$ rpki-client -vvf rpkica.twnic.tw/rpki/KE-ING/0/3132332e3235322e36342e302f31382d3138203d3e2039393234.roa File: 3132332e3235322e36342e302f31382d3138203d3e2039393234.roa (raw, json) Hash identifier: yJVJ6C+sbqUiX3chBCIQtUJyWlloqJi99X6AD9sg0ZA= Subject key identifier: 87:BE:4B:3A:D9:4A:D7:B6:21:DF:34:5E:4E:AA:FA:12:AD:1D:BB:8C Certificate issuer: /CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Certificate serial: 40F41E5815C9E77E8F0DFB035F806C7A83D58E70 Authority key identifier: 04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KE-ING/0/3132332e3235322e36342e302f31382d3138203d3e2039393234.roa Signing time: Mon 11 May 2026 17:08:02 +0000 ROA not before: Mon 11 May 2026 17:03:02 +0000 ROA not after: Mon 10 May 2027 17:08:02 +0000 asID: 9924 IP address blocks: 123.252.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:f4:1e:58:15:c9:e7:7e:8f:0d:fb:03:5f:80:6c:7a:83:d5:8e:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Validity Not Before: May 11 17:03:02 2026 GMT Not After : May 10 17:08:02 2027 GMT Subject: CN=87BE4B3AD94AD7B621DF345E4EAAFA12AD1DBB8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:51:92:69:6c:38:0d:3d:c7:41:55:c4:c3:12: 3a:b2:18:e5:c5:89:96:da:3e:b3:0c:9f:a3:f7:ef: eb:8c:2c:9a:66:5e:fb:84:13:7d:77:3b:10:aa:e5: 3d:8d:05:9e:2b:a6:a6:de:9b:e9:09:85:a0:41:02: 4a:45:87:bc:9e:b7:3b:04:f8:16:8f:b6:f1:4f:29: 60:c3:e7:c9:84:c8:a6:91:3f:04:fd:6d:f1:3e:f1: d6:d6:53:4c:32:fb:df:04:b9:d3:e7:be:1a:d1:9e: ae:49:74:59:b9:e2:4f:c9:e7:25:f7:80:8c:ce:5c: 1c:62:a5:0d:de:6c:f4:09:d6:87:aa:de:d5:3d:61: 9e:4c:d8:b9:c2:d7:32:84:59:87:8e:13:93:5e:cf: f1:d0:72:ec:6d:dd:ba:6c:47:b6:33:0a:e4:07:bc: 9b:f5:0d:58:ba:19:2b:ac:e4:03:62:5f:42:fd:d1: 3e:f4:26:8c:3a:e2:a6:2e:22:9e:eb:e2:fe:b2:f9: 0e:92:be:4e:d0:fe:52:f6:08:33:d9:3f:6e:b8:ce: 24:1b:1a:92:22:1c:01:9c:19:29:b7:79:af:4f:b3: b4:68:4e:d5:e1:db:62:cc:7f:a2:a5:be:40:1d:cb: c3:c4:4e:f4:d3:d8:2c:1e:43:dd:4f:77:0a:95:f8: 6a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BE:4B:3A:D9:4A:D7:B6:21:DF:34:5E:4E:AA:FA:12:AD:1D:BB:8C X509v3 Authority Key Identifier: keyid:04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/3132332e3235322e36342e302f31382d3138203d3e2039393234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.252.64.0/18 Signature Algorithm: sha256WithRSAEncryption 4b:66:5e:52:6b:d3:0c:7c:dc:5d:9f:8f:d7:5a:0c:3d:85:27: 6f:e4:cf:9f:ab:ff:34:86:7f:a4:37:b0:e8:54:cb:9a:36:e9: 