$ rpki-client -vvf rpkica.twnic.tw/rpki/NORDATW/0/3231312e37392e39382e302f32332d3234203d3e203231383539.roa File: 3231312e37392e39382e302f32332d3234203d3e203231383539.roa (raw, json) Hash identifier: I1jX/SnnFc+gmcZStVqiSrnNdoqyaCZ0ExujTfgAaX0= Subject key identifier: 5D:B2:0F:BC:2F:EF:69:3F:22:DE:2F:D2:45:12:FF:DA:89:F2:6D:19 Certificate issuer: /CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8 Certificate serial: 3E0ECC87FBCC165F6E84A022CFD4F7B1DE6C5BF3 Authority key identifier: 43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NORDATW/0/3231312e37392e39382e302f32332d3234203d3e203231383539.roa Signing time: Mon 11 May 2026 17:56:42 +0000 ROA not before: Mon 11 May 2026 17:51:42 +0000 ROA not after: Mon 10 May 2027 17:56:42 +0000 asID: 21859 IP address blocks: 211.79.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0e:cc:87:fb:cc:16:5f:6e:84:a0:22:cf:d4:f7:b1:de:6c:5b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8 Validity Not Before: May 11 17:51:42 2026 GMT Not After : May 10 17:56:42 2027 GMT Subject: CN=5DB20FBC2FEF693F22DE2FD24512FFDA89F26D19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:97:18:9f:a5:6c:cb:10:05:44:c2:73:f8:0f: d9:a1:9c:a9:c3:5c:7a:ea:83:74:5b:6c:e1:3d:44: b4:49:95:03:09:4c:6b:3d:37:67:a9:42:54:07:38: d1:60:c8:90:de:03:ba:11:77:5e:95:20:f3:91:e7: 59:a6:b2:e0:19:54:bc:be:ce:ec:69:8c:65:bc:c5: 03:98:68:41:64:fb:d1:7f:7a:3a:bb:76:c5:f0:7b: 52:02:c2:9d:7d:76:f1:fb:6d:f0:ae:c5:c6:3f:fc: 28:3a:f0:8a:56:b3:14:2a:44:1f:6e:7d:c0:e9:59: a5:a9:d2:41:df:cf:d2:a4:8e:d4:50:62:2d:bc:c8: bb:3c:7d:e8:25:7c:d6:22:fb:a7:2d:6a:f0:8a:b5: 50:0a:93:8a:a6:81:8e:db:1a:d7:b3:88:77:98:7f: 63:c1:80:18:0f:4d:a8:a8:61:11:41:9f:00:f6:f1: e4:8c:e9:30:e5:b6:1b:99:fd:24:4f:63:46:31:f1: e9:c3:2a:c2:be:3a:46:ae:b5:ab:15:7c:5a:d5:3d: 4c:b6:d1:d9:1a:b6:8f:b8:e6:fa:d9:65:5e:f1:ee: 3b:f7:95:59:33:d0:70:52:09:b8:5a:ef:ed:16:8a: 9a:9d:a0:e3:09:5f:73:2a:4d:e9:8e:35:63:23:2c: a9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B2:0F:BC:2F:EF:69:3F:22:DE:2F:D2:45:12:FF:DA:89:F2:6D:19 X509v3 Authority Key Identifier: keyid:43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/3231312e37392e39382e302f32332d3234203d3e203231383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.79.98.0/23 Signature Algorithm: sha256WithRSAEncryption 18:4a:c5:0d:f0:e7:0c:36:0d:ae:dd:9f:8d:48:cb:91:2c:be: ba:9c:3f:c8:94:90:5e:a2:b0:8f:0d:d5:19:ae:6d:9e:94:7b: 