$ rpki-client -vvf rpkica.twnic.tw/rpki/TINP/0/32372e3130302e36342e302f31382d3234203d3e2034373830.roa File: 32372e3130302e36342e302f31382d3234203d3e2034373830.roa (raw, json) Hash identifier: armp4XeQEN/JTnHYvQdjmbC2KfUtleHC2MK7hOj8xjA= Subject key identifier: F5:96:AD:CB:B1:E1:B9:3C:25:00:2D:7A:27:B1:0A:AF:0D:EF:CF:E4 Certificate issuer: /CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Certificate serial: 76EF54C240DFED8903D7936B9555DBA46CBEF0BE Authority key identifier: BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TINP/0/32372e3130302e36342e302f31382d3234203d3e2034373830.roa Signing time: Mon 11 May 2026 17:10:50 +0000 ROA not before: Mon 11 May 2026 17:05:50 +0000 ROA not after: Mon 10 May 2027 17:10:50 +0000 asID: 4780 IP address blocks: 27.100.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ef:54:c2:40:df:ed:89:03:d7:93:6b:95:55:db:a4:6c:be:f0:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Validity Not Before: May 11 17:05:50 2026 GMT Not After : May 10 17:10:50 2027 GMT Subject: CN=F596ADCBB1E1B93C25002D7A27B10AAF0DEFCFE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:c2:6a:60:be:c5:63:44:a1:a1:be:8d:e4:03: bf:0f:e2:0d:4e:74:c0:ad:7a:73:d8:b2:e4:c1:2e: 8d:6e:a0:bc:ea:f9:fd:25:12:90:6c:41:07:e3:e0: 77:79:f4:9f:b2:fb:fb:4b:01:f1:23:dc:65:df:f8: f8:c8:68:44:de:4f:a4:4e:c9:d0:c7:bb:89:64:ff: 3d:03:a1:e1:d0:e0:f9:62:ba:2d:a7:d5:c4:15:82: f4:cd:ff:e2:ce:31:fa:7a:e2:93:19:82:9e:eb:13: 98:9f:a1:db:2f:bf:53:2c:10:7c:d7:4e:47:b4:16: 87:3f:75:96:2f:72:95:97:78:ad:2f:88:69:c5:3e: 4c:17:ea:94:af:f6:1b:71:9d:6c:49:38:16:6b:fe: 7f:a4:5d:a7:18:b0:bd:09:c4:00:7f:79:f5:e8:31: 19:d4:e8:8b:10:8a:4c:23:67:73:bf:b6:c6:f4:f7: 00:b4:62:a7:c3:fa:46:5b:20:62:bc:00:8d:20:3a: cb:23:75:a0:72:12:03:d3:25:7d:a9:d7:b6:43:0e: 11:a0:e1:9c:97:39:c8:c3:28:a6:84:e6:f1:08:86: 66:8d:e3:25:cd:f1:74:c7:fa:8d:d9:28:22:2d:bd: 96:ad:25:08:b1:df:ab:dc:38:ad:2c:86:97:51:f3: 5d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:96:AD:CB:B1:E1:B9:3C:25:00:2D:7A:27:B1:0A:AF:0D:EF:CF:E4 X509v3 Authority Key Identifier: keyid:BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TINP/0/32372e3130302e36342e302f31382d3234203d3e2034373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.100.64.0/18 Signature Algorithm: sha256WithRSAEncryption 4f:e9:de:48:17:13:20:e5:d4:18:51:13:72:60:21:bd:62:eb: 