$ rpki-client -vvf rpkica.twnic.tw/rpki/SONET/0/36312e36322e302e302f31362d3234203d3e203138313832.roa File: 36312e36322e302e302f31362d3234203d3e203138313832.roa (raw, json) Hash identifier: ifIFQrYUhM297jse0mQ1w+HqkUSGHCWju3weIN7aUQs= Subject key identifier: 40:24:27:23:8A:6D:0F:A5:AD:AD:45:CE:FD:1A:4B:8E:83:D8:58:F0 Certificate issuer: /CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Certificate serial: 4097D5CC5F944CBCF9C82DDCF24F98FD50AB2EA5 Authority key identifier: 3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SONET/0/36312e36322e302e302f31362d3234203d3e203138313832.roa Signing time: Mon 11 May 2026 16:54:27 +0000 ROA not before: Mon 11 May 2026 16:49:27 +0000 ROA not after: Mon 10 May 2027 16:54:27 +0000 asID: 18182 IP address blocks: 61.62.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:97:d5:cc:5f:94:4c:bc:f9:c8:2d:dc:f2:4f:98:fd:50:ab:2e:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Validity Not Before: May 11 16:49:27 2026 GMT Not After : May 10 16:54:27 2027 GMT Subject: CN=402427238A6D0FA5ADAD45CEFD1A4B8E83D858F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9c:2e:54:2b:b1:24:e8:e1:a9:cd:43:84:75: 73:d4:c8:ce:63:0f:98:cd:b2:4d:d3:44:08:3d:69: bc:16:59:be:1d:65:87:f3:c7:aa:43:7e:b9:fb:e4: 64:14:eb:06:27:39:31:27:cc:2a:95:ad:3a:3b:43: ef:02:40:3b:a7:9d:12:32:bc:18:4d:7b:0f:aa:c2: a7:75:5e:ed:81:72:8f:96:67:11:5c:ed:86:fc:82: bc:3a:f1:34:30:7f:09:23:c0:f5:2a:82:ed:15:59: 8c:78:f6:d3:90:e8:cf:a1:29:d6:3c:27:b2:14:04: 70:da:ca:2d:b2:f1:b2:3b:f0:fa:dd:13:87:d3:9c: 71:e9:f3:24:37:5d:4f:8a:c5:a1:2c:b8:6b:6e:62: 35:a4:fb:3a:2a:1c:2f:d8:db:27:dc:b1:64:a5:cf: 57:7b:97:38:78:61:84:e7:ac:91:74:b1:5f:a8:b8: 50:4b:52:a5:d8:7d:53:5e:db:9a:38:d5:d6:da:28: d7:7a:21:26:94:3f:08:9f:bb:f7:dc:bc:d0:a4:cc: 4e:c1:76:81:51:a0:aa:94:a0:70:17:d7:b0:6a:70: 4a:85:0b:49:61:fc:a2:65:3b:8d:b5:d9:0a:6b:23: 15:df:a9:82:7b:b1:5a:34:44:1a:ea:ed:97:8e:2b: c4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:24:27:23:8A:6D:0F:A5:AD:AD:45:CE:FD:1A:4B:8E:83:D8:58:F0 X509v3 Authority Key Identifier: keyid:3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SONET/0/36312e36322e302e302f31362d3234203d3e203138313832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.62.