$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34312e302f32342d3234203d3e203338383433.roa File: 3232332e32372e34312e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: 4IlQz941gHujeQMdL9vA/nrYbZGTfZwV3gKJzt0hdc8= Subject key identifier: D5:77:E4:C5:0A:26:4E:6C:6B:DB:45:9A:C6:69:04:CF:34:B5:32:EB Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 7FB72C41EEF90512230A7DD8951CF1C76722FF0C Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34312e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:11:19 +0000 ROA not before: Mon 11 May 2026 17:06:19 +0000 ROA not after: Mon 10 May 2027 17:11:19 +0000 asID: 38843 IP address blocks: 223.27.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b7:2c:41:ee:f9:05:12:23:0a:7d:d8:95:1c:f1:c7:67:22:ff:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:06:19 2026 GMT Not After : May 10 17:11:19 2027 GMT Subject: CN=D577E4C50A264E6C6BDB459AC66904CF34B532EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:6c:53:64:dc:86:ac:e4:e3:97:af:90:05: ad:a8:d5:3b:17:ef:b7:78:49:85:7e:22:be:94:db: 6d:c0:e9:92:e8:8d:e4:d1:f7:c7:67:27:8e:43:b0: 84:88:86:a9:7c:4b:30:fc:f7:46:16:55:49:23:f5: f7:35:b2:98:b4:62:2d:a7:87:2b:e5:3d:d5:84:46: ef:c6:98:8b:f1:10:41:85:a2:d5:60:bd:e5:83:0a: 36:71:0c:2c:21:7e:6b:a4:ca:01:15:0d:a6:19:9d: 3a:88:18:bb:39:fc:50:92:d1:17:cb:f7:1c:fe:28: ba:6f:cd:b4:3e:ec:cc:ec:15:9d:86:b4:07:6a:d1: 36:79:42:ba:af:6c:f1:2f:7e:72:da:e3:49:32:e8: a2:f1:53:90:1d:20:be:07:ed:d6:a2:2a:cc:d9:1f: b7:b7:56:46:e6:91:54:5d:84:b1:79:fe:c1:91:6f: 6e:f9:4a:82:67:30:82:c3:b4:a5:d4:aa:af:e4:6d: 2f:f8:dc:d3:47:ae:27:60:e4:eb:2c:2f:2a:f0:40: 6d:57:48:79:40:95:bb:53:17:b3:fb:84:0a:a1:ea: df:d1:33:34:21:f5:89:ef:e2:f0:73:21:f9:21:6f: 47:cc:4c:db:19:69:ba:79:3f:22:f6:d0:c9:45:b2: 51:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:77:E4:C5:0A:26:4E:6C:6B:DB:45:9A:C6:69:04:CF:34:B5:32:EB X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34312e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.41.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:45:e0:c6:47:59:b9:98:28:8a:0b:8f:22:8e:4a:14:67:6a: 18:5e:50:de:59:ea:f9:49:50:b8:4a:a9:38:42:c3:c4:6a:66: 3b:df:44:18:8d:b5:49:a4:6d:69:7d:3a:3f:b8:5b:ce:70:72: da:b2:f9:1c:41:c1:25:95:09:64:b4:57:a5:26:a2:61:72:f3: da:65:8f:f1:d2:ef:d6:36:44:d2:1d:82:dc:4b:c2:39:0b:ed: 25:5b:fa:c1:01:9d:3a:48:6c:7d:e4:31:34:62:d5:48:53:06: 3a:09:61:75:51:5a:cd:ba:2a:15:4d:0d:fc:90:4f:af:18:77: fd:b0:14:73:c0:82:65:c1:74:41:8c:1d:a9:07:dc:0d:3b:d5: 81:69:ff:ae:5f:b9:19:a7:81:7a:ca:41:e1:77:b3:e7:47:d9: 1c:ac:5e:53:37:3e:71:da:0d:66:b7:7b:b2:5e:27:bc:b7:88: 81:1f:33:10:f2:bf:ac:58:18:fd:cc:bd:6f:13:5b:1e:af:9b: ac:64:23:19:e0:2e:bd:7f:f9:12:9a:ec:b5:e9:d5:33:ff:7f: 14:15:cd:60:33:40:df:4d:fd:7c:1e:f6:9d:38:c6:88:30:30: 43:e1:98:06:1b:48:00:71:7f:16:db:52:06:41:9b:3b:41:11: 3a:06:05:69 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUf7csQe75BRIjCn3YlRzxx2ci/wwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzA2MTlaFw0yNzA1MTAxNzExMTlaMDMxMTAvBgNV BAMTKEQ1NzdFNEM1MEEyNjRFNkM2QkRCNDU5QUM2NjkwNENGMzRCNTMyRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEA2xTZNyGrOTjl6+QBa2o1TsX 77d4SYV+Ir6U223A6ZLojeTR98dnJ45DsISIhql8SzD890YWVUkj9fc1spi0Yi2n hyvlPdWERu/GmIvxEEGFotVgveWDCjZxDCwhfmukygEVDaYZnTqIGLs5/FCS0RfL 9xz+KLpvzbQ+7MzsFZ2GtAdq0TZ5QrqvbPEvfnLa40ky6KLxU5AdIL4H7daiKszZ H7e3VkbmkVRdhLF5/sGRb275SoJnMILDtKXUqq/kbS/43NNHridg5OssLyrwQG1X SHlAlbtTF7P7hAqh6t/RMzQh9Ynv4vBzIfkhb0fMTNsZabp5PyL20MlFslFxAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQU1XfkxQomTmxr20WaxmkEzzS1MuswHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTM0 MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3xspMA0GCSqGSIb3DQEBCwUAA4IBAQAOReDGR1m5mCiKC48ijkoUZ2oYXlDeWer5 SVC4Sqk4QsPEamY730QYjbVJpG1pfTo/uFvOcHLasvkcQcEllQlktFelJqJhcvPa ZY/x0u/WNkTSHYLcS8I5C+0lW/rBAZ06SGx95DE0YtVIUwY6CWF1UVrNuioVTQ38 kE+vGHf9sBRzwIJlwXRBjB2pB9wNO9WBaf+uX7kZp4F6ykHhd7PnR9kcrF5TNz5x 2g1mt3uyXie8t4iBHzMQ8r+sWBj9zL1vE1ser5usZCMZ4C69f/kSmuy16dUz/38U Fc1gM0DfTf18HvadOMaIMDBD4ZgGG0gAcX8W21IGQZs7QRE6BgVp -----END CERTIFICATE-----Generated at Wed May 13 21:17:20 2026 by rpki-client