$ rpki-client -vvf rpkica.twnic.tw/rpki/OPEN/0/3230322e36362e3138342e302f32332d3234203d3e20313334383233.roa File: 3230322e36362e3138342e302f32332d3234203d3e20313334383233.roa (raw, json) Hash identifier: lH3p+3OX/BiDzRmprhrZQaoUetVeXRdG+n2QK86mZUo= Subject key identifier: 0D:E1:B3:E3:7C:9B:F0:8D:F2:F8:60:1E:39:41:66:DA:C6:CE:5F:32 Certificate issuer: /CN=7F7E2E5D20C748B8BE9FDE4400E023205975FD55 Certificate serial: 044EA671B22C8FB190182D4A8F79A4627AF09EA4 Authority key identifier: 7F:7E:2E:5D:20:C7:48:B8:BE:9F:DE:44:00:E0:23:20:59:75:FD:55 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.cer Subject info access: rsync://rpkica.twnic.tw/rpki/OPEN/0/3230322e36362e3138342e302f32332d3234203d3e20313334383233.roa Signing time: Mon 11 May 2026 17:52:54 +0000 ROA not before: Mon 11 May 2026 17:47:54 +0000 ROA not after: Mon 10 May 2027 17:52:54 +0000 asID: 134823 IP address blocks: 202.66.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/OPEN/0/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.crl rsync://rpkica.twnic.tw/rpki/OPEN/0/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:52:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:4e:a6:71:b2:2c:8f:b1:90:18:2d:4a:8f:79:a4:62:7a:f0:9e:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F7E2E5D20C748B8BE9FDE4400E023205975FD55 Validity Not Before: May 11 17:47:54 2026 GMT Not After : May 10 17:52:54 2027 GMT Subject: CN=0DE1B3E37C9BF08DF2F8601E394166DAC6CE5F32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b0:73:06:7d:a7:0e:df:9f:b6:d5:bd:2f:12: f7:41:f0:50:ac:eb:79:15:d7:c5:f4:e3:aa:13:4e: 38:4b:4e:67:6b:fb:f0:73:ee:c3:ba:cc:2f:6b:a4: b1:20:c6:7b:6d:f2:b2:56:ad:10:bb:32:0b:70:64: 49:d6:9a:21:5e:42:41:46:01:71:45:83:06:fd:80: 40:a5:fe:d9:a0:89:0b:23:1e:d6:8e:38:49:44:8c: 90:b0:51:e6:98:e9:c8:bc:d3:9c:54:3e:4e:20:32: 2f:74:57:b9:19:df:62:30:a3:20:57:7e:24:a3:84: 9c:81:dd:ff:96:30:ed:ae:9a:3b:9b:8b:f3:d9:41: a2:48:d4:36:37:44:f0:ca:be:f6:fd:96:5b:ff:02: 07:35:0e:5e:58:d5:55:9f:95:1f:4f:75:fd:3e:58: b3:80:bc:49:31:1e:93:f5:59:f2:79:b3:91:71:12: b3:af:85:68:d9:00:3e:74:94:2d:4b:d7:95:29:aa: 91:21:a1:d7:79:32:41:75:b2:3b:19:e8:15:6f:bf: 10:6c:01:69:87:b5:99:c5:62:e0:45:a2:7c:aa:63: 0e:77:7f:cf:0a:31:81:25:18:5b:b8:57:5c:2d:23: 2f:11:ad:05:11:ef:ab:a1:eb:a4:df:fa:0c:66:0a: f8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E1:B3:E3:7C:9B:F0:8D:F2:F8:60:1E:39:41:66:DA:C6:CE:5F:32 X509v3 Authority Key Identifier: keyid:7F:7E:2E:5D:20:C7:48:B8:BE:9F:DE:44:00:E0:23:20:59:75:FD:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/OPEN/0/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPEN/0/3230322e36362e3138342e302f32332d3234203d3e20313334383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.66.184.0/23 