$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33332e302f32342d3234203d3e203338383433.roa File: 3232332e32372e33332e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: iHBwGEcq/Toxs0xqrQqekg2RJ0LsdlJYQvYmHH854FQ= Subject key identifier: 69:7A:A5:40:14:E6:41:3A:5C:9F:50:43:DE:02:95:0F:3A:4F:70:68 Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 45C446EF6DDA79F0D8B91E7D7BDC213CBD73BD40 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33332e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:08:22 +0000 ROA not before: Mon 11 May 2026 17:03:22 +0000 ROA not after: Mon 10 May 2027 17:08:22 +0000 asID: 38843 IP address blocks: 223.27.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c4:46:ef:6d:da:79:f0:d8:b9:1e:7d:7b:dc:21:3c:bd:73:bd:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:03:22 2026 GMT Not After : May 10 17:08:22 2027 GMT Subject: CN=697AA54014E6413A5C9F5043DE02950F3A4F7068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ee:20:32:bc:9e:8f:75:28:90:cc:6f:f8:73: 96:39:48:db:48:e4:ac:db:2c:ec:78:7d:bd:79:9e: 89:65:4e:00:38:f1:bb:67:6d:99:3f:44:af:13:b9: 31:aa:b6:50:fa:ba:e9:d0:ff:b5:fe:5e:58:3b:f4: 1a:93:dd:8c:1c:59:89:2e:60:94:07:48:3c:ea:1d: 77:aa:17:94:d4:f6:89:7a:ac:55:be:19:9a:c4:40: 5d:22:f0:82:56:6f:2b:fe:73:5b:16:6d:f7:18:fe: 08:1b:55:40:9f:a3:dd:12:7e:78:0c:00:8a:5a:51: 52:6b:c9:7c:ce:3c:68:c4:b3:b3:c7:48:0e:3f:6f: e8:b2:02:93:fa:44:43:f2:63:a0:92:83:70:16:71: 2a:fd:a9:aa:36:af:61:7e:41:65:2e:28:cf:77:53: 41:5e:dc:49:92:7c:2d:98:af:0c:0d:96:7c:cd:1b: 1c:f2:93:23:7d:aa:82:1e:61:87:71:a7:92:d8:7f: c1:06:5b:74:68:80:1d:49:c6:53:36:78:40:e6:7a: 45:4c:fa:77:dd:10:4e:51:74:ac:2f:b9:84:19:aa: 9c:14:d6:d6:43:cc:21:2c:60:04:fa:d7:84:15:dd: 80:93:c9:2d:77:5c:af:c3:ae:81:fd:e0:b7:58:df: fc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:7A:A5:40:14:E6:41:3A:5C:9F:50:43:DE:02:95:0F:3A:4F:70:68 X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33332e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.33.0/24 Signature Algorithm: sha256WithRSAEncryption 61:c9:98:e2:cb:07:82:cc:39:a7:d7:c8:5f:c2:e5:b0:8c:41: 57:72:41:2c:3c:af:84:be:81:53:9e:ed:c5:b2:e4:d0:1a:86: f4:9e:eb:3d:a0:57:22:7a:c8:41:c5:96:e5:25:46:f8:e3:25: 18:f4:24:5d:9b:94:0d:6f:fd:a6:26:17:81:36:12:27:29:fa: d6:f7:cc:6b:f7:90:3e:65:16:06:0b:aa:d2:50:e6:57:fa:24: 7c:7e:00:ec:c7:cf:b2:3e:62:f8:e6:4e:dd:0c:37:ae:c6:68: 5e:fc:a6:57:82:ea:c6:cf:7e:75:ae:f8:ae:82:e1:a2:d0:5b: 92:f1:4c:47:32:6c:5c:7a:7a:4e:f7:3d:e4:f5:8f:8e:b6:fe: 74:aa:2e:08:35:dc:04:ba:de:30:30:7b:c6:13:68:7a:7a:0b: d3:ca:3d:8b:53:2b:f5:1a:50:81:33:95:82:3c:69:5a:74:23: 62:da:8f:73:41:b3:0c:58:00:b2:0c:5c:02:09:9b:35:a7:10: c3:32:5a:7e:10:67:9a:07:ea:58:cb:9e:14:da:9a:88:54:a7: 2e:d1:52:99:2a:9c:7c:17:97:37:bc:da:1a:ed:28:36:ed:a1: 41:60:ec:04:c5:3d:38:6d:06:61:60:d3:c4:4c:55:4b:ec:f1: c8:df:33:8d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIURcRG723aefDYuR59e9whPL1zvUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzAzMjJaFw0yNzA1MTAxNzA4MjJaMDMxMTAvBgNV BAMTKDY5N0FBNTQwMTRFNjQxM0E1QzlGNTA0M0RFMDI5NTBGM0E0RjcwNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW7iAyvJ6PdSiQzG/4c5Y5SNtI 5KzbLOx4fb15nollTgA48btnbZk/RK8TuTGqtlD6uunQ/7X+Xlg79BqT3YwcWYku YJQHSDzqHXeqF5TU9ol6rFW+GZrEQF0i8IJWbyv+c1sWbfcY/ggbVUCfo90SfngM AIpaUVJryXzOPGjEs7PHSA4/b+iyApP6REPyY6CSg3AWcSr9qao2r2F+QWUuKM93 U0Fe3EmSfC2YrwwNlnzNGxzykyN9qoIeYYdxp5LYf8EGW3RogB1JxlM2eEDmekVM +nfdEE5RdKwvuYQZqpwU1tZDzCEsYAT614QV3YCTyS13XK/DroH94LdY3/wnAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUaXqlQBTmQTpcn1BD3gKVDzpPcGgwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTMz MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3xshMA0GCSqGSIb3DQEBCwUAA4IBAQBhyZjiyweCzDmn18hfwuWwjEFXckEsPK+E voFTnu3FsuTQGob0nus9oFcieshBxZblJUb44yUY9CRdm5QNb/2mJheBNhInKfrW 98xr95A+ZRYGC6rSUOZX+iR8fgDsx8+yPmL45k7dDDeuxmhe/KZXgurGz351rviu guGi0FuS8UxHMmxcenpO9z3k9Y+Otv50qi4INdwEut4wMHvGE2h6egvTyj2LUyv1 GlCBM5WCPGladCNi2o9zQbMMWACyDFwCCZs1pxDDMlp+EGeaB+pYy54U2pqIVKcu 0VKZKpx8F5c3vNoa7Sg27aFBYOwExT04bQZhYNPETFVL7PHI3zON -----END CERTIFICATE-----Generated at Wed May 13 21:16:50 2026 by rpki-client