$ rpki-client -vvf rpkica.twnic.tw/rpki/SONET/0/33392e312e33322e302f32312d3234203d3e2039393232.roa File: 33392e312e33322e302f32312d3234203d3e2039393232.roa (raw, json) Hash identifier: VNQcRXeOE/j/rdkFQwcA1LclvGgGVBSj6YxVH+Y+B5E= Subject key identifier: 09:80:3C:B6:F7:7B:F8:3D:AA:3A:86:EE:B3:F8:27:9B:50:65:7E:13 Certificate issuer: /CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Certificate serial: 769BA4EB86245AF39B4312010E9619647F4A747C Authority key identifier: 3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SONET/0/33392e312e33322e302f32312d3234203d3e2039393232.roa Signing time: Mon 11 May 2026 17:32:42 +0000 ROA not before: Mon 11 May 2026 17:27:42 +0000 ROA not after: Mon 10 May 2027 17:32:42 +0000 asID: 9922 IP address blocks: 39.1.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:9b:a4:eb:86:24:5a:f3:9b:43:12:01:0e:96:19:64:7f:4a:74:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Validity Not Before: May 11 17:27:42 2026 GMT Not After : May 10 17:32:42 2027 GMT Subject: CN=09803CB6F77BF83DAA3A86EEB3F8279B50657E13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:93:32:49:18:21:24:a5:24:2b:2b:53:4b:63: 72:53:17:fd:86:14:f3:80:1f:62:96:05:7d:b5:69: bc:fc:4b:ff:7e:86:b5:e9:da:5c:9a:24:ff:af:83: 81:26:04:0d:b8:f5:17:7e:7f:27:5a:23:d7:64:a7: cc:30:93:e2:93:24:2f:97:70:f5:14:63:21:bb:23: a7:36:a0:33:a4:86:57:15:e0:98:90:81:25:52:45: 61:1d:7e:d3:e7:d0:1c:67:74:a2:02:b3:50:55:b9: ab:8f:db:cc:50:5c:e8:64:bf:21:b3:7c:94:e7:f7: f0:db:62:58:2f:1e:6a:6e:aa:40:45:d2:5d:99:4d: 22:6c:cf:96:8c:cd:67:80:e3:19:24:ce:6f:26:de: 83:d0:9d:f2:50:3e:6d:43:82:98:2b:b0:03:06:67: 8f:a5:07:42:50:9e:95:cb:7b:9e:7e:29:43:58:ec: af:58:0b:94:d6:c5:59:fc:2b:a5:cb:44:eb:99:33: 40:79:0f:4b:4b:01:33:aa:59:c9:a0:e8:dd:7c:9a: 42:69:f3:a2:eb:a8:d9:05:69:a9:64:34:fb:e3:d6: 15:10:51:7a:5e:58:ee:e1:0e:b2:27:67:c6:b2:be: 1f:80:f1:21:30:1d:86:77:94:67:ef:7a:1e:c3:4f: 35:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:80:3C:B6:F7:7B:F8:3D:AA:3A:86:EE:B3:F8:27:9B:50:65:7E:13 X509v3 Authority Key Identifier: keyid:3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SONET/0/33392e312e33322e302f32312d3234203d3e2039393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 39.1.32.0/21 Signature Algorithm: sha256WithRSAEncryption 51:ec:4d:3b:c2:86:6b:51:fd:81:e0:c9:21:6c:7c:47:2c:aa: 3e:77:44:73:9f:bd:53:77:fa:1e:3f:e2:b8:48:bf:28:fd:30: f7:1e:d9:34:6c:72:3a:5d:ad:15:68:18:df:6a:17:00:d4:18: