$ rpki-client -vvf rpkica.twnic.tw/rpki/NIMBUSCOM/0/3230322e3134382e3231322e302f32332d3234203d3e20313332333639.roa File: 3230322e3134382e3231322e302f32332d3234203d3e20313332333639.roa (raw, json) Hash identifier: SzGBARnHtav0Ll1lD5uijTPk6wrNJCucq/5lsmn01uE= Subject key identifier: A5:9A:51:C7:2B:F2:FD:1C:E2:79:A6:BD:58:07:51:DE:11:F0:AD:01 Certificate issuer: /CN=31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68 Certificate serial: 28ADD926B3DEE0E05521D507F729C228A1E7CF Authority key identifier: 31:88:7F:0E:8D:17:EE:B4:DF:C7:34:4C:E4:88:5F:6B:DA:5A:EB:68 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/3230322e3134382e3231322e302f32332d3234203d3e20313332333639.roa Signing time: Mon 11 May 2026 17:40:39 +0000 ROA not before: Mon 11 May 2026 17:35:39 +0000 ROA not after: Mon 10 May 2027 17:40:39 +0000 asID: 132369 IP address blocks: 202.148.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.crl rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ad:d9:26:b3:de:e0:e0:55:21:d5:07:f7:29:c2:28:a1:e7:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68 Validity Not Before: May 11 17:35:39 2026 GMT Not After : May 10 17:40:39 2027 GMT Subject: CN=A59A51C72BF2FD1CE279A6BD580751DE11F0AD01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:98:1d:43:40:79:10:a3:c6:4e:12:5b:d3:4c: e9:c6:36:69:17:a5:18:f2:28:48:2c:f1:e5:65:b4: d5:64:59:ff:3a:0c:de:a3:07:31:f8:09:17:fc:d1: 7b:1b:bc:e9:d1:82:48:3d:c8:0e:ec:61:f6:4d:9b: f4:05:35:86:01:9a:67:68:4b:f7:b6:a0:ef:51:7d: dd:00:15:2c:50:70:3d:00:09:3f:e8:b3:df:73:26: 98:a5:86:4b:92:70:88:86:4e:27:3c:3c:8b:02:5b: d7:46:45:71:4a:a8:9b:1e:4e:a0:84:25:55:e2:1e: a8:e5:2d:15:29:f8:64:30:28:6b:f2:03:17:97:55: 31:e8:51:3e:56:58:0d:59:45:0c:0f:13:b2:dc:4b: 60:12:6a:76:0a:d2:17:9a:25:be:81:3f:29:db:62: 7c:0b:2e:46:d0:92:9d:ff:ac:a9:df:76:68:93:6b: a6:d5:45:a2:01:59:d2:94:68:af:d0:ba:78:c8:4e: f9:94:af:4c:5b:5d:bd:df:59:ad:ee:e4:b9:e9:32: f6:d6:9e:63:fd:36:0a:cd:2b:ae:77:9e:6f:8e:66: 3d:82:63:5b:cf:fe:a0:dd:39:ba:30:eb:c5:79:14: 31:2b:9b:15:3a:90:47:29:e7:74:19:97:ac:ba:bf: 6f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:9A:51:C7:2B:F2:FD:1C:E2:79:A6:BD:58:07:51:DE:11:F0:AD:01 X509v3 Authority Key Identifier: keyid:31:88:7F:0E:8D:17:EE:B4:DF:C7:34:4C:E4:88:5F:6B:DA:5A:EB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/3230322e3134382e3231322e302f32332d3234203d3e20313332333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.212.