$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34322e302f32342d3234203d3e203338383433.roa File: 3232332e32372e34322e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: 8GjxBthKO8Mj7zGYHAjT2MTTdKteIA6NdskEkHel+lA= Subject key identifier: 76:14:25:6E:F6:2A:06:CC:9D:2F:0B:E2:6A:FE:70:56:70:EF:91:A5 Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 553D517771A71DB0C7DAB8CAFFFD82718717C048 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34322e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:08:26 +0000 ROA not before: Mon 11 May 2026 17:03:26 +0000 ROA not after: Mon 10 May 2027 17:08:26 +0000 asID: 38843 IP address blocks: 223.27.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:3d:51:77:71:a7:1d:b0:c7:da:b8:ca:ff:fd:82:71:87:17:c0:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:03:26 2026 GMT Not After : May 10 17:08:26 2027 GMT Subject: CN=7614256EF62A06CC9D2F0BE26AFE705670EF91A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ce:75:59:07:7b:87:2f:ad:53:5d:3a:04:77: d9:f1:ff:53:1b:f6:1a:32:09:bd:56:da:af:25:f4: 36:e8:8e:88:8c:b4:26:94:ae:65:5f:1d:cf:07:fe: d7:f6:85:f3:a3:d3:a1:0f:59:74:f7:71:2c:e3:72: c0:45:1e:a8:47:56:8f:c1:e3:13:5d:5c:70:19:15: 4e:cb:2b:26:65:37:70:f5:fa:50:ce:bb:21:23:70: f5:80:d0:56:c1:34:0a:24:cc:f3:56:87:32:dc:86: 4c:59:22:74:04:cb:8d:40:68:27:3f:68:45:97:3b: 05:03:b1:67:95:3b:cf:31:2f:0b:32:97:40:f8:b5: 8a:fc:e6:cd:39:b7:17:93:6a:4b:ce:71:21:38:0a: 9c:90:2b:d9:f5:32:77:82:fc:ae:e0:4b:5b:03:40: 20:57:67:e2:94:82:72:70:33:24:21:07:78:9a:e1: 70:8a:6d:94:3f:3e:10:85:8b:c3:a7:d4:9a:50:2b: 00:d3:dd:a4:cf:aa:9c:a1:03:13:ff:f9:f6:40:49: a2:ad:00:28:e8:00:09:54:0d:6f:33:be:3d:ee:9b: f9:62:2a:e1:60:d6:51:2f:02:37:cf:a0:b1:5d:2c: e2:a8:fd:5e:1a:12:e9:c1:72:11:38:31:20:bc:df: e3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:14:25:6E:F6:2A:06:CC:9D:2F:0B:E2:6A:FE:70:56:70:EF:91:A5 X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34322e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.42.0/24 Signature Algorithm: sha256WithRSAEncryption 52:4c:41:db:94:5a:a1:07:38:b7:9a:78:c5:81:57:67:9e:47: 39:ef:b1:41:b0:74:26:a4:ca:42:97:5c:12:94:88:67:c8:83: 6d:41:59:f8:c9:e3:27:7d:54:b5:a9:f5:da:c8:3b:40:ff:33: 8e:22:89:1d:bf:7c:d6:5d:54:dd:37:44:0a:73:c9:35:cb:5e: 0f:de:84:89:8e:91:b2:7b:df:0f:0c:da:93:08:5d:d9:ea:60: 1e:06:8d:48:4f:90:c1:cf:7d:57:f9:49:29:cf:ce:2d:e2:d6: df:54:46:a4:47:ec:1c:52:ab:a3:bc:8e:7f:3a:ff:92:07:81: 0c:3d:b6:c5:f1:8f:44:f0:b5:6d:5c:2a:a2:f8:82:de:c0:75: d7:ea:58:87:77:27:67:b9:dd:58:78:20:28:de:f0:48:f0:30: bd:88:03:4b:bb:01:a7:2b:9a:46:72:8e:2b:b6:07:58:fe:ab: a4:61:b4:37:a7:e0:53:33:9b:e1:af:07:95:db:45:cf:88:cf: 39:60:31:87:99:b6:f8:4a:18:ad:23:fb:f0:bc:1b:73:bb:0d: 73:0f:b1:90:e5:77:f2:4a:0e:80:0b:be:e2:df:39:3f:c6:8e: 4a:6c:ad:ac:fe:0c:0b:04:35:d0:ba:45:ff:8c:82:dc:70:3c: c5:27:a1:93 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUVT1Rd3GnHbDH2rjK//2CcYcXwEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzAzMjZaFw0yNzA1MTAxNzA4MjZaMDMxMTAvBgNV BAMTKDc2MTQyNTZFRjYyQTA2Q0M5RDJGMEJFMjZBRkU3MDU2NzBFRjkxQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbznVZB3uHL61TXToEd9nx/1Mb 9hoyCb1W2q8l9DbojoiMtCaUrmVfHc8H/tf2hfOj06EPWXT3cSzjcsBFHqhHVo/B 4xNdXHAZFU7LKyZlN3D1+lDOuyEjcPWA0FbBNAokzPNWhzLchkxZInQEy41AaCc/ aEWXOwUDsWeVO88xLwsyl0D4tYr85s05txeTakvOcSE4CpyQK9n1MneC/K7gS1sD QCBXZ+KUgnJwMyQhB3ia4XCKbZQ/PhCFi8On1JpQKwDT3aTPqpyhAxP/+fZASaKt ACjoAAlUDW8zvj3um/liKuFg1lEvAjfPoLFdLOKo/V4aEunBchE4MSC83+M3AgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUdhQlbvYqBsydLwviav5wVnDvkaUwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTM0 MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3xsqMA0GCSqGSIb3DQEBCwUAA4IBAQBSTEHblFqhBzi3mnjFgVdnnkc577FBsHQm pMpCl1wSlIhnyINtQVn4yeMnfVS1qfXayDtA/zOOIokdv3zWXVTdN0QKc8k1y14P 3oSJjpGye98PDNqTCF3Z6mAeBo1IT5DBz31X+Ukpz84t4tbfVEakR+wcUqujvI5/ Ov+SB4EMPbbF8Y9E8LVtXCqi+ILewHXX6liHdydnud1YeCAo3vBI8DC9iANLuwGn K5pGco4rtgdY/qukYbQ3p+BTM5vhrweV20XPiM85YDGHmbb4ShitI/vwvBtzuw1z D7GQ5XfySg6AC77i3zk/xo5KbK2s/gwLBDXQukX/jILccDzFJ6GT -----END CERTIFICATE-----Generated at Wed May 13 21:17:23 2026 by rpki-client