$ rpki-client -vvf rpkica.twnic.tw/rpki/TWT/0/34332e3235302e34362e302f32332d3233203d3e203338383531.roa File: 34332e3235302e34362e302f32332d3233203d3e203338383531.roa (raw, json) Hash identifier: zDLGCzxdPFG/4CsCmQW1j4D7LK25mUZpat6DEbpgaZY= Subject key identifier: B1:F8:A5:13:50:B3:0E:5E:63:5B:6D:68:54:3C:73:63:08:AF:D8:AB Certificate issuer: /CN=E8B38FAD1BC9D7E426603F6C204566C4AF30938F Certificate serial: 50E56966D39342FFFEF18721661A60A75BE0AE05 Authority key identifier: E8:B3:8F:AD:1B:C9:D7:E4:26:60:3F:6C:20:45:66:C4:AF:30:93:8F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWT/0/34332e3235302e34362e302f32332d3233203d3e203338383531.roa Signing time: Mon 11 May 2026 17:06:24 +0000 ROA not before: Mon 11 May 2026 17:01:24 +0000 ROA not after: Mon 10 May 2027 17:06:24 +0000 asID: 38851 IP address blocks: 43.250.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWT/0/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.crl rsync://rpkica.twnic.tw/rpki/TWT/0/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e5:69:66:d3:93:42:ff:fe:f1:87:21:66:1a:60:a7:5b:e0:ae:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E8B38FAD1BC9D7E426603F6C204566C4AF30938F Validity Not Before: May 11 17:01:24 2026 GMT Not After : May 10 17:06:24 2027 GMT Subject: CN=B1F8A51350B30E5E635B6D68543C736308AFD8AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2a:bd:10:51:8a:be:00:19:cf:f4:2e:e3:10: e7:88:a6:fb:1b:c3:3d:ea:6b:d6:bb:a7:58:7d:5e: fb:b0:07:27:b1:75:8d:7b:d4:4d:41:83:91:d8:0d: 8f:90:3a:6c:a8:9a:8a:7a:24:9a:78:17:d6:ee:d7: 2a:82:b5:24:f1:2e:b2:b9:c5:a3:fc:5e:ff:16:08: 4d:4e:d1:7a:34:95:9c:49:d6:45:68:d1:a7:85:f1: a5:bc:9f:0e:22:be:80:92:05:cc:05:d9:40:60:9b: f9:ec:a8:9e:f7:43:10:b7:d9:1a:0b:dc:17:dd:a5: 64:82:9c:e2:9a:b4:e1:c8:14:91:1c:43:53:53:5a: 59:11:06:47:2e:c8:ad:40:1f:73:37:82:3b:c4:b0: f3:17:ee:4f:a2:2e:45:e6:0f:a1:be:fb:8b:51:66: cf:f0:52:6d:c3:02:c9:b2:e0:49:f3:f8:c4:9d:8d: be:d0:31:b1:cd:8a:19:e2:38:62:ed:bb:b0:9a:f8: dc:09:83:35:45:62:50:eb:22:ec:c3:c4:43:0a:c6: fd:43:6a:25:23:dd:ce:2d:0e:4e:a2:71:01:84:f7: f7:6c:dc:8f:d0:e4:c2:b4:c2:42:2e:17:2a:ee:96: b9:24:0a:99:23:bb:39:cf:94:a5:d3:5e:31:ef:dd: 96:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F8:A5:13:50:B3:0E:5E:63:5B:6D:68:54:3C:73:63:08:AF:D8:AB X509v3 Authority Key Identifier: keyid:E8:B3:8F:AD:1B:C9:D7:E4:26:60:3F:6C:20:45:66:C4:AF:30:93:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWT/0/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWT/0/34332e3235302e34362e302f32332d3233203d3e203338383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.250.46.