$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31352d3135203d3e2039343136.roa File: 3231392e36382e302e302f31352d3135203d3e2039343136.roa (raw, json) Hash identifier: XYAzf49j9Cs02zYT7uo4NgziVyPnoStaPL++kC5lvpM= Subject key identifier: 85:C9:59:B0:87:DF:D3:47:8F:4B:A1:B1:C3:68:CB:73:52:8C:18:8A Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 1BBCFFE4A1B4D8A1B79E8BCC394B348DAE8E3011 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31352d3135203d3e2039343136.roa Signing time: Thu 25 Jun 2026 02:43:52 +0000 ROA not before: Thu 25 Jun 2026 02:38:52 +0000 ROA not after: Thu 24 Jun 2027 02:43:52 +0000 asID: 9416 IP address blocks: 219.68.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:bc:ff:e4:a1:b4:d8:a1:b7:9e:8b:cc:39:4b:34:8d:ae:8e:30:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:52 2026 GMT Not After : Jun 24 02:43:52 2027 GMT Subject: CN=85C959B087DFD3478F4BA1B1C368CB73528C188A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:79:42:df:48:fb:74:b2:b0:83:d6:29:03:a1: d1:37:01:70:75:cc:8d:44:60:bf:23:7b:c9:59:15: 75:7e:81:21:4b:7b:5f:1f:93:6f:c2:61:37:4b:f5: 6f:24:73:9e:47:35:84:94:29:f2:12:aa:2a:61:50: 32:41:5c:ff:ed:fe:02:04:9a:65:2f:c9:0d:20:47: 92:d5:bc:7f:a4:5f:20:0c:50:e6:3c:32:36:b6:55: 56:b1:ef:3d:8b:3a:ec:86:8e:5e:3a:85:5c:0f:ba: 78:c4:60:d1:9c:be:19:e7:77:2a:33:90:6c:5a:c4: fd:e3:1c:e4:68:12:e8:4e:c2:df:00:5c:ee:a4:9f: 3b:ab:67:96:80:7e:c5:7a:ab:25:0a:e5:81:4a:78: aa:1e:58:b7:f1:da:57:a2:2d:f1:ea:94:5d:59:39: 2e:89:af:9a:1a:26:9a:28:2b:5f:6e:d8:54:a0:bc: 94:bc:c1:30:05:66:5b:b3:cb:e2:36:80:3a:71:bd: 40:cf:b6:e6:c9:5c:be:70:64:bf:e9:aa:ec:7c:7d: 2f:76:30:75:41:95:18:f7:e2:a9:65:cf:9c:9a:10: 25:57:57:9a:33:2b:0e:61:54:02:42:23:e4:01:21: e4:b6:07:d9:9a:7e:04:36:11:b4:c8:f6:f8:8a:94: 6b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C9:59:B0:87:DF:D3:47:8F:4B:A1:B1:C3:68:CB:73:52:8C:18:8A X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31352d3135203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.68.0.0/15 Signature Algorithm: sha256WithRSAEncryption 86:75:90:18:95:72:20:62:5d:71:09:9c:33:2c:ba:af:f9:df: 55:52:7e:1b:4d:2e:8f:ce:0d:ae:ba:50:bc:99:3c:6d:51:8b: 4d:47:f8:b6:60:18:59:d9:b4:a3:ae:59:e8:40:a5:9b:f7:b5: 44:c0:1b:94:b1:2b:cc:ac:2e:a7:02:13:fe:19:7a:29:36:14: 04:41:7f:32:3b:ce:f6:00:8c:8d:ba:75:2d:99:0b:de:bc:8e: 30:50:01:76:a2:a7:de:9e:29:64:28:db:f7:84:ae:74:cb:06: 92:d2:99:ce:77:c4:3f:68:8f:74:93:74:83:89:75:86:b9:88: 55:18:2f:ae:92:45:f0:c0:6d:59:22:9f:ee:1a:ee:bb:4a:6d: ee:19:8c:5e:74:b5:7e:77:fc:0d:f8:3b:f8:02:be:3b:eb:08: 15:88:b1:35:8f:17:c3:27:03:92:8f:ae:86:23:1c:49:6c:a9: 4b:a8:2e:64:c8:36:ae:91:d3:c0:7a:e2:fb:38:87:56:ea:c9: 56:db:e7:d8:99:04:e4:05:b8:89:f5:75:eb:7d:a2:76:a8:3e: 4a:1d:07:83:d9:a1:cc:c2:a6:86:cb:43:e2:e6:1c:dc:2e:58: 67:f1:dc:7a:e7:b4:04:9c:24:0c:38:bb:54:5d:13:d2:1a:b5: 39:ff:09:3a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgIUG7z/5KG02KG3novMOUs0ja6OMBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTJaFw0yNzA2MjQwMjQzNTJaMDMxMTAvBgNV BAMTKDg1Qzk1OUIwODdERkQzNDc4RjRCQTFCMUMzNjhDQjczNTI4QzE4OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2eULfSPt0srCD1ikDodE3AXB1 zI1EYL8je8lZFXV+gSFLe18fk2/CYTdL9W8kc55HNYSUKfISqiphUDJBXP/t/gIE mmUvyQ0gR5LVvH+kXyAMUOY8Mja2VVax7z2LOuyGjl46hVwPunjEYNGcvhnndyoz kGxaxP3jHORoEuhOwt8AXO6knzurZ5aAfsV6qyUK5YFKeKoeWLfx2leiLfHqlF1Z OS6Jr5oaJpooK19u2FSgvJS8wTAFZluzy+I2gDpxvUDPtubJXL5wZL/pqux8fS92 MHVBlRj34qllz5yaECVXV5ozKw5hVAJCI+QBIeS2B9mafgQ2EbTI9viKlGshAgMB AAGjggHWMIIB0jAdBgNVHQ4EFgQUhclZsIff00ePS6Gxw2jLc1KMGIowHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM4MmUzMDJl MzAyZjMxMzUyZDMxMzUyMDNkM2UyMDM5MzQzMTM2LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB20QwDQYJ KoZIhvcNAQELBQADggEBAIZ1kBiVciBiXXEJnDMsuq/531VSfhtNLo/ODa66ULyZ PG1Ri01H+LZgGFnZtKOuWehApZv3tUTAG5SxK8ysLqcCE/4Zeik2FARBfzI7zvYA jI26dS2ZC968jjBQAXaip96eKWQo2/eErnTLBpLSmc53xD9oj3STdIOJdYa5iFUY L66SRfDAbVkin+4a7rtKbe4ZjF50tX53/A34O/gCvjvrCBWIsTWPF8MnA5KProYj HElsqUuoLmTINq6R08B64vs4h1bqyVbb59iZBOQFuIn1det9onaoPkodB4PZoczC pobLQ+LmHNwuWGfx3HrntAScJAw4u1RdE9IatTn/CTo= -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:03 2026 by rpki-client