$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35302e302f32342d3234203d3e203338383433.roa File: 3232332e32372e35302e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: KY4DDeer9mCpAgBQWgEnzy6yR0FPa1Ipj24i754ac84= Subject key identifier: 85:11:B1:B0:EA:7B:12:B7:12:F1:8A:D8:2B:CD:76:7D:F2:73:3E:97 Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 6E41B1C1CF0399F11B212C828D320C65A92B29E9 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35302e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:08:28 +0000 ROA not before: Mon 11 May 2026 17:03:28 +0000 ROA not after: Mon 10 May 2027 17:08:28 +0000 asID: 38843 IP address blocks: 223.27.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:41:b1:c1:cf:03:99:f1:1b:21:2c:82:8d:32:0c:65:a9:2b:29:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:03:28 2026 GMT Not After : May 10 17:08:28 2027 GMT Subject: CN=8511B1B0EA7B12B712F18AD82BCD767DF2733E97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:71:ce:33:9b:be:3c:9e:5c:f2:da:fa:81:a0: 45:69:1c:f3:98:59:75:0f:e1:28:aa:98:af:96:b9: 86:e3:7b:b1:5d:46:7f:21:bf:4b:0d:29:43:d0:12: 9d:52:2f:61:4d:b0:86:9f:76:2b:29:ea:1b:99:08: 5f:58:ef:7a:1a:c5:86:75:6b:9b:2c:b5:f8:eb:67: 7e:fd:c2:03:7b:d1:2e:05:02:6d:94:c4:7e:46:3f: 6e:43:aa:93:64:b8:3d:03:37:75:35:dc:d5:58:7e: ed:53:3f:0a:e8:95:bc:89:35:39:66:1f:39:f5:88: 34:40:a5:4c:bd:67:3b:ac:0c:04:03:71:60:2b:c7: db:62:ca:f5:1f:96:79:ff:af:f0:49:64:15:7d:7a: c6:34:a3:67:b8:98:c7:50:14:66:d0:df:9b:ec:9c: a8:0b:92:66:d6:75:bf:8d:8f:98:97:cf:da:4b:53: ba:7c:24:1c:5d:3a:f9:c2:ba:d2:ec:2e:c6:1e:b6: ec:bb:d7:05:9e:4b:f2:31:d3:6e:3e:ae:55:c2:12: 0f:5a:91:5e:89:64:42:6f:24:0c:e8:3f:08:f2:08: 2c:12:bf:04:03:63:cb:fd:7f:18:08:d9:f8:e5:72: 7d:02:7f:11:7f:18:31:ff:8a:2f:62:73:4d:56:c1: dd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:11:B1:B0:EA:7B:12:B7:12:F1:8A:D8:2B:CD:76:7D:F2:73:3E:97 X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35302e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.50.0/24 Signature Algorithm: sha256WithRSAEncryption ab:9e:93:a5:ce:14:80:44:e4:c6:24:13:d1:28:0c:5c:a7:b8: fe:fd:6b:0f:d5:00:24:27:12:5b:2b:33:1a:cb:79:50:e1:fa: 07:cf:9c:61:ec:ba:b4:1d:21:a7:10:59:e3:da:6a:0d:61:fc: eb:d5:81:8c:ec:aa:88:8d:fe:b8:0c:97:b7:51:3d:24:ec:45: 7d:84:ad:a2:b4:3d:87:9c:47:c8:8a:13:ac:b0:3d:51:18:0f: 44:9a:d2:4c:17:88:ca:59:bb:08:f2:54:97:14:ce:e3:86:c1: 47:b3:98:83:70:17:83:09:89:de:30:dc:ee:f4:51:31:37:3e: 47:84:f1:e7:b5:05:18:52:d8:86:a7:a4:a1:52:75:5c:d2:40: d1:57:e7:d0:d6:b0:0f:43:75:f4:06:8e:19:f0:f3:e5:cd:28: d9:22:6b:1c:44:81:36:e7:02:1d:af:94:28:c9:45:e7:82:5e: a6:10:71:b3:f0:b9:8d:e4:f2:b1:85:d5:8b:e2:ca:2f:ba:05: 70:8c:3c:54:b4:f3:7f:fb:e0:01:e9:fd:67:12:58:67:05:87: 0d:19:77:e7:1b:96:f4:b3:31:9f:d2:c9:a6:d8:00:0f:3d:f1: b2:11:24:21:0a:cf:49:57:4b:7d:60:91:b6:ef:22:ec:7c:a2: da:34:41:d8 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUbkGxwc8DmfEbISyCjTIMZakrKekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzAzMjhaFw0yNzA1MTAxNzA4MjhaMDMxMTAvBgNV BAMTKDg1MTFCMUIwRUE3QjEyQjcxMkYxOEFEODJCQ0Q3NjdERjI3MzNFOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpcc4zm748nlzy2vqBoEVpHPOY WXUP4SiqmK+WuYbje7FdRn8hv0sNKUPQEp1SL2FNsIafdisp6huZCF9Y73oaxYZ1 a5sstfjrZ379wgN70S4FAm2UxH5GP25DqpNkuD0DN3U13NVYfu1TPwrolbyJNTlm Hzn1iDRApUy9ZzusDAQDcWArx9tiyvUflnn/r/BJZBV9esY0o2e4mMdQFGbQ35vs nKgLkmbWdb+Nj5iXz9pLU7p8JBxdOvnCutLsLsYetuy71wWeS/Ix024+rlXCEg9a kV6JZEJvJAzoPwjyCCwSvwQDY8v9fxgI2fjlcn0CfxF/GDH/ii9ic01Wwd0JAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUhRGxsOp7ErcS8YrYK812ffJzPpcwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTM1 MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3xsyMA0GCSqGSIb3DQEBCwUAA4IBAQCrnpOlzhSAROTGJBPRKAxcp7j+/WsP1QAk JxJbKzMay3lQ4foHz5xh7Lq0HSGnEFnj2moNYfzr1YGM7KqIjf64DJe3UT0k7EV9 hK2itD2HnEfIihOssD1RGA9EmtJMF4jKWbsI8lSXFM7jhsFHs5iDcBeDCYneMNzu 9FExNz5HhPHntQUYUtiGp6ShUnVc0kDRV+fQ1rAPQ3X0Bo4Z8PPlzSjZImscRIE2 5wIdr5QoyUXngl6mEHGz8LmN5PKxhdWL4sovugVwjDxUtPN/++AB6f1nElhnBYcN GXfnG5b0szGf0smm2AAPPfGyESQhCs9JV0t9YJG27yLsfKLaNEHY -----END CERTIFICATE-----Generated at Wed May 13 21:16:51 2026 by rpki-client