97:13:72:77:80:56:ab:be:2a:65:24:7e:d7:b4:91:82:82:49: 51:0f:22:6a:41:fc:32:cf:4e:bf:28:aa:10:3c:9b:9e:1a:c4: eb:73:e6:aa:a3:92:90:e7:54:87:35:3a:8b:25:f9:fd:db:79: ed:c8:6f:a8:6c:00:fb:a8:fa:a9:67:aa:71:fe:28:be:23:8e: 72:ef:d3:9e:98:e1:3d:21:c3:4e:fa:71:04:5e:0d:39:e5:3b: 3a:6b:e2:06:57:21:38:dd:f9:cc:cf:1d:6c:5f:d4:37:d8:a5: 49:fe:2f:96:0a:23:ec:b1:c1:34:74:e7:bb:58:6b:75:0a:f2: 73:9a:9e:54:b6:18:cd:df:79:be:17:79:f4:41:15:7a:aa:e8: ee:88:b9:2f:3c:0f:0c:2e:42:90:05:c9:dc:ab:8d:46:ac:d4: ea:cc:b4:61:f9:0d:c3:40:64:52:db:9a:2b:b7:4a:30:1e:cc: 37:b4:0c:a7:db:9c:d7:26:2a:26:7b:15:2e:4f:85:df:01:24: 5c:02:b0:06:1d:4e:e1:cf:76:9a:4d:6c:0a:ff:9a:bc:76:a8: e5:c0:97:22 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUQPQeWBXJ536PDfsDX4BseoPVjnAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0Qy MzMyNEU0QjAeFw0yNjA1MTExNzAzMDJaFw0yNzA1MTAxNzA4MDJaMDMxMTAvBgNV BAMTKDg3QkU0QjNBRDk0QUQ3QjYyMURGMzQ1RTRFQUFGQTEyQUQxREJCOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrUZJpbDgNPcdBVcTDEjqyGOXF iZbaPrMMn6P37+uMLJpmXvuEE313OxCq5T2NBZ4rpqbem+kJhaBBAkpFh7yetzsE +BaPtvFPKWDD58mEyKaRPwT9bfE+8dbWU0wy+98EudPnvhrRnq5JdFm54k/J5yX3 gIzOXBxipQ3ebPQJ1oeq3tU9YZ5M2LnC1zKEWYeOE5Nez/HQcuxt3bpsR7YzCuQH vJv1DVi6GSus5ANiX0L90T70Jow64qYuIp7r4v6y+Q6Svk7Q/lL2CDPZP264ziQb GpIiHAGcGSm3ea9Ps7RoTtXh22LMf6KlvkAdy8PETvTT2CweQ91PdwqV+GphAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUh75LOtlK17Yh3zReTqr6Eq0du4wwHwYDVR0j BBgwFoAUBJ1NvPql7iinm/SeYj6HzSMyTkswDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5H LzAvMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0QyMzMyNEU0Qi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8wNDlENERCQ0ZBQTVFRTI4QTc5QkY0OUU2MjNF ODdDRDIzMzI0RTRCLmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5HLzAvMzEzMjMzMmUzMjM1 MzIyZTM2MzQyZTMwMmYzMTM4MmQzMTM4MjAzZDNlMjAzOTM5MzIzNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBnv8QDANBgkqhkiG9w0BAQsFAAOCAQEAS2ZeUmvTDHzcXZ+P11oMPYUnb+TP n6v/NIZ/pDew6FTLmjbplxNyd4BWq74qZSR+17SRgoJJUQ8iakH8Ms9OvyiqEDyb nhrE63PmqqOSkOdUhzU6iyX5/dt57chvqGwA+6j6qWeqcf4oviOOcu/TnpjhPSHD TvpxBF4NOeU7OmviBlchON35zM8dbF/UN9ilSf4vlgoj7LHBNHTnu1hrdQryc5qe VLYYzd95vhd59EEVeqro7oi5LzwPDC5CkAXJ3KuNRqzU6sy0YfkNw0BkUtuaK7dK MB7MN7QMp9uc1yYqJnsVLk+F3wEkXAKwBh1O4c92mk1sCv+avHao5cCXIg== -----END CERTIFICATE-----Generated at Wed May 13 21:52:21 2026 by rpki-client