$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3230342e302e302f31362d3234203d3e203138303432.roa File: 3230332e3230342e302e302f31362d3234203d3e203138303432.roa (raw, json) Hash identifier: iw4a2cGpxYAJMwvCI8btULMeriy/QACW0xGi/cvnf8A= Subject key identifier: AB:96:0A:C5:C7:8A:CD:6D:29:7C:12:13:EA:A3:DF:6A:C0:26:5C:A8 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 0ABCB1ADCC1489CD8D5DFD3539E26B903FD56F82 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230342e302e302f31362d3234203d3e203138303432.roa Signing time: Thu 25 Jun 2026 02:44:00 +0000 ROA not before: Thu 25 Jun 2026 02:39:00 +0000 ROA not after: Thu 24 Jun 2027 02:44:00 +0000 asID: 18042 IP address blocks: 203.204.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:bc:b1:ad:cc:14:89:cd:8d:5d:fd:35:39:e2:6b:90:3f:d5:6f:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:39:00 2026 GMT Not After : Jun 24 02:44:00 2027 GMT Subject: CN=AB960AC5C78ACD6D297C1213EAA3DF6AC0265CA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7f:50:e9:06:5b:c9:93:80:a9:36:26:6f:82: 15:90:8d:de:36:7a:bb:70:f1:e6:1f:b0:5d:c0:11: b7:67:d7:97:87:91:79:6b:00:ed:e7:f5:ef:6c:bb: ff:c7:55:35:16:ac:a6:17:fa:51:20:9d:38:95:38: e9:89:bf:72:47:bb:39:1a:8c:fd:d6:89:51:8b:49: 1b:94:bb:df:b6:2d:38:8c:21:ac:c6:f4:ac:41:a9: d8:81:54:27:e9:ba:15:4d:17:e3:75:ea:80:ce:47: 5c:20:f5:51:9e:b4:83:01:b9:41:5b:c6:3c:6c:c9: 8f:b7:40:c8:50:b0:bf:37:b4:a2:14:39:71:23:90: b3:8e:2a:3a:5c:05:31:06:a5:9f:61:37:c2:6e:b7: fb:a9:17:f7:f0:d4:cf:c0:bb:7b:3a:df:ef:32:6a: a5:b2:9e:b4:2d:a5:bb:b1:0f:9b:ce:e3:ac:a1:74: 87:82:fd:50:ec:ed:00:15:cb:0d:a5:3c:5a:9f:03: b1:6c:41:ec:c4:30:37:a5:6e:60:21:d7:23:a0:e5: a3:95:ed:8e:62:b7:77:3e:5c:a6:89:37:4c:5a:26: a2:ec:e7:44:b8:c5:f9:45:68:34:e4:03:7b:b9:8f: 26:b5:4d:14:2d:0d:ca:bd:0a:e8:0e:8d:07:84:91: 90:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:96:0A:C5:C7:8A:CD:6D:29:7C:12:13:EA:A3:DF:6A:C0:26:5C:A8 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230342e302e302f31362d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.204.0.0/16 Signature Algorithm: sha256WithRSAEncryption 21:8c:8b:90:01:e7:36:4c:83:6a:37:03:1c:8e:8c:76:ed:75: 39:f9:6d:4c:33:95:58:87:63:39:2e:5d:fc:ed:88:39:ca:8f: e7:54:17:91:66:8e:73:1c:31:85:a7:75:c7:60:5c:19:71:12: b6:2c:d3:6a:39:2d:a0:da:64:81:d8:3b:71:5d:2b:ac:9e:79: 10:4b:59:bc:ba:55:60:ba:ba:66:f2:6e:3a:0a:21:40:9d:22: 69:ec:5d:a8:e3:21:34:da:51:a8:32:d1:80:de:86:21:a7:6b: 13:21:de:38:2d:4c:38:83:84:4d:b0:21:4e:e8:de:f9:73:7a: 64:72:66:75:38:d2:46:48:bb:fd:6e:7b:ac:ff:81:2b:62:20: c1:8d:a1:9f:c9:28:79:fa:fc:e0:c7:39:b6:e1:c0:9a:3b:90: d7:ff:d8:c9:ae:e4:e1:0e:3f:a5:de:5a:ef:77:55:d4:35:f9: dd:7d:3c:4c:49:44:4c:db:a7:b6:8f:e2:12:09:75:72:0c:7f: a5:60:12:de:fa:34:6a:d9:2c:64:c6:24:3d:be:2d:db:68:4c: 0d:79:93:b7:47:b4:df:4d:30:18:8f:0c:8e:2c:d2:12:da:bf: 09:cd:99:0b:11:61:f0:d2:60:58:be:05:fa:11:59:12:09:72: 23:84:67:ea -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIUCryxrcwUic2NXf01OeJrkD/Vb4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM5MDBaFw0yNzA2MjQwMjQ0MDBaMDMxMTAvBgNV BAMTKEFCOTYwQUM1Qzc4QUNENkQyOTdDMTIxM0VBQTNERjZBQzAyNjVDQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqf1DpBlvJk4CpNiZvghWQjd42 ertw8eYfsF3AEbdn15eHkXlrAO3n9e9su//HVTUWrKYX+lEgnTiVOOmJv3JHuzka jP3WiVGLSRuUu9+2LTiMIazG9KxBqdiBVCfpuhVNF+N16oDOR1wg9VGetIMBuUFb xjxsyY+3QMhQsL83tKIUOXEjkLOOKjpcBTEGpZ9hN8Jut/upF/fw1M/Au3s63+8y aqWynrQtpbuxD5vO46yhdIeC/VDs7QAVyw2lPFqfA7FsQezEMDelbmAh1yOg5aOV 7Y5it3c+XKaJN0xaJqLs50S4xflFaDTkA3u5jya1TRQtDcq9CugOjQeEkZBdAgMB AAGjggHaMIIB1jAdBgNVHQ4EFgQUq5YKxceKzW0pfBIT6qPfasAmXKgwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMjMwMzQyZTMw MmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMvM MA0GCSqGSIb3DQEBCwUAA4IBAQAhjIuQAec2TINqNwMcjox27XU5+W1MM5VYh2M5 Ll387Yg5yo/nVBeRZo5zHDGFp3XHYFwZcRK2LNNqOS2g2mSB2DtxXSusnnkQS1m8 ulVgurpm8m46CiFAnSJp7F2o4yE02lGoMtGA3oYhp2sTId44LUw4g4RNsCFO6N75 c3pkcmZ1ONJGSLv9bnus/4ErYiDBjaGfySh5+vzgxzm24cCaO5DX/9jJruThDj+l 3lrvd1XUNfndfTxMSURM26e2j+ISCXVyDH+lYBLe+jRq2SxkxiQ9vi3baEwNeZO3 R7TfTTAYjwyOLNIS2r8JzZkLEWHw0mBYvgX6EVkSCXIjhGfq -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:00 2026 by rpki-client