$ rpki-client -vvf rpkica.twnic.tw/rpki/SDCL-TW/0/3230322e3135332e342e302f32332d3234203d3e203338303432.roa File: 3230322e3135332e342e302f32332d3234203d3e203338303432.roa (raw, json) Hash identifier: VcodHH9y1x00L8sP0YZKCLZqgzyOTw8vizvrWxB7jj0= Subject key identifier: A6:5A:7D:61:7A:53:9F:21:9C:5D:F0:42:F1:86:CB:5E:AC:F3:F7:07 Certificate issuer: /CN=CE11BDD44F66776624C4D9BE145C499FD144FEAE Certificate serial: 4BBB37E672D310C98705968617A3FE3E583866FA Authority key identifier: CE:11:BD:D4:4F:66:77:66:24:C4:D9:BE:14:5C:49:9F:D1:44:FE:AE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE11BDD44F66776624C4D9BE145C499FD144FEAE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/3230322e3135332e342e302f32332d3234203d3e203338303432.roa Signing time: Mon 11 May 2026 17:57:43 +0000 ROA not before: Mon 11 May 2026 17:52:43 +0000 ROA not after: Mon 10 May 2027 17:57:43 +0000 asID: 38042 IP address blocks: 202.153.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/CE11BDD44F66776624C4D9BE145C499FD144FEAE.crl rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/CE11BDD44F66776624C4D9BE145C499FD144FEAE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE11BDD44F66776624C4D9BE145C499FD144FEAE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:bb:37:e6:72:d3:10:c9:87:05:96:86:17:a3:fe:3e:58:38:66:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE11BDD44F66776624C4D9BE145C499FD144FEAE Validity Not Before: May 11 17:52:43 2026 GMT Not After : May 10 17:57:43 2027 GMT Subject: CN=A65A7D617A539F219C5DF042F186CB5EACF3F707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bd:72:54:e5:82:43:af:d2:4a:04:1f:76:ee: eb:b5:22:2f:0f:ae:6d:24:f0:70:06:fa:4f:95:cd: 9c:7d:f1:22:9e:58:98:f3:01:fe:20:8c:fc:a6:97: 9b:78:f6:a9:4c:16:53:a9:58:ec:1b:fd:d1:78:01: 12:e1:6a:d6:60:47:6e:de:a7:58:fc:35:54:c6:b1: e4:80:ab:5a:1a:ea:b0:4c:9a:51:9e:86:56:ad:80: e2:ff:dd:98:47:18:f8:65:16:b9:40:d2:df:c8:ce: c0:e7:24:a6:ee:cd:2b:1e:8f:c6:5a:0a:21:22:98: 69:ae:b4:3d:fd:5d:c6:93:92:15:fc:b4:1b:53:e3: 88:23:b0:dc:bf:8b:24:ec:f8:47:8d:f6:24:de:bb: fe:84:ee:9a:eb:f4:65:05:53:45:51:c5:20:62:b0: 1b:01:34:9e:ad:08:bd:9f:f7:42:40:04:1d:cf:c9: e3:af:31:a5:08:49:cb:dc:30:c2:b4:07:9c:c4:0d: 8f:93:d1:0e:2a:d2:2c:39:be:4a:ad:85:c0:e8:c9: f8:85:29:71:1f:05:f3:72:2c:94:7c:8f:c4:91:81: e4:4a:f2:8b:b5:50:86:2f:45:4f:57:8a:a4:a8:5b: 9f:33:c7:e2:be:25:b2:51:03:a0:4d:02:eb:8d:67: e1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5A:7D:61:7A:53:9F:21:9C:5D:F0:42:F1:86:CB:5E:AC:F3:F7:07 X509v3 Authority Key Identifier: keyid:CE:11:BD:D4:4F:66:77:66:24:C4:D9:BE:14:5C:49:9F:D1:44:FE:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/CE11BDD44F66776624C4D9BE145C499FD144FEAE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE11BDD44F66776624C4D9BE145C499FD144FEAE.