$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/36312e37302e302e302f31362d3234203d3e203138303432.roa File: 36312e37302e302e302f31362d3234203d3e203138303432.roa (raw, json) Hash identifier: 1bmRnsizPXnB6h8V6no32ScKIfF/XlnyKUkUD7iMQW0= Subject key identifier: 92:25:9C:C8:96:2B:03:BA:F2:2E:9A:86:E8:C0:F9:75:36:B3:A4:4E Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 3C8385F84E1F8E37697F07DFD376953FCD8542C2 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/36312e37302e302e302f31362d3234203d3e203138303432.roa Signing time: Thu 25 Jun 2026 02:43:55 +0000 ROA not before: Thu 25 Jun 2026 02:38:55 +0000 ROA not after: Thu 24 Jun 2027 02:43:55 +0000 asID: 18042 IP address blocks: 61.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:83:85:f8:4e:1f:8e:37:69:7f:07:df:d3:76:95:3f:cd:85:42:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:55 2026 GMT Not After : Jun 24 02:43:55 2027 GMT Subject: CN=92259CC8962B03BAF22E9A86E8C0F97536B3A44E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e5:62:86:5f:1b:45:51:e3:43:c5:02:26:54: 53:55:8e:80:93:16:64:f5:fa:63:21:b9:a8:a6:72: d6:1e:fb:43:85:bb:18:e1:8b:f3:94:01:7c:d4:06: 7f:31:35:5e:db:2a:f4:7c:33:2f:6d:04:ce:f3:de: 38:aa:f9:d9:5c:ba:13:fb:3e:ae:fb:c4:2f:14:3c: b5:24:32:dd:16:9e:dc:b0:96:dd:7a:69:a3:6c:e3: d2:22:6c:43:b0:d6:09:56:ef:a3:08:9b:1e:d1:c0: d6:d4:4d:47:c4:8e:3f:c1:5a:bb:12:1c:c7:99:6f: 84:d2:35:a5:c2:e3:29:2e:1c:d0:8a:9a:74:35:8e: 5f:59:ab:b8:79:1c:76:2c:09:70:87:97:e8:81:7d: 52:82:1e:ec:bb:6d:22:15:54:ec:a5:cc:df:fc:a7: f4:1c:e7:cc:92:d5:8f:a2:1e:96:b0:ec:86:32:20: e4:52:a5:47:04:21:85:f2:3a:95:89:3e:a4:1b:12: 07:27:39:4c:8b:a3:f3:97:9a:0a:d1:60:68:34:6b: 58:ff:f5:d6:fe:b5:a1:60:dd:f6:7c:5c:d2:c0:e1: 7f:00:47:db:9d:0e:74:10:b1:dc:a5:bd:a0:1a:78: 10:c1:4f:e1:d2:e2:d4:6f:d2:39:5f:de:8b:f6:d1: ca:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:25:9C:C8:96:2B:03:BA:F2:2E:9A:86:E8:C0:F9:75:36:B3:A4:4E X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/36312e37302e302e302f31362d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:fd:f3:58:d0:c3:2e:21:af:5c:a1:58:6b:4d:ef:fd:67:4e: 83:49:44:02:87:5f:4b:a5:fc:74:3f:37:b5:34:b0:ce:2a:a7: ba:6e:aa:5a:66:3d:a6:4a:ac:ef:e4:90:dd:a3:c7:5a:f5:03: 42:80:96:ba:97:1b:1a:b5:2f:19:b5:73:2e:9a:3d:39:10:38: 64:65:b6:4b:34:ac:49:b9:eb:c0:c6:ed:41:ea:56:d6:3b:45: fe:9c:6e:65:d9:eb:28:db:22:70:55:c0:e2:c9:fd:15:ec:3f: 90:2b:0a:58:f3:f5:df:a7:04:e5:2e:e7:86:cc:36:5d:27:60: 3c:cc:02:6a:e8:a8:20:4c:44:6b:a9:12:0b:ec:99:e9:70:3c: 65:aa:04:9b:63:d6:9f:72:69:29:96:cc:1a:53:22:7f:86:fe: 9e:4f:b2:d7:54:07:a8:a9:e0:03:80:9a:d2:88:e9:4b:74:6b: 2a:97:8b:b2:ea:62:f6:45:1b:9c:ed:b6:14:a5:09:96:85:42: af:9c:d6:ba:18:f4:97:10:56:4f:a8:65:c9:d7:b8:a3:e2:86: 05:0a:aa:f1:ae:e4:29:39:58:01:07:31:1f:da:36:00:3a:f1: ee:0f:28:04:60:7e:cf:ad:66:f5:25:38:42:e2:f9:0e:be:d5: 1e:91:7a:d4 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgIUPIOF+E4fjjdpfwff03aVP82FQsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTVaFw0yNzA2MjQwMjQzNTVaMDMxMTAvBgNV BAMTKDkyMjU5Q0M4OTYyQjAzQkFGMjJFOUE4NkU4QzBGOTc1MzZCM0E0NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA5WKGXxtFUeNDxQImVFNVjoCT FmT1+mMhuaimctYe+0OFuxjhi/OUAXzUBn8xNV7bKvR8My9tBM7z3jiq+dlcuhP7 Pq77xC8UPLUkMt0Wntywlt16aaNs49IibEOw1glW76MImx7RwNbUTUfEjj/BWrsS HMeZb4TSNaXC4ykuHNCKmnQ1jl9Zq7h5HHYsCXCHl+iBfVKCHuy7bSIVVOylzN/8 p/Qc58yS1Y+iHpaw7IYyIORSpUcEIYXyOpWJPqQbEgcnOUyLo/OXmgrRYGg0a1j/ 9db+taFg3fZ8XNLA4X8AR9udDnQQsdylvaAaeBDBT+HS4tRv0jlf3ov20crVAgMB AAGjggHWMIIB0jAdBgNVHQ4EFgQUkiWcyJYrA7ryLpqG6MD5dTazpE4wHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzYzMTJlMzczMDJlMzAyZTMw MmYzMTM2MmQzMjM0MjAzZDNlMjAzMTM4MzAzNDMyLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAPUYwDQYJ KoZIhvcNAQELBQADggEBABP981jQwy4hr1yhWGtN7/1nToNJRAKHX0ul/HQ/N7U0 sM4qp7puqlpmPaZKrO/kkN2jx1r1A0KAlrqXGxq1Lxm1cy6aPTkQOGRltks0rEm5 68DG7UHqVtY7Rf6cbmXZ6yjbInBVwOLJ/RXsP5ArCljz9d+nBOUu54bMNl0nYDzM AmroqCBMRGupEgvsmelwPGWqBJtj1p9yaSmWzBpTIn+G/p5PstdUB6ip4AOAmtKI 6Ut0ayqXi7LqYvZFG5ztthSlCZaFQq+c1roY9JcQVk+oZcnXuKPihgUKqvGu5Ck5 WAEHMR/aNgA68e4PKARgfs+tZvUlOELi+Q6+1R6RetQ= -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:01 2026 by rpki-client