Signature Algorithm: sha256WithRSAEncryption 28:9f:ef:b6:75:5f:14:c7:3e:2a:f4:8e:48:8e:0b:d2:bb:f2: a1:7f:aa:ef:43:d4:11:a8:35:1f:f0:21:ac:67:bf:31:8f:ba: 0e:62:02:26:31:19:82:59:0b:a7:55:46:52:6b:6e:16:5b:ed: ec:47:ab:d5:3e:25:8d:80:27:24:18:f0:7a:45:64:b9:5e:18: 3d:e3:17:34:aa:c5:7b:74:1f:02:2f:5f:12:8e:a7:26:12:80: bd:e8:8d:03:cb:ee:cf:ac:f1:51:a1:45:15:52:78:33:a1:2f: b1:ca:07:48:d3:20:06:58:c0:a2:a8:9d:ad:57:a7:8b:f4:b0: df:df:9b:16:b1:6a:8a:9e:e1:c0:c0:63:0c:4a:c7:b5:3f:6c: 92:bb:d7:3a:cc:f6:e0:97:4c:58:64:1a:9f:23:93:bb:f3:83: e5:f7:a8:86:f6:4f:76:2a:f8:15:86:20:b4:f5:51:9c:16:47: a2:8a:8e:40:4a:e8:6f:44:ff:ea:69:54:dc:45:9b:c2:23:1c: 00:7e:4b:34:7d:92:c6:f3:0d:ee:15:41:32:61:27:ad:29:fc: 91:35:10:e9:0a:96:26:c7:bd:35:5f:3f:a1:51:18:f6:a5:32: 1a:9b:aa:00:39:ad:4d:ff:17:ec:90:d1:a3:7a:21:74:3f:c3: 61:24:8a:58 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUBE6mcbIsj7GQGC1Kj3mkYnrwnqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Y3RTJFNUQyMEM3NDhCOEJFOUZERTQ0MDBFMDIzMjA1 OTc1RkQ1NTAeFw0yNjA1MTExNzQ3NTRaFw0yNzA1MTAxNzUyNTRaMDMxMTAvBgNV BAMTKDBERTFCM0UzN0M5QkYwOERGMkY4NjAxRTM5NDE2NkRBQzZDRTVGMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4sHMGfacO35+21b0vEvdB8FCs 63kV18X046oTTjhLTmdr+/Bz7sO6zC9rpLEgxntt8rJWrRC7MgtwZEnWmiFeQkFG AXFFgwb9gECl/tmgiQsjHtaOOElEjJCwUeaY6ci805xUPk4gMi90V7kZ32IwoyBX fiSjhJyB3f+WMO2umjubi/PZQaJI1DY3RPDKvvb9llv/Agc1Dl5Y1VWflR9Pdf0+ WLOAvEkxHpP1WfJ5s5FxErOvhWjZAD50lC1L15UpqpEhodd5MkF1sjsZ6BVvvxBs AWmHtZnFYuBFonyqYw53f88KMYElGFu4V1wtIy8RrQUR76uh66Tf+gxmCvgzAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUDeGz43yb8I3y+GAeOUFm2sbOXzIwHwYDVR0j BBgwFoAUf34uXSDHSLi+n95EAOAjIFl1/VUwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT1BFTi8w LzdGN0UyRTVEMjBDNzQ4QjhCRTlGREU0NDAwRTAyMzIwNTk3NUZENTUuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvN0Y3RTJFNUQyMEM3NDhCOEJFOUZERTQ0MDBFMDIz MjA1OTc1RkQ1NS5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL09QRU4vMC8zMjMwMzIyZTM2MzYyZTMx MzgzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzNDM4MzIzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAcpCuDANBgkqhkiG9w0BAQsFAAOCAQEAKJ/vtnVfFMc+KvSOSI4L0rvyoX+q 70PUEag1H/AhrGe/MY+6DmICJjEZglkLp1VGUmtuFlvt7Eer1T4ljYAnJBjwekVk uV4YPeMXNKrFe3QfAi9fEo6nJhKAveiNA8vuz6zxUaFFFVJ4M6EvscoHSNMgBljA oqidrVeni/Sw39+bFrFqip7hwMBjDErHtT9skrvXOsz24JdMWGQanyOTu/OD5feo hvZPdir4FYYgtPVRnBZHooqOQErob0T/6mlU3EWbwiMcAH5LNH2SxvMN7hVBMmEn rSn8kTUQ6QqWJse9NV8/oVEY9qUyGpuqADmtTf8X7JDRo3ohdD/DYSSKWA== -----END CERTIFICATE-----Generated at Wed May 13 21:17:22 2026 by rpki-client