$ rpki-client -vvf rpkica.twnic.tw/rpki/DYXNET/0/3231302e36372e39362e302f32302d3234203d3e2039323434.roa File: 3231302e36372e39362e302f32302d3234203d3e2039323434.roa (raw, json) Hash identifier: zHNjCezs8fFWlbXZ3/WOnM3QHIEAmgqdy+ijyA8rKKI= Subject key identifier: 7D:61:FC:F9:7F:61:56:9D:3B:DE:9B:F8:5B:AC:E6:10:2B:ED:38:64 Certificate issuer: /CN=157D536924EE6C5A7711625C6906CB5139BE6605 Certificate serial: 622EA7F0395BDB97A7785B3FACC24BF0341F849E Authority key identifier: 15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DYXNET/0/3231302e36372e39362e302f32302d3234203d3e2039323434.roa Signing time: Mon 11 May 2026 17:32:36 +0000 ROA not before: Mon 11 May 2026 17:27:36 +0000 ROA not after: Mon 10 May 2027 17:32:36 +0000 asID: 9244 IP address blocks: 210.67.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:2e:a7:f0:39:5b:db:97:a7:78:5b:3f:ac:c2:4b:f0:34:1f:84:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157D536924EE6C5A7711625C6906CB5139BE6605 Validity Not Before: May 11 17:27:36 2026 GMT Not After : May 10 17:32:36 2027 GMT Subject: CN=7D61FCF97F61569D3BDE9BF85BACE6102BED3864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:a7:c4:f3:03:5b:e5:c6:54:8c:83:5b:35:db: c2:fd:f2:84:08:83:73:6f:11:cb:ba:71:6c:14:8a: ef:42:c1:2e:26:d6:c7:69:bc:78:11:72:00:9f:b6: 08:2d:bc:e9:75:5e:94:30:22:64:27:2c:2e:ba:19: 71:75:19:7a:4b:0f:9c:5c:a4:ed:72:9b:9f:0f:dc: e8:38:48:c5:3e:22:a0:6e:8e:25:aa:46:7a:fe:a0: 0c:51:19:91:25:cb:87:1c:0e:f3:c8:c0:13:ff:47: e6:5d:cb:5c:e8:f9:af:e1:7f:22:9a:b6:55:27:8e: e5:39:29:42:1b:95:9e:28:72:48:b0:4f:e4:d0:b2: 83:ea:99:a6:0b:af:44:96:20:e2:2e:19:d4:ae:25: e9:b4:65:c0:e7:32:4d:6a:84:7e:53:1b:bd:9f:e1: a6:cc:cb:9b:8e:0d:74:9d:a6:2d:00:d1:8a:f9:8e: 1a:dc:52:90:89:85:c8:ba:a7:f0:82:69:37:62:e4: 71:44:20:0a:47:f7:4a:f3:2c:18:c8:a4:67:e5:95: 5d:2d:26:c6:01:99:bf:b9:b8:0b:52:88:fd:bd:af: 89:6b:08:45:ce:a8:99:22:46:42:58:3b:b2:1a:ef: 24:ed:78:19:d8:7d:15:d5:86:43:11:40:f9:17:67: 61:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:61:FC:F9:7F:61:56:9D:3B:DE:9B:F8:5B:AC:E6:10:2B:ED:38:64 X509v3 Authority Key Identifier: keyid:15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/3231302e36372e39362e302f32302d3234203d3e2039323434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.67.96.0/20 Signature Algorithm: sha256WithRSAEncryption 3f:2d:5e:82:ce:33:60:dc:68:50:f2:6b:6e:98:e8:92:79:f5: e9:70:16:4a:cb:98:f7:1f:1e:39:5a:40:9b:5e:dc:03:26:8f: 9e:b5:d3:07:08:0b:c4:d2:bd:fb:d6:62:d8:10:de:d0:c0:1f: 77:e9:e0:12:b0:b2:02:db:03:eb:3a:b7:3a:b1:2c:f7:f3:2e: 34:dd:3a:26:6f:a7:a1:e4:65:52:9b:65:6f:72:67:03:50:df: 30:7d:3b:b6:b7:f9:77:73:55:88:00:ec:9b:53:bf:1f:e0:fa: 4e:e6:de:81:bb:ae:38:31:b8:9b:5a:88:43:9b:7d:6d:b8:02: bf:39:2e:ae:d0:e2:72:25:1d:55:19:8b:84:c0:99:4b:c6:0f: 48:15:d7:5d:2e:51:86:f9:5d:11:73:e8:97:cc:04:8f:93:3e: 47:50:bf:88:7c:02:7e:d2:2a:62:a0:c7:a3:da:2e:04:40:31: d6:3e:5e:13:1a:11:3a:93:6c:64:40:f1:19:03:5a:14:a0:8c: 14:ff:e9:6d:15:be:80:a1:db:00:21:bc:72:24:a9:72:57:fe: 7e:2a:09:a7:2f:0d:e8:89:4b:61:48:ce:ae:d2:65:bb:af:f6: ea:44:5a:30:73:e0:d2:21:6f:d9:89:4a:15:03:54:f7:ca:3a: 9a:b6:4c:4a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUYi6n8Dlb25eneFs/rMJL8DQfhJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEz OUJFNjYwNTAeFw0yNjA1MTExNzI3MzZaFw0yNzA1MTAxNzMyMzZaMDMxMTAvBgNV BAMTKDdENjFGQ0Y5N0Y2MTU2OUQzQkRFOUJGODVCQUNFNjEwMkJFRDM4NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMp8TzA1vlxlSMg1s128L98oQI g3NvEcu6cWwUiu9CwS4m1sdpvHgRcgCftggtvOl1XpQwImQnLC66GXF1GXpLD5xc pO1ym58P3Og4SMU+IqBujiWqRnr+oAxRGZEly4ccDvPIwBP/R+Zdy1zo+a/hfyKa tlUnjuU5KUIblZ4ockiwT+TQsoPqmaYLr0SWIOIuGdSuJem0ZcDnMk1qhH5TG72f 4abMy5uODXSdpi0A0Yr5jhrcUpCJhci6p/CCaTdi5HFEIApH90rzLBjIpGfllV0t JsYBmb+5uAtSiP29r4lrCEXOqJkiRkJYO7Ia7yTteBnYfRXVhkMRQPkXZ2H5AgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUfWH8+X9hVp073pv4W6zmECvtOGQwHwYDVR0j BBgwFoAUFX1TaSTubFp3EWJcaQbLUTm+ZgUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVU LzAvMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEzOUJFNjYwNS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8xNTdENTM2OTI0RUU2QzVBNzcxMTYyNUM2OTA2 Q0I1MTM5QkU2NjA1LmNlcjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVULzAvMzIzMTMwMmUzNjM3 MmUzOTM2MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzkzMjM0MzQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATSQ2AwDQYJKoZIhvcNAQELBQADggEBAD8tXoLOM2DcaFDya26Y6JJ59elwFkrL mPcfHjlaQJte3AMmj5610wcIC8TSvfvWYtgQ3tDAH3fp4BKwsgLbA+s6tzqxLPfz LjTdOiZvp6HkZVKbZW9yZwNQ3zB9O7a3+XdzVYgA7JtTvx/g+k7m3oG7rjgxuJta iEObfW24Ar85Lq7Q4nIlHVUZi4TAmUvGD0gV110uUYb5XRFz6JfMBI+TPkdQv4h8 An7SKmKgx6PaLgRAMdY+XhMaETqTbGRA8RkDWhSgjBT/6W0VvoCh2wAhvHIkqXJX /n4qCacvDeiJS2FIzq7SZbuv9upEWjBz4NIhb9mJShUDVPfKOpq2TEo= -----END CERTIFICATE-----Generated at Wed May 13 06:04:53 2026 by rpki-client