$ rpki-client -vvf rpkica.twnic.tw/rpki/TSMC/0/3230322e3132362e36342e302f32322d3234203d3e2033343632.roa File: 3230322e3132362e36342e302f32322d3234203d3e2033343632.roa (raw, json) Hash identifier: JSztXJfkuE++Rr44bJxraDVeK0vJ1Z2LCKTFE+mnoSo= Subject key identifier: 8B:31:A1:2C:BC:D7:A3:1E:29:60:DF:8C:F6:A2:FF:BA:CB:F7:64:83 Certificate issuer: /CN=BD49467776DCA7472F88470782DAD5722E5AFE49 Certificate serial: 610A48CA26AC5E3038BA5895A7B9DA0DFF9FF258 Authority key identifier: BD:49:46:77:76:DC:A7:47:2F:88:47:07:82:DA:D5:72:2E:5A:FE:49 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BD49467776DCA7472F88470782DAD5722E5AFE49.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TSMC/0/3230322e3132362e36342e302f32322d3234203d3e2033343632.roa Signing time: Mon 11 May 2026 17:11:04 +0000 ROA not before: Mon 11 May 2026 17:06:04 +0000 ROA not after: Mon 10 May 2027 17:11:04 +0000 asID: 3462 IP address blocks: 202.126.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TSMC/0/BD49467776DCA7472F88470782DAD5722E5AFE49.crl rsync://rpkica.twnic.tw/rpki/TSMC/0/BD49467776DCA7472F88470782DAD5722E5AFE49.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BD49467776DCA7472F88470782DAD5722E5AFE49.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:0a:48:ca:26:ac:5e:30:38:ba:58:95:a7:b9:da:0d:ff:9f:f2:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD49467776DCA7472F88470782DAD5722E5AFE49 Validity Not Before: May 11 17:06:04 2026 GMT Not After : May 10 17:11:04 2027 GMT Subject: CN=8B31A12CBCD7A31E2960DF8CF6A2FFBACBF76483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7e:68:94:22:c4:39:5c:61:03:b0:a9:94:df: ce:66:50:95:e9:8b:c9:5d:3b:3d:14:cd:b9:53:55: 1f:48:da:f1:b7:59:c6:58:b2:b1:0c:8c:15:43:a5: 97:ef:fe:2e:97:65:e1:ec:63:41:ef:d3:44:4a:92: f1:9b:a1:f8:8e:df:54:19:b4:87:da:00:be:ec:b9: 93:37:b6:1a:3a:d2:64:a6:77:fa:d5:a1:a6:8e:99: 7c:95:b1:63:8b:89:03:37:c8:2e:3c:6a:1f:c8:e9: 27:a2:72:30:a9:fa:47:4f:c6:fa:c4:d1:b0:d5:48: 7f:86:ce:df:56:3d:9b:9c:96:0b:2f:75:32:51:17: fc:6e:50:30:51:cd:8f:34:07:10:52:8f:94:58:d0: 0f:72:09:d7:81:30:08:3b:cc:d5:36:5f:d9:ba:e2: b3:26:13:73:be:23:5f:f0:1a:58:78:f2:6f:ef:cb: b9:49:ad:7e:44:52:34:77:cd:d3:89:13:8a:cd:b1: c6:8c:ee:43:08:5a:e3:9f:c8:13:e8:c2:8c:b1:28: 87:3f:c6:e3:b0:13:a2:4b:04:02:78:b3:33:c1:f5: c6:bf:b1:5b:20:b6:b3:f2:3b:c4:ef:ee:90:31:40: ae:c9:ae:df:34:b1:a3:85:0c:b8:4c:80:1e:f3:52: e7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:31:A1:2C:BC:D7:A3:1E:29:60:DF:8C:F6:A2:FF:BA:CB:F7:64:83 X509v3 Authority Key Identifier: keyid:BD:49:46:77:76:DC:A7:47:2F:88:47:07:82:DA:D5:72:2E:5A:FE:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TSMC/0/BD49467776DCA7472F88470782DAD5722E5AFE49.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BD49467776DCA7472F88470782DAD5722E5AFE49.