c3:88:92:1f:58:ab:8f:eb:64:fe:83:96:0d:dc:f5:ad:47:a8: 9c:c7:8b:70:30:20:14:2c:09:de:5d:e5:36:5b:eb:b2:64:8e: 3c:c4:6f:2e:9d:bd:bc:9d:39:e3:30:63:80:a0:7e:f8:a6:41: 23:13:bd:b1:a3:5a:25:66:fd:be:81:b6:31:c5:57:6d:7d:27: 93:ed:83:e7:9b:0c:c2:30:22:99:70:21:3d:30:4d:ac:df:57: f8:c2:ec:78:ba:5d:4b:87:91:a3:90:8e:1a:ab:77:7c:7b:5e: 29:ae:fa:89:11:1e:82:37:7c:19:36:32:0c:cf:2a:21:75:e8: 23:50:f6:79:e2:c2:c3:84:73:2e:17:45:da:19:f4:1b:87:97: 93:7b:5b:49:46:ff:99:1e:3c:b4:83:d0:9b:4f:a5:ef:92:5b: 69:27:c9:4e:f3:f1:fd:9b:53:da:d3:80:58:95:9a:f0:77:54: dd:ab:75:fa:8c:95:22:10:38:7c:a3:b3:a9:ee:64:a1:c9:77: 79:4c:d6:e6 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUdpuk64YkWvObQxIBDpYZZH9KdHwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RDMzQzlCMzlDRkM5NTBBMkQzREJDNzgxMzFFMUFB RjhDQzhFRjAeFw0yNjA1MTExNzI3NDJaFw0yNzA1MTAxNzMyNDJaMDMxMTAvBgNV BAMTKDA5ODAzQ0I2Rjc3QkY4M0RBQTNBODZFRUIzRjgyNzlCNTA2NTdFMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVkzJJGCEkpSQrK1NLY3JTF/2G FPOAH2KWBX21abz8S/9+hrXp2lyaJP+vg4EmBA249Rd+fydaI9dkp8wwk+KTJC+X cPUUYyG7I6c2oDOkhlcV4JiQgSVSRWEdftPn0BxndKICs1BVuauP28xQXOhkvyGz fJTn9/DbYlgvHmpuqkBF0l2ZTSJsz5aMzWeA4xkkzm8m3oPQnfJQPm1DgpgrsAMG Z4+lB0JQnpXLe55+KUNY7K9YC5TWxVn8K6XLROuZM0B5D0tLATOqWcmg6N18mkJp 86LrqNkFaalkNPvj1hUQUXpeWO7hDrInZ8ayvh+A8SEwHYZ3lGfveh7DTzW7AgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQUCYA8tvd7+D2qOobus/gnm1BlfhMwHwYDVR0j BBgwFoAUP20zybOc/JUKLT28eBMeGq+MyO8wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU09ORVQv MC8zRjZEMzNDOUIzOUNGQzk1MEEyRDNEQkM3ODEzMUUxQUFGOENDOEVGLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGNkQzM0M5QjM5Q0ZDOTUwQTJEM0RCQzc4MTMx RTFBQUY4Q0M4RUYuY2VyMHMGCCsGAQUFBwELBGcwZTBjBggrBgEFBQcwC4ZXcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TT05FVC8wLzMzMzkyZTMxMmUzMzMy MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzkzOTMyMzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMnASAw DQYJKoZIhvcNAQELBQADggEBAFHsTTvChmtR/YHgySFsfEcsqj53RHOfvVN3+h4/ 4rhIvyj9MPce2TRscjpdrRVoGN9qFwDUGMOIkh9Yq4/rZP6Dlg3c9a1HqJzHi3Aw IBQsCd5d5TZb67JkjjzEby6dvbydOeMwY4CgfvimQSMTvbGjWiVm/b6BtjHFV219 J5Ptg+ebDMIwIplwIT0wTazfV/jC7Hi6XUuHkaOQjhqrd3x7Ximu+okRHoI3fBk2 MgzPKiF16CNQ9nniwsOEcy4XRdoZ9BuHl5N7W0lG/5kePLSD0JtPpe+SW2knyU7z 8f2bU9rTgFiVmvB3VN2rdfqMlSIQOHyjs6nuZKHJd3lM1uY= -----END CERTIFICATE-----Generated at Wed May 13 21:11:06 2026 by rpki-client