$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/36312e36372e3230372e302f32342d3234203d3e203138303432.roa File: 36312e36372e3230372e302f32342d3234203d3e203138303432.roa (raw, json) Hash identifier: ROMY0pvbK9pgNIJ5xOKM3zOAho89NDAHoNiicQ1PNBE= Subject key identifier: 8A:C6:2A:2B:F4:96:CF:81:57:E6:7A:64:10:C0:8B:CC:A8:E3:BC:80 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 0A777C7863A1FF4ADE72CC7D61E775A9096FDBD9 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36372e3230372e302f32342d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 16:50:15 +0000 ROA not before: Mon 11 May 2026 16:45:15 +0000 ROA not after: Mon 10 May 2027 16:50:15 +0000 asID: 18042 IP address blocks: 61.67.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:77:7c:78:63:a1:ff:4a:de:72:cc:7d:61:e7:75:a9:09:6f:db:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: May 11 16:45:15 2026 GMT Not After : May 10 16:50:15 2027 GMT Subject: CN=8AC62A2BF496CF8157E67A6410C08BCCA8E3BC80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ab:37:9d:56:e3:a5:35:35:21:c8:d4:b0:4c: a1:92:43:d0:f9:f0:af:a8:81:63:11:72:52:da:21: 95:2a:2d:18:c1:74:f5:24:4b:77:d7:d9:ca:94:33: ee:d4:12:1e:57:d5:4b:81:3e:79:88:3e:43:77:a6: 0c:ef:6e:81:d0:99:91:bc:19:4b:d6:1c:ff:54:bb: 69:9c:77:78:85:4a:f5:e2:78:e1:c7:f5:0a:b2:00: 37:0a:b3:16:e3:a4:cc:73:79:2c:d4:f0:00:d1:4f: 6a:dc:1b:e5:9b:48:a4:49:e4:ee:46:4a:a5:2d:48: 37:1b:d0:31:35:e5:7d:d9:eb:e4:d6:0a:67:45:7e: 3c:bb:12:b4:2a:63:8b:35:80:a0:d5:c2:c2:85:7c: 02:82:3f:75:36:3f:b8:12:1a:d4:dd:40:f3:15:2d: 9b:c7:49:3a:f5:4c:56:ac:9d:76:da:45:e3:ce:9b: 0a:f8:c9:25:ed:c0:0e:cc:31:cb:45:f6:f4:5b:7c: 32:8c:a7:b1:0a:72:fd:41:b9:a0:62:9d:15:88:91: e4:b2:f0:53:4b:9b:7a:49:6d:53:2c:56:c4:e6:a3: 80:d6:0b:b7:14:14:f6:79:f5:89:70:ff:fe:57:73: e4:3a:56:4c:7f:8b:df:a6:d7:fc:c9:d3:93:39:69: 35:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C6:2A:2B:F4:96:CF:81:57:E6:7A:64:10:C0:8B:CC:A8:E3:BC:80 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36372e3230372e302f32342d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.67.207.0/24 Signature Algorithm: sha256WithRSAEncryption 24:ff:6d:87:8d:60:80:4b:3c:ae:c9:c6:ab:41:d1:9e:77:cf: 85:3a:10:e3:0d:50:3e:6c:40:5b:8a:c9:11:94:ec:36:3e:f2: 38:ae:e1:ea:9f:63:b0:cc:ba:54:55:14:df:57:7f:89:4c:e1: 15:93:59:e4:52:e8:da:c3:83:13:ad:d9:cb:f9:e7:c2:e6:79: 01:ad:05:41:d7:e8:64:13:84:70:92:f2:93:d0:b7:25:8f:0e: 6d:b1:73:3d:71:6a:c6:47:74:70:60:df:96:f9:a0:4e:d8:af: 69:fb:12:57:e4:12:76:d7:f8:66:f0:ae:9a:5e:16:68:be:08: 99:d5:98:f0:c8:3a:c6:01:e6:40:0d:51:64:5d:23:c7:bd:28: 47:72:41:a3:fe:a7:da:ef:7b:86:57:d9:84:66:07:8b:4c:ee: 70:3b:b5:f1:90:6e:da:dd:6d:a3:80:f0:f9:ce:6c:32:40:08: 5b:4a:78:a0:0d:48:68:fd:d5:3c:42:36:89:35:a2:18:5f:d8: 3b:83:e4:78:f6:d3:88:e3:2a:6a:c1:41:5a:23:f3:55:c4:7d: 4b:ca:31:f6:ed:dc:6a:6b:7d:93:66:14:d6:d5:b8:b7:16:e2: 30:f0:44:d8:a4:a4:bb:e1:4d:07:44:78:84:06:59:65:5c:52: 7b:06:2e:f0 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUCnd8eGOh/0recsx9Yed1qQlv29kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA1MTExNjQ1MTVaFw0yNzA1MTAxNjUwMTVaMDMxMTAvBgNV BAMTKDhBQzYyQTJCRjQ5NkNGODE1N0U2N0E2NDEwQzA4QkNDQThFM0JDODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDqzedVuOlNTUhyNSwTKGSQ9D5 8K+ogWMRclLaIZUqLRjBdPUkS3fX2cqUM+7UEh5X1UuBPnmIPkN3pgzvboHQmZG8 GUvWHP9Uu2mcd3iFSvXieOHH9QqyADcKsxbjpMxzeSzU8ADRT2rcG+WbSKRJ5O5G SqUtSDcb0DE15X3Z6+TWCmdFfjy7ErQqY4s1gKDVwsKFfAKCP3U2P7gSGtTdQPMV LZvHSTr1TFasnXbaRePOmwr4ySXtwA7MMctF9vRbfDKMp7EKcv1BuaBinRWIkeSy 8FNLm3pJbVMsVsTmo4DWC7cUFPZ59Ylw//5Xc+Q6Vkx/i9+m1/zJ05M5aTWRAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUisYqK/SWz4FX5npkEMCLzKjjvIAwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzYzMTJlMzYzNzJlMzIzMDM3 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD1D zzANBgkqhkiG9w0BAQsFAAOCAQEAJP9th41ggEs8rsnGq0HRnnfPhToQ4w1QPmxA W4rJEZTsNj7yOK7h6p9jsMy6VFUU31d/iUzhFZNZ5FLo2sODE63Zy/nnwuZ5Aa0F QdfoZBOEcJLyk9C3JY8ObbFzPXFqxkd0cGDflvmgTtivafsSV+QSdtf4ZvCuml4W aL4ImdWY8Mg6xgHmQA1RZF0jx70oR3JBo/6n2u97hlfZhGYHi0zucDu18ZBu2t1t o4Dw+c5sMkAIW0p4oA1IaP3VPEI2iTWiGF/YO4PkePbTiOMqasFBWiPzVcR9S8ox 9u3camt9k2YU1tW4txbiMPBE2KSku+FNB0R4hAZZZVxSewYu8A== -----END CERTIFICATE-----Generated at Wed May 13 21:08:53 2026 by rpki-client