$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/36312e37302e302e302f31352d3135203d3e2039343136.roa File: 36312e37302e302e302f31352d3135203d3e2039343136.roa (raw, json) Hash identifier: BJaarcnHIhcNbyrbRtPeZJyZQXqBLrZ32DEhQAx4/Qo= Subject key identifier: D7:83:D7:D1:F5:B1:83:A4:EC:CC:E7:C4:7A:B2:2A:78:DE:98:13:9B Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 01CF370E88FE30A06755B38E4273332013646FCB Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/36312e37302e302e302f31352d3135203d3e2039343136.roa Signing time: Thu 25 Jun 2026 02:43:50 +0000 ROA not before: Thu 25 Jun 2026 02:38:50 +0000 ROA not after: Thu 24 Jun 2027 02:43:50 +0000 asID: 9416 IP address blocks: 61.70.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:cf:37:0e:88:fe:30:a0:67:55:b3:8e:42:73:33:20:13:64:6f:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:50 2026 GMT Not After : Jun 24 02:43:50 2027 GMT Subject: CN=D783D7D1F5B183A4ECCCE7C47AB22A78DE98139B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2f:13:93:7c:c7:68:1b:24:33:22:00:0c:a2: 74:87:14:8b:90:7d:37:84:37:94:d2:88:bd:bb:4a: 70:2e:3a:ab:63:78:54:f3:a0:02:cf:97:f3:6a:82: 6a:6f:d4:84:e7:bf:50:86:9d:c6:4a:e0:ac:21:30: 79:ba:aa:a6:14:28:5f:22:03:59:04:ba:2a:90:6a: b6:67:f7:6e:a5:66:42:8e:15:69:f8:f7:21:39:11: 9a:d5:e1:e9:7d:90:ad:d8:30:ed:1b:d4:ba:8a:23: e4:d3:d9:96:a3:3b:8d:5a:85:7a:3f:13:44:b5:b3: 38:02:5f:cd:76:63:9d:f0:2a:8d:c2:b2:0b:f8:ac: e3:f0:05:90:2e:80:09:b4:a8:d2:c3:63:94:4a:b8: e1:01:61:a2:e8:26:ee:ef:11:f5:4f:b2:23:ee:39: 25:ce:12:67:5a:4b:ee:eb:c1:10:e4:d5:a5:d1:f1: 8f:58:81:53:fb:0a:76:fa:2d:35:5c:a9:e5:79:f5: 0e:5b:23:56:b5:2a:95:a0:32:c0:df:3a:2f:61:29: 55:a8:9c:07:b5:d4:b9:f7:72:5e:29:00:27:84:e1: 67:0c:56:60:3a:0c:bb:84:94:86:0d:e3:55:7d:2f: 44:01:ae:48:f8:b2:96:b5:44:59:fd:04:1b:f0:b3: 7e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:83:D7:D1:F5:B1:83:A4:EC:CC:E7:C4:7A:B2:2A:78:DE:98:13:9B X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/36312e37302e302e302f31352d3135203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.70.0.0/15 Signature Algorithm: sha256WithRSAEncryption 67:82:ad:36:b6:1c:50:26:45:de:18:32:a6:5a:77:3f:41:3c: 6a:81:04:94:90:18:04:6e:9a:13:3d:d7:66:d4:55:41:d8:f7: 73:f9:46:4c:9d:3a:8f:da:fc:07:b2:26:e0:f8:6a:fd:f8:6e: 14:77:03:5b:5b:bd:06:87:46:a9:2d:4a:09:77:f8:1d:00:9c: 4f:ef:fc:f4:ab:23:8e:d3:4b:7e:9a:61:b0:ba:5b:af:99:e6: 9e:a7:42:a0:5c:b6:ba:ca:09:d3:2b:5d:24:0d:47:77:fa:60: 8f:e0:65:b7:8c:78:cc:11:92:f9:60:4d:da:26:2c:e3:72:68: 5e:76:8e:43:ce:61:94:ca:8c:50:5a:e0:c7:1e:d6:7f:d2:f8: c0:71:fa:86:8a:85:01:08:c1:9c:7c:1e:c5:da:17:09:32:14: 9d:29:44:87:08:14:39:5b:df:cf:45:3d:26:1f:fc:85:a8:31: 92:25:d5:81:99:69:29:0a:a3:4f:83:28:e5:cb:76:5b:5b:81: 46:cd:2d:c8:4d:33:5b:5b:f5:57:89:62:f3:c3:56:6e:05:45: d0:72:2c:aa:9d:63:27:4b:40:16:17:83:a8:b9:5e:a1:96:94: 98:76:3b:ff:39:e4:95:8f:11:ef:7a:92:63:e1:8d:6f:ce:e3: 33:00:ce:a5 -----BEGIN CERTIFICATE----- MIIEyjCCA7KgAwIBAgIUAc83Doj+MKBnVbOOQnMzIBNkb8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTBaFw0yNzA2MjQwMjQzNTBaMDMxMTAvBgNV BAMTKEQ3ODNEN0QxRjVCMTgzQTRFQ0NDRTdDNDdBQjIyQTc4REU5ODEzOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxLxOTfMdoGyQzIgAMonSHFIuQ fTeEN5TSiL27SnAuOqtjeFTzoALPl/Nqgmpv1ITnv1CGncZK4KwhMHm6qqYUKF8i A1kEuiqQarZn926lZkKOFWn49yE5EZrV4el9kK3YMO0b1LqKI+TT2ZajO41ahXo/ E0S1szgCX812Y53wKo3Csgv4rOPwBZAugAm0qNLDY5RKuOEBYaLoJu7vEfVPsiPu OSXOEmdaS+7rwRDk1aXR8Y9YgVP7Cnb6LTVcqeV59Q5bI1a1KpWgMsDfOi9hKVWo nAe11Ln3cl4pACeE4WcMVmA6DLuElIYN41V9L0QBrkj4spa1RFn9BBvws359AgMB AAGjggHUMIIB0DAdBgNVHQ4EFgQU14PX0fWxg6TszOfEerIqeN6YE5swHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuGVXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzYzMTJlMzczMDJlMzAyZTMw MmYzMTM1MmQzMTM1MjAzZDNlMjAzOTM0MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAT1GMA0GCSqG SIb3DQEBCwUAA4IBAQBngq02thxQJkXeGDKmWnc/QTxqgQSUkBgEbpoTPddm1FVB 2Pdz+UZMnTqP2vwHsibg+Gr9+G4UdwNbW70Gh0apLUoJd/gdAJxP7/z0qyOO00t+ mmGwuluvmeaep0KgXLa6ygnTK10kDUd3+mCP4GW3jHjMEZL5YE3aJizjcmhedo5D zmGUyoxQWuDHHtZ/0vjAcfqGioUBCMGcfB7F2hcJMhSdKUSHCBQ5W9/PRT0mH/yF qDGSJdWBmWkpCqNPgyjly3ZbW4FGzS3ITTNbW/VXiWLzw1ZuBUXQciyqnWMnS0AW F4OouV6hlpSYdjv/OeSVjxHvepJj4Y1vzuMzAM6l -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:04 2026 by rpki-client