$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/36312e36372e3132382e302f31372d3234203d3e203138303432.roa File: 36312e36372e3132382e302f31372d3234203d3e203138303432.roa (raw, json) Hash identifier: dEaBmauxf4unE9wq3sWsnP/wT/j+G25SU+pcomNXZfk= Subject key identifier: AC:EF:48:1D:2F:D3:F7:6A:56:D5:CF:36:D9:DD:DB:86:EF:A5:36:A5 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 710CA97DB7B223CB8AF744844EFF93E8315472C8 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36372e3132382e302f31372d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 16:45:42 +0000 ROA not before: Mon 11 May 2026 16:40:42 +0000 ROA not after: Mon 10 May 2027 16:45:42 +0000 asID: 18042 IP address blocks: 61.67.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:0c:a9:7d:b7:b2:23:cb:8a:f7:44:84:4e:ff:93:e8:31:54:72:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: May 11 16:40:42 2026 GMT Not After : May 10 16:45:42 2027 GMT Subject: CN=ACEF481D2FD3F76A56D5CF36D9DDDB86EFA536A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:43:63:bf:03:2f:a8:52:59:ec:48:44:06:b4: 16:f5:ec:ab:f4:c1:d1:3f:87:ef:cb:e8:a3:4d:96: ac:4f:5a:7b:65:62:1e:b2:30:42:9f:02:44:a5:57: d3:ff:3f:1b:6a:27:6b:e6:c7:9d:57:11:0d:9c:eb: de:3f:21:e8:99:2b:7e:fc:43:4c:bd:ae:13:77:98: 00:59:b1:ef:b2:5d:02:ab:ef:34:5d:05:f2:3a:4a: 42:3d:1e:69:a2:4d:60:6d:54:05:6d:a2:b9:7b:0e: 4d:30:d9:27:51:82:17:ef:51:84:5d:e5:78:22:41: 29:a2:46:44:2f:6d:0c:bf:f9:da:1f:79:9e:3d:ff: be:b7:0a:30:17:c1:25:98:2c:86:96:05:56:f3:6e: 8e:21:7f:ed:a3:f4:69:d8:73:56:ef:83:fe:0b:eb: 3a:56:82:e9:10:af:fb:6a:71:34:0f:7f:70:0e:63: 94:43:64:13:d0:55:22:da:ed:50:1e:53:a2:0d:6b: 38:db:ec:dc:40:ff:3c:18:76:23:98:09:91:b9:ba: 57:da:75:8f:96:b1:40:99:72:b5:7a:3c:b7:3b:ba: 77:01:76:44:5c:fd:56:1d:b5:e3:56:98:b3:99:af: dd:c6:d3:31:8d:31:5c:80:d4:51:91:2e:7a:e5:de: 23:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:EF:48:1D:2F:D3:F7:6A:56:D5:CF:36:D9:DD:DB:86:EF:A5:36:A5 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36372e3132382e302f31372d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.67.128.0/17 Signature Algorithm: sha256WithRSAEncryption 8b:00:e2:13:c5:d2:40:45:52:11:d7:6c:5a:95:89:b4:d5:05: fd:c0:9d:7b:2b:80:6d:82:f2:82:99:33:13:16:61:03:c6:6c: 59:be:d3:d6:49:1d:17:10:2d:a9:9f:c9:1e:02:7c:5d:97:02: aa:8f:69:30:70:28:fc:bd:e2:a4:1c:05:0e:87:93:a8:dd:a4: 42:94:36:24:55:87:04:92:0e:17:49:b3:fa:17:f8:ff:ca:35: 22:55:23:7b:fe:81:6a:10:e6:f1:ff:cc:74:08:6e:1e:67:14: 67:7c:7f:b4:6f:ec:13:be:9e:69:dd:77:8b:e4:6a:44:e8:c8: 1b:c5:9d:72:c6:ea:d9:e7:9f:b0:04:f3:0e:75:4e:ce:59:8f: 6f:54:25:4e:7b:41:e6:80:02:99:94:81:e2:6c:fa:7f:9a:61: 7a:ac:74:29:f7:3c:6f:33:a1:15:cd:9f:3e:0d:5c:7e:0a:e2: d4:bc:26:d6:21:d5:e2:20:4e:6d:2c:c0:5c:ae:25:63:86:26: a2:f0:b7:4f:a3:65:14:19:25:4d:c2:bd:2c:c9:d1:d5:79:24: 7b:f0:ce:01:f1:49:0c:cd:90:d1:10:73:5e:a4:5e:0e:ee:0d: be:ce:b8:1e:e2:b2:69:68:be:c2:30:1f:aa:8a:74:90:6a:97: 9e:8a:4e:ea -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUcQypfbeyI8uK90SETv+T6DFUcsgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA1MTExNjQwNDJaFw0yNzA1MTAxNjQ1NDJaMDMxMTAvBgNV BAMTKEFDRUY0ODFEMkZEM0Y3NkE1NkQ1Q0YzNkQ5REREQjg2RUZBNTM2QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpQ2O/Ay+oUlnsSEQGtBb17Kv0 wdE/h+/L6KNNlqxPWntlYh6yMEKfAkSlV9P/PxtqJ2vmx51XEQ2c694/IeiZK378 Q0y9rhN3mABZse+yXQKr7zRdBfI6SkI9HmmiTWBtVAVtorl7Dk0w2SdRghfvUYRd 5XgiQSmiRkQvbQy/+dofeZ49/763CjAXwSWYLIaWBVbzbo4hf+2j9GnYc1bvg/4L 6zpWgukQr/tqcTQPf3AOY5RDZBPQVSLa7VAeU6INazjb7NxA/zwYdiOYCZG5ulfa dY+WsUCZcrV6PLc7uncBdkRc/VYdteNWmLOZr93G0zGNMVyA1FGRLnrl3iNJAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUrO9IHS/T92pW1c822d3bhu+lNqUwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzYzMTJlMzYzNzJlMzEzMjM4 MmUzMDJmMzEzNzJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBz1D gDANBgkqhkiG9w0BAQsFAAOCAQEAiwDiE8XSQEVSEddsWpWJtNUF/cCdeyuAbYLy gpkzExZhA8ZsWb7T1kkdFxAtqZ/JHgJ8XZcCqo9pMHAo/L3ipBwFDoeTqN2kQpQ2 JFWHBJIOF0mz+hf4/8o1IlUje/6BahDm8f/MdAhuHmcUZ3x/tG/sE76ead13i+Rq ROjIG8Wdcsbq2eefsATzDnVOzlmPb1QlTntB5oACmZSB4mz6f5pheqx0Kfc8bzOh Fc2fPg1cfgri1Lwm1iHV4iBObSzAXK4lY4YmovC3T6NlFBklTcK9LMnR1Xkke/DO AfFJDM2Q0RBzXqReDu4Nvs64HuKyaWi+wjAfqop0kGqXnopO6g== -----END CERTIFICATE-----Generated at Wed May 13 21:08:49 2026 by rpki-client