$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235342e302f32332d3233203d3e2037353332.roa File: 3231392e36392e3235342e302f32332d3233203d3e2037353332.roa (raw, json) Hash identifier: 71/aECdF7uR3k7T8sSjKzp3LOrYdkJl1gYDo0qIihAQ= Subject key identifier: D8:8C:00:A0:C3:B0:41:51:9A:2D:0A:2F:27:57:6B:F0:BB:A8:B4:5C Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 1CB5186D9E66DA4C8B4DEA9A85C29DD58C5AC61F Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235342e302f32332d3233203d3e2037353332.roa Signing time: Mon 22 Jun 2026 03:24:06 +0000 ROA not before: Mon 22 Jun 2026 03:19:06 +0000 ROA not after: Mon 21 Jun 2027 03:24:06 +0000 asID: 7532 IP address blocks: 219.69.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b5:18:6d:9e:66:da:4c:8b:4d:ea:9a:85:c2:9d:d5:8c:5a:c6:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:19:06 2026 GMT Not After : Jun 21 03:24:06 2027 GMT Subject: CN=D88C00A0C3B041519A2D0A2F27576BF0BBA8B45C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f6:c2:8c:0c:c6:d3:56:ae:f3:28:0d:ce:52: 0e:7d:b6:2c:8d:76:a6:19:8a:91:35:48:60:9a:83: 79:c6:bb:2f:12:31:18:21:ee:9b:ab:87:18:5c:2a: e7:40:ed:40:cc:d7:c4:42:17:96:84:66:6a:cd:4c: a7:c6:27:bb:de:c6:cd:cd:ea:72:f6:9d:67:c2:7f: 8f:02:75:b1:19:80:36:be:39:23:c7:9b:fb:35:96: ac:f9:fb:66:5b:c7:5f:24:61:14:49:c4:e1:5d:fe: bd:95:f4:83:9f:c4:97:62:7c:b8:3a:d3:26:7e:a1: 18:68:be:aa:ba:f6:66:53:ce:29:37:2c:1f:64:88: 34:8f:e9:9a:96:b5:57:79:b2:7b:5d:c7:81:1c:47: f1:d6:ac:c7:67:0e:b6:f4:f7:57:22:22:95:f0:cf: bc:a3:47:14:fa:1d:28:31:b8:64:56:c1:3b:e6:79: de:cd:21:4a:18:36:61:a5:60:bf:ac:59:d6:ad:e8: b0:2f:09:77:3d:7d:55:28:52:3c:51:03:fb:03:42: 4f:7b:88:32:38:29:b0:4f:93:03:0f:bf:cc:47:86: d2:4c:86:d0:e8:f2:86:bd:2c:21:56:64:be:7f:78: 89:b5:33:22:ea:4e:6e:bd:3e:d3:c1:40:cc:57:8f: 03:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8C:00:A0:C3:B0:41:51:9A:2D:0A:2F:27:57:6B:F0:BB:A8:B4:5C X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235342e302f32332d3233203d3e2037353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.69.254.0/23 Signature Algorithm: sha256WithRSAEncryption 39:eb:eb:ac:31:0b:f3:67:c2:2b:ed:88:f6:74:91:82:b1:4e: 6c:26:9e:e6:03:31:5d:7e:81:7c:39:5f:9f:3b:c1:58:fd:6b: 4b:8e:75:e6:89:7e:32:69:61:42:74:ce:9a:ed:f2:0c:ec:dd: ed:d0:79:62:30:14:23:3a:57:9b:9c:bb:48:27:f8:55:ef:f5: 7c:88:c1:c4:a1:69:62:56:08:17:41:7a:b0:20:59:b9:71:34: d2:e7:b0:c7:0c:4b:16:cf:1f:c8:98:70:0f:30:cd:03:a2:95: 31:c3:e0:15:e5:39:b0:85:4f:fe:ff:85:4d:ef:72:f7:c5:82: 76:8d:1f:bd:ee:13:d2:66:01:0f:c9:20:6c:0a:d5:b1:28:36: 92:79:ed:27:7a:f5:c4:4c:ac:6a:3a:6f:7c:48:11:7d:f2:1a: b3:b4:03:99:d0:85:b9:2a:65:ef:9b:2a:d2:f0:2a:35:2b:22: 64:1b:0c:a3:8c:a3:da:1a:f1:38:0b:44:c9:9f:d2:ae:bc:b9: 86:7e:b2:ae:05:b2:56:0c:67:b3:65:dc:ba:dc:7d:24:16:96: bd:4d:30:d6:8c:a6:c3:4b:d7:de:ee:8f:9f:61:32:79:a2:f2: 2c:8f:3a:90:31:0d:7e:f9:cd:77:52:64:60:da:9e:27:9e:74: e5:4c:af:e6 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUHLUYbZ5m2kyLTeqahcKd1Yxaxh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE5MDZaFw0yNzA2MjEwMzI0MDZaMDMxMTAvBgNV BAMTKEQ4OEMwMEEwQzNCMDQxNTE5QTJEMEEyRjI3NTc2QkYwQkJBOEI0NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu9sKMDMbTVq7zKA3OUg59tiyN dqYZipE1SGCag3nGuy8SMRgh7purhxhcKudA7UDM18RCF5aEZmrNTKfGJ7vexs3N 6nL2nWfCf48CdbEZgDa+OSPHm/s1lqz5+2Zbx18kYRRJxOFd/r2V9IOfxJdifLg6 0yZ+oRhovqq69mZTzik3LB9kiDSP6ZqWtVd5sntdx4EcR/HWrMdnDrb091ciIpXw z7yjRxT6HSgxuGRWwTvmed7NIUoYNmGlYL+sWdat6LAvCXc9fVUoUjxRA/sDQk97 iDI4KbBPkwMPv8xHhtJMhtDo8oa9LCFWZL5/eIm1MyLqTm69PtPBQMxXjwORAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQU2IwAoMOwQVGaLQovJ1dr8LuotFwwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM5MmUzMjM1 MzQyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNzM1MzMzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdtF /jANBgkqhkiG9w0BAQsFAAOCAQEAOevrrDEL82fCK+2I9nSRgrFObCae5gMxXX6B fDlfnzvBWP1rS4515ol+MmlhQnTOmu3yDOzd7dB5YjAUIzpXm5y7SCf4Ve/1fIjB xKFpYlYIF0F6sCBZuXE00uewxwxLFs8fyJhwDzDNA6KVMcPgFeU5sIVP/v+FTe9y 98WCdo0fve4T0mYBD8kgbArVsSg2knntJ3r1xEysajpvfEgRffIas7QDmdCFuSpl 75sq0vAqNSsiZBsMo4yj2hrxOAtEyZ/Srry5hn6yrgWyVgxns2Xcutx9JBaWvU0w 1oymw0vX3u6Pn2EyeaLyLI86kDENfvnNd1JkYNqeJ5505Uyv5g== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:53 2026 by rpki-client