$ rpki-client -vvf rpkica.twnic.tw/rpki/SYMPHOX/0/3231312e37362e3132382e302f32302d3234203d3e203536313739.roa File: 3231312e37362e3132382e302f32302d3234203d3e203536313739.roa (raw, json) Hash identifier: lXdw4/lA7p0B+u17xRun5vfo7vWAF9rUjcOVqwT8L6A= Subject key identifier: 24:38:34:DA:6E:A0:10:7B:CC:D6:64:72:0E:62:38:01:4A:FD:5D:61 Certificate issuer: /CN=B64BDE0841E1E027F1A23036D9C779A108C22EE1 Certificate serial: 4402CB6A571F171550E9CDFD02B4E72422B6769F Authority key identifier: B6:4B:DE:08:41:E1:E0:27:F1:A2:30:36:D9:C7:79:A1:08:C2:2E:E1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B64BDE0841E1E027F1A23036D9C779A108C22EE1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SYMPHOX/0/3231312e37362e3132382e302f32302d3234203d3e203536313739.roa Signing time: Mon 11 May 2026 17:32:10 +0000 ROA not before: Mon 11 May 2026 17:27:10 +0000 ROA not after: Mon 10 May 2027 17:32:10 +0000 asID: 56179 IP address blocks: 211.76.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SYMPHOX/0/B64BDE0841E1E027F1A23036D9C779A108C22EE1.crl rsync://rpkica.twnic.tw/rpki/SYMPHOX/0/B64BDE0841E1E027F1A23036D9C779A108C22EE1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B64BDE0841E1E027F1A23036D9C779A108C22EE1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:02:cb:6a:57:1f:17:15:50:e9:cd:fd:02:b4:e7:24:22:b6:76:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B64BDE0841E1E027F1A23036D9C779A108C22EE1 Validity Not Before: May 11 17:27:10 2026 GMT Not After : May 10 17:32:10 2027 GMT Subject: CN=243834DA6EA0107BCCD664720E6238014AFD5D61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:49:b0:07:ea:79:a8:8a:27:14:19:76:e4:16: 73:5f:99:db:1a:ad:bf:95:7a:8a:72:7b:8e:0e:82: 98:ac:c6:79:a2:cc:e9:93:94:a7:2a:5f:f7:8c:8a: 56:b0:6d:87:ce:35:b8:b3:e0:4a:99:43:f3:5f:51: 78:27:d0:c6:9b:74:50:63:e4:0e:56:e8:e1:27:d6: d5:b5:9b:1e:29:1a:ca:af:d8:ea:1e:73:c1:90:49: 02:a6:e7:97:4e:9e:22:fa:52:b2:eb:46:6b:8f:57: 17:88:94:fe:10:a7:9e:39:d2:c3:3f:4d:80:f2:6f: a0:34:d3:4e:88:e6:55:7a:9e:33:b7:c0:63:f1:39: 2c:1b:74:db:da:eb:24:15:f9:b5:be:f4:55:b8:fc: c4:92:dd:89:64:c9:ad:17:ab:5a:31:15:c8:92:30: 24:b9:7a:74:04:d7:8a:41:d8:67:b1:56:80:bd:a0: e3:cd:05:57:16:3f:bb:26:e4:db:cd:13:c1:c7:65: 4c:36:84:be:77:09:ad:66:62:b2:f6:00:1f:7b:14: cf:7a:3a:4e:57:ab:ca:6d:34:0f:1b:72:a2:3d:84: 96:6a:9d:7b:43:95:54:5f:1b:e1:de:c5:75:18:7f: 1b:5a:c3:84:50:c3:2c:10:9a:6f:32:28:22:93:bb: 47:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:38:34:DA:6E:A0:10:7B:CC:D6:64:72:0E:62:38:01:4A:FD:5D:61 X509v3 Authority Key Identifier: keyid:B6:4B:DE:08:41:E1:E0:27:F1:A2:30:36:D9:C7:79:A1:08:C2:2E:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SYMPHOX/0/B64BDE0841E1E027F1A23036D9C779A108C22EE1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B64BDE0841E1E027F1A23036D9C779A108C22EE1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SYMPHOX/0/3231312e37362e3132382e302f32302d3234203d3e203536313739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.76.128.