50:e5:db:e8:00:c6:ef:6d:fa:22:4b:fa:a2:ca:26:2f:97:38: dc:3f:64:be:6f:94:5c:7d:67:de:f8:67:c8:2a:5b:2f:4f:f4: 5a:9e:a8:24:76:fd:d9:0c:14:4a:bc:1d:9d:c8:48:87:ed:df: 19:71:04:19:51:ec:10:e5:f2:df:57:be:fd:59:62:41:c1:fa: c0:34:fa:ac:06:35:1d:72:4e:cf:f2:28:cf:11:ba:2f:58:e7: 5e:2d:2e:ce:87:17:69:d6:88:bc:be:25:b2:a7:38:9b:b4:5d: 7e:fa:35:3e:a1:3d:cc:b5:1c:89:50:bd:d4:97:95:bc:b4:08: 00:c2:07:1d:55:d9:81:0d:74:76:28:8d:7c:5b:62:61:ab:70: 31:b7:f4:37:cd:ab:9a:3d:a0:63:5c:fe:04:7d:70:a5:10:d0: e7:db:cb:0b:52:6a:d8:36:95:f7:68:bf:ce:dd:14:02:25:5e: e0:db:1a:a6:65:2a:76:80:10:c7:18:d5:1d:05:f5:02:4a:19: a0:53:ca:04:ca:4f:e6:5f:61:51:bf:11:4d:a4:7f:d9:a8:0a: 21:b9:ec:a5 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUPg7Mh/vMFl9uhKAiz9T3sd5sW/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThDNjJBRkM1 MzMzQTJBODAeFw0yNjA1MTExNzUxNDJaFw0yNzA1MTAxNzU2NDJaMDMxMTAvBgNV BAMTKDVEQjIwRkJDMkZFRjY5M0YyMkRFMkZEMjQ1MTJGRkRBODlGMjZEMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3lxifpWzLEAVEwnP4D9mhnKnD XHrqg3RbbOE9RLRJlQMJTGs9N2epQlQHONFgyJDeA7oRd16VIPOR51mmsuAZVLy+ zuxpjGW8xQOYaEFk+9F/ejq7dsXwe1ICwp19dvH7bfCuxcY//Cg68IpWsxQqRB9u fcDpWaWp0kHfz9KkjtRQYi28yLs8feglfNYi+6ctavCKtVAKk4qmgY7bGteziHeY f2PBgBgPTaioYRFBnwD28eSM6TDlthuZ/SRPY0Yx8enDKsK+OkautasVfFrVPUy2 0dkato+45vrZZV7x7jv3lVkz0HBSCbha7+0WipqdoOMJX3MqTemONWMjLKmfAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUXbIPvC/vaT8i3i/SRRL/2onybRkwHwYDVR0j BBgwFoAUQycW7gVM69xi/ALd6MYq/FMzoqgwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTk9SREFU Vy8wLzQzMjcxNkVFMDU0Q0VCREM2MkZDMDJEREU4QzYyQUZDNTMzM0EyQTguY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThD NjJBRkM1MzMzQTJBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9y c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05PUkRBVFcvMC8zMjMxMzEyZTM3 MzkyZTM5MzgyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMjMxMzgzNTM5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQB009iMA0GCSqGSIb3DQEBCwUAA4IBAQAYSsUN8OcMNg2u3Z+NSMuRLL66 nD/IlJBeorCPDdUZrm2elHtQ5dvoAMbvbfoiS/qiyiYvlzjcP2S+b5RcfWfe+GfI KlsvT/Ranqgkdv3ZDBRKvB2dyEiH7d8ZcQQZUewQ5fLfV779WWJBwfrANPqsBjUd ck7P8ijPEbovWOdeLS7Ohxdp1oi8viWypzibtF1++jU+oT3MtRyJUL3Ul5W8tAgA wgcdVdmBDXR2KI18W2Jhq3Axt/Q3zauaPaBjXP4EfXClENDn28sLUmrYNpX3aL/O 3RQCJV7g2xqmZSp2gBDHGNUdBfUCShmgU8oEyk/mX2FRvxFNpH/ZqAohueyl -----END CERTIFICATE-----Generated at Wed May 13 21:11:55 2026 by rpki-client