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:46:fb:d3:bd:48:b7:c3:cf:9f:b7:88:8b:6d:42:38:ab:26: 2c:df:ba:53:57:e1:a6:c3:9d:dd:e8:99:bf:40:f7:0f:1b:74: 6e:77:c4:af:6f:d0:56:4f:e5:62:d6:be:cb:5d:ee:3f:b0:81: 94:70:a0:c3:15:8c:86:c1:fe:1f:85:02:66:3d:15:89:5a:49: fa:86:44:13:de:74:10:12:2e:23:e5:11:3e:dc:cc:59:1f:31: a0:0f:1a:cc:26:15:d6:75:83:0d:d9:f7:61:3d:28:53:ee:8e: 4e:a8:a7:e3:86:39:ea:1b:cc:eb:99:8a:c3:a1:e4:10:e8:2c: 86:87:bc:d3:87:02:3c:5c:12:b7:4f:b5:a8:96:33:62:8a:35: e3:0f:b6:c8:d7:c0:22:ef:d5:56:71:80:d6:b3:2f:ca:ac:47: 41:0b:fe:15:d5:5a:5e:cf:de:34:d9:d0:07:36:cc:63:8b:21: d1:fb:93:5d:bc:02:32:97:83:cc:47:65:b3:a7:32:03:c7:e7: 7c:b3:9e:d4:b3:48:48:f6:f1:29:65:29:a2:af:32:99:8e:39: 1f:da:9a:9a:1a:24:99:b2:9b:73:b6:2f:bf:23:64:69:60:64: 2a:58:a1:6e:7a:64:c4:aa:7a:7e:5a:b9:40:06:a0:ee:21:74: a9:27:55:83 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUUOVpZtOTQv/+8YchZhpgp1vgrgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRThCMzhGQUQxQkM5RDdFNDI2NjAzRjZDMjA0NTY2QzRB RjMwOTM4RjAeFw0yNjA1MTExNzAxMjRaFw0yNzA1MTAxNzA2MjRaMDMxMTAvBgNV BAMTKEIxRjhBNTEzNTBCMzBFNUU2MzVCNkQ2ODU0M0M3MzYzMDhBRkQ4QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMKr0QUYq+ABnP9C7jEOeIpvsb wz3qa9a7p1h9XvuwByexdY171E1Bg5HYDY+QOmyomop6JJp4F9bu1yqCtSTxLrK5 xaP8Xv8WCE1O0Xo0lZxJ1kVo0aeF8aW8nw4ivoCSBcwF2UBgm/nsqJ73QxC32RoL 3BfdpWSCnOKatOHIFJEcQ1NTWlkRBkcuyK1AH3M3gjvEsPMX7k+iLkXmD6G++4tR Zs/wUm3DAsmy4Enz+MSdjb7QMbHNihniOGLtu7Ca+NwJgzVFYlDrIuzDxEMKxv1D aiUj3c4tDk6icQGE9/ds3I/Q5MK0wkIuFyrulrkkCpkjuznPlKXTXjHv3ZZrAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUsfilE1CzDl5jW21oVDxzYwiv2KswHwYDVR0j BBgwFoAU6LOPrRvJ1+QmYD9sIEVmxK8wk48wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdULzAv RThCMzhGQUQxQkM5RDdFNDI2NjAzRjZDMjA0NTY2QzRBRjMwOTM4Ri5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9FOEIzOEZBRDFCQzlEN0U0MjY2MDNGNkMyMDQ1NjZD NEFGMzA5MzhGLmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdULzAvMzQzMzJlMzIzNTMwMmUzNDM2 MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzMzODM4MzUzMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASv6 LjANBgkqhkiG9w0BAQsFAAOCAQEAfUb7071It8PPn7eIi21COKsmLN+6U1fhpsOd 3eiZv0D3Dxt0bnfEr2/QVk/lYta+y13uP7CBlHCgwxWMhsH+H4UCZj0ViVpJ+oZE E950EBIuI+URPtzMWR8xoA8azCYV1nWDDdn3YT0oU+6OTqin44Y56hvM65mKw6Hk EOgshoe804cCPFwSt0+1qJYzYoo14w+2yNfAIu/VVnGA1rMvyqxHQQv+FdVaXs/e NNnQBzbMY4sh0fuTXbwCMpeDzEdls6cyA8fnfLOe1LNISPbxKWUpoq8ymY45H9qa mhokmbKbc7YvvyNkaWBkKlihbnpkxKp6flq5QAag7iF0qSdVgw== -----END CERTIFICATE-----Generated at Wed May 13 21:49:32 2026 by rpki-client