$ rpki-client -vvf rpkica.twnic.tw/rpki/NARL/0/3231312e37392e34382e302f32302d3234203d3e2037353339.roa File: 3231312e37392e34382e302f32302d3234203d3e2037353339.roa (raw, json) Hash identifier: I5PmO4GML9TmcQR3Fe6NQsOfRlP4bey95QSbpiOHW9g= Subject key identifier: 02:88:77:DA:B7:CD:36:55:0E:4B:20:0D:AF:F5:25:DB:A4:9A:F2:9C Certificate issuer: /CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Certificate serial: 3673AB4CBF0B030D8796104253074FE9AFFEC0EB Authority key identifier: 9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NARL/0/3231312e37392e34382e302f32302d3234203d3e2037353339.roa Signing time: Fri 05 Jun 2026 09:24:17 +0000 ROA not before: Fri 05 Jun 2026 09:19:17 +0000 ROA not after: Fri 04 Jun 2027 09:24:17 +0000 asID: 7539 IP address blocks: 211.79.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 04:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:73:ab:4c:bf:0b:03:0d:87:96:10:42:53:07:4f:e9:af:fe:c0:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Validity Not Before: Jun 5 09:19:17 2026 GMT Not After : Jun 4 09:24:17 2027 GMT Subject: CN=028877DAB7CD36550E4B200DAFF525DBA49AF29C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9f:93:e4:cc:a4:46:f9:9d:8d:4f:d1:57:53: b5:ba:c1:a5:df:09:a4:8d:89:2c:ab:20:1b:54:86: ec:6c:c0:62:86:cc:f6:08:16:d5:a9:40:c8:50:c7: 20:99:c4:b5:62:ac:89:da:2e:97:88:90:90:99:01: 08:a2:d5:f3:d6:ba:fc:4b:71:5d:e3:8c:b6:2c:0b: cd:6c:2e:3c:7a:c5:3d:f2:68:99:28:4f:25:2f:42: 15:5b:ce:e8:df:62:e5:ff:d6:6b:a1:65:20:fb:b1: 66:da:f5:23:e5:f2:fd:36:b5:63:cc:3f:8a:cd:03: a3:d0:3d:62:0e:5e:70:e5:89:10:a5:3d:78:bb:d1: da:a5:0e:df:44:81:41:66:80:32:f5:45:20:84:93: a3:8b:1e:04:d5:d3:f6:dd:c1:76:8c:6a:b8:c6:f6: e0:58:ac:e7:76:63:13:2b:07:06:2f:dc:36:79:5b: 1f:80:d2:f5:4a:1b:29:46:c9:e6:40:f7:5b:8f:b1: 95:06:75:77:93:8f:c4:9d:d5:88:9c:49:39:04:9a: 01:4f:71:45:02:95:9a:a8:a6:c4:7f:99:fc:2f:95: ca:4a:2a:21:74:fd:41:44:27:a6:34:ed:47:ba:4a: 97:a5:2d:6e:f0:d7:59:0b:a1:97:0d:aa:f9:85:08: 13:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:88:77:DA:B7:CD:36:55:0E:4B:20:0D:AF:F5:25:DB:A4:9A:F2:9C X509v3 Authority Key Identifier: keyid:9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NARL/0/3231312e37392e34382e302f32302d3234203d3e2037353339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.79.48.0/20 Signature Algorithm: sha256WithRSAEncryption 03:d9:33:17:fc:71:38:ca:98:d5:ab:25:a6:fd:b0:bf:5a:b5: 2c:17:6e:b7:34:d6:b6:cd:d7:c4:bb:bc:c4:18:22:bb:4c:06: 