$ rpki-client -vvf rpkica.twnic.tw/rpki/KE-ING/0/3230322e3135312e34382e302f32302d3234203d3e2039343136.roa File: 3230322e3135312e34382e302f32302d3234203d3e2039343136.roa (raw, json) Hash identifier: s8f8Uct02N0OIWDDH0xlBcjycL5P1/sP2dObZ84wjW8= Subject key identifier: 43:5D:6F:B2:5D:D7:C0:93:B4:BB:23:E3:D1:A2:DA:22:64:9F:B7:87 Certificate issuer: /CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Certificate serial: 4022A05D6C5C71E540EFFFF9FEB7DF05DDB74EEC Authority key identifier: 04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KE-ING/0/3230322e3135312e34382e302f32302d3234203d3e2039343136.roa Signing time: Mon 11 May 2026 17:04:16 +0000 ROA not before: Mon 11 May 2026 16:59:16 +0000 ROA not after: Mon 10 May 2027 17:04:16 +0000 asID: 9416 IP address blocks: 202.151.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:22:a0:5d:6c:5c:71:e5:40:ef:ff:f9:fe:b7:df:05:dd:b7:4e:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Validity Not Before: May 11 16:59:16 2026 GMT Not After : May 10 17:04:16 2027 GMT Subject: CN=435D6FB25DD7C093B4BB23E3D1A2DA22649FB787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:95:89:61:8b:5a:b3:11:c2:fd:ca:72:79:6a: 9d:12:77:4e:81:c2:5b:0c:5d:a4:e1:e1:17:ad:27: 12:cf:24:fd:90:44:f9:ac:a4:b1:84:7b:c5:c4:0e: 00:78:71:b9:08:64:46:72:ca:33:5f:4d:e3:eb:90: d7:b6:34:61:98:85:a4:65:27:7d:74:c3:95:f3:28: 48:e4:bd:76:38:eb:1e:d5:66:07:54:c8:12:1e:71: 99:2f:a7:1d:5c:c1:75:98:33:4e:e1:8d:01:30:de: 71:12:46:94:28:1b:67:97:8b:22:f2:bd:43:4c:11: dd:da:fb:bb:48:ce:02:9e:92:8e:e9:e5:f8:50:ef: 32:60:97:e9:18:04:97:ed:bc:32:52:d0:60:64:53: f4:f8:62:34:3b:b8:c3:14:a8:ff:ce:8d:24:1a:84: cb:09:12:cf:9c:a5:6e:92:29:85:e4:78:3b:79:f7: 06:7f:05:6d:08:0e:10:70:33:44:f2:26:4b:43:ea: 2d:c4:91:ff:2b:ed:8d:bd:f6:12:e1:a0:65:53:91: 95:87:79:1a:f7:e6:83:be:9f:da:b3:ec:b4:2f:fc: 87:dd:5c:cb:0f:fc:86:ef:d6:8a:75:14:23:de:19: 24:fd:8b:25:15:0e:b7:3e:ec:8d:8a:9e:20:b0:1f: 1a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:5D:6F:B2:5D:D7:C0:93:B4:BB:23:E3:D1:A2:DA:22:64:9F:B7:87 X509v3 Authority Key Identifier: keyid:04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/3230322e3135312e34382e302f32302d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.151.48.0/20 Signature Algorithm: sha256WithRSAEncryption 2d:16:95:b5:b1:96:0c:b9:ce:d9:1c:17:f6:c0:aa:4e:e6:7d: 1c:3a:9c:e8:95:34:f4:de:c3:92:49:a3:5a:42:dd:bf:8a:95: b5:f3:82:ac:99:c9:f1:f1:4b:a4:f5:f7:8f:5c:eb:b3:13:29: 1a:36:55:39:e5:ec:25:c2:91:86:06:ae:5d:4f:5a:77:eb:7c: ef:ec:a6:a4:ee:76:50:d7:5a:4d:cd:7c:dd:26:44:2f:06:8e: 17:e9:91:d4:cb:6e:81:d1:db:7f:99:2b:30:e7:a9:7c:4d:a8: c1:cf:78:a3:34:21:e3:04:99:a9:d9:13:8a:c6:a9:87:17:e6: 8a:97:72:2f:d6:5e:e7:4e:10:3c:1d:10:f2:30:67:ec:1d:2f: 6f:10:a5:92:64:c2:5f:c0:39:0e:0d:fb:b5:e3:0f:33:a8:8c: a9:8a:a4:8f:a0:88:a7:f2:df:61:e3:19:44:23:36:a4:ed:ae: 17:26:44:7e:c8:a3:d4:a9:01:bd:67:a5:64:27:de:55:fe:ac: 8b:12:0a:a1:c0:2b:61:9b:54:45:b2:a1:ce:6c:95:b6:01:40: ca:b6:44:90:d9:79:95:65:5a:bb:e6:60:53:e2:17:31:46:43: 0b:a1:d3:de:82:cc:f3:9f:ff:aa:e7:5a:7e:dc:fb:01:cc:97: 95:85:6b:02 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUQCKgXWxcceVA7//5/rffBd23TuwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0Qy MzMyNEU0QjAeFw0yNjA1MTExNjU5MTZaFw0yNzA1MTAxNzA0MTZaMDMxMTAvBgNV BAMTKDQzNUQ2RkIyNUREN0MwOTNCNEJCMjNFM0QxQTJEQTIyNjQ5RkI3ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2lYlhi1qzEcL9ynJ5ap0Sd06B wlsMXaTh4RetJxLPJP2QRPmspLGEe8XEDgB4cbkIZEZyyjNfTePrkNe2NGGYhaRl J310w5XzKEjkvXY46x7VZgdUyBIecZkvpx1cwXWYM07hjQEw3nESRpQoG2eXiyLy vUNMEd3a+7tIzgKeko7p5fhQ7zJgl+kYBJftvDJS0GBkU/T4YjQ7uMMUqP/OjSQa hMsJEs+cpW6SKYXkeDt59wZ/BW0IDhBwM0TyJktD6i3Ekf8r7Y299hLhoGVTkZWH eRr35oO+n9qz7LQv/IfdXMsP/Ibv1op1FCPeGST9iyUVDrc+7I2KniCwHxopAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUQ11vsl3XwJO0uyPj0aLaImSft4cwHwYDVR0j BBgwFoAUBJ1NvPql7iinm/SeYj6HzSMyTkswDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5H LzAvMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0QyMzMyNEU0Qi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8wNDlENERCQ0ZBQTVFRTI4QTc5QkY0OUU2MjNF ODdDRDIzMzI0RTRCLmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5HLzAvMzIzMDMyMmUzMTM1 MzEyZTM0MzgyZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzOTM0MzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMqXMDANBgkqhkiG9w0BAQsFAAOCAQEALRaVtbGWDLnO2RwX9sCqTuZ9HDqc 6JU09N7DkkmjWkLdv4qVtfOCrJnJ8fFLpPX3j1zrsxMpGjZVOeXsJcKRhgauXU9a d+t87+ympO52UNdaTc183SZELwaOF+mR1MtugdHbf5krMOepfE2owc94ozQh4wSZ qdkTisaphxfmipdyL9Ze504QPB0Q8jBn7B0vbxClkmTCX8A5Dg37teMPM6iMqYqk j6CIp/LfYeMZRCM2pO2uFyZEfsij1KkBvWelZCfeVf6sixIKocArYZtURbKhzmyV tgFAyrZEkNl5lWVau+ZgU+IXMUZDC6HT3oLM85//qudaftz7AcyXlYVrAg== -----END CERTIFICATE-----Generated at Wed May 13 21:11:32 2026 by rpki-client