$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/3231392e37302e302e302f31352d3135203d3e2039343136.roa File: 3231392e37302e302e302f31352d3135203d3e2039343136.roa (raw, json) Hash identifier: QIGi5SqdcmQo4jvaMfRq4+rhXsgKpL4CUcwjG+RVZ3o= Subject key identifier: 11:6E:89:9D:00:A4:84:6D:9F:F9:C3:20:88:A3:F8:CB:2F:30:DD:DA Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 5A570D78BD03F7B1A2CC27A3C2F79368BBFED8 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e37302e302e302f31352d3135203d3e2039343136.roa Signing time: Mon 22 Jun 2026 03:24:02 +0000 ROA not before: Mon 22 Jun 2026 03:19:02 +0000 ROA not after: Mon 21 Jun 2027 03:24:02 +0000 asID: 9416 IP address blocks: 219.70.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:57:0d:78:bd:03:f7:b1:a2:cc:27:a3:c2:f7:93:68:bb:fe:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:19:02 2026 GMT Not After : Jun 21 03:24:02 2027 GMT Subject: CN=116E899D00A4846D9FF9C32088A3F8CB2F30DDDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:52:4b:66:ad:e9:1d:3d:0a:ef:3f:56:87:e0: 00:77:e4:b6:fa:d7:40:59:7a:74:d9:a7:b2:57:3d: ef:64:72:43:05:d2:e9:99:a3:55:25:3d:bc:ad:40: e6:64:f9:4e:db:70:51:01:91:e8:6a:c5:4b:a2:fe: dc:b8:9b:51:2a:af:e7:9b:1c:30:f8:71:d2:b5:99: 00:fd:90:66:c4:dc:15:17:33:55:c2:58:fe:d1:0a: 63:59:5d:05:92:7a:73:17:88:13:86:d0:63:a4:52: 22:f8:ca:b7:c2:58:07:78:72:89:b0:f7:97:33:33: bb:b4:f5:f4:16:ef:7f:8f:a4:7d:c4:85:2a:18:86: b9:63:c0:b3:46:94:67:0c:72:c5:ba:2e:dd:27:e2: 9f:1a:b7:e8:85:7f:c8:c3:bb:09:cc:71:e2:e7:3a: 1b:69:37:42:e7:5e:5e:9e:d6:de:90:0e:ef:32:d6: 94:f5:fa:9a:97:13:81:9b:95:ce:1a:24:06:b7:bc: a7:a7:0a:3d:8c:a4:82:ce:ce:66:ef:65:57:63:41: 18:ed:51:06:7e:2f:af:f3:ec:cd:8a:61:22:1e:d2: 98:61:8c:8a:09:ff:c0:b4:45:02:45:fb:5f:93:22: 5d:44:38:ce:c3:ae:78:09:7f:d5:a8:4b:4e:3c:05: 06:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:6E:89:9D:00:A4:84:6D:9F:F9:C3:20:88:A3:F8:CB:2F:30:DD:DA X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/3231392e37302e302e302f31352d3135203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.70.0.0/15 Signature Algorithm: sha256WithRSAEncryption 35:6c:b3:1b:ed:0f:b9:a0:e6:6f:df:6d:65:cc:ea:47:7b:cf: 52:aa:2c:13:43:1c:73:fa:9a:98:0d:ee:ae:aa:2b:38:44:aa: 0d:2f:2a:67:db:73:ec:f4:df:83:28:2f:d8:05:ab:e2:86:e0: 83:f3:bb:93:a7:2d:6d:d1:ee:0f:fa:0d:5c:21:17:64:1c:71: c9:7c:39:d8:69:16:60:0d:8a:52:22:75:0f:67:4e:31:18:ef: f2:eb:dd:f4:57:a1:2b:1e:4f:15:bd:4e:02:c9:ca:d5:1d:d9: c4:71:03:43:6f:81:10:64:25:43:2f:92:e6:4d:19:3c:cb:9c: 5b:d7:f7:8c:0b:59:b9:8e:b2:1c:59:75:84:78:24:79:92:23: 50:02:0f:c8:ff:3b:8f:b8:8d:2f:77:c5:58:e9:ac:9d:c6:94: cc:6f:5a:90:78:36:4f:2e:c6:ef:a5:65:21:6e:30:c2:c0:65: f3:33:64:28:8d:f4:b3:ef:73:f8:50:9a:a1:f0:89:39:87:ad: ea:48:f5:bd:22:69:d9:d6:cb:2c:8a:88:58:5a:c7:97:42:43: c1:33:c4:d0:81:fd:bc:1e:de:34:22:3a:d8:6b:81:73:56:70: 4c:79:88:82:81:bd:f0:13:af:d7:b9:c8:30:95:7a:f6:4e:2c: be:3b:8f:f4 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgITWlcNeL0D97GizCejwveTaLv+2DANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg5MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0QUI3 RUExNTg5MB4XDTI2MDYyMjAzMTkwMloXDTI3MDYyMTAzMjQwMlowMzExMC8GA1UE AxMoMTE2RTg5OUQwMEE0ODQ2RDlGRjlDMzIwODhBM0Y4Q0IyRjMwREREQTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANJSS2at6R09Cu8/VofgAHfktvrX QFl6dNmnslc972RyQwXS6ZmjVSU9vK1A5mT5TttwUQGR6GrFS6L+3LibUSqv55sc MPhx0rWZAP2QZsTcFRczVcJY/tEKY1ldBZJ6cxeIE4bQY6RSIvjKt8JYB3hyibD3 lzMzu7T19Bbvf4+kfcSFKhiGuWPAs0aUZwxyxbou3Sfinxq36IV/yMO7Ccxx4uc6 G2k3QudeXp7W3pAO7zLWlPX6mpcTgZuVzhokBre8p6cKPYykgs7OZu9lV2NBGO1R Bn4vr/PszYphIh7SmGGMign/wLRFAkX7X5MiXUQ4zsOueAl/1ahLTjwFBpsCAwEA AaOCAdYwggHSMB0GA1UdDgQWBBQRbomdAKSEbZ/5wyCIo/jLLzDd2jAfBgNVHSME GDAWgBSRQJ2hwfrzGqPfKTbaqitKt+oViTAOBgNVHQ8BAf8EBAMCB4AwYAYDVR0f BFkwVzBVoFOgUYZPcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9LQlQvMC85 MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0QUI3RUExNTg5LmNybDBvBggr BgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3 L3Jwa2kvVFdOSUNDQS8xLzkxNDA5REExQzFGQUYzMUFBM0RGMjkzNkRBQUEyQjRB QjdFQTE1ODkuY2VyMHMGCCsGAQUFBwELBGcwZTBjBggrBgEFBQcwC4ZXcnN5bmM6 Ly9ycGtpY2EudHduaWMudHcvcnBraS9LQlQvMC8zMjMxMzkyZTM3MzAyZTMwMmUz MDJmMzEzNTJkMzEzNTIwM2QzZTIwMzkzNDMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwHbRjANBgkq hkiG9w0BAQsFAAOCAQEANWyzG+0PuaDmb99tZczqR3vPUqosE0Mcc/qamA3urqor OESqDS8qZ9tz7PTfgygv2AWr4obgg/O7k6ctbdHuD/oNXCEXZBxxyXw52GkWYA2K UiJ1D2dOMRjv8uvd9FehKx5PFb1OAsnK1R3ZxHEDQ2+BEGQlQy+S5k0ZPMucW9f3 jAtZuY6yHFl1hHgkeZIjUAIPyP87j7iNL3fFWOmsncaUzG9akHg2Ty7G76VlIW4w wsBl8zNkKI30s+9z+FCaofCJOYet6kj1vSJp2dbLLIqIWFrHl0JDwTPE0IH9vB7e NCI62GuBc1ZwTHmIgoG98BOv17nIMJV69k4svjuP9A== -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:03 2026 by rpki-client