$ rpki-client -vvf rpkica.twnic.tw/rpki/TAIFU/0/3230322e3133332e36382e302f32332d3234203d3e2039393138.roa File: 3230322e3133332e36382e302f32332d3234203d3e2039393138.roa (raw, json) Hash identifier: iN6E9FfraXQT/WqBz/UUplfXGRYfrwEtSBMCkEDIi4Q= Subject key identifier: E6:DE:B4:5D:77:DA:5B:C5:0F:81:AF:8A:CB:32:4D:2C:9F:E9:C3:94 Certificate issuer: /CN=CEF74285903EEA3346FB1E74872895A4CE8D1742 Certificate serial: 259E4A0512EB2FAFBE22AF9EC3C6CE0F51650309 Authority key identifier: CE:F7:42:85:90:3E:EA:33:46:FB:1E:74:87:28:95:A4:CE:8D:17:42 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CEF74285903EEA3346FB1E74872895A4CE8D1742.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TAIFU/0/3230322e3133332e36382e302f32332d3234203d3e2039393138.roa Signing time: Mon 11 May 2026 17:56:20 +0000 ROA not before: Mon 11 May 2026 17:51:20 +0000 ROA not after: Mon 10 May 2027 17:56:20 +0000 asID: 9918 IP address blocks: 202.133.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TAIFU/0/CEF74285903EEA3346FB1E74872895A4CE8D1742.crl rsync://rpkica.twnic.tw/rpki/TAIFU/0/CEF74285903EEA3346FB1E74872895A4CE8D1742.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CEF74285903EEA3346FB1E74872895A4CE8D1742.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:9e:4a:05:12:eb:2f:af:be:22:af:9e:c3:c6:ce:0f:51:65:03:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEF74285903EEA3346FB1E74872895A4CE8D1742 Validity Not Before: May 11 17:51:20 2026 GMT Not After : May 10 17:56:20 2027 GMT Subject: CN=E6DEB45D77DA5BC50F81AF8ACB324D2C9FE9C394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:83:71:7e:bd:d9:5f:bd:92:85:76:55:07:da: 9a:7e:bf:60:15:fc:d5:a5:12:1d:2e:31:b7:1d:97: b1:39:73:7e:d0:c9:98:66:1b:68:fa:a8:7c:c8:8d: bf:e0:01:13:f4:f9:ac:f2:91:ca:f0:d5:18:e4:86: 28:c5:60:2e:ac:91:4b:87:dd:de:46:8f:4c:a9:a8: c7:d0:c9:f6:c3:75:a3:ad:ab:f6:a9:db:a7:84:6d: 9c:8f:b1:70:21:24:49:6c:30:e6:18:9e:a7:5c:51: 6c:49:73:12:c4:e7:58:a0:73:a0:ca:3b:1b:f7:63: 20:ba:8f:9b:1c:4f:2d:3d:b9:bc:aa:0a:44:ac:7e: 8c:d6:d7:17:47:99:02:ce:c0:97:d2:59:73:15:ed: 48:72:a1:69:4b:72:a2:45:df:9f:fe:12:bd:eb:9f: a1:95:f2:19:1b:8a:ad:4d:b8:28:bf:a0:b6:37:25: 8a:b2:6a:38:1f:81:51:f5:d5:b2:c3:9d:f2:db:b7: 73:83:8b:ed:c4:24:1c:5b:f3:e4:07:58:d2:03:f6: a4:1a:03:6b:d8:ac:93:4f:44:de:47:c3:c2:40:cb: 8d:05:d7:ba:98:66:e7:20:cc:9d:03:06:03:c8:1d: 59:c4:7a:99:09:0c:71:42:bf:15:ed:0c:62:8a:90: da:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DE:B4:5D:77:DA:5B:C5:0F:81:AF:8A:CB:32:4D:2C:9F:E9:C3:94 X509v3 Authority Key Identifier: keyid:CE:F7:42:85:90:3E:EA:33:46:FB:1E:74:87:28:95:A4:CE:8D:17:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TAIFU/0/CEF74285903EEA3346FB1E74872895A4CE8D1742.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CEF74285903EEA3346FB1E74872895A4CE8D1742.