$ rpki-client -vvf rpkica.twnic.tw/rpki/SONET/0/33392e312e34372e302f32342d3234203d3e2039393232.roa File: 33392e312e34372e302f32342d3234203d3e2039393232.roa (raw, json) Hash identifier: Drtv5JpDCKBUTLlwm2QdYijdfjd//4f1UxcFzmvf4Yg= Subject key identifier: 99:83:42:87:4E:4B:DC:8C:F6:C8:3C:41:23:20:99:DF:20:74:59:AE Certificate issuer: /CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Certificate serial: 0528248B0A935F785071C3B2E3F671F819C961DE Authority key identifier: 3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SONET/0/33392e312e34372e302f32342d3234203d3e2039393232.roa Signing time: Mon 11 May 2026 17:38:13 +0000 ROA not before: Mon 11 May 2026 17:33:13 +0000 ROA not after: Mon 10 May 2027 17:38:13 +0000 asID: 9922 IP address blocks: 39.1.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:28:24:8b:0a:93:5f:78:50:71:c3:b2:e3:f6:71:f8:19:c9:61:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Validity Not Before: May 11 17:33:13 2026 GMT Not After : May 10 17:38:13 2027 GMT Subject: CN=998342874E4BDC8CF6C83C41232099DF207459AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c4:3f:58:91:55:8b:50:57:a3:ae:4a:9c:fc: 91:d0:df:fa:3e:7e:d1:ae:43:9c:b3:21:87:81:bf: 38:86:49:99:9b:36:bc:75:c9:83:7d:28:8c:d1:b9: 4c:03:aa:fc:97:0a:26:64:44:22:18:4c:eb:f9:e2: 3d:86:35:ff:e5:66:90:91:ec:88:72:04:fd:89:dc: 70:81:7e:58:57:30:41:09:bc:0e:62:97:0e:5a:8d: 40:73:42:96:e2:0c:76:01:a3:78:e4:1a:a2:8f:68: 29:9a:ff:06:cb:62:99:cb:4c:a6:3c:8d:24:79:18: 1b:11:7f:31:24:b1:92:b4:b0:c1:8c:be:4c:71:d6: ff:04:aa:4f:8d:7c:f1:2e:f1:22:f2:86:39:6e:59: 40:fe:a4:26:29:41:fa:fe:83:34:ae:5b:79:7c:9d: 22:c6:7d:1f:50:65:a2:87:01:07:cc:09:7b:0d:15: 7a:da:57:b5:13:be:4a:12:08:cd:42:ca:2b:2c:58: 01:d0:e2:7e:db:e8:f5:d5:c9:59:97:5d:7e:83:6a: 9a:c1:1c:6b:b5:dd:1a:6d:d8:37:d8:87:a5:74:46: 31:4c:06:ba:00:60:85:80:35:ca:ce:a4:dc:c8:a5: 2e:db:24:5b:39:3f:41:23:38:dd:4a:ae:5e:79:0b: ee:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:83:42:87:4E:4B:DC:8C:F6:C8:3C:41:23:20:99:DF:20:74:59:AE X509v3 Authority Key Identifier: keyid:3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SONET/0/33392e312e34372e302f32342d3234203d3e2039393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 39.1.47.