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:ff:6f:a9:86:38:82:ee:99:ed:78:2e:ad:05:e3:6c:92:ef: 52:8c:8f:e2:ee:ba:9b:63:ed:0e:47:36:05:cc:89:29:10:bc: 12:4b:60:6a:76:17:d9:68:6f:81:b0:dd:40:d2:ec:41:e7:34: 8f:00:5f:2f:46:a1:8d:67:6d:e7:14:f4:29:60:64:80:05:b4: f6:72:6e:c7:78:a2:95:cf:43:12:c2:02:c2:df:77:a0:58:14: b9:34:18:92:af:d6:42:a5:4a:a3:08:2b:e0:88:b2:83:13:98: 3f:9d:1b:f3:87:74:da:0c:a5:2a:67:00:08:66:82:15:b2:b2: 80:5d:6c:36:04:2e:17:06:43:34:2a:47:74:34:fc:4d:5f:e7: ea:20:ac:25:e8:5d:bc:3a:e1:f4:47:98:5d:9f:bb:9f:c0:b6: af:66:e1:1d:58:5c:41:3d:a8:37:0e:e4:43:ce:99:42:aa:04: fc:0c:85:9b:d5:a5:0a:b8:1d:d3:9e:d4:69:94:b8:fe:81:72: 8c:7c:9e:7f:aa:2f:2e:07:42:19:cd:97:35:9b:39:9f:99:ab: d9:8d:8e:05:20:60:fd:cf:53:9a:fc:95:32:ef:58:17:9b:80: de:6b:ad:cc:6e:ad:f1:b6:0c:36:b5:14:80:48:88:d1:66:c1: 09:c6:81:a1 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIURALLalcfFxVQ6c39ArTnJCK2dp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY0QkRFMDg0MUUxRTAyN0YxQTIzMDM2RDlDNzc5QTEw OEMyMkVFMTAeFw0yNjA1MTExNzI3MTBaFw0yNzA1MTAxNzMyMTBaMDMxMTAvBgNV BAMTKDI0MzgzNERBNkVBMDEwN0JDQ0Q2NjQ3MjBFNjIzODAxNEFGRDVENjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNSbAH6nmoiicUGXbkFnNfmdsa rb+Veopye44OgpisxnmizOmTlKcqX/eMilawbYfONbiz4EqZQ/NfUXgn0MabdFBj 5A5W6OEn1tW1mx4pGsqv2Ooec8GQSQKm55dOniL6UrLrRmuPVxeIlP4Qp5450sM/ TYDyb6A0006I5lV6njO3wGPxOSwbdNva6yQV+bW+9FW4/MSS3Ylkya0Xq1oxFciS MCS5enQE14pB2GexVoC9oOPNBVcWP7sm5NvNE8HHZUw2hL53Ca1mYrL2AB97FM96 Ok5Xq8ptNA8bcqI9hJZqnXtDlVRfG+HexXUYfxtaw4RQwywQmm8yKCKTu0dTAgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQUJDg02m6gEHvM1mRyDmI4AUr9XWEwHwYDVR0j BBgwFoAUtkveCEHh4CfxojA22cd5oQjCLuEwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU1lNUEhP WC8wL0I2NEJERTA4NDFFMUUwMjdGMUEyMzAzNkQ5Qzc3OUExMDhDMjJFRTEuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQjY0QkRFMDg0MUUxRTAyN0YxQTIzMDM2RDlD Nzc5QTEwOEMyMkVFMS5jZXIwfQYIKwYBBQUHAQsEcTBvMG0GCCsGAQUFBzALhmFy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NZTVBIT1gvMC8zMjMxMzEyZTM3 MzYyZTMxMzIzODJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDM1MzYzMTM3Mzkucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBATTTIAwDQYJKoZIhvcNAQELBQADggEBAEv/b6mGOILume14Lq0F42yS 71KMj+Luuptj7Q5HNgXMiSkQvBJLYGp2F9lob4Gw3UDS7EHnNI8AXy9GoY1nbecU 9ClgZIAFtPZybsd4opXPQxLCAsLfd6BYFLk0GJKv1kKlSqMIK+CIsoMTmD+dG/OH dNoMpSpnAAhmghWysoBdbDYELhcGQzQqR3Q0/E1f5+ogrCXoXbw64fRHmF2fu5/A tq9m4R1YXEE9qDcO5EPOmUKqBPwMhZvVpQq4HdOe1GmUuP6Bcox8nn+qLy4HQhnN lzWbOZ+Zq9mNjgUgYP3PU5r8lTLvWBebgN5rrcxurfG2DDa1FIBIiNFmwQnGgaE= -----END CERTIFICATE-----Generated at Wed May 13 21:13:35 2026 by rpki-client