$ rpki-client -vvf rpkica.twnic.tw/rpki/PIINET/0/36312e35372e3232342e302f32302d3234203d3e203137373130.roa File: 36312e35372e3232342e302f32302d3234203d3e203137373130.roa (raw, json) Hash identifier: X08v+g23C1Fx8BQtKNgspF5UjPkGFKh01lY2BRa8ypo= Subject key identifier: F7:C2:17:6C:9E:3C:D2:51:B0:B9:1C:A1:57:30:84:1B:14:73:22:DF Certificate issuer: /CN=857A2684D7DBC89CE784E4DF16F1A1C03D945585 Certificate serial: 524428B7FF582EF05F81C2391520D163E6C02AF5 Authority key identifier: 85:7A:26:84:D7:DB:C8:9C:E7:84:E4:DF:16:F1:A1:C0:3D:94:55:85 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PIINET/0/36312e35372e3232342e302f32302d3234203d3e203137373130.roa Signing time: Mon 11 May 2026 17:04:35 +0000 ROA not before: Mon 11 May 2026 16:59:35 +0000 ROA not after: Mon 10 May 2027 17:04:35 +0000 asID: 17710 IP address blocks: 61.57.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.crl rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:44:28:b7:ff:58:2e:f0:5f:81:c2:39:15:20:d1:63:e6:c0:2a:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=857A2684D7DBC89CE784E4DF16F1A1C03D945585 Validity Not Before: May 11 16:59:35 2026 GMT Not After : May 10 17:04:35 2027 GMT Subject: CN=F7C2176C9E3CD251B0B91CA15730841B147322DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:16:e2:2d:74:94:32:e7:90:ea:97:0b:b2:91: de:d0:a8:60:93:98:7f:1c:13:23:f7:cb:24:24:a8: 61:fa:33:79:2e:4e:7c:09:7d:c6:4d:a9:6e:ef:a0: 0c:fc:12:66:ae:e3:a5:c7:54:f3:65:6f:8d:e4:9b: 7c:aa:cf:60:98:77:00:41:c7:a6:7c:57:c9:29:77: 94:4a:78:87:b9:e1:51:a9:b6:a8:64:37:84:dc:a6: 03:41:89:79:e1:4d:a7:a6:d1:10:ef:75:d7:6b:c8: 5c:85:0d:48:7f:3e:78:0c:c8:f3:d4:85:fe:77:1b: 40:d6:98:f6:f7:be:56:d0:17:c1:a9:80:2d:c3:85: 20:06:1a:52:f9:f0:6e:09:4e:14:d8:ad:c0:96:a6: 60:9b:14:c3:fd:76:84:7f:f3:0e:c2:53:02:ee:95: 93:dc:f5:b1:4c:9e:17:82:b1:42:9e:9c:97:db:2f: e9:d4:1e:9f:5d:50:4a:f1:a5:17:8d:c2:17:f2:34: 3d:28:df:9c:39:70:86:e2:ca:7f:6f:cc:23:e4:cf: 00:d3:68:4f:a9:0c:d3:88:36:9a:97:de:f8:6f:95: 8a:4e:5f:4b:9b:3e:37:01:33:ef:dd:26:58:44:60: 61:18:76:1b:53:95:a9:ae:66:e9:d0:71:9c:1c:17: 83:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C2:17:6C:9E:3C:D2:51:B0:B9:1C:A1:57:30:84:1B:14:73:22:DF X509v3 Authority Key Identifier: keyid:85:7A:26:84:D7:DB:C8:9C:E7:84:E4:DF:16:F1:A1:C0:3D:94:55:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PIINET/0/36312e35372e3232342e302f32302d3234203d3e203137373130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.57.224.0/20 Signature Algorithm: sha256WithRSAEncryption 