$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235322e302f32332d3233203d3e2037353332.roa File: 3231392e36392e3235322e302f32332d3233203d3e2037353332.roa (raw, json) Hash identifier: gBnnqzPZ0SCiTFujfDGvqhTRz9sqdWoRHD/m+oI2mD8= Subject key identifier: 5E:44:EB:1C:5C:28:D3:1B:6A:5F:10:67:B8:79:72:F7:3A:2F:27:C1 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 789DC94A46881A4D61A6E18D3D2A372542322DDE Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235322e302f32332d3233203d3e2037353332.roa Signing time: Mon 22 Jun 2026 03:23:51 +0000 ROA not before: Mon 22 Jun 2026 03:18:51 +0000 ROA not after: Mon 21 Jun 2027 03:23:51 +0000 asID: 7532 IP address blocks: 219.69.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:9d:c9:4a:46:88:1a:4d:61:a6:e1:8d:3d:2a:37:25:42:32:2d:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:18:51 2026 GMT Not After : Jun 21 03:23:51 2027 GMT Subject: CN=5E44EB1C5C28D31B6A5F1067B87972F73A2F27C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:04:06:a4:ff:77:c1:42:e7:4a:83:88:2d:7d: 72:77:81:a8:a9:b1:e3:49:5a:4a:c8:fc:c9:1e:d6: e5:f7:85:c0:92:03:d9:6a:0c:7f:9c:1b:9b:f5:a5: 29:22:b8:fc:f5:c7:9c:03:55:dc:e5:8f:08:5c:27: db:bd:2e:75:43:80:89:ce:40:ef:fc:2c:5b:7a:f9: 5f:56:7a:4f:14:ea:07:96:43:9d:c2:3e:ea:e5:68: 81:c9:11:ed:bf:55:5c:8b:42:49:b9:3d:d4:ca:4b: 9f:13:d8:1a:5f:bf:6d:d7:fe:5b:e2:3e:0e:c0:9b: 4e:24:51:99:c2:7e:8e:d2:96:7d:de:ff:3b:8d:37: e5:52:55:b8:6f:6d:4a:77:2f:9e:e7:6e:8c:a3:be: 9d:b7:76:b4:43:b9:68:de:77:f3:d9:f3:da:6e:06: 6e:ed:05:6c:62:d1:ec:eb:f8:ec:e7:b6:ca:e8:e3: 7f:4d:e6:58:ef:79:2f:a8:1e:e8:6d:89:99:f4:ef: 5f:df:da:44:3f:1d:0c:73:bc:35:bd:11:e8:56:df: fb:8b:67:1f:35:20:07:fb:8c:21:6a:ba:1c:b4:80: e1:1b:97:22:ac:e1:91:91:94:5b:54:87:55:85:8e: a6:56:30:1d:2e:43:e5:55:f8:cd:49:ce:8d:fb:ce: 65:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:44:EB:1C:5C:28:D3:1B:6A:5F:10:67:B8:79:72:F7:3A:2F:27:C1 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235322e302f32332d3233203d3e2037353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.69.252.0/23 Signature Algorithm: sha256WithRSAEncryption 18:c4:e8:0c:9a:f8:4e:21:58:46:b8:8b:8c:ec:88:d2:05:ad: 9f:69:bd:73:97:40:4a:bb:69:44:5b:cb:d5:c1:6e:27:4e:95: cd:78:8b:b3:c1:2e:d5:6b:ae:cc:09:d6:c4:13:de:be:e6:3c: a3:4d:b8:be:3a:f9:74:83:06:f9:6a:54:7e:99:17:ba:44:54: 65:cf:b5:10:1a:d8:3e:65:35:42:99:c2:55:f5:ba:00:af:f1: 2c:97:49:6d:4a:a5:c6:c3:ac:04:f6:39:78:24:ae:a1:a0:7d: 56:f6:57:ee:10:a4:50:f5:6e:25:dc:9d:b6:75:b6:f2:4c:50: 55:cb:18:a2:78:e9:cd:86:f2:b5:ab:bd:3b:25:19:76:21:88: d0:50:14:ae:cf:ea:42:fd:6e:e4:d0:38:5f:8a:61:db:c4:a4: 99:d8:bf:35:c2:b6:3f:fe:10:2d:6f:c9:16:d7:bb:e9:26:22: 5d:d6:52:cf:46:70:c2:72:59:a0:a3:96:07:ff:50:1b:48:5d: 2f:ce:62:d7:38:a4:11:af:83:83:b7:b4:85:56:dd:e0:0e:6e: cf:b4:55:d5:db:b2:f1:45:82:b3:f2:b5:af:07:43:55:e9:5a: 82:44:01:b7:b8:e8:b1:67:94:7f:7f:71:64:86:22:bb:b9:83: 5a:3e:b4:27 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUeJ3JSkaIGk1hpuGNPSo3JUIyLd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE4NTFaFw0yNzA2MjEwMzIzNTFaMDMxMTAvBgNV BAMTKDVFNDRFQjFDNUMyOEQzMUI2QTVGMTA2N0I4Nzk3MkY3M0EyRjI3QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXBAak/3fBQudKg4gtfXJ3gaip seNJWkrI/Mke1uX3hcCSA9lqDH+cG5v1pSkiuPz1x5wDVdzljwhcJ9u9LnVDgInO QO/8LFt6+V9Wek8U6geWQ53CPurlaIHJEe2/VVyLQkm5PdTKS58T2Bpfv23X/lvi Pg7Am04kUZnCfo7Sln3e/zuNN+VSVbhvbUp3L57nboyjvp23drRDuWjed/PZ89pu Bm7tBWxi0ezr+Ozntsro439N5ljveS+oHuhtiZn071/f2kQ/HQxzvDW9EehW3/uL Zx81IAf7jCFquhy0gOEblyKs4ZGRlFtUh1WFjqZWMB0uQ+VV+M1Jzo37zmVDAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUXkTrHFwo0xtqXxBnuHly9zovJ8EwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM5MmUzMjM1 MzIyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNzM1MzMzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdtF /DANBgkqhkiG9w0BAQsFAAOCAQEAGMToDJr4TiFYRriLjOyI0gWtn2m9c5dASrtp RFvL1cFuJ06VzXiLs8Eu1WuuzAnWxBPevuY8o024vjr5dIMG+WpUfpkXukRUZc+1 EBrYPmU1QpnCVfW6AK/xLJdJbUqlxsOsBPY5eCSuoaB9VvZX7hCkUPVuJdydtnW2 8kxQVcsYonjpzYbytau9OyUZdiGI0FAUrs/qQv1u5NA4X4ph28Skmdi/NcK2P/4Q LW/JFte76SYiXdZSz0ZwwnJZoKOWB/9QG0hdL85i1zikEa+Dg7e0hVbd4A5uz7RV 1duy8UWCs/K1rwdDVelagkQBt7josWeUf39xZIYiu7mDWj60Jw== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:56 2026 by rpki-client