$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235342e302f32342d3234203d3e2037353332.roa File: 3231392e36392e3235342e302f32342d3234203d3e2037353332.roa (raw, json) Hash identifier: 881iQF5zTDFPuUWUxqHvWPO9tO5AzKvQ9dEZB8PF6E0= Subject key identifier: 57:CD:BF:35:9F:84:13:A4:A3:E6:67:8A:47:C2:52:C9:62:F1:57:D4 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 32497D9C237286FC5DD1823B7E5E4E1265E7562F Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235342e302f32342d3234203d3e2037353332.roa Signing time: Mon 22 Jun 2026 03:23:57 +0000 ROA not before: Mon 22 Jun 2026 03:18:57 +0000 ROA not after: Mon 21 Jun 2027 03:23:57 +0000 asID: 7532 IP address blocks: 219.69.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:49:7d:9c:23:72:86:fc:5d:d1:82:3b:7e:5e:4e:12:65:e7:56:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:18:57 2026 GMT Not After : Jun 21 03:23:57 2027 GMT Subject: CN=57CDBF359F8413A4A3E6678A47C252C962F157D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c0:83:9a:1d:7d:7b:22:8e:f1:c5:df:54:4c: 86:0f:da:4e:4c:55:cb:2e:eb:5f:a3:ac:84:ed:7f: 95:d8:b8:ba:1c:bc:b9:ad:d8:2e:7e:04:64:7c:48: 79:7a:9f:be:b8:43:8b:2f:82:01:93:7e:92:52:60: 8f:e1:5c:56:31:30:ee:68:6a:5e:e0:b2:5b:f2:e3: b5:fa:40:ec:98:73:bf:f3:f3:cf:78:d0:3e:e8:db: da:a3:93:1a:51:ac:b8:9d:0c:96:ac:11:ed:5f:7b: 94:d7:76:3b:70:b0:aa:54:f5:6f:08:14:c2:0d:ab: 9b:c9:fb:7a:86:6e:6d:ae:74:72:79:f5:e2:43:ab: 34:9f:18:2e:42:d1:2d:48:2f:a6:15:b5:09:23:5b: a3:9e:dd:35:70:a5:c8:fd:26:c4:95:a3:69:dc:d5: 18:64:1f:74:70:55:6e:ab:c7:3a:44:31:03:1e:9e: c2:3b:e6:fc:c0:a4:9c:0e:23:81:6b:20:86:06:55: 4f:5e:e6:14:e0:08:f8:89:a9:ae:01:8f:8b:55:70: 87:00:1e:67:80:9f:2d:56:92:a2:6a:0d:7c:85:87: 5d:5a:b3:f7:e1:42:fb:2c:b0:ed:dc:82:8d:7c:62: 74:6c:54:c2:05:53:fb:bf:ee:90:8f:8d:be:c9:41: 34:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CD:BF:35:9F:84:13:A4:A3:E6:67:8A:47:C2:52:C9:62:F1:57:D4 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e36392e3235342e302f32342d3234203d3e2037353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.69.254.0/24 Signature Algorithm: sha256WithRSAEncryption 26:ee:4b:88:b1:c3:15:d0:76:5d:9d:18:96:39:3c:4f:4b:2b: 24:37:e1:9d:66:3e:66:4d:71:f8:d1:5a:42:ed:ef:11:fe:f8: da:f7:fa:04:1b:26:9a:12:82:bb:38:80:a4:0c:d4:6d:60:4f: a6:a4:59:e5:a5:8a:22:a1:66:20:ec:67:e6:29:2a:bb:59:76: 7c:0c:e3:1a:d7:3b:a3:d3:40:0b:8f:8c:a4:3f:cb:97:f5:80: f9:bd:be:f9:ff:67:74:e3:91:27:e9:6f:c0:85:0c:b5:bb:72: 72:22:b5:42:f4:46:8b:5b:20:39:59:36:b2:4f:0e:2d:7f:d9: 24:bf:05:5e:2d:99:65:d9:bb:6e:35:74:1f:4d:c2:83:4e:7a: 16:07:95:16:f2:df:69:3c:e4:43:d6:54:a7:c6:ce:0e:17:1f: 84:44:28:8f:80:fb:bb:26:ce:36:10:08:94:b2:81:14:93:6a: ac:d3:81:80:25:ad:30:a0:07:97:d1:4d:35:71:6c:58:96:61: 12:be:c0:40:75:37:e1:9d:cf:21:a0:60:e5:a8:12:04:d9:77: 9b:7b:1d:9d:54:45:8a:31:e6:1d:71:91:34:67:af:6e:e3:4c: 8d:29:38:7a:f3:ba:48:55:09:20:a6:42:86:34:e7:4a:9f:a6: cf:02:1a:46 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUMkl9nCNyhvxd0YI7fl5OEmXnVi8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE4NTdaFw0yNzA2MjEwMzIzNTdaMDMxMTAvBgNV BAMTKDU3Q0RCRjM1OUY4NDEzQTRBM0U2Njc4QTQ3QzI1MkM5NjJGMTU3RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmwIOaHX17Io7xxd9UTIYP2k5M Vcsu61+jrITtf5XYuLocvLmt2C5+BGR8SHl6n764Q4svggGTfpJSYI/hXFYxMO5o al7gslvy47X6QOyYc7/z88940D7o29qjkxpRrLidDJasEe1fe5TXdjtwsKpU9W8I FMINq5vJ+3qGbm2udHJ59eJDqzSfGC5C0S1IL6YVtQkjW6Oe3TVwpcj9JsSVo2nc 1RhkH3RwVW6rxzpEMQMensI75vzApJwOI4FrIIYGVU9e5hTgCPiJqa4Bj4tVcIcA HmeAny1WkqJqDXyFh11as/fhQvsssO3cgo18YnRsVMIFU/u/7pCPjb7JQTSxAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUV82/NZ+EE6Sj5meKR8JSyWLxV9QwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMTM5MmUzNjM5MmUzMjM1 MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNzM1MzMzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANtF /jANBgkqhkiG9w0BAQsFAAOCAQEAJu5LiLHDFdB2XZ0Yljk8T0srJDfhnWY+Zk1x +NFaQu3vEf742vf6BBsmmhKCuziApAzUbWBPpqRZ5aWKIqFmIOxn5ikqu1l2fAzj Gtc7o9NAC4+MpD/Ll/WA+b2++f9ndOORJ+lvwIUMtbtyciK1QvRGi1sgOVk2sk8O LX/ZJL8FXi2ZZdm7bjV0H03Cg056FgeVFvLfaTzkQ9ZUp8bODhcfhEQoj4D7uybO NhAIlLKBFJNqrNOBgCWtMKAHl9FNNXFsWJZhEr7AQHU34Z3PIaBg5agSBNl3m3sd nVRFijHmHXGRNGevbuNMjSk4evO6SFUJIKZChjTnSp+mzwIaRg== -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:14 2026 by rpki-client