$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35382e302f32342d3234203d3e203338383433.roa File: 3232332e32372e35382e302f32342d3234203d3e203338383433.roa (raw, json) Hash identifier: fZsbeGwf8ASvcZidxMOnJcKrVZ4AHcd9hvGKThV96TE= Subject key identifier: 66:74:D2:26:DE:A0:99:7D:48:9D:4E:B1:62:9C:44:64:EF:87:2E:A3 Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 4D0B5CBB08E527148EB6DC2324E88CFEA5FBD824 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35382e302f32342d3234203d3e203338383433.roa Signing time: Mon 11 May 2026 17:11:25 +0000 ROA not before: Mon 11 May 2026 17:06:25 +0000 ROA not after: Mon 10 May 2027 17:11:25 +0000 asID: 38843 IP address blocks: 223.27.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:0b:5c:bb:08:e5:27:14:8e:b6:dc:23:24:e8:8c:fe:a5:fb:d8:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 17:06:25 2026 GMT Not After : May 10 17:11:25 2027 GMT Subject: CN=6674D226DEA0997D489D4EB1629C4464EF872EA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:97:7f:1c:6e:45:93:ee:11:d9:c7:a6:aa:5b: 77:0b:c5:ee:3f:24:39:20:0e:1b:4f:92:70:ae:00: c1:6e:80:27:22:a4:fd:68:f0:34:ae:b5:44:7f:7c: f4:ce:47:6f:77:37:36:de:c7:23:5b:50:ed:20:a7: a0:13:63:f8:b6:7f:ca:6c:85:dc:a0:c7:14:75:b0: 45:06:b9:96:73:47:ef:9d:b2:d1:00:a5:9a:f1:8e: 39:0b:0d:47:90:72:39:48:28:fa:f2:18:aa:4a:72: f9:8d:14:02:b9:0d:ad:e5:3e:43:9d:0a:9e:c3:e8: 79:d1:6a:90:c5:41:74:21:d3:eb:7e:48:ba:b6:4a: d6:e4:f2:a6:1a:84:6a:0e:9f:73:b8:2a:7d:1b:c2: 0b:6c:b2:38:bc:0f:56:f1:2e:06:a1:01:eb:d7:cb: 93:88:ae:3d:10:0a:e8:00:83:b0:78:04:15:67:7a: e6:be:79:17:bc:d0:93:6f:b2:de:ca:bc:30:19:8d: 13:6d:5b:60:e9:44:99:cf:14:1e:45:cb:3c:38:6f: 1c:18:9a:a3:86:a6:c9:77:96:b0:ca:86:a0:1e:ce: 81:1b:19:f5:10:37:30:d9:39:6c:4f:1c:f1:2e:41: 00:f5:3d:cd:c1:d2:3d:c6:2d:25:b0:9f:74:7d:36: df:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:74:D2:26:DE:A0:99:7D:48:9D:4E:B1:62:9C:44:64:EF:87:2E:A3 X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35382e302f32342d3234203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.58.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:4b:94:a6:c4:eb:38:5b:1e:23:86:16:30:aa:fe:3a:36:66: 22:22:cd:af:0f:10:af:fa:db:c9:3a:78:72:4a:9d:2a:03:f4: 61:67:29:03:7a:46:11:3b:55:fb:4b:23:6d:48:b5:ac:40:a4: 73:b6:c7:0f:b5:b0:52:e9:a4:ab:02:42:7b:82:e8:42:41:fa: 78:e3:91:04:aa:9f:03:51:37:0a:53:a1:25:29:d5:30:f1:9e: f5:7b:03:2a:6f:98:8d:33:50:33:71:a9:47:30:18:5b:1c:89: 9c:90:75:4d:b0:e3:a9:ca:fc:42:2b:18:d1:b6:92:84:76:db: 42:2a:83:f9:73:30:0f:bb:cc:50:e7:f4:de:38:ab:a4:7c:15: 07:4f:f6:05:56:cd:35:75:07:6f:50:4d:ef:19:70:2b:4f:c2: 92:1f:cc:d6:71:6c:2b:ef:ac:a1:94:73:a1:4e:3a:ab:ca:0b: ff:01:8e:29:63:28:d5:75:62:f2:e3:fe:8b:44:c6:b1:ce:da: 87:85:90:36:a6:ad:ac:f9:e0:47:43:f6:bf:3b:db:55:ca:65: e2:2e:77:2e:48:bb:25:2b:71:5a:99:94:2b:29:06:bd:ff:b0: d2:d9:6c:06:58:cd:53:03:9f:74:8e:29:bd:19:bb:f2:68:46: f7:a2:89:89 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUTQtcuwjlJxSOttwjJOiM/qX72CQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNzA2MjVaFw0yNzA1MTAxNzExMjVaMDMxMTAvBgNV BAMTKDY2NzREMjI2REVBMDk5N0Q0ODlENEVCMTYyOUM0NDY0RUY4NzJFQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBl38cbkWT7hHZx6aqW3cLxe4/ JDkgDhtPknCuAMFugCcipP1o8DSutUR/fPTOR293NzbexyNbUO0gp6ATY/i2f8ps hdygxxR1sEUGuZZzR++dstEApZrxjjkLDUeQcjlIKPryGKpKcvmNFAK5Da3lPkOd Cp7D6HnRapDFQXQh0+t+SLq2Stbk8qYahGoOn3O4Kn0bwgtssji8D1bxLgahAevX y5OIrj0QCugAg7B4BBVneua+eRe80JNvst7KvDAZjRNtW2DpRJnPFB5Fyzw4bxwY mqOGpsl3lrDKhqAezoEbGfUQNzDZOWxPHPEuQQD1Pc3B0j3GLSWwn3R9Nt+tAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUZnTSJt6gmX1InU6xYpxEZO+HLqMwHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTM1 MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3xs6MA0GCSqGSIb3DQEBCwUAA4IBAQCdS5SmxOs4Wx4jhhYwqv46NmYiIs2vDxCv +tvJOnhySp0qA/RhZykDekYRO1X7SyNtSLWsQKRztscPtbBS6aSrAkJ7guhCQfp4 45EEqp8DUTcKU6ElKdUw8Z71ewMqb5iNM1AzcalHMBhbHImckHVNsOOpyvxCKxjR tpKEdttCKoP5czAPu8xQ5/TeOKukfBUHT/YFVs01dQdvUE3vGXArT8KSH8zWcWwr 76yhlHOhTjqrygv/AY4pYyjVdWLy4/6LRMaxztqHhZA2pq2s+eBHQ/a/O9tVymXi LncuSLslK3FamZQrKQa9/7DS2WwGWM1TA590jim9GbvyaEb3oomJ -----END CERTIFICATE-----Generated at Wed May 13 21:17:19 2026 by rpki-client