$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33352e302f32342d3234203d3e203338383433.roa File: 3232332e32372e33352e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: c8hCe81Dh6dpBpKX3cqwhNQeK3t9l/oaMbXngl0wot8= Subject key identifier: E4:EC:2F:51:0B:B9:C1:4B:3C:39:EE:1B:E1:C2:54:0A:DD:B2:62:DD Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 137D8BA8284141F416A56A0406DBC4112B01A35D Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33352e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:08:23 +0000 ROA not before: Mon 11 May 2026 17:03:23 +0000 ROA not after: Mon 10 May 2027 17:08:23 +0000 asID: 38843 IP address blocks: 223.27.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:7d:8b:a8:28:41:41:f4:16:a5:6a:04:06:db:c4:11:2b:01:a3:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:03:23 2026 GMT Not After : May 10 17:08:23 2027 GMT Subject: CN=E4EC2F510BB9C14B3C39EE1BE1C2540ADDB262DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b3:22:c0:26:7b:ac:ec:7c:7f:ef:b4:9e:1d: 0a:72:4d:56:4c:c7:fa:04:72:58:e5:35:54:2e:65: cc:52:ed:18:9a:42:f5:9a:01:7e:69:5b:d7:20:4f: 91:0d:cf:47:5e:22:c0:43:04:9a:4a:d7:6f:7b:c0: e5:87:76:0b:25:c7:d7:17:dd:3e:64:f2:07:72:e1: 6b:b2:d4:74:06:e3:9b:71:68:61:96:9f:96:3b:72: 77:d4:17:d9:22:f3:32:67:2a:fb:4e:5a:ce:c6:ad: 1f:32:56:b1:f7:39:75:d1:2c:a0:e3:d2:31:c2:7b: 36:90:53:e5:bb:b3:b3:e2:b0:c3:14:05:c5:ae:1b: 76:55:96:9d:e7:3d:8e:95:af:0d:13:c7:c1:b4:9d: f0:4b:0f:6b:f8:ee:74:b0:a5:76:a3:04:f6:fa:82: e5:6c:1c:d6:7c:58:f7:30:82:b3:46:b0:5e:ee:3f: 7c:1c:2d:79:58:36:01:3d:a5:43:24:47:d7:2b:67: 49:e1:9c:ab:d5:66:e0:f1:09:3d:f7:21:16:2e:a1: e3:b3:f2:1e:34:bd:06:c4:29:98:7e:39:7d:06:e5: ed:87:00:e7:78:b5:dd:de:18:a0:2f:0a:6c:2d:16: 0e:b3:63:dd:5c:93:3b:76:5d:ba:8f:95:0f:d7:ce: bf:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:EC:2F:51:0B:B9:C1:4B:3C:39:EE:1B:E1:C2:54:0A:DD:B2:62:DD X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33352e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.35.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:cf:b2:fd:0b:3d:c7:53:6b:f4:fb:7b:31:46:30:ec:d9:91: 37:d2:be:55:05:04:d8:11:62:51:82:b8:04:47:70:0c:1d:47: e1:7b:b7:31:f0:4e:1d:3d:08:66:33:5a:73:d2:df:db:52:8b: ff:d3:9d:74:38:57:2e:c9:c4:82:cf:15:c7:75:53:7a:f6:25: ee:f1:6a:87:09:58:a6:eb:ce:3e:8a:92:81:d6:3f:ae:0c:31: 88:94:79:f2:bb:06:ab:5e:82:94:9d:c1:69:24:15:96:63:e6: d4:01:39:84:b7:a3:e4:9d:3f:f0:b3:c0:0b:67:1a:98:a1:02: 17:70:49:66:33:8c:32:36:6e:0e:f8:ed:b1:5c:bb:32:52:1e: 42:bb:45:1e:09:32:73:b1:67:80:f4:cd:74:57:db:c8:5e:93: 3e:7d:7d:70:29:bc:61:e4:a0:45:4f:ad:c6:99:16:ea:7b:11: 51:52:f4:00:75:19:fc:57:43:ff:0f:34:ac:b5:c8:0a:21:e7: 3a:e2:d6:e9:c1:3c:d2:d4:d0:b0:9f:76:b2:2b:fa:99:f8:42: 72:1b:5c:e2:16:3a:e6:c4:ea:fa:7b:6b:0e:77:f4:d1:64:a0: 8f:c2:0f:b1:5b:6d:07:e8:45:62:2c:f7:c5:77:f6:42:48:a5: d2:d9:7d:32 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUE32LqChBQfQWpWoEBtvEESsBo10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzAzMjNaFw0yNzA1MTAxNzA4MjNaMDMxMTAvBgNV BAMTKEU0RUMyRjUxMEJCOUMxNEIzQzM5RUUxQkUxQzI1NDBBRERCMjYyREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCusyLAJnus7Hx/77SeHQpyTVZM x/oEcljlNVQuZcxS7RiaQvWaAX5pW9cgT5ENz0deIsBDBJpK1297wOWHdgslx9cX 3T5k8gdy4Wuy1HQG45txaGGWn5Y7cnfUF9ki8zJnKvtOWs7GrR8yVrH3OXXRLKDj 0jHCezaQU+W7s7PisMMUBcWuG3ZVlp3nPY6Vrw0Tx8G0nfBLD2v47nSwpXajBPb6 guVsHNZ8WPcwgrNGsF7uP3wcLXlYNgE9pUMkR9crZ0nhnKvVZuDxCT33IRYuoeOz 8h40vQbEKZh+OX0G5e2HAOd4td3eGKAvCmwtFg6zY91ckzt2XbqPlQ/Xzr9xAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQU5OwvUQu5wUs8Oe4b4cJUCt2yYt0wHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTMz MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3xsjMA0GCSqGSIb3DQEBCwUAA4IBAQAbz7L9Cz3HU2v0+3sxRjDs2ZE30r5VBQTY EWJRgrgER3AMHUfhe7cx8E4dPQhmM1pz0t/bUov/0510OFcuycSCzxXHdVN69iXu 8WqHCVim684+ipKB1j+uDDGIlHnyuwarXoKUncFpJBWWY+bUATmEt6PknT/ws8AL ZxqYoQIXcElmM4wyNm4O+O2xXLsyUh5Cu0UeCTJzsWeA9M10V9vIXpM+fX1wKbxh 5KBFT63GmRbqexFRUvQAdRn8V0P/DzSstcgKIec64tbpwTzS1NCwn3ayK/qZ+EJy G1ziFjrmxOr6e2sOd/TRZKCPwg+xW20H6EViLPfFd/ZCSKXS2X0y -----END CERTIFICATE-----Generated at Wed May 13 21:16:32 2026 by rpki-client