$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3132382e302f31372d3234203d3e2039343136.roa File: 3231392e36392e3132382e302f31372d3234203d3e2039343136.roa (raw, json) Hash identifier: aWEqFJsU+r6Y++z0U94fgtNK6GEMJg6taTn/ecpqa1c= Subject key identifier: AF:6F:36:2F:17:1E:3D:E7:C6:CA:8F:0D:E5:19:1E:D7:8B:82:C6:05 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 71BA446B9DACD3ABA3232F5CD012E818C15C61E7 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3132382e302f31372d3234203d3e2039343136.roa Signing time: Mon 22 Jun 2026 03:23:52 +0000 ROA not before: Mon 22 Jun 2026 03:18:52 +0000 ROA not after: Mon 21 Jun 2027 03:23:52 +0000 asID: 9416 IP address blocks: 219.69.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ba:44:6b:9d:ac:d3:ab:a3:23:2f:5c:d0:12:e8:18:c1:5c:61:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:18:52 2026 GMT Not After : Jun 21 03:23:52 2027 GMT Subject: CN=AF6F362F171E3DE7C6CA8F0DE5191ED78B82C605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:8d:5c:4b:43:6b:fd:da:8c:f0:83:38:37:78: 84:d4:18:40:8f:d1:18:1b:a1:fe:f4:2f:54:95:4e: 4b:8d:d4:47:f2:67:d5:c3:98:24:3e:d1:30:53:99: 7b:d5:cd:a0:1a:f5:49:a0:4a:da:dd:33:67:fc:43: 8f:8f:17:75:1a:09:cb:3b:a0:1d:7f:ee:44:a6:cc: 6e:83:bf:88:d5:1f:c7:b9:1a:05:18:f7:7e:65:1b: 4a:a7:3e:ca:8b:dd:74:13:f5:f8:50:b8:9a:06:41: 98:54:83:ab:ef:03:4d:e3:2b:39:48:ba:ea:45:48: fe:a6:40:dd:1f:8e:81:24:ad:8a:80:ba:2c:43:e7: 11:3a:a0:76:ff:18:24:79:49:23:08:c4:be:7a:6b: cb:d0:8d:10:82:7b:ef:67:28:e0:3c:df:de:4e:49: e1:53:1c:66:ca:f5:d6:76:f6:aa:81:ae:c2:c6:3d: 00:01:fe:43:6d:47:19:a9:99:fa:40:fb:61:ba:aa: 42:88:a5:72:5b:42:b3:73:bf:89:8f:6d:59:03:87: eb:15:42:d7:67:5a:d4:f1:5e:0b:65:0c:e0:7b:2f: 46:24:4e:ae:49:f0:24:22:64:81:41:1d:f3:7c:ec: 25:8d:91:14:87:96:89:fb:9d:e3:44:4e:65:cb:99: 94:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:6F:36:2F:17:1E:3D:E7:C6:CA:8F:0D:E5:19:1E:D7:8B:82:C6:05 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3132382e302f31372d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.69.128.0/17 Signature Algorithm: sha256WithRSAEncryption 28:01:72:d0:42:82:a7:92:09:f0:15:33:91:45:d3:09:cc:f6: 1f:fb:cd:54:b6:b6:21:d8:01:4d:59:d3:c6:87:8f:e9:cb:aa: 77:7a:ba:c9:9e:eb:eb:6f:d4:92:2e:4a:69:8c:7f:09:06:dc: 0e:76:bf:0e:8a:ee:e0:06:e9:ca:47:b7:a9:7c:6b:0f:35:03: d9:cb:e5:c6:d9:d2:f5:c7:64:2d:80:82:bc:3b:dd:df:c9:98: 90:e7:b7:85:e8:fd:a9:29:da:22:25:98:b7:e8:2a:63:48:f9: 52:cc:3d:b3:44:93:0d:7e:25:de:bc:62:18:95:f3:e3:78:2f: bc:04:9d:be:75:0b:28:51:43:86:b1:ec:53:c9:46:02:d4:fa: d8:f1:34:3d:c6:b6:dc:44:3b:72:e2:14:d5:8a:7a:e6:00:d7: c1:8c:60:c3:4d:ad:a7:54:a8:46:0f:95:f6:5b:67:9f:53:e1: 95:d7:e9:cb:80:ee:9d:8a:2d:0b:7e:c6:40:9b:4b:b7:a2:cc: 70:6c:16:16:8b:b7:61:0c:09:e8:4c:a6:80:3e:91:f9:aa:20: 40:f3:dd:e9:22:dd:37:a4:4f:34:7f:a4:af:51:f7:b1:3d:fc: b9:b6:51:93:80:e6:c2:d7:0d:af:be:36:b1:64:84:1b:b1:c6: b2:09:44:1b -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUcbpEa52s06ujIy9c0BLoGMFcYecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE4NTJaFw0yNzA2MjEwMzIzNTJaMDMxMTAvBgNV BAMTKEFGNkYzNjJGMTcxRTNERTdDNkNBOEYwREU1MTkxRUQ3OEI4MkM2MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGjVxLQ2v92ozwgzg3eITUGECP 0Rgbof70L1SVTkuN1EfyZ9XDmCQ+0TBTmXvVzaAa9UmgStrdM2f8Q4+PF3UaCcs7 oB1/7kSmzG6Dv4jVH8e5GgUY935lG0qnPsqL3XQT9fhQuJoGQZhUg6vvA03jKzlI uupFSP6mQN0fjoEkrYqAuixD5xE6oHb/GCR5SSMIxL56a8vQjRCCe+9nKOA8395O SeFTHGbK9dZ29qqBrsLGPQAB/kNtRxmpmfpA+2G6qkKIpXJbQrNzv4mPbVkDh+sV QtdnWtTxXgtlDOB7L0YkTq5J8CQiZIFBHfN87CWNkRSHlon7neNETmXLmZQ1AgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUr282LxcePefGyo8N5Rke14uCxgUwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM5MmUzMTMy MzgyZTMwMmYzMTM3MmQzMjM0MjAzZDNlMjAzOTM0MzEzNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9tF gDANBgkqhkiG9w0BAQsFAAOCAQEAKAFy0EKCp5IJ8BUzkUXTCcz2H/vNVLa2IdgB TVnTxoeP6cuqd3q6yZ7r62/Uki5KaYx/CQbcDna/Doru4Abpyke3qXxrDzUD2cvl xtnS9cdkLYCCvDvd38mYkOe3hej9qSnaIiWYt+gqY0j5Usw9s0STDX4l3rxiGJXz 43gvvASdvnULKFFDhrHsU8lGAtT62PE0Pca23EQ7cuIU1Yp65gDXwYxgw02tp1So Rg+V9ltnn1Phldfpy4DunYotC37GQJtLt6LMcGwWFou3YQwJ6EymgD6R+aogQPPd 6SLdN6RPNH+kr1H3sT38ubZRk4DmwtcNr742sWSEG7HGsglEGw== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:57 2026 by rpki-client