$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3132382e302f32312d3234203d3e203338383433.roa File: 3132342e3135302e3132382e302f32312d3234203d3e203338383433.roa (raw, json) Hash identifier: TjQud4kqwpw9nkpsUyYiE6W/tZDSFGaf+7PJxAQMvoM= Subject key identifier: 26:01:AC:21:5B:EA:01:F6:9D:BF:68:49:2A:87:F9:6B:C9:7F:2D:94 Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 245D677ECA0521E14C3965E5CF7425A983C49523 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3132382e302f32312d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 16:48:35 +0000 ROA not before: Mon 11 May 2026 16:43:35 +0000 ROA not after: Mon 10 May 2027 16:48:35 +0000 asID: 38843 IP address blocks: 124.150.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:5d:67:7e:ca:05:21:e1:4c:39:65:e5:cf:74:25:a9:83:c4:95:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 16:43:35 2026 GMT Not After : May 10 16:48:35 2027 GMT Subject: CN=2601AC215BEA01F69DBF68492A87F96BC97F2D94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ac:ae:38:f6:89:cc:83:56:45:e6:00:22:41: d9:f2:95:de:f7:a1:72:56:09:c3:49:1c:19:86:7d: 30:e4:fd:22:aa:21:84:60:bc:37:bb:b9:bc:1e:6e: 7b:96:25:c0:05:0a:af:a4:ec:02:71:25:8f:9e:e5: 52:a8:0a:1f:f0:8d:8d:48:07:8f:bd:a0:ba:39:c9: 23:38:be:4c:0c:fa:39:29:4b:9f:1d:67:58:5e:64: 29:a1:89:0a:9e:c1:14:34:5d:f3:ad:a4:78:f0:25: 4f:24:70:ac:b3:5e:c2:18:5b:bb:9f:71:f9:3e:08: 45:cf:76:83:51:ac:1b:9e:11:1a:dc:38:79:e7:33: 60:0e:f0:b7:2f:d4:be:75:5b:1f:da:09:90:e5:5e: af:46:ad:17:74:c8:04:c2:af:be:e0:c2:60:14:f2: 17:d9:c0:e1:b9:44:61:45:80:fa:d1:fb:aa:86:e7: 4c:9e:33:cc:ac:73:2b:88:55:a2:1b:a3:cb:2b:a8: 59:51:89:31:3d:c4:8c:97:2a:2e:5a:31:46:ea:75: d2:48:bc:23:9f:0d:76:20:b8:ee:94:65:90:a7:6d: 8a:d1:e6:9d:62:29:73:c5:58:6d:77:f0:f5:43:46: b9:54:7b:6c:b9:3d:3b:12:81:cc:91:ee:e9:9d:92: b5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:01:AC:21:5B:EA:01:F6:9D:BF:68:49:2A:87:F9:6B:C9:7F:2D:94 X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3132382e302f32312d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.150.128.0/21 Signature Algorithm: sha256WithRSAEncryption 94:5d:a4:3c:88:8a:ec:00:4f:9c:ad:f9:7c:fb:31:d1:94:a0: 2a:11:75:63:eb:ca:37:b9:12:dc:90:5f:8f:3a:4c:4f:88:de: 94:80:3e:49:f3:95:af:22:e1:09:ef:c4:ec:6b:27:77:20:33: 38:76:41:82:1f:65:de:be:dc:7c:c0:d5:4e:ef:20:02:ff:c4: 4c:50:17:ea:3b:86:1d:52:b9:da:bb:62:6c:f4:e6:12:54:01: 36:ca:9f:84:61:ef:37:1d:1f:48:95:c6:79:f4:0f:e7:6f:a7: ac:89:61:bf:6e:20:b3:18:7c:dc:24:58:a2:40:82:43:43:c8: 1a:36:a0:54:aa:85:03:c9:56:0c:dc:ef:ac:76:cf:b1:39:a7: 51:56:fa:79:3a:34:c5:d2:c7:25:7e:e0:db:12:c2:09:6a:d0: 49:27:aa:6d:37:c1:27:0c:b6:f9:c9:ab:bd:d7:cc:cc:76:79: 5b:89:14:16:fc:48:69:07:b0:9a:b4:9e:5f:b6:3f:d1:16:89: 3c:66:ce:c4:b2:e6:0a:2e:68:12:85:5a:b0:16:96:d9:d5:da: 60:72:a8:35:15:e5:96:fb:30:32:78:45:70:aa:14:9c:95:e1: fe:f6:b4:09:fb:26:bb:b4:70:f6:f5:19:c3:d3:25:a6:9e:7d: c2:a5:53:d2 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUJF1nfsoFIeFMOWXlz3QlqYPElSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNjQzMzVaFw0yNzA1MTAxNjQ4MzVaMDMxMTAvBgNV BAMTKDI2MDFBQzIxNUJFQTAxRjY5REJGNjg0OTJBODdGOTZCQzk3RjJEOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmrK449onMg1ZF5gAiQdnyld73 oXJWCcNJHBmGfTDk/SKqIYRgvDe7ubwebnuWJcAFCq+k7AJxJY+e5VKoCh/wjY1I B4+9oLo5ySM4vkwM+jkpS58dZ1heZCmhiQqewRQ0XfOtpHjwJU8kcKyzXsIYW7uf cfk+CEXPdoNRrBueERrcOHnnM2AO8Lcv1L51Wx/aCZDlXq9GrRd0yATCr77gwmAU 8hfZwOG5RGFFgPrR+6qG50yeM8yscyuIVaIbo8srqFlRiTE9xIyXKi5aMUbqddJI vCOfDXYguO6UZZCnbYrR5p1iKXPFWG138PVDRrlUe2y5PTsSgcyR7umdkrVFAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUJgGsIVvqAfadv2hJKof5a8l/LZQwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMTMyMzQyZTMxMzUzMDJl MzEzMjM4MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzMzODM4MzQzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3yWgDANBgkqhkiG9w0BAQsFAAOCAQEAlF2kPIiK7ABPnK35fPsx0ZSgKhF1 Y+vKN7kS3JBfjzpMT4jelIA+SfOVryLhCe/E7GsndyAzOHZBgh9l3r7cfMDVTu8g Av/ETFAX6juGHVK52rtibPTmElQBNsqfhGHvNx0fSJXGefQP52+nrIlhv24gsxh8 3CRYokCCQ0PIGjagVKqFA8lWDNzvrHbPsTmnUVb6eTo0xdLHJX7g2xLCCWrQSSeq bTfBJwy2+cmrvdfMzHZ5W4kUFvxIaQewmrSeX7Y/0RaJPGbOxLLmCi5oEoVasBaW 2dXaYHKoNRXllvswMnhFcKoUnJXh/va0Cfsmu7Rw9vUZw9Mlpp59wqVT0g== -----END CERTIFICATE-----Generated at Wed May 13 21:16:32 2026 by rpki-client