$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36392e302e302f31372d3234203d3e203138303432.roa File: 3231392e36392e302e302f31372d3234203d3e203138303432.roa (raw, json) Hash identifier: GZObIkWC2puGelNNBynlb1spIGOEYacDYjBiSb9yAgA= Subject key identifier: 3B:1C:69:1D:1D:7B:A5:3B:A0:AA:D0:D0:73:47:2E:B4:C7:CE:34:D4 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 4D95A73663989794C76AB0DDC41F08B83269AFBC Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e302e302f31372d3234203d3e203138303432.roa Signing time: Mon 22 Jun 2026 03:03:49 +0000 ROA not before: Mon 22 Jun 2026 02:58:49 +0000 ROA not after: Mon 21 Jun 2027 03:03:49 +0000 asID: 18042 IP address blocks: 219.69.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:95:a7:36:63:98:97:94:c7:6a:b0:dd:c4:1f:08:b8:32:69:af:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 02:58:49 2026 GMT Not After : Jun 21 03:03:49 2027 GMT Subject: CN=3B1C691D1D7BA53BA0AAD0D073472EB4C7CE34D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:11:4f:ff:26:f3:d6:0e:8b:e6:ac:79:15:1a: 67:cb:24:27:bc:b0:ec:e6:9c:7b:bb:07:7b:93:aa: ee:ef:de:4f:22:f1:a7:fb:f5:50:91:5c:9f:ce:dc: 57:4f:1b:d5:c3:97:0f:1f:c1:d8:28:ad:4b:6d:fb: 48:37:0c:5d:74:27:45:8c:a2:02:13:cd:0e:27:0b: e0:e1:fa:f6:1f:66:08:c2:b2:73:e6:45:28:5a:96: 9c:e1:42:23:24:e8:31:d9:97:fc:ed:cc:40:fd:a3: 64:58:cb:3d:f6:cd:43:49:61:c0:b6:fd:de:f0:10: 53:e0:01:d8:5e:68:01:3a:74:ad:bc:4b:78:a1:db: 71:c4:ad:f1:48:b2:30:93:bf:22:a2:6e:bb:f8:8b: a3:2b:3a:a3:9a:70:af:72:64:1b:72:69:18:54:f4: f7:b9:13:12:8a:a1:61:7b:4e:12:05:59:28:fc:bc: cc:aa:85:91:44:d5:9e:9b:0c:87:0f:bb:ee:ac:19: 45:48:35:d2:89:8e:8e:10:ae:85:1d:2a:0c:38:8c: 34:b5:b7:9c:5a:94:32:6b:ff:c9:9e:c1:29:00:dc: 54:1e:76:70:2f:13:86:36:dd:99:9c:bb:5a:08:57: bf:36:bc:9c:e2:c6:a7:9a:91:c5:64:7a:47:27:e4: 13:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:1C:69:1D:1D:7B:A5:3B:A0:AA:D0:D0:73:47:2E:B4:C7:CE:34:D4 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e302e302f31372d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.69.0.0/17 Signature Algorithm: sha256WithRSAEncryption 77:81:10:a3:bf:d9:61:bc:8f:cb:77:e8:24:91:5f:58:49:dd: b6:0a:c9:ee:f9:94:71:ef:06:17:c8:4b:39:47:3b:f2:51:04: 55:31:21:62:b0:48:16:84:67:f3:1d:b6:c0:ae:46:3c:21:86: d1:72:74:0a:66:02:9a:25:4c:36:55:67:e1:03:ae:97:fe:fb: a4:4a:db:d4:dd:34:41:a5:ee:d3:30:aa:f1:92:b1:c1:92:27: 24:a5:e2:c2:4f:9a:50:3a:81:ef:db:e2:ab:21:18:6e:62:11: d0:d0:90:56:3f:ae:25:21:0a:16:3b:06:ac:e2:5f:f7:bb:fa: c9:64:b4:82:91:9c:42:a6:97:96:62:f4:3a:39:4f:04:a1:21: a6:db:62:fb:3a:df:57:32:52:89:2d:54:8b:8a:73:62:bb:ce: 05:e7:8d:03:f6:2e:6e:c6:ad:7e:3a:a2:38:8a:ca:a5:2c:f9: 8e:f1:b9:e7:66:dd:d8:85:74:ba:53:a7:e8:e6:21:42:fd:ef: af:6a:95:91:dc:ab:8a:cb:75:f3:e8:53:52:da:5c:4a:09:4c: ae:84:5c:a4:83:3c:cc:13:98:e6:77:97:ae:fd:1a:92:b8:16: ef:a3:a1:fa:50:3c:57:e2:52:94:75:48:9f:31:33:6f:04:99: 83:42:98:b1 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUTZWnNmOYl5THarDdxB8IuDJpr7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMjU4NDlaFw0yNzA2MjEwMzAzNDlaMDMxMTAvBgNV BAMTKDNCMUM2OTFEMUQ3QkE1M0JBMEFBRDBEMDczNDcyRUI0QzdDRTM0RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3EU//JvPWDovmrHkVGmfLJCe8 sOzmnHu7B3uTqu7v3k8i8af79VCRXJ/O3FdPG9XDlw8fwdgorUtt+0g3DF10J0WM ogITzQ4nC+Dh+vYfZgjCsnPmRShalpzhQiMk6DHZl/ztzED9o2RYyz32zUNJYcC2 /d7wEFPgAdheaAE6dK28S3ih23HErfFIsjCTvyKibrv4i6MrOqOacK9yZBtyaRhU 9Pe5ExKKoWF7ThIFWSj8vMyqhZFE1Z6bDIcPu+6sGUVINdKJjo4QroUdKgw4jDS1 t5xalDJr/8mewSkA3FQednAvE4Y23Zmcu1oIV782vJzixqeakcVkekcn5BM/AgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQUOxxpHR17pTugqtDQc0cutMfONNQwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM5MmUzMDJl MzAyZjMxMzcyZDMyMzQyMDNkM2UyMDMxMzgzMDM0MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfbRQAw DQYJKoZIhvcNAQELBQADggEBAHeBEKO/2WG8j8t36CSRX1hJ3bYKye75lHHvBhfI SzlHO/JRBFUxIWKwSBaEZ/MdtsCuRjwhhtFydApmApolTDZVZ+EDrpf++6RK29Td NEGl7tMwqvGSscGSJySl4sJPmlA6ge/b4qshGG5iEdDQkFY/riUhChY7BqziX/e7 +slktIKRnEKml5Zi9Do5TwShIabbYvs631cyUoktVIuKc2K7zgXnjQP2Lm7GrX46 ojiKyqUs+Y7xuedm3diFdLpTp+jmIUL9769qlZHcq4rLdfPoU1LaXEoJTK6EXKSD PMwTmOZ3l679GpK4Fu+jofpQPFfiUpR1SJ8xM28EmYNCmLE= -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:59 2026 by rpki-client