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TSMC/0/3230322e3132362e36342e302f32322d3234203d3e2033343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.126.64.0/22 Signature Algorithm: sha256WithRSAEncryption 74:84:e9:48:36:9f:75:10:44:9e:fe:a3:6e:b4:c6:30:63:cf: 01:1f:af:6b:36:ea:51:6a:85:3b:ac:47:39:4b:f6:23:16:14: 1c:77:7d:f8:cc:01:4d:70:1c:70:fc:fa:ad:23:93:c0:d7:f5: a5:97:3f:fa:a1:9b:ef:45:e1:00:5f:04:4c:59:5a:9e:40:ed: e7:1b:1a:c2:8d:8f:4a:0c:63:2e:5d:8b:f0:50:d9:c4:bd:47: 1a:9b:c8:d4:8a:7e:47:c3:78:66:4e:ca:7a:5b:8a:89:3c:7e: 5b:d8:21:47:40:f6:8a:c5:d5:e9:eb:84:b0:44:e5:40:ff:2b: d9:b6:cf:25:41:bd:e9:5c:fc:0e:5c:99:a4:f2:2e:ca:27:4a: ff:82:0e:36:e8:60:2a:49:73:f5:ef:6e:ac:03:b3:bf:ea:6f: c8:d8:b5:da:44:cd:d2:65:07:dd:f5:4e:49:c1:20:af:76:36: 2b:7a:83:f5:74:6e:5a:16:a8:79:58:3a:6a:43:f6:a3:4e:4a: c9:d0:5a:e5:35:2a:c3:07:b5:80:98:d1:b7:f6:b2:d7:a5:19: 6f:f1:d6:e8:35:6a:09:03:21:b7:83:ad:de:4c:33:42:33:08: 9b:75:6d:8e:4c:c6:21:f6:54:a8:fe:d7:75:54:ee:2d:6c:c8: 9a:c9:c5:b0 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUYQpIyiasXjA4uliVp7naDf+f8lgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ0OTQ2Nzc3NkRDQTc0NzJGODg0NzA3ODJEQUQ1NzIy RTVBRkU0OTAeFw0yNjA1MTExNzA2MDRaFw0yNzA1MTAxNzExMDRaMDMxMTAvBgNV BAMTKDhCMzFBMTJDQkNEN0EzMUUyOTYwREY4Q0Y2QTJGRkJBQ0JGNzY0ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/fmiUIsQ5XGEDsKmU385mUJXp i8ldOz0UzblTVR9I2vG3WcZYsrEMjBVDpZfv/i6XZeHsY0Hv00RKkvGbofiO31QZ tIfaAL7suZM3tho60mSmd/rVoaaOmXyVsWOLiQM3yC48ah/I6SeicjCp+kdPxvrE 0bDVSH+Gzt9WPZuclgsvdTJRF/xuUDBRzY80BxBSj5RY0A9yCdeBMAg7zNU2X9m6 4rMmE3O+I1/wGlh48m/vy7lJrX5EUjR3zdOJE4rNscaM7kMIWuOfyBPowoyxKIc/ xuOwE6JLBAJ4szPB9ca/sVsgtrPyO8Tv7pAxQK7Jrt80saOFDLhMgB7zUudTAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUizGhLLzXox4pYN+M9qL/usv3ZIMwHwYDVR0j BBgwFoAUvUlGd3bcp0cviEcHgtrVci5a/kkwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFNNQy8w L0JENDk0Njc3NzZEQ0E3NDcyRjg4NDcwNzgyREFENTcyMkU1QUZFNDkuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQkQ0OTQ2Nzc3NkRDQTc0NzJGODg0NzA3ODJEQUQ1 NzIyRTVBRkU0OS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RTTUMvMC8zMjMwMzIyZTMxMzIzNjJl MzYzNDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMzMzQzNjMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC yn5AMA0GCSqGSIb3DQEBCwUAA4IBAQB0hOlINp91EESe/qNutMYwY88BH69rNupR aoU7rEc5S/YjFhQcd334zAFNcBxw/PqtI5PA1/Wllz/6oZvvReEAXwRMWVqeQO3n GxrCjY9KDGMuXYvwUNnEvUcam8jUin5Hw3hmTsp6W4qJPH5b2CFHQPaKxdXp64Sw ROVA/yvZts8lQb3pXPwOXJmk8i7KJ0r/gg426GAqSXP1726sA7O/6m/I2LXaRM3S ZQfd9U5JwSCvdjYreoP1dG5aFqh5WDpqQ/ajTkrJ0FrlNSrDB7WAmNG39rLXpRlv 8dboNWoJAyG3g63eTDNCMwibdW2OTMYh9lSo/td1VO4tbMiaycWw -----END CERTIFICATE-----Generated at Wed May 13 21:11:03 2026 by rpki-client