$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33322e302f32302d3230203d3e203338383433.roa File: 3232332e32372e33322e302f32302d3230203d3e203338383433.roa (raw, json) Hash identifier: 37IKWU5ydNwwrFF4pPGbb1dD6E0zgI3wA3xzQMV5lVU= Subject key identifier: CD:8D:2C:EE:99:10:ED:0C:F2:B3:A1:BC:63:0C:22:61:60:09:65:DF Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 5AE4A26AFF48CC10EA359CF4ECCE91D918E43829 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33322e302f32302d3230203d3e203338383433.roa Signing time: Mon 11 May 2026 17:11:29 +0000 ROA not before: Mon 11 May 2026 17:06:29 +0000 ROA not after: Mon 10 May 2027 17:11:29 +0000 asID: 38843 IP address blocks: 223.27.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e4:a2:6a:ff:48:cc:10:ea:35:9c:f4:ec:ce:91:d9:18:e4:38:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:06:29 2026 GMT Not After : May 10 17:11:29 2027 GMT Subject: CN=CD8D2CEE9910ED0CF2B3A1BC630C2261600965DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:99:cc:50:25:01:22:78:19:1b:93:89:91:20: e8:e7:ad:73:96:93:06:71:1a:3a:6e:91:ee:1a:fd: 7c:7a:39:7d:f4:06:0b:91:f8:be:c4:02:67:ec:88: c4:70:14:ec:8f:23:b6:21:35:9c:a8:76:08:f7:16: 06:f3:94:74:e4:3c:05:b7:ef:a9:b1:b7:80:a4:ce: 77:33:9b:7d:0b:32:a0:69:12:52:34:f7:85:aa:a0: 08:1e:b5:be:57:e2:d7:cf:52:e7:a3:cf:ec:38:59: 90:00:46:9b:9c:3b:65:88:30:32:83:55:43:5a:a2: 8b:54:cc:d4:2b:8f:51:c3:7b:8c:1b:89:b6:3b:d9: 11:a4:5d:ab:4b:ea:ae:2d:c8:fd:85:30:13:12:67: da:21:0e:ec:d4:b2:ae:31:6f:bc:de:e8:be:54:53: aa:1f:1a:24:7c:04:90:2c:d8:98:00:73:75:55:3e: bb:c4:a1:e0:ab:c2:dc:1d:35:f3:17:4b:57:f7:20: 77:e7:e1:8e:c6:0c:9f:a8:14:d0:21:37:b7:b8:d1: a4:e7:b2:c5:98:ae:3a:02:eb:ca:21:5e:a3:8d:d7: 92:77:f0:c5:ce:2b:81:85:e3:87:34:eb:c9:1c:b8: ac:1e:0b:c4:69:5d:19:61:13:6d:b3:d6:c6:fa:3c: c0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:8D:2C:EE:99:10:ED:0C:F2:B3:A1:BC:63:0C:22:61:60:09:65:DF X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33322e302f32302d3230203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.32.0/20 Signature Algorithm: sha256WithRSAEncryption b0:29:d5:33:0f:8a:bb:63:09:8c:54:72:00:e9:61:d3:f4:ad: 1b:dd:c8:73:9e:13:8e:9b:26:d7:40:12:7c:ab:d3:d8:c5:97: 6f:32:73:5c:d8:ea:a0:eb:e2:46:0d:e8:c3:97:da:98:b1:11: b3:6e:5b:d4:a3:be:fc:59:9b:c6:e0:1b:b2:3f:74:36:6b:d3: b8:62:de:d0:8c:62:76:81:de:7a:ae:12:0a:38:e8:a1:fb:e1: dc:81:29:7b:87:5c:27:b7:a2:61:87:9c:6d:c9:02:ca:10:64: b8:b8:c3:c0:30:ad:a0:2d:9c:2a:9b:2b:e9:89:c3:42:80:45: ee:29:7e:8b:24:cc:88:4e:f5:cf:de:c9:b9:d8:5f:62:a7:86: bf:b8:03:79:8b:6e:2b:c3:30:42:bc:5d:ed:7e:96:9d:3f:63: 0b:26:3d:dc:6f:6d:3c:d1:e6:31:8f:03:3b:1d:01:42:6f:cd: cb:10:3a:76:21:e2:ad:49:44:dc:01:0e:29:c8:29:d2:e3:de: 75:08:05:a5:16:6f:36:35:1f:d1:e7:f6:68:e7:b6:7d:6c:e9: 7b:4e:7f:6c:0f:88:e2:91:dc:8e:20:d2:b1:ab:4d:c7:d2:eb: 83:17:aa:80:bf:d5:df:7c:a1:19:91:04:43:c4:f2:e5:8f:6f: 4b:d1:d4:fa -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUWuSiav9IzBDqNZz07M6R2RjkOCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzA2MjlaFw0yNzA1MTAxNzExMjlaMDMxMTAvBgNV BAMTKENEOEQyQ0VFOTkxMEVEMENGMkIzQTFCQzYzMEMyMjYxNjAwOTY1REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0mcxQJQEieBkbk4mRIOjnrXOW kwZxGjpuke4a/Xx6OX30BguR+L7EAmfsiMRwFOyPI7YhNZyodgj3FgbzlHTkPAW3 76mxt4Ckznczm30LMqBpElI094WqoAgetb5X4tfPUuejz+w4WZAARpucO2WIMDKD VUNaootUzNQrj1HDe4wbibY72RGkXatL6q4tyP2FMBMSZ9ohDuzUsq4xb7ze6L5U U6ofGiR8BJAs2JgAc3VVPrvEoeCrwtwdNfMXS1f3IHfn4Y7GDJ+oFNAhN7e40aTn ssWYrjoC68ohXqON15J38MXOK4GF44c068kcuKweC8RpXRlhE22z1sb6PMCHAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUzY0s7pkQ7Qzys6G8YwwiYWAJZd8wHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTMz MzIyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE 3xsgMA0GCSqGSIb3DQEBCwUAA4IBAQCwKdUzD4q7YwmMVHIA6WHT9K0b3chznhOO mybXQBJ8q9PYxZdvMnNc2Oqg6+JGDejDl9qYsRGzblvUo778WZvG4BuyP3Q2a9O4 Yt7QjGJ2gd56rhIKOOih++HcgSl7h1wnt6Jhh5xtyQLKEGS4uMPAMK2gLZwqmyvp icNCgEXuKX6LJMyITvXP3sm52F9ip4a/uAN5i24rwzBCvF3tfpadP2MLJj3cb208 0eYxjwM7HQFCb83LEDp2IeKtSUTcAQ4pyCnS4951CAWlFm82NR/R5/Zo57Z9bOl7 Tn9sD4jikdyOINKxq03H0uuDF6qAv9XffKEZkQRDxPLlj29L0dT6 -----END CERTIFICATE-----Generated at Wed May 13 21:16:12 2026 by rpki-client