$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNTT/0/36312e35382e33322e302f32302d3234203d3e2032393134.roa File: 36312e35382e33322e302f32302d3234203d3e2032393134.roa (raw, json) Hash identifier: 5f4R2kruXwvonwhPEwdiJqWNobqGweT9ncTpgiNvvP8= Subject key identifier: D9:A3:99:80:68:A1:A9:FD:2C:85:25:D4:85:D8:1A:FB:9C:23:13:A3 Certificate issuer: /CN=866155EC56EF0A61BC489259EA6B444F2596FF9E Certificate serial: 49997AC681A965E8443E7FD9BE0E57158890B2CD Authority key identifier: 86:61:55:EC:56:EF:0A:61:BC:48:92:59:EA:6B:44:4F:25:96:FF:9E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNTT/0/36312e35382e33322e302f32302d3234203d3e2032393134.roa Signing time: Mon 11 May 2026 17:08:04 +0000 ROA not before: Mon 11 May 2026 17:03:04 +0000 ROA not after: Mon 10 May 2027 17:08:04 +0000 asID: 2914 IP address blocks: 61.58.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.crl rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:99:7a:c6:81:a9:65:e8:44:3e:7f:d9:be:0e:57:15:88:90:b2:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=866155EC56EF0A61BC489259EA6B444F2596FF9E Validity Not Before: May 11 17:03:04 2026 GMT Not After : May 10 17:08:04 2027 GMT Subject: CN=D9A3998068A1A9FD2C8525D485D81AFB9C2313A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9a:0e:22:52:3a:77:c3:cb:4a:12:bf:58:5d: 0d:e9:0d:69:83:e9:fe:d5:b9:42:d6:4a:9f:b5:26: 93:d3:77:0f:53:ac:39:b1:93:ee:49:5c:93:91:4e: 84:ff:5c:9a:cd:a5:ba:8a:04:a3:66:aa:0c:04:fe: 5d:cf:cc:4b:3b:05:e1:21:31:b9:d3:2c:5c:cc:ac: 8b:69:55:85:aa:c3:d0:ab:3b:6b:d0:a2:34:b1:c6: f0:9a:bf:8d:0d:c5:17:36:67:a2:a4:1b:6f:40:e0: e0:ac:41:fe:9a:a2:bd:b7:f2:22:30:bc:7d:66:21: 61:ef:35:49:bf:1a:85:93:8d:63:cd:e1:26:a7:2a: 39:8c:83:53:4d:70:22:7c:3d:95:d9:dc:5c:8f:e4: e6:07:42:db:f0:bb:d7:e7:d3:c7:82:92:5b:e6:bb: 01:ed:19:a4:a6:8a:bb:09:44:11:22:28:93:f9:50: 16:74:44:37:19:c2:e1:7b:3e:33:41:fe:c1:a2:82: d8:82:f1:98:db:4b:59:41:d8:1c:fd:8e:73:82:c6: 82:e8:f8:b9:61:d6:cd:b7:be:56:c8:98:a1:39:32: 45:a5:14:85:04:a6:7e:d4:6d:f2:66:a0:2f:f6:5f: ed:e3:aa:31:b9:84:49:04:56:b2:d3:c1:5a:db:f9: 81:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A3:99:80:68:A1:A9:FD:2C:85:25:D4:85:D8:1A:FB:9C:23:13:A3 X509v3 Authority Key Identifier: keyid:86:61:55:EC:56:EF:0A:61:BC:48:92:59:EA:6B:44:4F:25:96:FF:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNTT/0/36312e35382e33322e302f32302d3234203d3e2032393134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.58.32.0/20 Signature Algorithm: sha256WithRSAEncryption 15:23:77:51:8b:e0:21:aa:c5:6b:14:23:4b:2b:0e:06:61:17: 