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:da:6e:d4:82:55:38:1a:a2:bb:8a:36:85:2f:00:e3:f2:f9: 26:3f:af:f5:fd:99:07:32:e4:ac:ee:48:1f:70:9b:fa:77:54: 1a:dd:d2:af:9c:12:fa:6f:33:58:7c:18:dd:7e:ec:a7:2f:dd: 07:ec:99:dd:a1:5b:02:27:77:42:50:c2:a8:5d:44:bb:b0:d3: 6f:91:de:d3:a5:ab:72:40:55:85:9b:95:5f:68:75:43:d4:8a: e8:a5:7f:54:8e:a9:e6:30:22:28:07:b7:e9:3e:35:76:00:dd: 2b:50:58:70:65:03:80:51:d8:79:ff:5f:de:a5:14:a8:dc:93: b0:95:01:6c:0c:c4:a5:04:f0:01:ce:23:bd:57:e0:0d:b8:3f: ed:e7:28:28:5c:07:1f:eb:a8:71:22:2a:ce:50:91:fd:3e:05: 70:cd:9b:32:ce:7c:ae:35:8e:42:7b:7d:df:f9:0b:73:e7:28: d3:53:f2:95:50:6b:b0:64:55:4b:d8:70:6a:91:f7:ae:3e:bb: ad:8d:d0:c8:9c:46:1a:bc:0a:e8:3a:68:57:73:d6:2c:7d:54: 0c:9b:85:9c:63:54:5e:bd:c7:19:9c:a1:15:da:fc:32:66:9d: aa:56:f6:be:db:28:c9:cd:06:e4:87:61:ab:41:55:3a:a8:dd: b7:dd:6f:83 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUBSgkiwqTX3hQccOy4/Zx+BnJYd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RDMzQzlCMzlDRkM5NTBBMkQzREJDNzgxMzFFMUFB RjhDQzhFRjAeFw0yNjA1MTExNzMzMTNaFw0yNzA1MTAxNzM4MTNaMDMxMTAvBgNV BAMTKDk5ODM0Mjg3NEU0QkRDOENGNkM4M0M0MTIzMjA5OURGMjA3NDU5QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCexD9YkVWLUFejrkqc/JHQ3/o+ ftGuQ5yzIYeBvziGSZmbNrx1yYN9KIzRuUwDqvyXCiZkRCIYTOv54j2GNf/lZpCR 7IhyBP2J3HCBflhXMEEJvA5ilw5ajUBzQpbiDHYBo3jkGqKPaCma/wbLYpnLTKY8 jSR5GBsRfzEksZK0sMGMvkxx1v8Eqk+NfPEu8SLyhjluWUD+pCYpQfr+gzSuW3l8 nSLGfR9QZaKHAQfMCXsNFXraV7UTvkoSCM1CyissWAHQ4n7b6PXVyVmXXX6DaprB HGu13Rpt2DfYh6V0RjFMBroAYIWANcrOpNzIpS7bJFs5P0EjON1Krl55C+7HAgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQUmYNCh05L3Iz2yDxBIyCZ3yB0Wa4wHwYDVR0j BBgwFoAUP20zybOc/JUKLT28eBMeGq+MyO8wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU09ORVQv MC8zRjZEMzNDOUIzOUNGQzk1MEEyRDNEQkM3ODEzMUUxQUFGOENDOEVGLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGNkQzM0M5QjM5Q0ZDOTUwQTJEM0RCQzc4MTMx RTFBQUY4Q0M4RUYuY2VyMHMGCCsGAQUFBwELBGcwZTBjBggrBgEFBQcwC4ZXcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TT05FVC8wLzMzMzkyZTMxMmUzNDM3 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzkzOTMyMzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAnAS8w DQYJKoZIhvcNAQELBQADggEBAD3abtSCVTgaoruKNoUvAOPy+SY/r/X9mQcy5Kzu SB9wm/p3VBrd0q+cEvpvM1h8GN1+7Kcv3Qfsmd2hWwInd0JQwqhdRLuw02+R3tOl q3JAVYWblV9odUPUiuilf1SOqeYwIigHt+k+NXYA3StQWHBlA4BR2Hn/X96lFKjc k7CVAWwMxKUE8AHOI71X4A24P+3nKChcBx/rqHEiKs5Qkf0+BXDNmzLOfK41jkJ7 fd/5C3PnKNNT8pVQa7BkVUvYcGqR964+u62N0MicRhq8Cug6aFdz1ix9VAybhZxj VF69xxmcoRXa/DJmnapW9r7bKMnNBuSHYatBVTqo3bfdb4M= -----END CERTIFICATE-----Generated at Wed May 13 21:11:10 2026 by rpki-client