$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35312e302f32342d3234203d3e203338383433.roa File: 3232332e32372e35312e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: tp2jwR1Geb0CoED7p2uzuRjISxXEpvi+a/uPP8pFmAQ= Subject key identifier: F7:53:A9:D3:2B:45:A2:0F:1B:BC:59:93:1B:F8:A6:83:B2:E8:67:BC Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 424251B2C3A8E01AA3298A721901DBE567C3920A Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35312e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:11:22 +0000 ROA not before: Mon 11 May 2026 17:06:22 +0000 ROA not after: Mon 10 May 2027 17:11:22 +0000 asID: 38843 IP address blocks: 223.27.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:42:51:b2:c3:a8:e0:1a:a3:29:8a:72:19:01:db:e5:67:c3:92:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:06:22 2026 GMT Not After : May 10 17:11:22 2027 GMT Subject: CN=F753A9D32B45A20F1BBC59931BF8A683B2E867BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:08:12:3b:ee:d5:7d:4d:6b:df:6f:bb:8d:08: ec:1d:77:8c:7e:75:af:4a:aa:24:cb:5e:7a:45:4e: 1c:16:20:45:07:90:0d:90:7d:40:f4:7f:51:7f:98: 73:83:34:c0:a2:0b:31:f3:d8:6f:1a:fc:d0:f6:09: b4:05:d3:4b:8c:6d:9e:e5:88:0c:d9:e4:c0:97:d1: f3:d2:28:9e:3f:4b:ff:e6:04:b6:64:12:ae:f8:7b: fe:97:bd:bd:9c:80:45:c5:56:2c:c9:8c:06:93:64: a3:02:47:52:d2:f7:4e:2b:95:ca:7a:96:e6:24:cf: 89:3d:c3:ed:e6:7b:2d:5c:61:d9:dc:e9:6a:6c:34: 13:d1:7a:4b:01:15:f9:fc:af:d7:5c:c7:80:58:45: b9:ff:dc:5c:df:5e:0a:5c:81:ef:01:09:1a:33:5d: 1e:d9:bc:52:47:cc:da:a4:53:9f:a9:33:95:a6:22: 9e:c6:db:24:7a:e3:28:1f:b2:3a:02:1e:bc:b6:79: eb:62:96:3b:68:32:42:e8:11:e5:62:e4:02:53:19: a0:29:ec:53:64:3c:1c:be:71:bd:90:6c:51:ec:a6: 1c:c0:f1:b2:9e:be:62:25:5c:8b:84:2f:d4:ff:3f: 1c:d8:97:40:6a:0a:95:4f:3d:6e:11:e0:de:f9:2b: d1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:53:A9:D3:2B:45:A2:0F:1B:BC:59:93:1B:F8:A6:83:B2:E8:67:BC X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35312e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.51.0/24 Signature Algorithm: sha256WithRSAEncryption 44:30:fd:2a:ba:94:a1:f0:e4:c4:32:1e:dc:f6:96:2f:93:d1: 0e:4b:31:b0:0f:b8:c9:1d:c6:e2:5e:bf:ed:51:b1:34:79:00: 22:23:56:79:59:db:26:49:03:10:7e:06:86:af:12:ff:52:33: 85:1d:1b:59:77:2b:a0:d2:28:31:00:87:f1:11:1f:04:ae:64: bb:bf:8d:8a:43:f6:f9:51:61:0f:96:e8:ca:46:c0:2d:c3:88: 4b:5a:e9:ab:55:c2:94:df:0c:a9:ab:59:77:83:93:5a:24:61: f6:94:68:ca:c4:5c:1e:bf:13:8a:8c:b8:38:f6:02:7c:29:1e: 24:c0:a2:8f:c8:3a:8c:4f:90:ff:aa:1d:e7:4f:04:ef:c2:3e: ba:a8:97:ee:59:12:3c:c5:bf:0a:be:62:d6:c0:97:51:b8:e1: e6:ae:f7:74:50:d8:5e:b5:26:b3:fd:b0:33:0c:6e:48:1e:bf: 16:b5:7d:90:db:bc:70:75:ec:b4:47:a2:28:15:de:93:fd:68: 87:47:09:a8:42:c7:28:4c:db:05:b1:27:d9:41:58:39:d3:0a: 04:3e:2e:52:68:17:ce:ca:81:31:07:91:c9:a7:e6:02:a7:de: 23:40:f1:cf:4b:08:bc:20:16:34:43:4c:6c:24:f5:d0:09:d0: a0:2e:8a:d2 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUQkJRssOo4BqjKYpyGQHb5WfDkgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzA2MjJaFw0yNzA1MTAxNzExMjJaMDMxMTAvBgNV BAMTKEY3NTNBOUQzMkI0NUEyMEYxQkJDNTk5MzFCRjhBNjgzQjJFODY3QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaCBI77tV9TWvfb7uNCOwdd4x+ da9KqiTLXnpFThwWIEUHkA2QfUD0f1F/mHODNMCiCzHz2G8a/ND2CbQF00uMbZ7l iAzZ5MCX0fPSKJ4/S//mBLZkEq74e/6Xvb2cgEXFVizJjAaTZKMCR1LS904rlcp6 luYkz4k9w+3mey1cYdnc6WpsNBPReksBFfn8r9dcx4BYRbn/3FzfXgpcge8BCRoz XR7ZvFJHzNqkU5+pM5WmIp7G2yR64ygfsjoCHry2eetiljtoMkLoEeVi5AJTGaAp 7FNkPBy+cb2QbFHsphzA8bKevmIlXIuEL9T/PxzYl0BqCpVPPW4R4N75K9FhAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQU91Op0ytFog8bvFmTG/img7LoZ7wwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTM1 MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3xszMA0GCSqGSIb3DQEBCwUAA4IBAQBEMP0qupSh8OTEMh7c9pYvk9EOSzGwD7jJ HcbiXr/tUbE0eQAiI1Z5WdsmSQMQfgaGrxL/UjOFHRtZdyug0igxAIfxER8ErmS7 v42KQ/b5UWEPlujKRsAtw4hLWumrVcKU3wypq1l3g5NaJGH2lGjKxFwevxOKjLg4 9gJ8KR4kwKKPyDqMT5D/qh3nTwTvwj66qJfuWRI8xb8KvmLWwJdRuOHmrvd0UNhe tSaz/bAzDG5IHr8WtX2Q27xwdey0R6IoFd6T/WiHRwmoQscoTNsFsSfZQVg50woE Pi5SaBfOyoExB5HJp+YCp94jQPHPSwi8IBY0Q0xsJPXQCdCgLorS -----END CERTIFICATE-----Generated at Wed May 13 21:17:14 2026 by rpki-client