$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3230332e3230342e302e302f31362d3234203d3e2039343136.roa File: 3230332e3230342e302e302f31362d3234203d3e2039343136.roa (raw, json) Hash identifier: lIaeDvDDuOketsUTCdfxcd/+NtPoaszSUOQ/rNoWjK4= Subject key identifier: 1D:20:F2:7E:03:4B:7C:0C:7A:FF:E2:2C:F1:DD:FF:8C:06:74:42:0B Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 09FF3F8235E4A3802001855D2F0BAD5F996E081C Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230342e302e302f31362d3234203d3e2039343136.roa Signing time: Thu 25 Jun 2026 02:43:58 +0000 ROA not before: Thu 25 Jun 2026 02:38:58 +0000 ROA not after: Thu 24 Jun 2027 02:43:58 +0000 asID: 9416 IP address blocks: 203.204.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ff:3f:82:35:e4:a3:80:20:01:85:5d:2f:0b:ad:5f:99:6e:08:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:58 2026 GMT Not After : Jun 24 02:43:58 2027 GMT Subject: CN=1D20F27E034B7C0C7AFFE22CF1DDFF8C0674420B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bd:0e:cf:b7:57:c9:42:e3:5b:c0:36:da:12: f4:3c:86:7b:d7:91:ae:b9:41:51:23:ff:69:2b:e1: 22:8e:b7:e9:3a:60:fa:42:fa:70:1f:9b:f7:12:39: 3b:7b:23:cf:8d:31:2e:9d:c9:9b:4f:32:c3:04:77: 1c:90:6c:de:39:02:60:31:6e:0a:1b:1a:71:0e:58: 1e:e5:69:07:c0:6f:6b:f4:26:53:66:a1:bc:67:18: 05:09:b8:8f:f7:08:4d:dd:fd:c1:70:95:3e:13:60: 26:d7:b7:f0:77:77:b8:d5:7e:0f:a4:11:fe:88:96: 69:3f:37:2b:d1:ae:87:94:01:07:3a:b2:34:48:c4: a1:dd:c0:2a:df:e0:25:1e:a2:06:95:3e:9f:eb:e7: cb:48:81:8e:3a:77:6f:45:52:08:d9:47:44:49:fc: 62:7b:d9:43:6b:ed:56:3c:96:48:f6:82:98:93:e4: 14:6a:1f:d9:6e:06:92:63:aa:b2:1f:27:3f:43:a6: 39:4d:fd:5d:4c:a2:b4:9a:72:25:03:50:86:82:52: c5:3a:a9:bb:c0:02:8d:99:f4:f1:54:12:9f:99:12: 78:8e:7b:46:69:88:6f:60:9f:6e:a0:3e:b7:c9:ac: 29:e0:4d:51:82:3c:81:14:1e:cd:24:6f:01:2f:d0: cd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:20:F2:7E:03:4B:7C:0C:7A:FF:E2:2C:F1:DD:FF:8C:06:74:42:0B X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3230332e3230342e302e302f31362d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.204.0.0/16 Signature Algorithm: sha256WithRSAEncryption b4:5b:7f:74:79:2a:dd:e4:4f:82:4f:b5:bc:b8:8f:8f:8e:ef: bb:f4:ee:04:b8:61:7f:6a:81:a2:a7:d6:01:f2:29:5d:b4:91: 59:0a:e4:6c:df:50:61:9f:47:09:0d:b4:e1:cb:9f:0b:75:06: 0a:14:45:af:15:16:68:12:22:7e:51:63:b2:21:1e:74:39:e4: bf:1e:a0:4c:16:6f:c3:d1:c5:d5:3f:1d:53:0f:f7:60:d1:7b: c1:93:3b:5f:5e:87:c2:ee:f0:f7:43:39:cf:5d:ce:5f:43:74: 41:73:e3:5d:94:4e:7f:6a:bc:c0:b9:5f:30:f8:87:3f:03:44: 03:4a:9a:0b:a7:9b:a6:15:37:b9:88:e3:e8:6b:73:98:9d:b0: 54:2b:9d:d2:4f:34:12:24:7f:46:2d:59:3e:6c:c9:8f:ed:96: 22:a6:94:cb:d5:a3:54:b1:fd:b5:26:37:b7:66:6e:87:61:4f: 7a:df:2e:42:a8:15:fa:76:e7:93:ce:ae:a8:65:68:98:0a:5c: b5:a5:9b:f5:5e:dd:f9:86:a0:07:ed:0a:3d:18:f0:37:9f:11: d9:40:f1:dd:b2:08:8f:80:48:13:f5:cb:c7:9f:65:67:88:df: a5:9f:3d:4c:df:bd:c3:44:13:af:74:64:ce:f7:8c:17:f8:69: a6:c3:19:cc -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgIUCf8/gjXko4AgAYVdLwutX5luCBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NThaFw0yNzA2MjQwMjQzNThaMDMxMTAvBgNV BAMTKDFEMjBGMjdFMDM0QjdDMEM3QUZGRTIyQ0YxRERGRjhDMDY3NDQyMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCovQ7Pt1fJQuNbwDbaEvQ8hnvX ka65QVEj/2kr4SKOt+k6YPpC+nAfm/cSOTt7I8+NMS6dyZtPMsMEdxyQbN45AmAx bgobGnEOWB7laQfAb2v0JlNmobxnGAUJuI/3CE3d/cFwlT4TYCbXt/B3d7jVfg+k Ef6Ilmk/NyvRroeUAQc6sjRIxKHdwCrf4CUeogaVPp/r58tIgY46d29FUgjZR0RJ /GJ72UNr7VY8lkj2gpiT5BRqH9luBpJjqrIfJz9DpjlN/V1MorSaciUDUIaCUsU6 qbvAAo2Z9PFUEp+ZEniOe0ZpiG9gn26gPrfJrCngTVGCPIEUHs0kbwEv0M2nAgMB AAGjggHYMIIB1DAdBgNVHQ4EFgQUHSDyfgNLfAx6/+Is8d3/jAZ0QgswHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMzMmUzMjMwMzQyZTMw MmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzkzNDMxMzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDLzDAN BgkqhkiG9w0BAQsFAAOCAQEAtFt/dHkq3eRPgk+1vLiPj47vu/TuBLhhf2qBoqfW AfIpXbSRWQrkbN9QYZ9HCQ204cufC3UGChRFrxUWaBIiflFjsiEedDnkvx6gTBZv w9HF1T8dUw/3YNF7wZM7X16Hwu7w90M5z13OX0N0QXPjXZROf2q8wLlfMPiHPwNE A0qaC6ebphU3uYjj6GtzmJ2wVCud0k80EiR/Ri1ZPmzJj+2WIqaUy9WjVLH9tSY3 t2Zuh2FPet8uQqgV+nbnk86uqGVomApctaWb9V7d+YagB+0KPRjwN58R2UDx3bII j4BIE/XLx59lZ4jfpZ89TN+9w0QTr3RkzveMF/hppsMZzA== -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:03 2026 by rpki-client