37:a5:5a:17:6c:a9:9c:17:73:6a:80:0b:03:18:9c:23:91:be: 6e:b8:75:b2:53:b2:3d:d6:e8:fb:e4:cc:6b:64:5c:4e:81:69: f3:96:b3:36:4f:09:f3:94:99:62:89:91:7c:0f:9a:02:b7:b3: f4:fb:b7:1c:cb:71:c7:90:3a:4c:55:96:28:6b:07:17:b7:0a: dc:2f:49:72:a9:c3:f3:a4:68:f4:2d:c2:08:d0:02:8f:4f:35: 44:62:83:f9:be:15:cf:fe:d8:29:93:cc:37:1f:12:3d:ff:8f: ad:f1:1f:ef:2a:76:72:2d:11:ba:a0:d6:99:e0:44:e8:e0:f2: b7:56:e8:3c:56:23:e2:a9:fc:f8:3a:48:c4:1e:37:b1:11:22: a7:9e:2d:58:1a:c3:90:67:2a:04:2b:8e:8c:b4:c7:e1:5f:3c: 04:c3:cb:74:f6:a6:08:bb:3c:e1:a3:16:a8:67:ee:4f:eb:b3: 68:e5:55:33:7c:a8:58:9c:c4:c3:a3:bb:65:9e:4b:f7:97:2d: 0d:c8:b1:7a:6a:a0:73:f2:10:2a:f8:51:88:3b:26:92:0c:1f: e3:64:19:33:69:0b:b9:00:ec:7e:4a:85:8d:dd:65:de:6d:85: 74:03:51:e5:1b:52:a2:23:80:37:e4:df:62:ee:fa:f0:5d:dd: e5:57:ae:a8 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUUkQot/9YLvBfgcI5FSDRY+bAKvUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3QTI2ODREN0RCQzg5Q0U3ODRFNERGMTZGMUExQzAz RDk0NTU4NTAeFw0yNjA1MTExNjU5MzVaFw0yNzA1MTAxNzA0MzVaMDMxMTAvBgNV BAMTKEY3QzIxNzZDOUUzQ0QyNTFCMEI5MUNBMTU3MzA4NDFCMTQ3MzIyREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoFuItdJQy55Dqlwuykd7QqGCT mH8cEyP3yyQkqGH6M3kuTnwJfcZNqW7voAz8Emau46XHVPNlb43km3yqz2CYdwBB x6Z8V8kpd5RKeIe54VGptqhkN4TcpgNBiXnhTaem0RDvdddryFyFDUh/PngMyPPU hf53G0DWmPb3vlbQF8GpgC3DhSAGGlL58G4JThTYrcCWpmCbFMP9doR/8w7CUwLu lZPc9bFMnheCsUKenJfbL+nUHp9dUErxpReNwhfyND0o35w5cIbiyn9vzCPkzwDT aE+pDNOINpqX3vhvlYpOX0ubPjcBM+/dJlhEYGEYdhtTlamuZunQcZwcF4M3AgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQU98IXbJ480lGwuRyhVzCEGxRzIt8wHwYDVR0j BBgwFoAUhXomhNfbyJznhOTfFvGhwD2UVYUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUElJTkVU LzAvODU3QTI2ODREN0RCQzg5Q0U3ODRFNERGMTZGMUExQzAzRDk0NTU4NS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS84NTdBMjY4NEQ3REJDODlDRTc4NEU0REYxNkYx QTFDMDNEOTQ1NTg1LmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUElJTkVULzAvMzYzMTJlMzUzNzJl MzIzMjM0MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzEzNzM3MzEzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD054DANBgkqhkiG9w0BAQsFAAOCAQEAN6VaF2ypnBdzaoALAxicI5G+brh1 slOyPdbo++TMa2RcToFp85azNk8J85SZYomRfA+aArez9Pu3HMtxx5A6TFWWKGsH F7cK3C9JcqnD86Ro9C3CCNACj081RGKD+b4Vz/7YKZPMNx8SPf+PrfEf7yp2ci0R uqDWmeBE6ODyt1boPFYj4qn8+DpIxB43sREip54tWBrDkGcqBCuOjLTH4V88BMPL dPamCLs84aMWqGfuT+uzaOVVM3yoWJzEw6O7ZZ5L95ctDcixemqgc/IQKvhRiDsm kgwf42QZM2kLuQDsfkqFjd1l3m2FdANR5RtSoiOAN+TfYu768F3d5VeuqA== -----END CERTIFICATE-----Generated at Wed May 13 21:08:34 2026 by rpki-client