$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/36312e36332e33322e302f31392d3234203d3e203138303432.roa File: 36312e36332e33322e302f31392d3234203d3e203138303432.roa (raw, json) Hash identifier: kc3TwKGClBl/wdVIuv2SgomZm1PKm8wv7DjRE93+8K8= Subject key identifier: F5:7B:1B:01:34:F4:54:E9:99:A7:BB:64:8E:17:6B:7F:D6:98:48:EA Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 093FDD48CDDCDB4876D730B2857EBC11AEF6FFF6 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36332e33322e302f31392d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 16:45:12 +0000 ROA not before: Mon 11 May 2026 16:40:12 +0000 ROA not after: Mon 10 May 2027 16:45:12 +0000 asID: 18042 IP address blocks: 61.63.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:3f:dd:48:cd:dc:db:48:76:d7:30:b2:85:7e:bc:11:ae:f6:ff:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: May 11 16:40:12 2026 GMT Not After : May 10 16:45:12 2027 GMT Subject: CN=F57B1B0134F454E999A7BB648E176B7FD69848EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9c:55:b2:22:7e:f0:67:b9:04:a3:e6:88:a1: 2d:80:30:d0:6f:df:25:f8:6c:50:4d:79:6e:7c:d7: 13:84:30:e6:cf:73:61:3b:5f:52:b5:46:71:99:46: bb:6e:22:f2:9f:cc:f9:20:86:45:93:bb:1d:fd:29: de:4f:1a:cd:20:ae:c9:6b:56:22:42:88:f7:ae:67: b4:14:2b:79:0d:60:57:4a:b4:5c:c1:66:0f:67:0f: 49:b6:0b:cd:f6:dd:55:fd:c6:16:39:7f:d4:3e:78: 5b:af:1a:ac:ef:80:c3:ed:fa:1a:e7:e3:d5:71:0e: 1e:9a:a9:fd:67:80:56:b0:da:cf:97:94:88:f2:85: 9e:52:37:43:f0:84:cf:4e:3c:97:9e:07:86:c1:20: 94:95:18:59:32:9c:fd:8d:75:da:ae:68:60:b5:e4: 7e:8f:25:b2:5c:03:c3:86:3a:0f:52:57:26:14:a3: 4c:69:c9:30:69:2f:ff:2e:32:4f:f5:70:ea:5d:03: 78:23:64:31:8c:b9:01:b4:50:6e:53:2c:3a:19:d1: a6:26:0a:14:d8:0b:3a:9b:1b:e7:b7:61:ff:a4:85: c9:7b:c7:86:2d:1e:45:6b:48:a6:47:d6:c9:74:73: 11:ea:b2:9d:a4:8c:94:52:a0:6d:53:3e:f4:df:b9: b2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7B:1B:01:34:F4:54:E9:99:A7:BB:64:8E:17:6B:7F:D6:98:48:EA X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36332e33322e302f31392d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.63.32.0/19 Signature Algorithm: sha256WithRSAEncryption c0:b0:9e:62:06:f3:b6:79:36:70:82:92:1c:38:c0:2f:ba:13: 0e:d8:88:f7:da:f2:06:27:ee:47:75:ec:e6:f9:f8:fb:4e:d5: 61:50:93:5a:1c:91:24:97:0f:03:e6:24:26:ed:44:37:34:a5: 56:c0:be:45:36:8a:75:71:2e:20:2b:70:3f:bb:c7:03:a1:e4: de:73:66:aa:06:be:c3:25:75:8c:aa:54:ac:ec:cd:b5:63:bd: b9:f8:12:fe:e6:3b:72:9c:96:08:cb:a9:63:10:62:ef:9b:a0: c9:e9:86:f1:d5:9c:8a:08:2b:fc:e9:21:c0:c2:75:80:bb:8b: af:8b:ba:65:2e:a0:88:78:aa:14:f4:0a:cb:db:10:7a:41:64: 10:c5:89:1f:e8:b9:4f:82:cb:f8:33:63:5f:b8:14:4e:cc:38: 25:53:76:5c:56:2e:38:9f:f6:a3:c7:60:d8:f6:f3:96:ac:1f: 8e:65:2c:36:9f:31:15:4b:46:1f:58:54:90:fd:96:d8:9c:fd: ca:68:18:67:7b:f7:28:5f:63:09:03:5b:48:39:6b:df:04:e5: ab:c4:3c:61:60:10:72:79:63:79:14:22:ac:28:b5:68:3e:3e: db:7a:2c:48:ec:1a:c3:16:e5:11:4d:77:ba:f3:58:72:25:ed: a3:35:53:99 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUCT/dSM3c20h21zCyhX68Ea72//YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA1MTExNjQwMTJaFw0yNzA1MTAxNjQ1MTJaMDMxMTAvBgNV BAMTKEY1N0IxQjAxMzRGNDU0RTk5OUE3QkI2NDhFMTc2QjdGRDY5ODQ4RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCunFWyIn7wZ7kEo+aIoS2AMNBv 3yX4bFBNeW581xOEMObPc2E7X1K1RnGZRrtuIvKfzPkghkWTux39Kd5PGs0grslr ViJCiPeuZ7QUK3kNYFdKtFzBZg9nD0m2C8323VX9xhY5f9Q+eFuvGqzvgMPt+hrn 49VxDh6aqf1ngFaw2s+XlIjyhZ5SN0PwhM9OPJeeB4bBIJSVGFkynP2NddquaGC1 5H6PJbJcA8OGOg9SVyYUo0xpyTBpL/8uMk/1cOpdA3gjZDGMuQG0UG5TLDoZ0aYm ChTYCzqbG+e3Yf+khcl7x4YtHkVrSKZH1sl0cxHqsp2kjJRSoG1TPvTfubKZAgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQU9XsbATT0VOmZp7tkjhdrf9aYSOowHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzYzMTJlMzYzMzJlMzMzMjJl MzAyZjMxMzkyZDMyMzQyMDNkM2UyMDMxMzgzMDM0MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU9PyAw DQYJKoZIhvcNAQELBQADggEBAMCwnmIG87Z5NnCCkhw4wC+6Ew7YiPfa8gYn7kd1 7Ob5+PtO1WFQk1ockSSXDwPmJCbtRDc0pVbAvkU2inVxLiArcD+7xwOh5N5zZqoG vsMldYyqVKzszbVjvbn4Ev7mO3KclgjLqWMQYu+boMnphvHVnIoIK/zpIcDCdYC7 i6+LumUuoIh4qhT0CsvbEHpBZBDFiR/ouU+Cy/gzY1+4FE7MOCVTdlxWLjif9qPH YNj285asH45lLDafMRVLRh9YVJD9ltic/cpoGGd79yhfYwkDW0g5a98E5avEPGFg EHJ5Y3kUIqwotWg+Ptt6LEjsGsMW5RFNd7rzWHIl7aM1U5k= -----END CERTIFICATE-----Generated at Wed May 13 21:08:47 2026 by rpki-client