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:d0:a9:59:d7:12:4d:b5:92:c4:03:54:48:e8:57:b1:09:a4: f3:fd:e6:da:a1:7f:e3:7b:8a:ca:db:25:27:64:fb:70:b2:97: 6b:ec:ee:c1:63:32:dc:63:b3:c2:b5:ad:78:58:2a:ea:89:ea: 52:7b:86:6e:0a:d0:30:07:df:11:d9:ed:fe:eb:0d:e5:e6:dc: ac:d6:d1:0a:d9:64:0b:68:29:1b:c1:2c:c7:3f:de:ce:d5:e1: c7:5b:10:35:c0:9b:a1:78:08:db:b2:09:e6:5c:11:1d:eb:6f: 11:ee:6e:94:8f:17:03:df:55:a7:5a:14:7d:eb:7e:64:35:98: 6e:49:0c:7f:b9:9f:fc:0d:86:28:02:34:2c:7d:aa:49:64:0f: a9:c3:ab:4c:cd:32:b8:32:b2:e3:ea:e0:eb:26:fc:20:c7:3c: 5a:f1:84:ee:8d:65:60:91:ce:82:78:7d:9c:f6:58:d5:60:a6: f8:f9:f2:49:79:35:96:76:fa:16:c2:46:0f:b4:dc:91:ac:e0: ff:91:e6:1c:b5:bf:80:e4:8e:c5:83:12:a4:2b:7e:bc:9c:1b: a4:2b:bd:2b:29:a0:69:03:7b:1f:5e:be:93:08:e6:ea:5c:91: 05:1b:f7:2e:b1:ff:44:79:49:ca:0d:d0:37:e1:5f:21:21:53: 2a:3f:1c:b4 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIUQJfVzF+UTLz5yC3c8k+Y/VCrLqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RDMzQzlCMzlDRkM5NTBBMkQzREJDNzgxMzFFMUFB RjhDQzhFRjAeFw0yNjA1MTExNjQ5MjdaFw0yNzA1MTAxNjU0MjdaMDMxMTAvBgNV BAMTKDQwMjQyNzIzOEE2RDBGQTVBREFENDVDRUZEMUE0QjhFODNEODU4RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQConC5UK7Ek6OGpzUOEdXPUyM5j D5jNsk3TRAg9abwWWb4dZYfzx6pDfrn75GQU6wYnOTEnzCqVrTo7Q+8CQDunnRIy vBhNew+qwqd1Xu2Bco+WZxFc7Yb8grw68TQwfwkjwPUqgu0VWYx49tOQ6M+hKdY8 J7IUBHDayi2y8bI78PrdE4fTnHHp8yQ3XU+KxaEsuGtuYjWk+zoqHC/Y2yfcsWSl z1d7lzh4YYTnrJF0sV+ouFBLUqXYfVNe25o41dbaKNd6ISaUPwifu/fcvNCkzE7B doFRoKqUoHAX17BqcEqFC0lh/KJlO4212QprIxXfqYJ7sVo0RBrq7ZeOK8QLAgMB AAGjggHaMIIB1jAdBgNVHQ4EFgQUQCQnI4ptD6WtrUXO/RpLjoPYWPAwHwYDVR0j BBgwFoAUP20zybOc/JUKLT28eBMeGq+MyO8wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU09ORVQv MC8zRjZEMzNDOUIzOUNGQzk1MEEyRDNEQkM3ODEzMUUxQUFGOENDOEVGLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGNkQzM0M5QjM5Q0ZDOTUwQTJEM0RCQzc4MTMx RTFBQUY4Q0M4RUYuY2VyMHUGCCsGAQUFBwELBGkwZzBlBggrBgEFBQcwC4ZZcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TT05FVC8wLzM2MzEyZTM2MzIyZTMw MmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzEzODMxMzgzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD0+ MA0GCSqGSIb3DQEBCwUAA4IBAQA60KlZ1xJNtZLEA1RI6FexCaTz/ebaoX/je4rK 2yUnZPtwspdr7O7BYzLcY7PCta14WCrqiepSe4ZuCtAwB98R2e3+6w3l5tys1tEK 2WQLaCkbwSzHP97O1eHHWxA1wJuheAjbsgnmXBEd628R7m6UjxcD31WnWhR9635k NZhuSQx/uZ/8DYYoAjQsfapJZA+pw6tMzTK4MrLj6uDrJvwgxzxa8YTujWVgkc6C eH2c9ljVYKb4+fJJeTWWdvoWwkYPtNyRrOD/keYctb+A5I7FgxKkK368nBukK70r KaBpA3sfXr6TCObqXJEFG/cusf9EeUnKDdA34V8hIVMqPxy0 -----END CERTIFICATE-----Generated at Wed May 13 21:11:06 2026 by rpki-client