$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235312e302f32342d3234203d3e2037353332.roa File: 3231392e36392e3235312e302f32342d3234203d3e2037353332.roa (raw, json) Hash identifier: kW8tpCsDK71+ZOW8s79bdiaBQXp9orm1hLwlyDz6x+M= Subject key identifier: B8:FE:78:9A:79:48:60:0C:F8:20:46:AB:E7:A8:10:41:68:AC:EC:35 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 29B903C67E0E45E8AFEEB34216222B09C46847C6 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235312e302f32342d3234203d3e2037353332.roa Signing time: Mon 22 Jun 2026 03:23:54 +0000 ROA not before: Mon 22 Jun 2026 03:18:54 +0000 ROA not after: Mon 21 Jun 2027 03:23:54 +0000 asID: 7532 IP address blocks: 219.69.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b9:03:c6:7e:0e:45:e8:af:ee:b3:42:16:22:2b:09:c4:68:47:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:18:54 2026 GMT Not After : Jun 21 03:23:54 2027 GMT Subject: CN=B8FE789A7948600CF82046ABE7A8104168ACEC35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:5a:64:de:1a:86:52:56:24:f6:ef:11:2c: d8:09:65:61:49:75:60:87:ff:3e:9d:df:b1:be:35: b7:e4:ae:54:2b:46:f1:ba:5f:91:e8:cd:58:ba:99: e4:23:8d:d0:ca:6c:27:d2:82:7f:ba:45:b0:31:a8: d1:45:91:09:06:9d:b8:df:ab:39:3e:10:87:92:8a: 1f:96:93:af:77:38:a1:b8:02:6d:a8:b9:a6:f7:aa: 07:e8:e3:84:15:58:a3:42:8f:b0:8b:d6:a8:b8:af: 23:88:63:ab:5d:6d:15:79:1a:e5:b1:15:ee:94:f1: c9:7a:84:d7:d1:48:ea:35:cd:ca:47:99:2e:ae:bf: 42:06:59:ad:8e:d1:fb:37:58:ae:6b:7c:49:9e:e5: c8:ad:29:b2:1c:6e:97:bc:1d:fd:58:41:10:f2:21: c3:f2:d5:d9:51:65:ac:89:2c:c4:de:43:cf:59:f4: 3f:d9:24:3e:4c:c9:ad:27:03:6e:f5:7a:2a:01:84: 89:42:72:e3:81:11:6d:cd:59:4c:de:42:57:97:ab: d6:7f:17:d8:3b:e7:09:d3:e8:fa:c1:88:32:ca:49: 36:7e:ae:76:19:e8:6c:2f:af:e0:42:3d:96:79:40: 0e:d9:32:2d:8e:23:cf:da:ec:28:32:18:ad:32:d5: 9e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:FE:78:9A:79:48:60:0C:F8:20:46:AB:E7:A8:10:41:68:AC:EC:35 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235312e302f32342d3234203d3e2037353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.69.251.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:f5:2d:de:2a:15:61:a6:e3:f6:99:8a:b5:31:17:43:13:66: 35:15:48:8a:fd:bc:d8:12:53:50:9d:e3:e1:8a:1e:7a:66:dc: 5c:f3:3e:29:84:3c:46:2b:67:b9:4f:e2:d3:31:d4:85:6b:9b: f4:d9:75:0a:7e:73:69:f1:54:60:d2:e0:a5:62:8a:e4:0e:1d: d9:87:d9:46:47:4c:37:4e:49:8e:0f:26:15:ec:23:8a:66:52: f3:25:68:1f:67:14:46:37:7a:4e:01:31:3c:78:ef:18:6d:98: 70:da:1b:0e:59:a6:0c:dd:ec:bf:28:e3:af:43:af:10:74:6a: 4c:6e:e2:ed:2f:99:29:ef:17:af:61:59:2c:7f:01:ab:ef:f9: ee:d4:84:f4:6d:85:c7:8e:27:08:a3:e7:66:ca:95:77:1b:f8: 4b:a6:97:2f:36:1d:fa:6b:68:79:29:c1:c9:0c:59:0e:f5:6f: bc:75:9c:f6:8d:5a:cd:44:5e:d1:96:33:f9:d8:38:2a:5b:a6: 8f:f9:1f:e9:2e:66:60:ae:e0:2b:bc:35:77:be:47:4c:6e:0f: 6e:cb:9c:57:5a:27:f0:21:f7:69:6f:b3:3a:10:e7:37:f9:f8: 5c:ec:19:35:a8:00:10:bf:8e:bd:6e:9a:b3:21:c7:57:be:4c: 50:d8:58:77 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUKbkDxn4OReiv7rNCFiIrCcRoR8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE4NTRaFw0yNzA2MjEwMzIzNTRaMDMxMTAvBgNV BAMTKEI4RkU3ODlBNzk0ODYwMENGODIwNDZBQkU3QTgxMDQxNjhBQ0VDMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqaVpk3hqGUlYk9u8RLNgJZWFJ dWCH/z6d37G+NbfkrlQrRvG6X5HozVi6meQjjdDKbCfSgn+6RbAxqNFFkQkGnbjf qzk+EIeSih+Wk693OKG4Am2ouab3qgfo44QVWKNCj7CL1qi4ryOIY6tdbRV5GuWx Fe6U8cl6hNfRSOo1zcpHmS6uv0IGWa2O0fs3WK5rfEme5citKbIcbpe8Hf1YQRDy IcPy1dlRZayJLMTeQ89Z9D/ZJD5Mya0nA271eioBhIlCcuOBEW3NWUzeQleXq9Z/ F9g75wnT6PrBiDLKSTZ+rnYZ6Gwvr+BCPZZ5QA7ZMi2OI8/a7CgyGK0y1Z7BAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUuP54mnlIYAz4IEar56gQQWis7DUwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM5MmUzMjM1 MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNzM1MzMzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANtF +zANBgkqhkiG9w0BAQsFAAOCAQEAHPUt3ioVYabj9pmKtTEXQxNmNRVIiv282BJT UJ3j4YoeembcXPM+KYQ8RitnuU/i0zHUhWub9Nl1Cn5zafFUYNLgpWKK5A4d2YfZ RkdMN05Jjg8mFewjimZS8yVoH2cURjd6TgExPHjvGG2YcNobDlmmDN3svyjjr0Ov EHRqTG7i7S+ZKe8Xr2FZLH8Bq+/57tSE9G2Fx44nCKPnZsqVdxv4S6aXLzYd+mto eSnByQxZDvVvvHWc9o1azURe0ZYz+dg4Klumj/kf6S5mYK7gK7w1d75HTG4Pbsuc V1on8CH3aW+zOhDnN/n4XOwZNagAEL+OvW6asyHHV75MUNhYdw== -----END CERTIFICATE-----Generated at Tue Jun 30 21:13:17 2026 by rpki-client