$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33372e302f32342d3234203d3e203338383433.roa File: 3232332e32372e33372e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: z6n0mwVHo4mBDmLnxnFXaCFduviI4Do7m8WrEOee6Zk= Subject key identifier: 46:99:DA:31:D8:66:61:02:9B:CB:32:4A:55:30:D8:97:5F:6F:1F:00 Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 0762A4E448ABC112F7912923E67876B41EB55544 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33372e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:08:24 +0000 ROA not before: Mon 11 May 2026 17:03:24 +0000 ROA not after: Mon 10 May 2027 17:08:24 +0000 asID: 38843 IP address blocks: 223.27.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:62:a4:e4:48:ab:c1:12:f7:91:29:23:e6:78:76:b4:1e:b5:55:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:03:24 2026 GMT Not After : May 10 17:08:24 2027 GMT Subject: CN=4699DA31D86661029BCB324A5530D8975F6F1F00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:de:99:5c:73:4b:55:69:ad:59:a6:ff:2e:5e: f9:78:28:98:1a:b1:92:6b:48:1e:50:55:03:41:c8: b7:28:80:1e:64:82:4b:46:8c:bd:e7:ba:a3:25:47: 67:01:41:a3:b6:3b:2e:b6:d1:a8:d5:9f:e4:58:4f: ca:e2:78:f7:c8:f7:2c:a5:70:57:a3:d1:dc:e9:d8: 55:33:df:50:45:b6:d2:8b:12:a0:f8:10:8d:8f:2c: 7d:5e:c9:c2:2d:70:91:23:fd:52:30:0f:e3:ea:47: 50:5a:52:e3:9b:fb:8b:11:34:52:75:a1:36:8c:fb: 9c:ff:8f:42:1b:fa:ef:ef:26:5c:65:73:30:b6:f2: 37:aa:6c:35:70:a8:d8:aa:72:33:ee:bb:4a:ec:80: d9:06:a3:3d:01:8e:14:17:ba:a6:a1:7b:5d:17:cb: 6d:ab:4c:18:9d:19:73:4e:a2:cc:5a:30:9d:5d:74: b9:30:44:6e:e7:b1:99:77:f4:fb:a6:63:94:ca:c6: 19:8f:85:05:b7:f5:35:dc:65:ec:a8:9c:be:e4:20: c6:7b:21:ad:dc:3e:1b:26:cc:b1:c3:f6:f9:1a:e3: 9e:6e:c5:b1:d5:34:32:96:06:07:10:79:01:df:06: 82:06:6b:0b:d1:f1:b9:66:d4:8c:fc:56:95:74:44: 8f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:99:DA:31:D8:66:61:02:9B:CB:32:4A:55:30:D8:97:5F:6F:1F:00 X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33372e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.37.0/24 Signature Algorithm: sha256WithRSAEncryption 49:48:ca:19:29:5f:e6:50:eb:2c:22:3f:f1:eb:d3:6d:5f:6b: 8f:65:8a:08:cd:3a:81:f0:f6:11:f3:93:d6:21:18:c5:77:47: 54:62:a0:b7:e8:d5:e6:02:f5:31:54:12:a6:6d:50:a7:f0:78: b2:f1:de:0e:e1:65:fe:e8:3b:20:05:f7:58:bf:f5:99:f0:c8: 3f:13:98:8a:c1:ec:59:1c:34:fa:69:17:2f:6c:6e:f7:62:dc: e1:80:21:16:d6:7f:60:fc:99:e5:9d:b3:22:45:fe:9b:e3:17: d3:ec:4b:b7:0b:92:7d:c1:0c:1f:65:12:19:d5:8f:41:3e:ec: aa:11:11:35:22:f8:6f:2c:58:d9:35:ca:2b:83:f6:0d:df:45: 91:cb:57:d9:d4:48:6c:35:20:f3:1e:a9:e5:44:9f:fd:1a:9b: fa:77:af:a5:c9:59:31:68:1a:af:02:e2:32:7b:37:5c:9a:0a: 0e:36:44:21:c9:4b:2f:ff:dc:44:a9:37:dd:c2:e0:79:e2:91: 0b:59:05:1e:b6:4f:3a:d4:63:67:e1:99:1e:62:b4:e0:3d:52: 70:31:43:c8:3e:a1:81:8b:85:c1:a7:a5:5a:40:4f:18:f4:e9: 61:7d:b1:8c:ff:5f:6f:93:28:2f:dc:8e:90:46:52:f5:28:0c: c7:39:cb:d5 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUB2Kk5EirwRL3kSkj5nh2tB61VUQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzAzMjRaFw0yNzA1MTAxNzA4MjRaMDMxMTAvBgNV BAMTKDQ2OTlEQTMxRDg2NjYxMDI5QkNCMzI0QTU1MzBEODk3NUY2RjFGMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV3plcc0tVaa1Zpv8uXvl4KJga sZJrSB5QVQNByLcogB5kgktGjL3nuqMlR2cBQaO2Oy620ajVn+RYT8riePfI9yyl cFej0dzp2FUz31BFttKLEqD4EI2PLH1eycItcJEj/VIwD+PqR1BaUuOb+4sRNFJ1 oTaM+5z/j0Ib+u/vJlxlczC28jeqbDVwqNiqcjPuu0rsgNkGoz0BjhQXuqahe10X y22rTBidGXNOosxaMJ1ddLkwRG7nsZl39PumY5TKxhmPhQW39TXcZeyonL7kIMZ7 Ia3cPhsmzLHD9vka455uxbHVNDKWBgcQeQHfBoIGawvR8blm1Iz8VpV0RI9FAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQURpnaMdhmYQKbyzJKVTDYl19vHwAwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTMz MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3xslMA0GCSqGSIb3DQEBCwUAA4IBAQBJSMoZKV/mUOssIj/x69NtX2uPZYoIzTqB 8PYR85PWIRjFd0dUYqC36NXmAvUxVBKmbVCn8Hiy8d4O4WX+6DsgBfdYv/WZ8Mg/ E5iKwexZHDT6aRcvbG73YtzhgCEW1n9g/JnlnbMiRf6b4xfT7Eu3C5J9wQwfZRIZ 1Y9BPuyqERE1IvhvLFjZNcorg/YN30WRy1fZ1EhsNSDzHqnlRJ/9Gpv6d6+lyVkx aBqvAuIyezdcmgoONkQhyUsv/9xEqTfdwuB54pELWQUetk861GNn4ZkeYrTgPVJw MUPIPqGBi4XBp6VaQE8Y9OlhfbGM/19vkygv3I6QRlL1KAzHOcvV -----END CERTIFICATE-----Generated at Wed May 13 21:16:33 2026 by rpki-client