$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/36312e36332e38372e302f32342d3234203d3e203138303432.roa File: 36312e36332e38372e302f32342d3234203d3e203138303432.roa (raw, json) Hash identifier: erTaVpl/eNVX7PgR7SUKeD6eH0JlVlMxS4/Hj2ekkfA= Subject key identifier: D2:0D:29:34:DB:4B:68:4F:0D:BF:F3:5C:E7:0D:10:9D:97:5D:1C:B3 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 069E62A594E32EFFBEB3984B75679AE62C9EB244 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36332e38372e302f32342d3234203d3e203138303432.roa Signing time: Tue 12 May 2026 01:29:28 +0000 ROA not before: Tue 12 May 2026 01:24:28 +0000 ROA not after: Tue 11 May 2027 01:29:28 +0000 asID: 18042 IP address blocks: 61.63.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:9e:62:a5:94:e3:2e:ff:be:b3:98:4b:75:67:9a:e6:2c:9e:b2:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: May 12 01:24:28 2026 GMT Not After : May 11 01:29:28 2027 GMT Subject: CN=D20D2934DB4B684F0DBFF35CE70D109D975D1CB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:db:79:8b:54:a2:1c:01:39:15:b7:03:1c:63: 6a:05:d8:1a:a2:30:98:9c:af:56:b8:7e:03:32:75: 04:4b:cf:7a:f0:e7:c5:9f:85:cd:05:06:73:9f:4a: c2:0d:e5:1a:60:05:fe:0d:89:75:8e:f4:02:69:80: a3:e4:bc:cb:93:aa:63:3d:1a:a9:9b:21:2c:97:2f: 07:27:c8:78:49:20:ea:9b:2b:07:e4:5e:b0:cf:3f: 1d:a2:ba:0e:53:ff:0d:50:59:ad:1d:44:8f:c6:c3: d6:b7:83:db:3f:0c:1f:0a:e0:4c:0b:57:db:8a:a8: 10:fe:5e:26:4a:74:2a:a3:b8:87:30:18:65:9b:12: 40:a5:dd:6c:b6:e5:6e:f1:84:79:68:29:e0:9e:2f: da:d9:7f:38:00:7b:6a:b3:cf:0b:1e:e0:be:a2:77: e6:57:b9:ee:27:71:6c:cd:85:1c:08:0a:01:4c:b8: 0c:f5:55:f7:77:93:dc:82:12:3f:65:7f:a5:ee:7e: 8e:96:d8:d6:61:13:83:a7:3c:bd:57:50:fb:98:f9: 56:13:d9:98:34:00:8d:68:2e:5e:ea:c1:8d:9f:0d: 40:21:5d:5c:cd:f6:2f:dc:4e:9c:f4:0b:b3:b1:b8: 16:99:9a:95:30:50:07:6d:ed:eb:4d:50:05:b1:e9: 64:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:0D:29:34:DB:4B:68:4F:0D:BF:F3:5C:E7:0D:10:9D:97:5D:1C:B3 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36332e38372e302f32342d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.63.87.0/24 Signature Algorithm: sha256WithRSAEncryption aa:0b:36:d6:99:fb:13:55:3f:e8:32:24:7d:4d:9d:54:1f:0b: 52:05:b9:de:ff:21:dd:e7:0a:f9:50:94:3d:e0:be:0d:39:0d: 58:48:94:83:18:bf:e8:2f:33:ac:52:ea:d7:26:5d:67:fe:4e: 62:14:59:0b:2b:c6:2f:f0:1e:63:b8:3e:17:0c:b3:af:aa:03: 5b:54:0c:e0:71:6e:4a:03:ef:1e:d5:03:f5:8a:9e:33:b8:d3: 77:d4:0b:b5:b0:4e:0d:7a:20:a6:ca:7b:c8:5c:0f:8d:84:09: 59:cb:96:c2:9f:7e:0c:6f:3d:62:e3:64:3c:9a:8c:5f:89:14: 9d:80:a8:ad:f4:00:29:a6:d2:12:53:39:55:4c:0f:19:f5:58: 1a:dd:af:9d:c7:5a:f2:fd:eb:c0:25:4b:3e:22:f1:99:04:c2: 88:60:5c:40:a7:02:5f:76:af:39:ee:ec:e9:03:75:51:25:2c: 56:6d:67:76:35:50:c4:f0:ad:1b:05:d9:e7:e6:ff:e2:4f:3b: e8:37:39:61:38:d0:fb:2b:c3:18:d3:df:0f:03:dc:2c:5b:29: 5f:60:20:75:5a:70:70:a6:08:29:d7:6e:b4:59:ea:7f:d5:12: 8a:9b:8f:30:6e:3b:9d:a7:72:c6:8b:86:16:f2:f0:ed:08:4f: 8f:f8:e1:12 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUBp5ipZTjLv++s5hLdWea5iyeskQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA1MTIwMTI0MjhaFw0yNzA1MTEwMTI5MjhaMDMxMTAvBgNV BAMTKEQyMEQyOTM0REI0QjY4NEYwREJGRjM1Q0U3MEQxMDlEOTc1RDFDQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp23mLVKIcATkVtwMcY2oF2Bqi MJicr1a4fgMydQRLz3rw58Wfhc0FBnOfSsIN5RpgBf4NiXWO9AJpgKPkvMuTqmM9 GqmbISyXLwcnyHhJIOqbKwfkXrDPPx2iug5T/w1QWa0dRI/Gw9a3g9s/DB8K4EwL V9uKqBD+XiZKdCqjuIcwGGWbEkCl3Wy25W7xhHloKeCeL9rZfzgAe2qzzwse4L6i d+ZXue4ncWzNhRwICgFMuAz1Vfd3k9yCEj9lf6Xufo6W2NZhE4OnPL1XUPuY+VYT 2Zg0AI1oLl7qwY2fDUAhXVzN9i/cTpz0C7OxuBaZmpUwUAdt7etNUAWx6WQ/AgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQU0g0pNNtLaE8Nv/Nc5w0QnZddHLMwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzYzMTJlMzYzMzJlMzgzNzJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzgzMDM0MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9P1cw DQYJKoZIhvcNAQELBQADggEBAKoLNtaZ+xNVP+gyJH1NnVQfC1IFud7/Id3nCvlQ lD3gvg05DVhIlIMYv+gvM6xS6tcmXWf+TmIUWQsrxi/wHmO4PhcMs6+qA1tUDOBx bkoD7x7VA/WKnjO403fUC7WwTg16IKbKe8hcD42ECVnLlsKffgxvPWLjZDyajF+J FJ2AqK30ACmm0hJTOVVMDxn1WBrdr53HWvL968AlSz4i8ZkEwohgXECnAl92rznu 7OkDdVElLFZtZ3Y1UMTwrRsF2efm/+JPO+g3OWE40PsrwxjT3w8D3CxbKV9gIHVa cHCmCCnXbrRZ6n/VEoqbjzBuO52ncsaLhhby8O0IT4/44RI= -----END CERTIFICATE-----Generated at Wed May 13 21:08:48 2026 by rpki-client