$ rpki-client -vvf rpkica.twnic.tw/rpki/SONET/0/3231392e38352e302e302f31362d3234203d3e203138313832.roa File: 3231392e38352e302e302f31362d3234203d3e203138313832.roa (raw, json) Hash identifier: TkTwJY6tgXdxY0w+yf0JfiJDrdGZLKSEjlzpI3ieJUU= Subject key identifier: 24:44:35:D3:DD:00:91:AD:26:B3:58:33:71:A3:78:3B:38:11:51:A3 Certificate issuer: /CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Certificate serial: 167464C5DB0C5376C0C3E48ADACECCE6010A4785 Authority key identifier: 3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SONET/0/3231392e38352e302e302f31362d3234203d3e203138313832.roa Signing time: Mon 11 May 2026 16:54:24 +0000 ROA not before: Mon 11 May 2026 16:49:24 +0000 ROA not after: Mon 10 May 2027 16:54:24 +0000 asID: 18182 IP address blocks: 219.85.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:74:64:c5:db:0c:53:76:c0:c3:e4:8a:da:ce:cc:e6:01:0a:47:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Validity Not Before: May 11 16:49:24 2026 GMT Not After : May 10 16:54:24 2027 GMT Subject: CN=244435D3DD0091AD26B3583371A3783B381151A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:00:04:aa:10:bb:49:a2:b9:da:af:6e:c6:72: 74:2e:93:4f:3e:87:06:cc:75:61:93:35:2a:3e:1c: 02:b2:05:71:a4:5a:e1:a1:3d:a4:b5:7b:41:7f:aa: 6a:9a:58:90:b2:3b:5b:be:0c:5d:09:2b:9e:7b:11: 4b:3e:25:f5:70:17:29:10:8e:c9:50:6f:7c:cf:7b: 0d:30:f9:ec:ab:2c:a2:63:8f:01:65:2f:1a:c2:87: 2b:03:9e:f7:9a:a6:00:48:0b:79:dc:6a:44:01:4a: c0:10:b2:b1:8e:62:78:03:29:ff:01:9a:62:97:e6: e2:6a:4a:3c:9e:bc:37:7e:67:02:fc:e5:e9:64:66: f7:06:11:fd:77:07:fc:23:6a:03:fd:7c:a1:76:24: f9:9a:d3:64:79:cf:97:80:27:e3:db:da:ed:e7:72: cc:9f:8b:24:65:3c:40:af:43:3b:5a:03:71:dd:b4: b8:55:b1:8a:0d:a8:ce:57:ed:d9:f2:17:b5:0e:cd: bd:4c:5a:8a:bf:85:3c:e5:f2:72:9c:1b:f4:65:df: 44:a7:fc:79:79:1d:eb:6e:e3:37:e1:96:0a:63:69: 35:6a:4d:31:33:04:72:b7:28:3d:c2:5b:92:fc:a7: a2:16:e3:21:b2:c7:b8:75:41:c7:e9:ac:ae:03:94: 47:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:44:35:D3:DD:00:91:AD:26:B3:58:33:71:A3:78:3B:38:11:51:A3 X509v3 Authority Key Identifier: keyid:3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SONET/0/3231392e38352e302e302f31362d3234203d3e203138313832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.85.