$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34352e302f32342d3234203d3e203338383433.roa File: 3232332e32372e34352e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: IhPRD8OzlnlPcnBXUqAwbkz5fy5LVlMgkqrEdf+AuvA= Subject key identifier: 1D:31:F5:02:92:69:62:FB:F2:89:B3:4E:22:C4:F1:31:90:66:41:7C Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 0475F0652DBA207D705914C6A92B7A2E8C8687E3 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34352e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:11:20 +0000 ROA not before: Mon 11 May 2026 17:06:20 +0000 ROA not after: Mon 10 May 2027 17:11:20 +0000 asID: 38843 IP address blocks: 223.27.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:75:f0:65:2d:ba:20:7d:70:59:14:c6:a9:2b:7a:2e:8c:86:87:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:06:20 2026 GMT Not After : May 10 17:11:20 2027 GMT Subject: CN=1D31F502926962FBF289B34E22C4F1319066417C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a2:d0:74:e0:c1:ef:ae:1a:cd:92:19:eb:8b: 6c:7d:44:36:e5:03:d5:b3:26:e6:e4:1f:ee:ac:0c: 15:3d:34:1d:9a:23:d9:4c:51:b6:04:63:e1:e8:c1: fa:3c:12:7e:07:b0:cd:42:d5:66:fe:4e:d8:86:a1: 76:fe:25:4a:0a:29:64:0b:f2:49:c6:43:e5:4e:d0: b3:8d:ef:bd:d1:db:9b:1f:a3:22:01:74:42:5c:1e: ae:92:d5:ac:9d:e2:ab:37:ce:b2:d2:91:c5:2d:20: 44:a3:05:94:00:c4:84:c0:78:04:1d:ea:d5:13:42: 1e:3a:ef:c1:64:a4:22:9f:fd:90:28:a0:f6:b0:1b: 20:a2:86:c2:0c:38:bb:e7:b8:bc:b0:f1:c5:f4:b9: 1f:86:9a:22:91:22:ef:6c:af:88:ba:e1:8c:24:c1: b7:bf:e9:ef:57:d4:0f:85:e5:11:07:37:db:76:88: b0:75:73:24:2b:f9:c4:5e:4a:a2:0c:d1:1d:8a:d1: 69:b1:62:44:d1:c5:3a:f7:47:05:3e:0a:93:18:99: f2:f3:e5:f0:e5:fb:45:5f:5c:81:a9:01:97:55:ea: c8:ee:c0:29:5a:6c:09:46:2e:6f:b4:2f:4b:b9:f1: bd:d6:32:e5:64:d9:35:fd:3d:77:04:b0:d7:42:d4: d2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:31:F5:02:92:69:62:FB:F2:89:B3:4E:22:C4:F1:31:90:66:41:7C X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34352e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.45.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:32:ce:b6:84:d2:ea:65:c1:c7:1e:53:f4:ba:1f:55:70:31: 4b:43:cd:43:65:08:00:05:df:6a:f3:7b:26:ea:f9:cf:35:a0: 21:04:da:0a:a3:99:cc:03:b1:68:5a:f0:05:d6:d2:c2:bb:64: 1f:f0:83:3b:2e:c6:1c:f5:f3:90:21:54:f5:ef:4f:6e:5b:cb: 82:6a:c2:07:1f:e1:cb:f3:39:91:a9:65:bc:d5:26:6e:c3:21: b0:7e:f7:82:43:d3:d2:e6:44:b5:04:db:6e:09:72:7a:60:ec: aa:e9:56:d1:c5:7e:88:ad:d2:a9:1a:76:0e:22:9d:68:a0:f8: bc:4d:1b:b8:5b:77:9b:c2:66:ed:99:87:4b:36:50:b1:79:c4: 97:e6:29:e7:7d:b7:87:c9:f4:d7:1a:09:44:ea:22:e3:36:c8: 6d:32:1c:c8:b3:5f:fd:09:4c:46:03:2b:87:24:db:2d:d0:24: bd:73:58:48:d0:d9:fa:a4:0d:b9:17:34:e3:59:63:0e:29:eb: e2:2c:37:f9:e7:3d:ad:88:48:c5:c7:0d:aa:d5:ea:72:e8:56: 35:85:f3:22:33:dd:1e:ef:34:03:68:1a:08:cc:e2:4b:fd:46: b8:fa:fe:ee:e7:09:6d:b1:8e:1b:f6:45:74:51:97:db:d0:24: 45:d8:ef:26 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUBHXwZS26IH1wWRTGqSt6LoyGh+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzA2MjBaFw0yNzA1MTAxNzExMjBaMDMxMTAvBgNV BAMTKDFEMzFGNTAyOTI2OTYyRkJGMjg5QjM0RTIyQzRGMTMxOTA2NjQxN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdotB04MHvrhrNkhnri2x9RDbl A9WzJubkH+6sDBU9NB2aI9lMUbYEY+Howfo8En4HsM1C1Wb+TtiGoXb+JUoKKWQL 8knGQ+VO0LON773R25sfoyIBdEJcHq6S1ayd4qs3zrLSkcUtIESjBZQAxITAeAQd 6tUTQh4678FkpCKf/ZAooPawGyCihsIMOLvnuLyw8cX0uR+GmiKRIu9sr4i64Ywk wbe/6e9X1A+F5REHN9t2iLB1cyQr+cReSqIM0R2K0WmxYkTRxTr3RwU+CpMYmfLz 5fDl+0VfXIGpAZdV6sjuwClabAlGLm+0L0u58b3WMuVk2TX9PXcEsNdC1NJTAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUHTH1ApJpYvvyibNOIsTxMZBmQXwwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTM0 MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3xstMA0GCSqGSIb3DQEBCwUAA4IBAQCcMs62hNLqZcHHHlP0uh9VcDFLQ81DZQgA Bd9q83sm6vnPNaAhBNoKo5nMA7FoWvAF1tLCu2Qf8IM7LsYc9fOQIVT1709uW8uC asIHH+HL8zmRqWW81SZuwyGwfveCQ9PS5kS1BNtuCXJ6YOyq6VbRxX6IrdKpGnYO Ip1ooPi8TRu4W3ebwmbtmYdLNlCxecSX5innfbeHyfTXGglE6iLjNshtMhzIs1/9 CUxGAyuHJNst0CS9c1hI0Nn6pA25FzTjWWMOKeviLDf55z2tiEjFxw2q1epy6FY1 hfMiM90e7zQDaBoIzOJL/Ua4+v7u5wltsY4b9kV0UZfb0CRF2O8m -----END CERTIFICATE-----Generated at Wed May 13 21:17:16 2026 by rpki-client