f8:5b:6d:ed: 36:9e:b9:79:f3:0c:f5:93:20:c5:1e:c4:0b:a8:a5:27:50:eb: 2d:e8:0d:cd:74:3f:08:e3:b9:60:5f:09:a9:e2:7d:06:11:ed: e0:3c:f3:59:c8:37:0d:c2:f2:6f:ef:11:38:2a:84:34:3d:95: f5:11:e3:40 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUbho1jBgWo7B/bXbRSapA5lyM5FwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjYxMDE4NDlaFw0yNzA2MjUxMDIzNDlaMDMxMTAvBgNV BAMTKEMwRDczNzg5RDRGQ0JGQzQ1NEFFRjE5RUU5RkIzRjRDNUEzMUVBNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQfyEYRnLqt6Rl3B6+4qi1FLU1 GYff4zP9Na4s0a0iUK95gawjDDud4mU/Z2ymuP4DgETvlI21hfICyyJOe0zqhAfg rFZ5qyIczWnddKLRawGm3G/YnseX3HkgrS8mqLdUuEVOfRf6KoKMKxF6AzJW4Q/H JtvHD9qiS0cJShVs0GdJaJHRJZmQVmF3vz8ZFeaTi+8LWXrx3RNFcZk0GXqYtnlu 9BEW+tuQw9ZHEmI/quAh9Rfz99yBOGVSXpxBJ40kZ6V6iT/27Le7KvSKkA/Rxm2z 9n8GsGSXSyBjQjsMPruhI9pSj2KgDhauLO8qVY6pGEt7IDqogK6Gg7j9xNG5AgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUwNc3idT8v8RUrvGe6fs/TFox6k0wHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMjMwMzMyZTMw MmUzMDJmMzEzNzJkMzIzNDIwM2QzZTIwMzEzMzMxMzYzMTMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH y8sAMA0GCSqGSIb3DQEBCwUAA4IBAQCnbLCruTMjfpMP6F7SX8WpJmFK7g52sOjC 7us7aDgywA4F/qIYrQgn4kL6QrF0ioGG8MFiJa6pPnTnuEqjawiAjvJBqInYCinJ 1p/b502Gqe15f0KN1TayeZtuP1dBVWJuGfMvUE6jx4EBgGGYnBAuFdoSMG5cwuMi byurpcK6Eq9bYFOiOG3GuLVbCzOXxmeOh7KT20zu275exlIgCT8/Saa0jftv/sgO KXNKC40MFs0meaiKNpSBpAbS/ajoGEwWmfhbbe02nrl58wz1kyDFHsQLqKUnUOst 6A3NdD8I47lgXwmp4n0GEe3gPPNZyDcNwvJv7xE4KoQ0PZX1EeNA -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:59 2026 by rpki-client