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:e7:ef:d4:b1:5b:19:2b:f5:b1:c2:c6:f9:8a:93:15:c4:96: 95:1f:0d:07:17:99:7d:eb:c2:f8:18:85:04:a6:86:22:50:72: c4:5a:cc:58:f7:09:0f:85:e5:44:62:eb:2d:27:15:cd:34:53: bb:b1:39:f1:b2:80:55:6d:44:62:ce:eb:60:c4:03:07:ab:04: ea:a6:a1:ee:4a:ea:99:cd:ef:8e:7a:7f:38:12:c5:72:55:18: 2c:75:ed:9d:23:0f:2a:0d:5b:f2:8e:91:67:dd:e4:94:f4:f4: 80:c3:91:c9:82:c0:ec:f6:3b:26:ea:a5:11:66:d7:26:cd:87: 12:5e:68:6d:a2:2b:4b:f1:61:b7:6d:3f:f8:0f:04:c0:f6:0d: e7:66:26:db:b9:89:b5:4e:0d:e5:70:09:8d:f0:80:69:94:c0: 74:1b:25:bf:e9:f0:41:1a:29:35:23:1d:51:0c:4f:86:df:62: 6e:4f:94:41:0f:3e:3a:d2:3b:34:06:1d:9b:ea:48:f1:59:db: d1:98:b1:51:62:3f:a3:da:ab:c8:bc:b6:dc:c5:ae:bf:0c:f5: 15:75:d5:58:af:ba:34:7b:9a:5f:69:78:82:61:9f:9f:88:38: b1:ec:b0:f1:98:20:65:96:24:b4:3c:15:44:07:25:9b:b7:ca: 30:c7:ad:9c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFnRkxdsMU3bAw+SK2s7M5gEKR4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RDMzQzlCMzlDRkM5NTBBMkQzREJDNzgxMzFFMUFB RjhDQzhFRjAeFw0yNjA1MTExNjQ5MjRaFw0yNzA1MTAxNjU0MjRaMDMxMTAvBgNV BAMTKDI0NDQzNUQzREQwMDkxQUQyNkIzNTgzMzcxQTM3ODNCMzgxMTUxQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCDAASqELtJornar27GcnQuk08+ hwbMdWGTNSo+HAKyBXGkWuGhPaS1e0F/qmqaWJCyO1u+DF0JK557EUs+JfVwFykQ jslQb3zPew0w+eyrLKJjjwFlLxrChysDnveapgBIC3ncakQBSsAQsrGOYngDKf8B mmKX5uJqSjyevDd+ZwL85elkZvcGEf13B/wjagP9fKF2JPma02R5z5eAJ+Pb2u3n csyfiyRlPECvQztaA3HdtLhVsYoNqM5X7dnyF7UOzb1MWoq/hTzl8nKcG/Rl30Sn /Hl5Hetu4zfhlgpjaTVqTTEzBHK3KD3CW5L8p6IW4yGyx7h1QcfprK4DlEeRAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQUJEQ1090Aka0ms1gzcaN4OzgRUaMwHwYDVR0j BBgwFoAUP20zybOc/JUKLT28eBMeGq+MyO8wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU09ORVQv MC8zRjZEMzNDOUIzOUNGQzk1MEEyRDNEQkM3ODEzMUUxQUFGOENDOEVGLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGNkQzM0M5QjM5Q0ZDOTUwQTJEM0RCQzc4MTMx RTFBQUY4Q0M4RUYuY2VyMHcGCCsGAQUFBwELBGswaTBnBggrBgEFBQcwC4ZbcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TT05FVC8wLzMyMzEzOTJlMzgzNTJl MzAyZTMwMmYzMTM2MmQzMjM0MjAzZDNlMjAzMTM4MzEzODMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA 21UwDQYJKoZIhvcNAQELBQADggEBAG7n79SxWxkr9bHCxvmKkxXElpUfDQcXmX3r wvgYhQSmhiJQcsRazFj3CQ+F5URi6y0nFc00U7uxOfGygFVtRGLO62DEAwerBOqm oe5K6pnN7456fzgSxXJVGCx17Z0jDyoNW/KOkWfd5JT09IDDkcmCwOz2OybqpRFm 1ybNhxJeaG2iK0vxYbdtP/gPBMD2DedmJtu5ibVODeVwCY3wgGmUwHQbJb/p8EEa KTUjHVEMT4bfYm5PlEEPPjrSOzQGHZvqSPFZ29GYsVFiP6Paq8i8ttzFrr8M9RV1 1VivujR7ml9peIJhn5+IOLHssPGYIGWWJLQ8FUQHJZu3yjDHrZw= -----END CERTIFICATE-----Generated at Wed May 13 21:11:03 2026 by rpki-client