$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/36312e36372e3230392e302f32342d3234203d3e203138303432.roa File: 36312e36372e3230392e302f32342d3234203d3e203138303432.roa (raw, json) Hash identifier: ed4gPSkGNoF3zJyMxYUgrEQNItcgqcPgBUmqsSI2BBo= Subject key identifier: EE:2B:AE:BB:9B:18:B3:28:0C:3C:5B:89:72:BF:FE:8E:CC:07:BE:B4 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 250186CC87226BFB88B0496230283CBB112FF8B5 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36372e3230392e302f32342d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 16:48:47 +0000 ROA not before: Mon 11 May 2026 16:43:47 +0000 ROA not after: Mon 10 May 2027 16:48:47 +0000 asID: 18042 IP address blocks: 61.67.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:01:86:cc:87:22:6b:fb:88:b0:49:62:30:28:3c:bb:11:2f:f8:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: May 11 16:43:47 2026 GMT Not After : May 10 16:48:47 2027 GMT Subject: CN=EE2BAEBB9B18B3280C3C5B8972BFFE8ECC07BEB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e0:bf:c6:bf:ba:42:4b:f3:ed:71:27:65:6c: 49:43:e4:90:54:13:c1:a9:47:7e:e9:c6:75:85:65: f3:1e:a3:f4:2c:3d:63:9e:31:15:db:31:e5:3c:8e: 6a:aa:2e:9d:77:21:08:1c:c3:51:5a:f2:fb:6c:24: 0c:fb:92:80:6c:71:85:37:ea:90:ba:b8:0b:0f:69: 06:17:a7:71:50:f9:57:07:de:39:c6:3d:34:ab:51: e5:68:2e:50:96:f8:51:00:aa:b1:bc:bc:4c:06:9c: 01:c2:1f:65:60:df:b0:48:9e:6d:40:38:1e:c5:9c: 90:c2:ee:09:21:32:b5:18:cc:e9:1a:77:9a:32:7a: 43:ed:67:6c:7b:bd:d3:b8:10:88:98:68:05:3a:de: fc:59:76:1c:56:a9:cb:53:ef:d2:64:0c:42:44:ec: 4c:30:cd:3e:3f:fc:fd:d1:9c:99:e4:e5:4b:c8:2f: d2:11:70:dc:ad:f5:ee:b5:3b:57:9a:9c:9c:78:6e: a3:f4:28:07:3d:fe:d0:09:f0:ea:65:11:d1:0d:63: 8d:6f:a9:06:cf:62:1d:f9:46:b4:7d:43:55:09:d1: 56:58:75:9f:26:6a:1f:7d:91:a0:d8:41:ad:2c:af: 8f:9a:6e:57:af:3b:5e:ea:80:b5:f9:5d:0f:42:d9: 5e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:2B:AE:BB:9B:18:B3:28:0C:3C:5B:89:72:BF:FE:8E:CC:07:BE:B4 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36372e3230392e302f32342d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.67.209.0/24 Signature Algorithm: sha256WithRSAEncryption a1:5a:0d:4c:b8:97:e1:b6:b2:0e:71:f2:93:62:5d:ef:98:37: fe:f3:ba:6d:75:ef:79:bf:7b:f0:d5:f2:a9:d7:db:43:97:e1: fa:91:c4:08:13:0b:61:29:bf:69:88:19:fb:c4:26:67:f6:6b: a1:a0:56:29:fa:60:18:52:6b:a4:91:fe:4a:bd:b0:6b:7c:26: 43:0b:1c:68:ab:7a:c8:c6:a1:19:84:5d:42:69:11:c5:2f:9e: e9:11:57:29:56:1a:d9:d9:8f:6c:d5:1f:76:cd:16:79:6e:31: 5b:f4:32:0b:0c:18:3b:41:21:ec:ad:d0:74:9b:8d:67:a1:86: df:74:55:2e:0d:de:33:54:48:0f:5a:d6:0a:a7:b8:39:12:9a: d6:30:ce:15:47:5f:c4:81:f3:92:df:ce:82:84:cf:9b:40:95: f4:48:31:33:de:47:56:61:94:fc:0a:2e:ce:f4:ce:70:bb:5c: 80:36:e9:5a:14:2c:0a:a0:de:3e:b9:38:7b:10:d1:ae:b0:81: 93:fe:07:cc:7f:30:87:21:6e:48:dc:eb:5f:37:8e:fa:17:99: 67:67:98:a7:3e:4c:5f:6e:71:94:15:98:58:b3:b5:ad:89:ce: 0a:9a:45:7d:04:fe:84:e7:45:8d:ad:23:4c:d6:d9:87:c6:74: fd:15:44:05 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUJQGGzIcia/uIsEliMCg8uxEv+LUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA1MTExNjQzNDdaFw0yNzA1MTAxNjQ4NDdaMDMxMTAvBgNV BAMTKEVFMkJBRUJCOUIxOEIzMjgwQzNDNUI4OTcyQkZGRThFQ0MwN0JFQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC64L/Gv7pCS/PtcSdlbElD5JBU E8GpR37pxnWFZfMeo/QsPWOeMRXbMeU8jmqqLp13IQgcw1Fa8vtsJAz7koBscYU3 6pC6uAsPaQYXp3FQ+VcH3jnGPTSrUeVoLlCW+FEAqrG8vEwGnAHCH2Vg37BInm1A OB7FnJDC7gkhMrUYzOkad5oyekPtZ2x7vdO4EIiYaAU63vxZdhxWqctT79JkDEJE 7EwwzT4//P3RnJnk5UvIL9IRcNyt9e61O1eanJx4bqP0KAc9/tAJ8OplEdENY41v qQbPYh35RrR9Q1UJ0VZYdZ8mah99kaDYQa0sr4+ablevO17qgLX5XQ9C2V5bAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQU7iuuu5sYsygMPFuJcr/+jswHvrQwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzYzMTJlMzYzNzJlMzIzMDM5 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD1D 0TANBgkqhkiG9w0BAQsFAAOCAQEAoVoNTLiX4bayDnHyk2Jd75g3/vO6bXXveb97 8NXyqdfbQ5fh+pHECBMLYSm/aYgZ+8QmZ/ZroaBWKfpgGFJrpJH+Sr2wa3wmQwsc aKt6yMahGYRdQmkRxS+e6RFXKVYa2dmPbNUfds0WeW4xW/QyCwwYO0Eh7K3QdJuN Z6GG33RVLg3eM1RID1rWCqe4ORKa1jDOFUdfxIHzkt/OgoTPm0CV9EgxM95HVmGU /AouzvTOcLtcgDbpWhQsCqDePrk4exDRrrCBk/4HzH8whyFuSNzrXzeO+heZZ2eY pz5MX25xlBWYWLO1rYnOCppFfQT+hOdFja0jTNbZh8Z0/RVEBQ== -----END CERTIFICATE-----Generated at Wed May 13 21:08:46 2026 by rpki-client