87:03:12:be:2d:ee:31:56:4e:13:13:99:47:fb:f4:b8:bc:c4: 15:8c:83:ee:32:e5:43:6f:93:50:0d:16:ff:8f:f3:fd:f1:34: ce:7d:69:7d:ed:63:a2:66:c8:77:cb:69:9e:01:bc:4b:66:89: b3:24:0a:83:1a:d3:92:c5:f1:32:58:e5:fb:45:b4:a0:50:ce: 14:02:dd:66:62:ea:be:ef:eb:7c:8a:d9:ea:6a:47:35:d2:12: d9:63:15:e6:5e:f9:d2:c1:8b:b7:b7:b2:9d:76:1d:10:04:88: 61:aa:26:cd:95:fa:26:64:aa:50:2e:b7:93:3a:67:fa:ef:b8: 74:3b:d1:78:86:46:5c:27:40:1e:4c:6d:c6:db:f4:00:2b:0f: c1:11:3f:ca:bb:c2:69:89:a7:53:19:9c:8f:81:4e:a0:6a:a7: 45:6d:74:8c:da:ba:33:9a:e1:89:7d:01:81:0f:02:2b:5e:5c: 37:2a:62:b8:18:1c:66:1c:08:b4:9e:f4:97:5f:d2:c5:c6:14: f9:31:04:e9:b9:df:5f:00:3b:aa:b9:37:f2:a1:ac:6b:0a:06: d8:75:60:39 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUNnOrTL8LAw2HlhBCUwdP6a/+wOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ4NUJCOEQ5MzAwNkQzNTg2RTI4RDBENjYxMkNBRkFD QzhFQTZDMTAeFw0yNjA2MDUwOTE5MTdaFw0yNzA2MDQwOTI0MTdaMDMxMTAvBgNV BAMTKDAyODg3N0RBQjdDRDM2NTUwRTRCMjAwREFGRjUyNURCQTQ5QUYyOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1n5PkzKRG+Z2NT9FXU7W6waXf CaSNiSyrIBtUhuxswGKGzPYIFtWpQMhQxyCZxLVirInaLpeIkJCZAQii1fPWuvxL cV3jjLYsC81sLjx6xT3yaJkoTyUvQhVbzujfYuX/1muhZSD7sWba9SPl8v02tWPM P4rNA6PQPWIOXnDliRClPXi70dqlDt9EgUFmgDL1RSCEk6OLHgTV0/bdwXaMarjG 9uBYrOd2YxMrBwYv3DZ5Wx+A0vVKGylGyeZA91uPsZUGdXeTj8Sd1YicSTkEmgFP cUUClZqopsR/mfwvlcpKKiF0/UFEJ6Y07Ue6SpelLW7w11kLoZcNqvmFCBPdAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUAoh32rfNNlUOSyANr/Ul26Sa8pwwHwYDVR0j BBgwFoAUnYW7jZMAbTWG4o0NZhLK+syOpsEwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkFSTC8w LzlEODVCQjhEOTMwMDZEMzU4NkUyOEQwRDY2MTJDQUZBQ0M4RUE2QzEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvOUQ4NUJCOEQ5MzAwNkQzNTg2RTI4RDBENjYxMkNB RkFDQzhFQTZDMS5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05BUkwvMC8zMjMxMzEyZTM3MzkyZTM0 MzgyZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzNzM1MzMzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNNP MDANBgkqhkiG9w0BAQsFAAOCAQEAA9kzF/xxOMqY1aslpv2wv1q1LBdutzTWts3X xLu8xBgiu0wGhwMSvi3uMVZOExOZR/v0uLzEFYyD7jLlQ2+TUA0W/4/z/fE0zn1p fe1jombId8tpngG8S2aJsyQKgxrTksXxMljl+0W0oFDOFALdZmLqvu/rfIrZ6mpH NdIS2WMV5l750sGLt7eynXYdEASIYaomzZX6JmSqUC63kzpn+u+4dDvReIZGXCdA Hkxtxtv0ACsPwRE/yrvCaYmnUxmcj4FOoGqnRW10jNq6M5rhiX0BgQ8CK15cNypi uBgcZhwItJ70l1/SxcYU+TEE6bnfXwA7qrk38qGsawoG2HVgOQ== -----END CERTIFICATE-----Generated at Sat Jun 6 21:41:40 2026 by rpki-client