$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/36312e37302e302e302f31362d3234203d3e2039343136.roa File: 36312e37302e302e302f31362d3234203d3e2039343136.roa (raw, json) Hash identifier: /osGzJngkb/tsS608qfM4i2/NL1l+P1CuanuP0CwLXM= Subject key identifier: 6D:89:BD:4F:22:CA:C8:47:F0:93:23:57:0A:E7:77:F3:B0:69:37:0B Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 180145E1DE105D16005CBF34F64D5D1957E21D67 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/36312e37302e302e302f31362d3234203d3e2039343136.roa Signing time: Thu 25 Jun 2026 02:43:59 +0000 ROA not before: Thu 25 Jun 2026 02:38:59 +0000 ROA not after: Thu 24 Jun 2027 02:43:59 +0000 asID: 9416 IP address blocks: 61.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:01:45:e1:de:10:5d:16:00:5c:bf:34:f6:4d:5d:19:57:e2:1d:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 25 02:38:59 2026 GMT Not After : Jun 24 02:43:59 2027 GMT Subject: CN=6D89BD4F22CAC847F09323570AE777F3B069370B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:15:a0:f5:de:61:ab:e9:60:f4:77:55:74:27: 79:63:43:bb:31:92:c0:ac:10:c8:f9:e9:f4:0a:e4: 90:b0:a0:65:db:7b:a6:0a:d4:6d:89:fa:80:a0:6d: 1f:a6:0b:c8:aa:a9:e4:c0:10:50:96:73:53:ca:f5: a7:4a:8f:0c:71:5d:47:26:b1:54:0f:57:ef:e3:0a: a3:c6:a2:10:74:ba:d4:16:5a:12:eb:07:e1:5b:ce: 88:c2:e2:92:82:bd:96:0c:38:84:50:29:6e:f7:ac: 60:52:f4:39:52:e7:37:a8:84:78:fe:4e:c9:8f:1b: 5d:1d:86:fb:83:46:0b:c3:f2:59:ed:36:59:53:4e: 9c:de:ef:92:af:fa:9c:7e:c5:08:71:8e:93:0f:46: 71:e3:2a:67:13:6a:1d:dc:78:f4:8f:81:f2:f2:d4: 9c:32:a5:79:5f:01:fe:23:e7:4e:90:89:64:76:d4: a8:f4:39:30:6c:b5:e4:18:00:50:0f:46:00:48:da: d3:de:48:60:72:a3:7a:60:ff:e3:8d:62:88:b7:aa: 2e:e3:19:18:2d:a2:d6:09:02:6d:7a:39:44:8a:d7: d0:1a:b2:e3:eb:0d:b0:e1:e0:cf:4c:a7:57:c2:72: a1:e7:26:85:5e:bb:a5:25:5f:dd:74:6c:1e:ea:a9: 38:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:89:BD:4F:22:CA:C8:47:F0:93:23:57:0A:E7:77:F3:B0:69:37:0B X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/36312e37302e302e302f31362d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:d7:f7:14:e6:ec:2a:cc:90:7d:b5:5f:f2:bd:f1:20:c7:e3: fc:99:b7:64:ee:e6:5f:53:e0:b3:3f:1d:97:8d:3f:dc:1e:42: 97:a8:4b:82:e9:6a:76:92:18:32:34:7e:d6:7e:08:b5:24:74: c6:d8:f3:bb:09:43:9f:92:2e:f1:9b:54:2e:9a:f8:b2:76:7f: 74:cb:e3:71:56:3b:98:67:34:5a:7b:d7:f5:79:38:e8:ea:b4: cd:45:c8:c8:c2:93:91:9e:e1:61:ed:be:1b:0a:9c:7a:30:13: 16:ef:ff:52:38:21:b9:25:33:f9:11:41:d6:6f:26:8a:fc:8c: ee:fa:0b:47:12:2f:b7:b2:65:b3:7d:76:a8:2e:ee:9f:2c:14: 14:b3:7f:38:96:82:37:db:8f:10:74:cf:d2:f5:81:10:6f:7b: 9f:b8:d6:3c:aa:a4:0a:d5:27:25:93:af:d3:2c:40:d6:6b:79: 84:1f:d7:3e:18:a9:58:7f:2a:58:ac:de:db:6e:92:61:65:cc: 53:8e:c7:99:23:05:f8:6c:46:3f:ed:ae:a8:aa:c4:43:9f:e3: 2b:83:fe:28:ea:65:28:59:f3:64:16:f0:4b:3e:b0:18:30:81: d5:44:df:03:77:a3:7d:33:e1:7a:ba:3e:47:2b:a7:90:1f:95: 66:f0:65:b0 -----BEGIN CERTIFICATE----- MIIEyjCCA7KgAwIBAgIUGAFF4d4QXRYAXL809k1dGVfiHWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjUwMjM4NTlaFw0yNzA2MjQwMjQzNTlaMDMxMTAvBgNV BAMTKDZEODlCRDRGMjJDQUM4NDdGMDkzMjM1NzBBRTc3N0YzQjA2OTM3MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmFaD13mGr6WD0d1V0J3ljQ7sx ksCsEMj56fQK5JCwoGXbe6YK1G2J+oCgbR+mC8iqqeTAEFCWc1PK9adKjwxxXUcm sVQPV+/jCqPGohB0utQWWhLrB+FbzojC4pKCvZYMOIRQKW73rGBS9DlS5zeohHj+ TsmPG10dhvuDRgvD8lntNllTTpze75Kv+px+xQhxjpMPRnHjKmcTah3cePSPgfLy 1JwypXlfAf4j506QiWR21Kj0OTBsteQYAFAPRgBI2tPeSGByo3pg/+ONYoi3qi7j GRgtotYJAm16OUSK19AasuPrDbDh4M9Mp1fCcqHnJoVeu6UlX910bB7qqTgLAgMB AAGjggHUMIIB0DAdBgNVHQ4EFgQUbYm9TyLKyEfwkyNXCud387BpNwswHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuGVXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzYzMTJlMzczMDJlMzAyZTMw MmYzMTM2MmQzMjM0MjAzZDNlMjAzOTM0MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD1GMA0GCSqG SIb3DQEBCwUAA4IBAQCq1/cU5uwqzJB9tV/yvfEgx+P8mbdk7uZfU+CzPx2XjT/c HkKXqEuC6Wp2khgyNH7Wfgi1JHTG2PO7CUOfki7xm1Qumviydn90y+NxVjuYZzRa e9f1eTjo6rTNRcjIwpORnuFh7b4bCpx6MBMW7/9SOCG5JTP5EUHWbyaK/Izu+gtH Ei+3smWzfXaoLu6fLBQUs384loI3248QdM/S9YEQb3ufuNY8qqQK1Sclk6/TLEDW a3mEH9c+GKlYfypYrN7bbpJhZcxTjseZIwX4bEY/7a6oqsRDn+Mrg/4o6mUoWfNk FvBLPrAYMIHVRN8Dd6N9M+F6uj5HK6eQH5Vm8GWw -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:04 2026 by rpki-client