$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e3232302e302f32322d3232203d3e203338383531.roa File: 3230332e3230332e3232302e302f32322d3232203d3e203338383531.roa (raw, json) Hash identifier: eW7H61qZyE2IuJFIxFGjPCbfzeKgosvjC6sZ6C53xXw= Subject key identifier: F6:9B:A3:F2:59:92:2B:40:07:27:2B:78:2E:26:7A:0F:C2:EC:7D:3C Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 562645D3BFEB94926811E4F7E970CF61702FD7DA Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e3232302e302f32322d3232203d3e203338383531.roa Signing time: Mon 22 Jun 2026 03:03:50 +0000 ROA not before: Mon 22 Jun 2026 02:58:50 +0000 ROA not after: Mon 21 Jun 2027 03:03:50 +0000 asID: 38851 IP address blocks: 203.203.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:26:45:d3:bf:eb:94:92:68:11:e4:f7:e9:70:cf:61:70:2f:d7:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 02:58:50 2026 GMT Not After : Jun 21 03:03:50 2027 GMT Subject: CN=F69BA3F259922B4007272B782E267A0FC2EC7D3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b2:c5:20:ad:3b:25:71:c7:f2:71:68:ba:5f: ea:ca:73:9d:1a:fa:21:6b:33:19:30:1d:c3:c8:26: 9a:81:0f:9f:35:97:8d:4d:2d:0a:69:86:05:df:48: 25:08:ed:1b:c3:32:ef:3a:ab:a6:f4:ee:7c:80:4f: 99:aa:b2:4a:aa:d0:f7:ef:06:ae:86:91:de:86:25: 42:4a:cb:cb:a9:00:f4:15:6c:b3:1a:21:86:9a:54: ea:ee:3a:e7:d9:26:31:5b:5c:4a:20:56:38:32:4d: 27:74:b6:c7:01:0a:44:c0:1c:bb:38:10:7a:f4:4b: 1d:8f:f0:a7:0c:a6:b6:56:8b:ed:3c:e7:9d:ef:26: 02:91:ea:03:2e:e2:07:83:ab:cd:4d:27:a9:30:b4: fa:62:28:87:99:65:06:42:c2:67:ff:58:c9:84:1e: 19:0a:5b:d7:7a:0d:1a:24:d9:db:f3:ad:6b:50:db: 3a:f5:2c:6a:80:f6:1a:61:ca:60:e2:66:c7:a0:1e: d0:21:20:d8:63:ad:21:bb:15:fa:18:0f:cf:be:a2: 3c:03:db:b1:32:fd:63:3f:c9:c9:d8:64:8d:33:68: 00:75:12:98:12:aa:d7:65:3c:9a:ee:d8:44:31:44: 09:29:4c:15:88:fd:8b:74:04:50:2a:62:f9:56:3a: 7d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:9B:A3:F2:59:92:2B:40:07:27:2B:78:2E:26:7A:0F:C2:EC:7D:3C X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230332e3232302e302f32322d3232203d3e203338383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.203.220.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:c6:2e:36:5c:93:87:c7:b8:d3:f7:da:13:72:ee:73:3e:ad: 65:dd:d8:9a:23:88:e3:2c:e9:37:6d:8f:ec:a4:7b:17:d5:4c: 45:20:45:77:62:d9:04:66:1a:e1:38:da:f8:ef:6b:e7:5c:03: 3d:41:e0:5e:fe:d1:7e:c8:eb:e5:7c:a4:76:8d:ea:e1:e3:f1: 3c:3b:44:b0:4b:4c:0e:18:2e:0b:9d:51:3e:0a:0b:a3:06:f7: 8a:9a:56:16:cf:14:9f:c5:a7:9d:8b:64:c0:b5:40:28:33:f3: 01:ca:4a:d5:6d:e6:f2:23:a3:54:f9:ee:61:97:c3:d9:01:99: 26:89:4e:0a:9f:0c:cb:d5:39:d0:7e:08:3c:c2:7a:96:ff:55: e9:47:e5:fe:5b:37:6a:83:e4:c1:06:41:ec:bb:2a:40:44:18: 22:f8:dd:3b:9e:bf:42:04:70:ec:e7:81:9f:74:0b:c2:c4:f1: d7:64:43:d7:91:9a:a9:e3:3e:e8:96:8d:53:4d:f7:d2:4d:7f: 09:87:cf:8c:a5:6a:32:43:93:cd:c3:9b:e3:aa:7a:c2:d0:40: 83:e0:44:e2:41:22:96:37:40:eb:25:91:02:ae:c5:95:81:70: 1c:03:1a:e3:4f:a5:10:fa:c5:28:4c:0e:8a:a7:1d:11:43:66: 37:1b:3f:23 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUViZF07/rlJJoEeT36XDPYXAv19owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMjU4NTBaFw0yNzA2MjEwMzAzNTBaMDMxMTAvBgNV BAMTKEY2OUJBM0YyNTk5MjJCNDAwNzI3MkI3ODJFMjY3QTBGQzJFQzdEM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ssUgrTslccfycWi6X+rKc50a +iFrMxkwHcPIJpqBD581l41NLQpphgXfSCUI7RvDMu86q6b07nyAT5mqskqq0Pfv Bq6Gkd6GJUJKy8upAPQVbLMaIYaaVOruOufZJjFbXEogVjgyTSd0tscBCkTAHLs4 EHr0Sx2P8KcMprZWi+08553vJgKR6gMu4geDq81NJ6kwtPpiKIeZZQZCwmf/WMmE HhkKW9d6DRok2dvzrWtQ2zr1LGqA9hphymDiZsegHtAhINhjrSG7FfoYD8++ojwD 27Ey/WM/ycnYZI0zaAB1EpgSqtdlPJru2EQxRAkpTBWI/Yt0BFAqYvlWOn2vAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQU9puj8lmSK0AHJyt4LiZ6D8LsfTwwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMjMwMzMyZTMy MzIzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMzMzgzODM1MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BALLy9wwDQYJKoZIhvcNAQELBQADggEBAH/GLjZck4fHuNP32hNy7nM+rWXd2Joj iOMs6Tdtj+ykexfVTEUgRXdi2QRmGuE42vjva+dcAz1B4F7+0X7I6+V8pHaN6uHj 8Tw7RLBLTA4YLgudUT4KC6MG94qaVhbPFJ/Fp52LZMC1QCgz8wHKStVt5vIjo1T5 7mGXw9kBmSaJTgqfDMvVOdB+CDzCepb/VelH5f5bN2qD5MEGQey7KkBEGCL43Tue v0IEcOzngZ90C8LE8ddkQ9eRmqnjPuiWjVNN99JNfwmHz4ylajJDk83Dm+OqesLQ QIPgROJBIpY3QOslkQKuxZWBcBwDGuNPpRD6xShMDoqnHRFDZjcbPyM= -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:00 2026 by rpki-client