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:06:22:2b:33:2f:14:03:05:e0:f4:93:bd:de:f8:26:e9:98: da:c3:11:0c:cf:da:14:34:c8:c2:eb:7b:9c:03:8b:35:dd:bd: ea:5d:02:ef:f2:b0:0c:18:f8:03:7e:c9:2c:bd:fe:b0:0e:46: 58:c8:bd:16:41:46:16:70:77:f4:1e:f2:91:8d:8a:fd:f6:5d: 80:02:b1:b3:b2:02:89:7f:47:0d:a8:43:ec:2c:5c:2b:a0:e2: 7d:af:d8:d8:54:a4:cd:17:f6:8a:4d:f0:4a:7c:5f:40:85:e0: e6:83:0c:72:d1:14:1f:9f:2a:55:0e:af:c3:02:45:02:cd:fa: 59:eb:48:d5:cb:18:68:cc:25:e5:fd:01:15:66:eb:e1:11:34: bc:e7:53:8e:f7:0e:a1:36:bf:f2:7e:0a:83:7b:66:0f:c2:4c: 0f:24:e5:a0:d0:10:ec:12:b9:91:83:8d:fc:36:43:09:fa:4d: d6:15:27:60:c3:97:87:f4:73:47:8a:a8:4d:27:3f:62:62:60: 8d:86:0d:ce:a5:e4:fc:5d:66:d4:9d:74:87:5c:45:8a:00:3c: 25:82:01:d3:78:30:0a:d8:27:1a:30:65:6e:7d:46:d5:12:91: d6:f5:4e:71:1f:6d:9d:04:d8:f7:da:3e:18:00:90:aa:b2:ff: e7:88:68:c7 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgITKK3ZJrPe4OBVIdUH9ynCKKHnzzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygzMTg4N0YwRThEMTdFRUI0REZDNzM0NENFNDg4NUY2QkRB NUFFQjY4MB4XDTI2MDUxMTE3MzUzOVoXDTI3MDUxMDE3NDAzOVowMzExMC8GA1UE AxMoQTU5QTUxQzcyQkYyRkQxQ0UyNzlBNkJENTgwNzUxREUxMUYwQUQwMTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJmYHUNAeRCjxk4SW9NM6cY2aRel GPIoSCzx5WW01WRZ/zoM3qMHMfgJF/zRexu86dGCSD3IDuxh9k2b9AU1hgGaZ2hL 97ag71F93QAVLFBwPQAJP+iz33MmmKWGS5JwiIZOJzw8iwJb10ZFcUqomx5OoIQl VeIeqOUtFSn4ZDAoa/IDF5dVMehRPlZYDVlFDA8TstxLYBJqdgrSF5olvoE/Kdti fAsuRtCSnf+sqd92aJNrptVFogFZ0pRor9C6eMhO+ZSvTFtdvd9Zre7kueky9tae Y/02Cs0rrneeb45mPYJjW8/+oN05ujDrxXkUMSubFTqQRynndBmXrLq/b4cCAwEA AaOCAe4wggHqMB0GA1UdDgQWBBSlmlHHK/L9HOJ5pr1YB1HeEfCtATAfBgNVHSME GDAWgBQxiH8OjRfutN/HNEzkiF9r2lrraDAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0f BF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9OSU1CVVND T00vMC8zMTg4N0YwRThEMTdFRUI0REZDNzM0NENFNDg4NUY2QkRBNUFFQjY4LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzMxODg3RjBFOEQxN0VFQjRERkM3MzQ0Q0U0 ODg1RjZCREE1QUVCNjguY2VyMIGDBggrBgEFBQcBCwR3MHUwcwYIKwYBBQUHMAuG Z3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTklNQlVTQ09NLzAvMzIzMDMy MmUzMTM0MzgyZTMyMzEzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzMjMz MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAcqU1DANBgkqhkiG9w0BAQsFAAOCAQEASgYiKzMvFAMF 4PSTvd74JumY2sMRDM/aFDTIwut7nAOLNd296l0C7/KwDBj4A37JLL3+sA5GWMi9 FkFGFnB39B7ykY2K/fZdgAKxs7ICiX9HDahD7CxcK6Difa/Y2FSkzRf2ik3wSnxf QIXg5oMMctEUH58qVQ6vwwJFAs36WetI1csYaMwl5f0BFWbr4RE0vOdTjvcOoTa/ 8n4Kg3tmD8JMDyTloNAQ7BK5kYON/DZDCfpN1hUnYMOXh/RzR4qoTSc/YmJgjYYN zqXk/F1m1J10h1xFigA8JYIB03gwCtgnGjBlbn1G1RKR1vVOcR9tnQTY99o+GACQ qrL/54hoxw== -----END CERTIFICATE-----Generated at Wed May 13 21:52:21 2026 by rpki-client