$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33322e302f31392d3234203d3e203338383433.roa File: 3232332e32372e33322e302f31392d3234203d3e203338383433.roa (raw, json) Hash identifier: sLpfgv/w2j00vd1MRFu6tSxSPrYiuAXE2UIkC4/G918= Subject key identifier: 77:9D:7A:87:C0:57:68:7F:04:39:D1:F8:61:87:A7:40:7F:E4:4C:2C Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 14A663F81EA761D5F89A513F4E8FE3A8F199057C Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33322e302f31392d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 16:48:36 +0000 ROA not before: Mon 11 May 2026 16:43:36 +0000 ROA not after: Mon 10 May 2027 16:48:36 +0000 asID: 38843 IP address blocks: 223.27.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a6:63:f8:1e:a7:61:d5:f8:9a:51:3f:4e:8f:e3:a8:f1:99:05:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 16:43:36 2026 GMT Not After : May 10 16:48:36 2027 GMT Subject: CN=779D7A87C057687F0439D1F86187A7407FE44C2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e7:6a:54:8d:22:ae:40:db:f8:f5:7a:12:10: e9:a6:de:87:3b:4a:2c:2a:c1:76:39:91:a0:ed:0a: b1:cf:4c:d4:29:d5:9a:8b:ca:a1:fb:b7:44:a7:ea: e7:98:9d:75:53:b1:34:76:cc:22:c2:5f:4d:39:48: 75:2f:f3:bc:e7:8c:3b:28:3c:3a:e6:c0:c7:71:ed: 8a:c6:dd:d4:ff:db:b5:87:2d:5f:24:66:c1:b3:52: 0c:86:7b:99:02:ec:15:78:48:f1:1f:b6:15:4c:45: 6a:8d:6f:82:9f:b8:79:12:a0:27:0a:ed:d9:34:91: b4:44:3a:4c:0e:f8:23:33:2e:7c:2e:0f:b1:47:43: 31:d5:ec:03:95:55:21:b5:44:d1:36:01:03:d5:11: 23:b8:46:66:a3:18:fb:b4:fa:76:f7:01:61:a0:50: bd:25:83:df:fd:dc:c4:87:f7:72:e5:1f:32:28:62: c8:09:f9:f0:06:eb:74:34:72:e7:3e:71:0d:40:3a: 45:82:e1:a6:06:bb:d1:97:b1:19:73:4b:2a:d0:21: 0e:46:93:58:d6:57:83:57:80:f0:5a:73:2d:0c:98: 7b:31:b5:37:52:ff:e3:8a:4e:8d:42:66:d8:ac:52: 03:c1:e0:7f:30:85:b6:cf:1e:b7:fb:47:52:3c:1a: e3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9D:7A:87:C0:57:68:7F:04:39:D1:F8:61:87:A7:40:7F:E4:4C:2C X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33322e302f31392d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.32.0/19 Signature Algorithm: sha256WithRSAEncryption 49:48:79:0a:55:23:72:7b:6b:60:cd:7d:e9:55:33:bd:d2:fa: 8e:be:c2:48:03:52:4e:b4:8b:de:90:26:28:6b:fe:e9:c3:35: 4c:29:cc:7b:90:51:9d:97:ea:77:e9:fd:67:de:68:b8:81:06: 54:2b:9e:c3:fa:b7:43:a4:ef:25:31:b8:90:05:78:86:cf:cd: 4a:92:3e:b2:ee:20:5e:fd:1b:c8:91:ee:45:b0:61:84:6f:49: 62:c0:41:1c:98:6e:1b:79:c0:b2:7a:cc:d9:1f:a6:ed:ee:ed: e7:8d:37:8e:3b:d1:04:20:39:e4:e7:01:3e:2e:57:e8:51:18: 0b:b5:c9:e3:20:8c:05:1c:6d:6a:d1:a9:c3:1a:56:03:ac:7d: 38:50:59:94:c8:65:bc:81:96:89:80:8f:4d:f2:52:fc:5b:65: 43:8f:de:95:91:bf:d0:be:c3:9d:58:51:fc:3f:21:6c:7b:b9: 93:60:50:13:95:6a:24:b7:65:c8:4e:24:56:ac:43:96:73:a7: 7f:de:c0:ab:1e:0f:cb:8c:93:35:ef:1c:04:06:82:73:bb:30: b9:30:42:c1:04:51:58:ee:fc:c3:86:a8:0e:51:35:41:a9:54: 8b:24:90:18:45:1f:28:b3:a7:b9:53:dc:5f:c9:55:07:ea:ed: 55:b2:ec:74 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUFKZj+B6nYdX4mlE/To/jqPGZBXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNjQzMzZaFw0yNzA1MTAxNjQ4MzZaMDMxMTAvBgNV BAMTKDc3OUQ3QTg3QzA1NzY4N0YwNDM5RDFGODYxODdBNzQwN0ZFNDRDMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd52pUjSKuQNv49XoSEOmm3oc7 SiwqwXY5kaDtCrHPTNQp1ZqLyqH7t0Sn6ueYnXVTsTR2zCLCX005SHUv87znjDso PDrmwMdx7YrG3dT/27WHLV8kZsGzUgyGe5kC7BV4SPEfthVMRWqNb4KfuHkSoCcK 7dk0kbREOkwO+CMzLnwuD7FHQzHV7AOVVSG1RNE2AQPVESO4RmajGPu0+nb3AWGg UL0lg9/93MSH93LlHzIoYsgJ+fAG63Q0cuc+cQ1AOkWC4aYGu9GXsRlzSyrQIQ5G k1jWV4NXgPBacy0MmHsxtTdS/+OKTo1CZtisUgPB4H8whbbPHrf7R1I8GuNdAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUd516h8BXaH8EOdH4YYenQH/kTCwwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTMz MzIyZTMwMmYzMTM5MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF 3xsgMA0GCSqGSIb3DQEBCwUAA4IBAQBJSHkKVSNye2tgzX3pVTO90vqOvsJIA1JO tIvekCYoa/7pwzVMKcx7kFGdl+p36f1n3mi4gQZUK57D+rdDpO8lMbiQBXiGz81K kj6y7iBe/RvIke5FsGGEb0liwEEcmG4becCyeszZH6bt7u3njTeOO9EEIDnk5wE+ LlfoURgLtcnjIIwFHG1q0anDGlYDrH04UFmUyGW8gZaJgI9N8lL8W2VDj96Vkb/Q vsOdWFH8PyFse7mTYFATlWokt2XITiRWrEOWc6d/3sCrHg/LjJM17xwEBoJzuzC5 MELBBFFY7vzDhqgOUTVBqVSLJJAYRR8os6e5U9xfyVUH6u1Vsux0 -----END CERTIFICATE-----Generated at Wed May 13 21:17:14 2026 by rpki-client