$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31342d3134203d3e203138303432.roa File: 3231392e36382e302e302f31342d3134203d3e203138303432.roa (raw, json) Hash identifier: Pf8N40hFVW5wT7zzRaeb5RbZDlMrEG+/ESyMtziPoqQ= Subject key identifier: C2:75:18:A2:81:68:06:DD:31:74:A3:21:B8:93:77:5A:0E:F5:63:C9 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 54D51476466EEB8F18B20ED8DCFF0E1C9C4296FF Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31342d3134203d3e203138303432.roa Signing time: Thu 25 Jun 2026 02:43:58 +0000 ROA not before: Thu 25 Jun 2026 02:38:58 +0000 ROA not after: Thu 24 Jun 2027 02:43:58 +0000 asID: 18042 IP address blocks: 219.68.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:d5:14:76:46:6e:eb:8f:18:b2:0e:d8:dc:ff:0e:1c:9c:42:96:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:58 2026 GMT Not After : Jun 24 02:43:58 2027 GMT Subject: CN=C27518A2816806DD3174A321B893775A0EF563C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5d:38:a9:14:6f:05:cb:28:1c:6b:98:e5:e2: 01:7d:37:f6:93:06:5b:90:f0:ef:ef:4c:22:d3:81: 21:bf:af:a3:d4:d7:64:31:2d:64:ca:ff:0d:28:6e: 93:01:86:01:b3:00:e7:d7:c6:07:39:e7:f1:59:90: be:55:8a:41:7b:db:94:62:21:52:51:dd:f4:67:8a: 20:9d:d7:af:48:29:36:07:b7:bf:63:cd:d7:63:0d: 20:04:53:76:5d:d7:22:d6:60:28:60:e3:ee:82:cf: 8c:af:a4:69:45:3d:78:3a:47:64:41:57:2c:e6:e7: 5a:5e:78:33:b5:75:20:ab:44:9f:a5:23:ee:d5:e4: 61:32:e7:d4:c0:7a:20:71:38:60:8b:fa:f8:c6:ef: f1:b4:e1:a3:c5:fc:53:41:72:70:5a:40:6d:17:64: 0e:f1:56:50:3d:20:a7:8f:68:f3:19:87:e9:1f:ef: 74:fa:85:c0:ee:ea:5c:ea:77:07:ef:f0:b0:b4:66: 62:c3:af:c3:84:7d:d9:c0:a0:d7:7e:f9:6f:95:fd: a5:85:24:3c:11:11:ed:6f:bf:0b:21:85:81:10:d2: 01:e3:ee:6b:3a:1e:b6:74:d9:f1:48:7d:ee:d1:df: 97:ce:58:fc:76:39:ae:d2:33:be:27:13:48:68:93: 44:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:75:18:A2:81:68:06:DD:31:74:A3:21:B8:93:77:5A:0E:F5:63:C9 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31342d3134203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.68.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2a:5d:0f:33:45:b0:da:10:53:03:9e:ae:1a:c4:6f:97:0e:ae: a1:8a:21:42:99:29:d4:a9:d2:2f:c0:72:57:36:0c:5f:a6:de: 27:54:58:36:47:8d:f2:9b:f2:f3:d5:cd:8c:9a:7e:7f:fc:ba: a2:de:de:cd:29:e7:e5:d0:8a:a1:79:27:34:08:57:68:0d:64: 20:b5:10:9e:06:37:b9:91:f5:de:e5:a3:64:c1:a8:4f:e0:3b: fd:2b:88:90:6c:09:e8:5b:f8:15:44:b2:83:b5:86:11:3a:67: 6d:ba:46:4b:00:98:26:b6:4d:b8:48:86:55:62:1a:b2:2b:a6: ae:76:e1:d1:7a:1c:51:87:16:9e:2a:bd:d9:a9:66:92:00:6b: f8:55:9e:af:13:b7:62:ff:75:0e:35:54:ed:7d:76:f4:a5:8f: 75:63:8d:14:df:08:e7:71:8a:a9:4c:1a:e6:b7:46:e1:0b:24: 66:eb:46:98:c1:77:5a:20:e8:43:8f:9b:11:58:ec:b1:c9:67: 64:0d:e0:d4:73:19:71:64:8e:1a:99:8c:88:c0:c0:10:7b:c3: c1:1c:c3:84:e0:5d:42:4c:80:24:c7:a3:45:6e:6a:13:e2:9d: 40:c8:f4:97:55:94:65:d8:dd:a6:60:09:d4:fd:19:75:06:1d: 3e:91:52:85 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgIUVNUUdkZu648Ysg7Y3P8OHJxClv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NThaFw0yNzA2MjQwMjQzNThaMDMxMTAvBgNV BAMTKEMyNzUxOEEyODE2ODA2REQzMTc0QTMyMUI4OTM3NzVBMEVGNTYzQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3XTipFG8Fyygca5jl4gF9N/aT BluQ8O/vTCLTgSG/r6PU12QxLWTK/w0obpMBhgGzAOfXxgc55/FZkL5VikF725Ri IVJR3fRniiCd169IKTYHt79jzddjDSAEU3Zd1yLWYChg4+6Cz4yvpGlFPXg6R2RB Vyzm51peeDO1dSCrRJ+lI+7V5GEy59TAeiBxOGCL+vjG7/G04aPF/FNBcnBaQG0X ZA7xVlA9IKePaPMZh+kf73T6hcDu6lzqdwfv8LC0ZmLDr8OEfdnAoNd++W+V/aWF JDwREe1vvwshhYEQ0gHj7ms6HrZ02fFIfe7R35fOWPx2Oa7SM74nE0hok0SRAgMB AAGjggHYMIIB1DAdBgNVHQ4EFgQUwnUYooFoBt0xdKMhuJN3Wg71Y8kwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM4MmUzMDJl MzAyZjMxMzQyZDMxMzQyMDNkM2UyMDMxMzgzMDM0MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwLbRDAN BgkqhkiG9w0BAQsFAAOCAQEAKl0PM0Ww2hBTA56uGsRvlw6uoYohQpkp1KnSL8By VzYMX6beJ1RYNkeN8pvy89XNjJp+f/y6ot7ezSnn5dCKoXknNAhXaA1kILUQngY3 uZH13uWjZMGoT+A7/SuIkGwJ6Fv4FUSyg7WGETpnbbpGSwCYJrZNuEiGVWIasium rnbh0XocUYcWniq92almkgBr+FWerxO3Yv91DjVU7X129KWPdWONFN8I53GKqUwa 5rdG4QskZutGmMF3WiDoQ4+bEVjssclnZA3g1HMZcWSOGpmMiMDAEHvDwRzDhOBd QkyAJMejRW5qE+KdQMj0l1WUZdjdpmAJ1P0ZdQYdPpFShQ== -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:00 2026 by rpki-client