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/3230322e3135332e342e302f32332d3234203d3e203338303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.153.4.0/23 Signature Algorithm: sha256WithRSAEncryption 47:ff:f4:4a:53:15:59:24:27:85:58:9e:15:94:1b:1a:61:c7: e8:32:e1:dc:84:22:49:23:1b:11:1d:81:76:db:54:ee:72:ae: 2f:b9:d0:a4:ed:f7:1e:13:45:bd:17:e3:42:ea:ea:84:6c:cc: 9d:9f:50:e2:f5:87:a0:67:e3:b4:46:34:92:24:bd:b2:d3:15: d4:ea:10:5f:56:a9:07:51:eb:cf:b2:70:d4:7f:14:60:9b:cc: db:cc:10:f6:75:4f:59:b9:23:d6:bf:b9:91:81:45:65:46:a3: a7:71:0f:3f:47:b5:77:57:fc:06:75:c4:b8:d7:a5:6a:76:0e: 1c:2f:e3:59:12:4c:17:fb:f0:2b:34:cd:bb:28:a3:20:50:be: f9:7b:f3:4a:41:45:87:65:43:01:db:b7:83:5c:09:d4:90:1e: 68:f2:62:2f:01:10:75:e5:7f:4d:65:6d:2a:27:9d:50:a0:70: 0b:2d:bb:5d:52:d2:e6:90:2c:9d:ce:0c:00:17:37:4a:61:4f: bd:e1:92:26:d3:a2:bb:65:f2:a8:de:4e:53:5f:6e:35:a7:cf: cb:b1:18:dd:c1:d5:f6:0e:ab:c7:97:7b:b1:4d:8b:1a:03:1e: 29:fd:20:c4:34:a1:f4:60:ca:84:d5:75:55:d1:e2:2a:dc:ca: 85:d4:33:25 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUS7s35nLTEMmHBZaGF6P+Plg4ZvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UxMUJERDQ0RjY2Nzc2NjI0QzREOUJFMTQ1QzQ5OUZE MTQ0RkVBRTAeFw0yNjA1MTExNzUyNDNaFw0yNzA1MTAxNzU3NDNaMDMxMTAvBgNV BAMTKEE2NUE3RDYxN0E1MzlGMjE5QzVERjA0MkYxODZDQjVFQUNGM0Y3MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfvXJU5YJDr9JKBB927uu1Ii8P rm0k8HAG+k+VzZx98SKeWJjzAf4gjPyml5t49qlMFlOpWOwb/dF4ARLhatZgR27e p1j8NVTGseSAq1oa6rBMmlGehlatgOL/3ZhHGPhlFrlA0t/IzsDnJKbuzSsej8Za CiEimGmutD39XcaTkhX8tBtT44gjsNy/iyTs+EeN9iTeu/6E7prr9GUFU0VRxSBi sBsBNJ6tCL2f90JABB3PyeOvMaUIScvcMMK0B5zEDY+T0Q4q0iw5vkqthcDoyfiF KXEfBfNyLJR8j8SRgeRK8ou1UIYvRU9XiqSoW58zx+K+JbJRA6BNAuuNZ+GVAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUplp9YXpTnyGcXfBC8YbLXqzz9wcwHwYDVR0j BBgwFoAUzhG91E9md2YkxNm+FFxJn9FE/q4wDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0RDTC1U Vy8wL0NFMTFCREQ0NEY2Njc3NjYyNEM0RDlCRTE0NUM0OTlGRDE0NEZFQUUuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQ0UxMUJERDQ0RjY2Nzc2NjI0QzREOUJFMTQ1 QzQ5OUZEMTQ0RkVBRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9y c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NEQ0wtVFcvMC8zMjMwMzIyZTMx MzUzMzJlMzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMzM4MzAzNDMyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBypkEMA0GCSqGSIb3DQEBCwUAA4IBAQBH//RKUxVZJCeFWJ4VlBsaYcfo MuHchCJJIxsRHYF221Tucq4vudCk7fceE0W9F+NC6uqEbMydn1Di9YegZ+O0RjSS JL2y0xXU6hBfVqkHUevPsnDUfxRgm8zbzBD2dU9ZuSPWv7mRgUVlRqOncQ8/R7V3 V/wGdcS416Vqdg4cL+NZEkwX+/ArNM27KKMgUL75e/NKQUWHZUMB27eDXAnUkB5o 8mIvARB15X9NZW0qJ51QoHALLbtdUtLmkCydzgwAFzdKYU+94ZIm06K7ZfKo3k5T X241p8/LsRjdwdX2DqvHl3uxTYsaAx4p/SDENKH0YMqE1XVV0eIq3MqF1DMl -----END CERTIFICATE-----Generated at Wed May 13 21:11:01 2026 by rpki-client