$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31362d3234203d3e203138303432.roa File: 3231392e36382e302e302f31362d3234203d3e203138303432.roa (raw, json) Hash identifier: LwaKDr6TXJvp5hzwBaEt5/WYsA0Af6Yi9iNkCei4lGw= Subject key identifier: B6:15:98:68:CE:8C:A3:35:67:6B:B1:8F:A0:85:E2:0D:26:C9:3B:84 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6BE14E9719A500FEC6F319EDF77A3A9E64FBA85B Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31362d3234203d3e203138303432.roa Signing time: Thu 25 Jun 2026 02:43:57 +0000 ROA not before: Thu 25 Jun 2026 02:38:57 +0000 ROA not after: Thu 24 Jun 2027 02:43:57 +0000 asID: 18042 IP address blocks: 219.68.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e1:4e:97:19:a5:00:fe:c6:f3:19:ed:f7:7a:3a:9e:64:fb:a8:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:57 2026 GMT Not After : Jun 24 02:43:57 2027 GMT Subject: CN=B6159868CE8CA335676BB18FA085E20D26C93B84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:90:08:80:14:8e:02:9c:76:88:a3:fe:ef:57: a1:b5:0d:87:b6:e6:55:46:b1:15:fa:cc:bf:82:fb: 68:71:ca:c4:cc:58:21:65:f6:80:36:54:af:f9:9b: 8d:60:e1:01:8b:94:42:7a:c8:38:ce:50:1d:8c:ad: a7:bd:1c:f0:da:18:2a:21:72:d1:90:53:53:1b:c4: 57:b0:88:b7:49:bd:f8:03:d3:9f:ab:e8:ff:78:02: 8f:0e:03:3a:ad:4f:ca:d8:7c:a4:f0:98:5e:f6:30: 7e:fe:e1:ca:07:f8:c7:ad:6a:66:8f:cc:8e:24:9b: b8:30:e2:07:e5:6c:55:dd:fa:16:79:33:5c:e5:c6: 3a:d7:cb:20:f0:ad:9b:e0:2d:a2:75:2d:82:f8:62: ba:5b:5b:8b:74:73:7a:75:a3:a0:53:ba:f3:54:78: da:08:8e:db:39:5a:07:99:88:d6:dd:43:c1:38:07: cc:3f:54:ff:73:66:9d:b6:1c:c4:54:be:93:83:f9: 6e:a3:96:2c:e6:10:f0:f5:d8:48:c9:e7:88:58:1e: fe:d8:eb:12:e4:31:0c:5f:eb:44:2a:e6:b4:92:78: 95:f0:3a:78:d6:aa:42:50:1a:93:d3:43:c7:30:4f: e3:3f:fe:4a:6e:c3:92:2c:ac:cf:16:54:88:c4:27: 62:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:15:98:68:CE:8C:A3:35:67:6B:B1:8F:A0:85:E2:0D:26:C9:3B:84 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36382e302e302f31362d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.68.0.0/16 Signature Algorithm: sha256WithRSAEncryption ae:e8:2d:79:3b:1d:c6:b5:ba:74:7e:99:05:57:24:36:50:d2: 78:fd:29:10:8b:98:ba:56:a6:06:53:80:4e:b1:c8:0a:67:b1: b1:f4:03:a1:a5:03:90:bc:f7:61:e9:77:e2:be:d1:dd:fb:1e: 02:ef:ff:2d:78:ab:a9:58:57:46:db:fe:6d:c3:cc:a4:ca:8c: 02:a3:ba:bc:f3:b4:05:ac:e1:41:ae:20:cc:d5:04:d4:83:5a: bf:7e:c7:48:98:e4:0f:2e:20:1e:f9:f8:1d:41:d3:77:20:e0: 92:d0:0b:3b:58:79:3e:92:6a:df:2a:b6:37:76:4e:d9:f7:29: 47:b2:47:ab:64:f8:dc:b6:b8:72:fe:81:06:fd:ec:78:86:69: 8d:80:c7:bd:8d:4e:14:ba:0c:f1:5d:38:39:5d:24:02:0a:0e: 55:32:c6:8e:1e:53:24:db:0a:cd:3c:ce:b5:88:55:01:b1:bd: 3c:96:08:e4:44:a3:ae:01:d8:57:4b:5a:d4:54:4b:e6:b6:ae: 50:90:d1:e0:5c:13:ad:4d:1a:3b:e5:94:cc:59:58:35:c5:09: 2b:d3:e5:c1:40:e0:c1:6e:71:34:2b:46:14:28:46:77:7b:29: 53:a6:72:67:2d:f1:7d:50:da:89:a7:74:80:a2:d2:89:16:8d: 37:62:af:fe -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgIUa+FOlxmlAP7G8xnt93o6nmT7qFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTdaFw0yNzA2MjQwMjQzNTdaMDMxMTAvBgNV BAMTKEI2MTU5ODY4Q0U4Q0EzMzU2NzZCQjE4RkEwODVFMjBEMjZDOTNCODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6kAiAFI4CnHaIo/7vV6G1DYe2 5lVGsRX6zL+C+2hxysTMWCFl9oA2VK/5m41g4QGLlEJ6yDjOUB2Mrae9HPDaGCoh ctGQU1MbxFewiLdJvfgD05+r6P94Ao8OAzqtT8rYfKTwmF72MH7+4coH+MetamaP zI4km7gw4gflbFXd+hZ5M1zlxjrXyyDwrZvgLaJ1LYL4YrpbW4t0c3p1o6BTuvNU eNoIjts5WgeZiNbdQ8E4B8w/VP9zZp22HMRUvpOD+W6jlizmEPD12EjJ54hYHv7Y 6xLkMQxf60Qq5rSSeJXwOnjWqkJQGpPTQ8cwT+M//kpuw5IsrM8WVIjEJ2JpAgMB AAGjggHYMIIB1DAdBgNVHQ4EFgQUthWYaM6MozVna7GPoIXiDSbJO4QwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM4MmUzMDJl MzAyZjMxMzYyZDMyMzQyMDNkM2UyMDMxMzgzMDM0MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDbRDAN BgkqhkiG9w0BAQsFAAOCAQEArugteTsdxrW6dH6ZBVckNlDSeP0pEIuYulamBlOA TrHICmexsfQDoaUDkLz3Yel34r7R3fseAu//LXirqVhXRtv+bcPMpMqMAqO6vPO0 BazhQa4gzNUE1INav37HSJjkDy4gHvn4HUHTdyDgktALO1h5PpJq3yq2N3ZO2fcp R7JHq2T43La4cv6BBv3seIZpjYDHvY1OFLoM8V04OV0kAgoOVTLGjh5TJNsKzTzO tYhVAbG9PJYI5ESjrgHYV0ta1FRL5rauUJDR4FwTrU0aO+WUzFlYNcUJK9PlwUDg wW5xNCtGFChGd3spU6ZyZy3xfVDaiad0gKLSiRaNN2Kv/g== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:59 2026 by rpki-client