$ rpki-client -vvf rpkica.twnic.tw/rpki/TINP/0/34392e3231332e3137352e302f32342d3234203d3e2034373830.roa File: 34392e3231332e3137352e302f32342d3234203d3e2034373830.roa (raw, json) Hash identifier: qIllHeU3733/uSdeS8GOGvhOLLMPgB9owDGgjK1kGyQ= Subject key identifier: 86:D6:33:FF:39:3A:6D:6D:23:DE:EF:54:C0:97:9E:B0:26:0C:71:08 Certificate issuer: /CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Certificate serial: 3D5D664D2F2C974920ECDCC8AA28663895929F67 Authority key identifier: BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TINP/0/34392e3231332e3137352e302f32342d3234203d3e2034373830.roa Signing time: Mon 11 May 2026 17:15:29 +0000 ROA not before: Mon 11 May 2026 17:10:29 +0000 ROA not after: Mon 10 May 2027 17:15:29 +0000 asID: 4780 IP address blocks: 49.213.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:5d:66:4d:2f:2c:97:49:20:ec:dc:c8:aa:28:66:38:95:92:9f:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Validity Not Before: May 11 17:10:29 2026 GMT Not After : May 10 17:15:29 2027 GMT Subject: CN=86D633FF393A6D6D23DEEF54C0979EB0260C7108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:2a:a9:f9:14:c0:dd:c4:9f:e9:7f:8d:2e:44: 82:06:ac:8a:5c:ac:de:16:71:b8:b9:9a:52:f7:0b: ec:30:6a:e3:4d:59:f3:86:27:48:42:cf:d1:f7:45: d0:78:25:64:49:05:0e:78:b9:5b:9e:21:27:45:e8: d8:88:f3:ba:74:84:0b:d9:b4:b6:b6:87:2c:d8:d2: ca:ed:3b:e8:34:f0:cd:85:bf:02:03:17:ec:6c:b9: 16:f6:02:44:0d:39:12:32:79:b3:45:3e:d6:8a:99: a0:34:25:d3:d8:71:11:8e:62:d7:d6:b4:8b:e6:ed: c2:bd:00:44:fd:8e:0b:25:c9:25:ba:79:60:1c:57: ae:cf:7a:b5:b6:40:77:10:cc:8c:5b:96:b7:a2:03: ed:7a:44:e3:bd:3c:c3:48:39:8f:53:53:85:d9:6d: 58:e6:7f:28:a2:f2:e3:77:f8:08:dc:b0:c9:18:6e: f0:c3:0b:1b:83:8c:33:28:c3:0a:1c:3a:bb:fa:cf: 0d:34:26:b8:5d:61:60:ee:72:69:8d:8d:1f:90:03: 0f:58:20:ec:1e:70:96:4d:06:1c:0f:62:11:80:83: 20:c9:5d:87:07:d3:ee:63:0b:52:aa:89:0b:d5:56: 4e:43:6a:10:05:5c:02:0c:c8:78:73:86:23:09:08: d3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D6:33:FF:39:3A:6D:6D:23:DE:EF:54:C0:97:9E:B0:26:0C:71:08 X509v3 Authority Key Identifier: keyid:BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TINP/0/34392e3231332e3137352e302f32342d3234203d3e2034373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.213.175.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:ad:96:55:39:90:87:ac:fb:45:e0:76:5f:9d:49:4d:bf:b3: 04:de:44:ad:47:2e:25:26:8e:f6:dc:80:9f:66:43:f1:38:1b: a8:f1:48:09:2a:99:e4:af:b3:67:f7:d5:f1:f4:8c:52:72:f9: c5:48:e9:cd:7d:2d:42:33:10:18:c7:a4:d4:46:ca:4c:04:f8: 0f:0f:ef:a6:9a:1a:f9:ef:32:d9:38:ea:c8:18:a6:33:ae:97: 37:23:c1:c2:0f:cf:c8:be:b9:16:de:17:89:b5:5f:e4:29:91: 6c:36:5d:cd:cc:ce:ee:cd:6b:b0:f5:b6:40:30:b3:84:3a:0d: 2b:4e:9d:36:f2:f9:a7:64:63:ed:59:82:89:ae:8f:c1:34:96: 0a:92:f6:a0:8b:23:34:67:b9:7c:6c:ae:f3:e8:52:af:7a:40: a9:8f:03:50:14:2b:12:52:80:db:76:0c:7d:66:2f:c1:be:79: 45:d8:63:a9:04:27:4f:c5:06:74:24:7f:f6:9c:49:7c:e5:fd: 90:6f:23:7f:56:74:47:4a:3a:39:b4:b4:84:79:8d:e6:af:73: 5c:62:fe:60:8f:25:65:b6:3f:44:ad:d7:a7:11:86:41:02:4c: 07:96:ab:cb:93:14:58:44:c8:c6:b9:15:74:2c:68:47:6a:55: 65:6d:2c:c1 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUPV1mTS8sl0kg7NzIqihmOJWSn2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3M0Qy NDdBNTYwRjAeFw0yNjA1MTExNzEwMjlaFw0yNzA1MTAxNzE1MjlaMDMxMTAvBgNV BAMTKDg2RDYzM0ZGMzkzQTZENkQyM0RFRUY1NEMwOTc5RUIwMjYwQzcxMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0Kqn5FMDdxJ/pf40uRIIGrIpc rN4Wcbi5mlL3C+wwauNNWfOGJ0hCz9H3RdB4JWRJBQ54uVueISdF6NiI87p0hAvZ tLa2hyzY0srtO+g08M2FvwIDF+xsuRb2AkQNORIyebNFPtaKmaA0JdPYcRGOYtfW tIvm7cK9AET9jgslySW6eWAcV67PerW2QHcQzIxblreiA+16ROO9PMNIOY9TU4XZ bVjmfyii8uN3+AjcsMkYbvDDCxuDjDMowwocOrv6zw00JrhdYWDucmmNjR+QAw9Y IOwecJZNBhwPYhGAgyDJXYcH0+5jC1KqiQvVVk5DahAFXAIMyHhzhiMJCNP7AgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUhtYz/zk6bW0j3u9UwJeesCYMcQgwHwYDVR0j BBgwFoAUvML37QzVZ3yYh+DyS6jnPSR6Vg8wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElOUC8w L0JDQzJGN0VEMENENTY3N0M5ODg3RTBGMjRCQThFNzNEMjQ3QTU2MEYuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3 M0QyNDdBNTYwRi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RJTlAvMC8zNDM5MmUzMjMxMzMyZTMx MzczNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzczODMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA MdWvMA0GCSqGSIb3DQEBCwUAA4IBAQCbrZZVOZCHrPtF4HZfnUlNv7ME3kStRy4l Jo723ICfZkPxOBuo8UgJKpnkr7Nn99Xx9IxScvnFSOnNfS1CMxAYx6TURspMBPgP D++mmhr57zLZOOrIGKYzrpc3I8HCD8/IvrkW3heJtV/kKZFsNl3NzM7uzWuw9bZA MLOEOg0rTp028vmnZGPtWYKJro/BNJYKkvagiyM0Z7l8bK7z6FKvekCpjwNQFCsS UoDbdgx9Zi/BvnlF2GOpBCdPxQZ0JH/2nEl85f2QbyN/VnRHSjo5tLSEeY3mr3Nc Yv5gjyVltj9ErdenEYZBAkwHlqvLkxRYRMjGuRV0LGhHalVlbSzB -----END CERTIFICATE-----Generated at Wed May 13 21:09:15 2026 by rpki-client