94:41:4f:25:d3:2e:38:99:30:08:1d:5d:e9:9a:1d:27:dc:c4: 9f:d8:dd:fd:f8:35:9f:17:ac:69:9a:f1:7a:b4:54:9d:e6:c2: 88:f1:bb:6d:17:83:54:97:2b:da:57:d8:be:bd:93:0c:de:00: 3a:d8:26:42:b6:59:85:b8:37:82:b6:2e:f6:1a:c6:b9:f0:ab: 2f:3c:93:e6:24:f9:72:25:ad:2d:70:1b:7f:ba:f5:66:19:38: f2:85:47:7d:7a:ba:51:c3:a6:f4:f2:ef:e6:fd:92:38:c1:84: cd:87:36:f8:9a:56:d5:53:da:b8:f2:dc:ec:a4:08:3c:dd:16: b7:05:60:5c:e9:cc:f4:9f:d8:2d:e7:67:37:3c:f2:b9:0a:01: 02:92:94:65:ae:c1:fa:eb:c6:18:3b:9d:da:b2:a3:68:ca:64: 42:71:be:f1:eb:50:bb:cf:85:a2:ef:8f:d1:70:91:0f:7f:1b: 03:ab:ff:69:70:ca:ac:c3:42:6b:94:b7:04:cc:4e:83:b2:61: 29:6d:bb:72:6f:62:98:05:61:18:b4:a3:83:1a:99:5d:ec:fc: 85:c7:6e:25:54:13:94:17:45:8f:c1:ab:fb:68:0f:97:6f:77: 67:fa:e2:26 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUdu9UwkDf7YkD15NrlVXbpGy+8L4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3M0Qy NDdBNTYwRjAeFw0yNjA1MTExNzA1NTBaFw0yNzA1MTAxNzEwNTBaMDMxMTAvBgNV BAMTKEY1OTZBRENCQjFFMUI5M0MyNTAwMkQ3QTI3QjEwQUFGMERFRkNGRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOwmpgvsVjRKGhvo3kA78P4g1O dMCtenPYsuTBLo1uoLzq+f0lEpBsQQfj4Hd59J+y+/tLAfEj3GXf+PjIaETeT6RO ydDHu4lk/z0DoeHQ4Pliui2n1cQVgvTN/+LOMfp64pMZgp7rE5ifodsvv1MsEHzX Tke0Foc/dZYvcpWXeK0viGnFPkwX6pSv9htxnWxJOBZr/n+kXacYsL0JxAB/efXo MRnU6IsQikwjZ3O/tsb09wC0YqfD+kZbIGK8AI0gOssjdaByEgPTJX2p17ZDDhGg 4ZyXOcjDKKaE5vEIhmaN4yXN8XTH+o3ZKCItvZatJQix36vcOK0shpdR810JAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQU9Zaty7HhuTwlAC16J7EKrw3vz+QwHwYDVR0j BBgwFoAUvML37QzVZ3yYh+DyS6jnPSR6Vg8wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElOUC8w L0JDQzJGN0VEMENENTY3N0M5ODg3RTBGMjRCQThFNzNEMjQ3QTU2MEYuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3 M0QyNDdBNTYwRi5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RJTlAvMC8zMjM3MmUzMTMwMzAyZTM2 MzQyZTMwMmYzMTM4MmQzMjM0MjAzZDNlMjAzNDM3MzgzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBhtk QDANBgkqhkiG9w0BAQsFAAOCAQEAT+neSBcTIOXUGFETcmAhvWLrlEFPJdMuOJkw CB1d6ZodJ9zEn9jd/fg1nxesaZrxerRUnebCiPG7bReDVJcr2lfYvr2TDN4AOtgm QrZZhbg3grYu9hrGufCrLzyT5iT5ciWtLXAbf7r1Zhk48oVHfXq6UcOm9PLv5v2S OMGEzYc2+JpW1VPauPLc7KQIPN0WtwVgXOnM9J/YLednNzzyuQoBApKUZa7B+uvG GDud2rKjaMpkQnG+8etQu8+Fou+P0XCRD38bA6v/aXDKrMNCa5S3BMxOg7JhKW27 cm9imAVhGLSjgxqZXez8hcduJVQTlBdFj8Gr+2gPl293Z/riJg== -----END CERTIFICATE-----Generated at Wed May 13 21:48:36 2026 by rpki-client