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TAIFU/0/3230322e3133332e36382e302f32332d3234203d3e2039393138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.68.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:d4:60:79:62:d5:e4:62:c8:67:4e:8d:b8:d3:31:25:4d:36: a0:6d:83:37:9a:3e:59:94:97:3a:2f:da:2c:ee:7c:ce:58:a6: 7a:f7:1a:6d:44:a1:44:8b:53:3f:98:6f:98:b3:1f:22:af:a5: 6c:fa:61:18:bf:f2:36:3c:4b:b9:2e:22:c8:95:30:49:d5:3d: b2:ce:0d:dd:0d:6e:4a:4c:9e:6d:0e:d9:73:0e:e9:e0:32:78: ff:4c:a6:32:89:9e:d1:b4:e4:5b:88:4d:58:05:49:ec:13:85: 3b:d0:e3:76:ae:39:5e:55:2d:16:c0:a1:49:14:f7:74:0f:db: af:5d:14:0e:3a:2e:d2:9a:c8:07:33:b5:63:3a:7b:f7:a3:80: 15:f9:62:b3:a1:a5:65:1f:d7:30:f9:fb:84:74:73:cb:04:18: 13:fe:2b:d2:43:cc:57:8b:fe:35:53:f8:03:2b:4f:5a:86:1a: d2:a8:e9:8b:47:34:70:e7:dd:27:6c:5f:08:39:1b:db:b7:78: f7:fd:fc:e3:51:7f:ae:14:24:8b:47:e3:fd:6e:33:58:04:61: 5d:56:d1:9d:2e:b9:b8:bd:b9:35:0f:00:d5:cb:c6:58:c0:ae: 23:84:82:e5:1d:08:c5:8e:aa:26:bb:e4:aa:89:89:85:cb:c7: 5c:a7:57:73 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUJZ5KBRLrL6++Iq+ew8bOD1FlAwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VGNzQyODU5MDNFRUEzMzQ2RkIxRTc0ODcyODk1QTRD RThEMTc0MjAeFw0yNjA1MTExNzUxMjBaFw0yNzA1MTAxNzU2MjBaMDMxMTAvBgNV BAMTKEU2REVCNDVENzdEQTVCQzUwRjgxQUY4QUNCMzI0RDJDOUZFOUMzOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSg3F+vdlfvZKFdlUH2pp+v2AV /NWlEh0uMbcdl7E5c37QyZhmG2j6qHzIjb/gARP0+azykcrw1RjkhijFYC6skUuH 3d5Gj0ypqMfQyfbDdaOtq/ap26eEbZyPsXAhJElsMOYYnqdcUWxJcxLE51igc6DK Oxv3YyC6j5scTy09ubyqCkSsfozW1xdHmQLOwJfSWXMV7UhyoWlLcqJF35/+Er3r n6GV8hkbiq1NuCi/oLY3JYqyajgfgVH11bLDnfLbt3ODi+3EJBxb8+QHWNID9qQa A2vYrJNPRN5Hw8JAy40F17qYZucgzJ0DBgPIHVnEepkJDHFCvxXtDGKKkNrfAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQU5t60XXfaW8UPga+KyzJNLJ/pw5QwHwYDVR0j BBgwFoAUzvdChZA+6jNG+x50hyiVpM6NF0IwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFJRlUv MC9DRUY3NDI4NTkwM0VFQTMzNDZGQjFFNzQ4NzI4OTVBNENFOEQxNzQyLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0NFRjc0Mjg1OTAzRUVBMzM0NkZCMUU3NDg3Mjg5 NUE0Q0U4RDE3NDIuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQUlGVS8wLzMyMzAzMjJlMzEzMzMz MmUzNjM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzkzOTMxMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHKhUQwDQYJKoZIhvcNAQELBQADggEBAFvUYHli1eRiyGdOjbjTMSVNNqBtgzea PlmUlzov2izufM5Ypnr3Gm1EoUSLUz+Yb5izHyKvpWz6YRi/8jY8S7kuIsiVMEnV PbLODd0NbkpMnm0O2XMO6eAyeP9MpjKJntG05FuITVgFSewThTvQ43auOV5VLRbA oUkU93QP269dFA46LtKayAcztWM6e/ejgBX5YrOhpWUf1zD5+4R0c8sEGBP+K9JD zFeL/jVT+AMrT1qGGtKo6YtHNHDn3SdsXwg5G9u3ePf9/ONRf64UJItH4/1uM1gE YV1W0Z0uubi9uTUPANXLxljAriOEguUdCMWOqia75KqJiYXLx1ynV3M= -----END CERTIFICATE-----Generated at Wed May 13 21:11:50 2026 by rpki-client