6f:52:e5:b5:ff:55:40:0b:5f:43:da:1d:57:d2:09:ba:41:cf: 4c:50:9c:a3:b3:76:1d:d3:d7:90:d0:57:dd:3f:3a:76:ff:d1: 67:2c:0e:9d:df:00:5e:36:53:ce:bf:d7:5f:f5:5a:b6:4b:15: 18:1e:2d:5b:ac:51:ba:69:25:ce:6b:a8:63:64:cf:cd:60:fa: a5:e5:ba:f0:56:32:39:a4:bb:05:8d:34:36:cd:64:22:eb:a8: 4e:25:12:14:d3:70:56:0f:80:34:ac:fa:c5:af:3c:c1:4d:43: 29:f1:1f:8f:33:47:d6:92:a2:3a:cf:1e:a3:6c:e9:c4:ca:e4: bc:65:38:95:c2:6c:24:17:11:0c:11:e0:59:99:d2:5a:93:ae: aa:9d:5c:ed:aa:44:f5:29:23:71:59:09:6e:55:9b:0d:3d:e4: 5d:de:0a:ce:a5:29:bb:31:c9:56:da:b3:72:a5:4f:e1:74:8b: d6:0a:cf:5a:6f:6d:4b:78:f5:10:4b:1b:69:b2:a3:5c:49:3f: 3e:d0:fd:e4:1a:7e:c5:a5:ca:1e:69:bb:ad:56:b8:bd:1d:b6: 50:5f:f9:ed:ce:bd:08:e1:fd:38:a8:d1:be:c6:d3:e3:fc:1d: 1d:b3:69:2c -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUSZl6xoGpZehEPn/Zvg5XFYiQss0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY2MTU1RUM1NkVGMEE2MUJDNDg5MjU5RUE2QjQ0NEYy NTk2RkY5RTAeFw0yNjA1MTExNzAzMDRaFw0yNzA1MTAxNzA4MDRaMDMxMTAvBgNV BAMTKEQ5QTM5OTgwNjhBMUE5RkQyQzg1MjVENDg1RDgxQUZCOUMyMzEzQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlmg4iUjp3w8tKEr9YXQ3pDWmD 6f7VuULWSp+1JpPTdw9TrDmxk+5JXJORToT/XJrNpbqKBKNmqgwE/l3PzEs7BeEh MbnTLFzMrItpVYWqw9CrO2vQojSxxvCav40NxRc2Z6KkG29A4OCsQf6aor238iIw vH1mIWHvNUm/GoWTjWPN4SanKjmMg1NNcCJ8PZXZ3FyP5OYHQtvwu9fn08eCklvm uwHtGaSmirsJRBEiKJP5UBZ0RDcZwuF7PjNB/sGigtiC8ZjbS1lB2Bz9jnOCxoLo +Llh1s23vlbImKE5MkWlFIUEpn7UbfJmoC/2X+3jqjG5hEkEVrLTwVrb+YFlAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQU2aOZgGihqf0shSXUhdga+5wjE6MwHwYDVR0j BBgwFoAUhmFV7FbvCmG8SJJZ6mtETyWW/54wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOVFQv MC84NjYxNTVFQzU2RUYwQTYxQkM0ODkyNTlFQTZCNDQ0RjI1OTZGRjlFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzg2NjE1NUVDNTZFRjBBNjFCQzQ4OTI1OUVBNkI0 NDRGMjU5NkZGOUUuY2VyMHUGCCsGAQUFBwELBGkwZzBlBggrBgEFBQcwC4ZZcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05UVC8wLzM2MzEyZTM1MzgyZTMz MzIyZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzMjM5MzEzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD06 IDANBgkqhkiG9w0BAQsFAAOCAQEAFSN3UYvgIarFaxQjSysOBmEXb1Lltf9VQAtf Q9odV9IJukHPTFCco7N2HdPXkNBX3T86dv/RZywOnd8AXjZTzr/XX/VatksVGB4t W6xRumklzmuoY2TPzWD6peW68FYyOaS7BY00Ns1kIuuoTiUSFNNwVg+ANKz6xa88 wU1DKfEfjzNH1pKiOs8eo2zpxMrkvGU4lcJsJBcRDBHgWZnSWpOuqp1c7apE9Skj cVkJblWbDT3kXd4KzqUpuzHJVtqzcqVP4XSL1grPWm9tS3j1EEsbabKjXEk/PtD9 5Bp+xaXKHmm7rVa4vR22UF/57c69COH9OKjRvsbT4/wdHbNpLA== -----END CERTIFICATE-----Generated at Wed May 13 21:13:25 2026 by rpki-client