$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235322e302f32322d3232203d3e2037353332.roa File: 3231392e36392e3235322e302f32322d3232203d3e2037353332.roa (raw, json) Hash identifier: NNm9bqJLbVT4TUv3FTqL7ZqVWQ3q/nvjdmBqhORNVeI= Subject key identifier: 66:BD:57:1E:AE:C1:69:65:5A:1F:C6:D6:0C:D9:77:2B:58:28:AC:2B Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 750CF53991D240442F4E0DB74C134C4C69C96C98 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235322e302f32322d3232203d3e2037353332.roa Signing time: Mon 22 Jun 2026 03:24:04 +0000 ROA not before: Mon 22 Jun 2026 03:19:04 +0000 ROA not after: Mon 21 Jun 2027 03:24:04 +0000 asID: 7532 IP address blocks: 219.69.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:0c:f5:39:91:d2:40:44:2f:4e:0d:b7:4c:13:4c:4c:69:c9:6c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:19:04 2026 GMT Not After : Jun 21 03:24:04 2027 GMT Subject: CN=66BD571EAEC169655A1FC6D60CD9772B5828AC2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:20:28:ff:28:b2:31:ce:15:58:17:89:d1:dc: 7a:b9:76:63:56:d5:db:0c:f0:86:6e:9d:8b:bb:cb: a1:50:be:2e:04:29:b7:97:73:d2:2c:7a:07:f8:1a: da:92:bc:24:71:93:6c:54:d6:8b:ae:f4:f7:e9:06: 53:3c:97:d9:0b:14:1d:a5:2e:e9:0f:bd:e7:b8:61: 43:9d:4b:34:4d:67:de:a2:58:1e:a3:37:cc:5b:ed: 39:74:9a:77:6b:15:9c:b8:39:b4:d9:1a:06:52:5f: 4b:d1:d4:30:a6:2e:57:6f:8f:a2:60:0c:89:61:1f: e6:10:f1:d5:fe:9e:2a:73:e8:bc:3f:70:52:32:c0: c6:a3:dd:29:c9:6b:f2:8f:1d:d3:41:42:47:a8:f5: 81:25:54:08:d7:39:62:a9:5b:2b:38:42:da:c5:ed: ba:65:8a:b9:5f:7a:44:be:21:07:d1:60:ea:35:5e: fa:19:73:8c:e6:12:68:c2:66:22:74:76:5a:0b:49: 04:e7:20:6c:12:a0:48:85:03:7e:2f:90:86:8c:fc: e8:4b:4e:7c:3f:c5:37:e7:64:82:ea:94:7e:00:05: 30:36:50:53:a4:75:d5:96:bc:16:83:6d:e9:8c:92: c4:60:03:a5:c2:6b:ae:bb:39:5a:22:de:0d:4c:2c: 92:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:BD:57:1E:AE:C1:69:65:5A:1F:C6:D6:0C:D9:77:2B:58:28:AC:2B X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235322e302f32322d3232203d3e2037353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.69.252.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:ed:51:b8:80:5b:96:f3:07:68:73:20:17:78:ea:3f:60:ad: 7c:40:41:2a:f6:f0:45:0a:e1:ba:6b:9b:fa:91:cf:80:c7:e8: f4:ce:03:5d:4d:2f:ab:e3:a2:de:95:f0:46:18:5b:ab:c3:41: 1c:29:93:ea:ae:52:82:df:00:93:66:bc:c9:c8:3e:11:56:1c: 8f:54:ac:3f:95:b9:ba:62:75:98:4f:ba:d4:ae:9b:06:57:0d: ba:61:ab:0f:92:0a:05:97:8b:28:fd:92:4e:02:7e:6a:b6:ea: ef:c0:98:18:99:69:0d:ef:cb:d4:4b:81:16:c7:f7:09:46:c4: 46:12:16:94:71:80:cd:a4:84:5f:59:ba:aa:10:58:39:ed:36: a4:67:34:fc:a2:84:f1:48:2a:a8:16:e4:1a:37:d3:dc:4b:52: 39:af:4c:58:52:bd:4b:9a:70:3a:82:4d:4a:b6:e0:5e:fa:87: 57:7d:d9:c2:a5:57:e1:69:8a:e3:b7:df:4a:dc:cf:1d:58:90: 1f:1f:3a:63:cf:46:80:60:49:4a:d4:0d:74:11:99:e3:7c:c8: 98:d5:17:15:ce:52:9e:49:e9:c5:7b:b0:76:56:9f:2b:bc:97: 27:0c:9e:68:19:3b:5d:57:a5:13:79:cf:93:79:ab:e0:7f:8c: 1b:90:93:ea -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUdQz1OZHSQEQvTg23TBNMTGnJbJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE5MDRaFw0yNzA2MjEwMzI0MDRaMDMxMTAvBgNV BAMTKDY2QkQ1NzFFQUVDMTY5NjU1QTFGQzZENjBDRDk3NzJCNTgyOEFDMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChICj/KLIxzhVYF4nR3Hq5dmNW 1dsM8IZunYu7y6FQvi4EKbeXc9Isegf4GtqSvCRxk2xU1ouu9PfpBlM8l9kLFB2l LukPvee4YUOdSzRNZ96iWB6jN8xb7Tl0mndrFZy4ObTZGgZSX0vR1DCmLldvj6Jg DIlhH+YQ8dX+nipz6Lw/cFIywMaj3SnJa/KPHdNBQkeo9YElVAjXOWKpWys4QtrF 7bplirlfekS+IQfRYOo1XvoZc4zmEmjCZiJ0dloLSQTnIGwSoEiFA34vkIaM/OhL Tnw/xTfnZILqlH4ABTA2UFOkddWWvBaDbemMksRgA6XCa667OVoi3g1MLJJHAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUZr1XHq7BaWVaH8bWDNl3K1gorCswHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM5MmUzMjM1 MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNzM1MzMzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAttF /DANBgkqhkiG9w0BAQsFAAOCAQEAGu1RuIBblvMHaHMgF3jqP2CtfEBBKvbwRQrh umub+pHPgMfo9M4DXU0vq+Oi3pXwRhhbq8NBHCmT6q5Sgt8Ak2a8ycg+EVYcj1Ss P5W5umJ1mE+61K6bBlcNumGrD5IKBZeLKP2STgJ+arbq78CYGJlpDe/L1EuBFsf3 CUbERhIWlHGAzaSEX1m6qhBYOe02pGc0/KKE8UgqqBbkGjfT3EtSOa9MWFK9S5pw OoJNSrbgXvqHV33ZwqVX4WmK47ffStzPHViQHx86Y89GgGBJStQNdBGZ43zImNUX Fc5SnknpxXuwdlafK7yXJwyeaBk7XVelE3nPk3mr4H+MG5CT6g== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:48 2026 by rpki-client