$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31342d3134203d3e2039343136.roa File: 3231392e36382e302e302f31342d3134203d3e2039343136.roa (raw, json) Hash identifier: RxywoQLpxKaocA+r9eWbUQEjTQ7/UrQYffwPapU+HJg= Subject key identifier: CF:82:E6:AC:B6:10:68:AE:D0:2D:47:CD:72:4B:3B:8D:6F:BC:74:F1 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6F3030B72D2E0147C627CFD05EBBBDE143C98AEC Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31342d3134203d3e2039343136.roa Signing time: Thu 25 Jun 2026 02:43:52 +0000 ROA not before: Thu 25 Jun 2026 02:38:52 +0000 ROA not after: Thu 24 Jun 2027 02:43:52 +0000 asID: 9416 IP address blocks: 219.68.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:30:30:b7:2d:2e:01:47:c6:27:cf:d0:5e:bb:bd:e1:43:c9:8a:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:52 2026 GMT Not After : Jun 24 02:43:52 2027 GMT Subject: CN=CF82E6ACB61068AED02D47CD724B3B8D6FBC74F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:51:6b:bd:41:c9:44:2e:dc:0d:d5:5f:e4:ae: db:f9:e6:67:80:fc:1f:72:70:79:e6:41:f3:49:20: 2b:9d:c9:ce:fa:7c:f8:62:bb:89:aa:1d:ab:b1:98: a8:c2:9b:f6:02:76:1e:49:ef:13:b6:16:30:ed:d4: 20:a7:c1:85:0b:19:31:a0:27:10:d4:75:a1:10:f1: b3:86:eb:97:27:2f:bf:c6:01:cc:0a:3f:cb:35:cc: 26:80:3a:52:fe:f6:45:aa:e1:c9:b5:44:a5:e1:9f: f0:df:ff:f0:e7:c3:20:fd:25:dd:7a:24:3d:73:0a: 3f:37:0a:30:2e:ad:37:11:30:cc:97:68:06:b9:dd: 6c:d8:a1:09:d5:5e:81:67:b7:81:86:a4:83:73:a2: 52:ab:36:c5:aa:86:ae:4f:cb:cc:95:55:cd:b1:7a: f2:57:4c:62:bb:07:f9:89:4a:1d:62:1a:b1:c5:75: 53:c4:21:e5:36:55:35:17:cf:84:eb:65:54:f9:3b: 6b:4d:90:ed:37:56:8c:c8:66:72:f8:97:36:05:01: cf:1f:76:b0:ae:6a:7a:7b:d8:a3:c6:9a:04:76:f7: 6a:95:7f:30:57:d0:13:fd:87:58:8a:6d:a1:51:6d: 08:c0:eb:e8:22:7d:3b:a2:45:fa:bc:26:f1:6a:df: 70:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:82:E6:AC:B6:10:68:AE:D0:2D:47:CD:72:4B:3B:8D:6F:BC:74:F1 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31342d3134203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.68.0.0/14 Signature Algorithm: sha256WithRSAEncryption ae:3d:99:5b:36:be:c5:70:0b:6c:75:b8:7a:9d:5f:0a:71:6f: fd:4c:79:fc:81:d0:4e:e1:6e:ad:0b:ab:fd:1d:2e:dc:70:8b: 5d:25:2a:8b:b2:dc:e2:59:5a:77:6f:71:e1:61:b7:7a:47:02: e2:95:46:7e:71:cc:07:02:95:9d:be:b2:cd:6e:83:22:9b:88: 0a:3e:66:2a:62:d2:e0:d2:8f:0b:b7:d9:3b:fb:0d:0a:47:6a: 44:22:69:37:fc:92:84:73:8f:c2:af:d5:4c:2e:95:4d:2f:97: f4:c1:a6:9c:30:40:3c:c9:c7:c1:11:5f:1d:6b:0c:8f:9e:0f: 3f:67:89:a2:a2:dd:57:9e:5a:d6:6a:9b:cd:2f:c6:c1:51:95: 65:91:e2:56:77:a8:e4:3e:b6:55:cd:8f:be:0a:56:ee:d4:cb: b7:dd:70:98:75:77:5b:f6:10:fd:80:6c:97:64:2d:d9:12:e2: d8:79:7a:82:ca:01:31:9b:bf:58:76:1d:11:1b:0a:c3:b7:b2: 7c:ab:fc:d8:07:d5:29:15:e9:9b:43:ba:49:c4:95:72:e4:f3: f5:d8:5d:fb:28:90:fb:10:92:e9:bd:08:37:bd:b8:b6:cb:1d: 39:cf:8d:3c:c6:71:f1:27:ca:c6:f0:de:cb:39:66:97:2a:2c: e3:de:13:4a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgIUbzAwty0uAUfGJ8/QXru94UPJiuwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTJaFw0yNzA2MjQwMjQzNTJaMDMxMTAvBgNV BAMTKENGODJFNkFDQjYxMDY4QUVEMDJENDdDRDcyNEIzQjhENkZCQzc0RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnUWu9QclELtwN1V/krtv55meA /B9ycHnmQfNJICudyc76fPhiu4mqHauxmKjCm/YCdh5J7xO2FjDt1CCnwYULGTGg JxDUdaEQ8bOG65cnL7/GAcwKP8s1zCaAOlL+9kWq4cm1RKXhn/Df//DnwyD9Jd16 JD1zCj83CjAurTcRMMyXaAa53WzYoQnVXoFnt4GGpINzolKrNsWqhq5Py8yVVc2x evJXTGK7B/mJSh1iGrHFdVPEIeU2VTUXz4TrZVT5O2tNkO03VozIZnL4lzYFAc8f drCuanp72KPGmgR292qVfzBX0BP9h1iKbaFRbQjA6+gifTuiRfq8JvFq33C9AgMB AAGjggHWMIIB0jAdBgNVHQ4EFgQUz4LmrLYQaK7QLUfNcks7jW+8dPEwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM4MmUzMDJl MzAyZjMxMzQyZDMxMzQyMDNkM2UyMDM5MzQzMTM2LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMC20QwDQYJ KoZIhvcNAQELBQADggEBAK49mVs2vsVwC2x1uHqdXwpxb/1MefyB0E7hbq0Lq/0d Ltxwi10lKouy3OJZWndvceFht3pHAuKVRn5xzAcClZ2+ss1ugyKbiAo+Zipi0uDS jwu32Tv7DQpHakQiaTf8koRzj8Kv1UwulU0vl/TBppwwQDzJx8ERXx1rDI+eDz9n iaKi3VeeWtZqm80vxsFRlWWR4lZ3qOQ+tlXNj74KVu7Uy7fdcJh1d1v2EP2AbJdk LdkS4th5eoLKATGbv1h2HREbCsO3snyr/NgH1SkV6ZtDuknElXLk8/XYXfsokPsQ kum9CDe9uLbLHTnPjTzGcfEnysbw3ss5ZpcqLOPeE0o= -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:02 2026 by rpki-client