$ rpki-client -vvf rpkica.twnic.tw/rpki/DYXNET/0/36312e35362e37322e302f32312d3231203d3e2039323434.roa File: 36312e35362e37322e302f32312d3231203d3e2039323434.roa (raw, json) Hash identifier: neCogx7kiACRIuTdTb4mPlJDa/8XCuRztd8KmEyTXNk= Subject key identifier: 78:90:37:71:D7:CC:F9:1B:C8:96:FE:5E:FA:19:DD:96:C8:FC:BA:6B Certificate issuer: /CN=157D536924EE6C5A7711625C6906CB5139BE6605 Certificate serial: 2E38BB0280FA25DC3D932009A7AA0DCA4724F66E Authority key identifier: 15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DYXNET/0/36312e35362e37322e302f32312d3231203d3e2039323434.roa Signing time: Mon 11 May 2026 16:54:35 +0000 ROA not before: Mon 11 May 2026 16:49:35 +0000 ROA not after: Mon 10 May 2027 16:54:35 +0000 asID: 9244 IP address blocks: 61.56.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:38:bb:02:80:fa:25:dc:3d:93:20:09:a7:aa:0d:ca:47:24:f6:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157D536924EE6C5A7711625C6906CB5139BE6605 Validity Not Before: May 11 16:49:35 2026 GMT Not After : May 10 16:54:35 2027 GMT Subject: CN=78903771D7CCF91BC896FE5EFA19DD96C8FCBA6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cd:c8:46:7d:88:42:db:1c:c3:59:1d:e8:9b: 5d:03:46:79:97:f8:63:d9:50:81:19:4d:3f:44:3c: c2:62:63:5f:05:58:a9:f4:78:09:39:71:61:c7:8b: 11:39:f3:5c:79:d5:79:24:b3:c1:e4:09:ff:ec:0d: c7:fe:80:08:1f:81:b1:37:2b:c8:5e:75:7b:1f:cb: ec:53:4a:5c:dc:48:69:4b:62:c7:3d:12:d5:ca:82: 3a:34:e0:2f:1f:c6:1f:fc:82:b6:1c:7e:fa:e6:0b: 36:a6:35:e0:9f:c5:07:8e:e3:7b:e5:ce:de:ae:f9: 7f:23:8b:8c:6a:03:64:18:15:32:1b:45:b2:c8:1d: 2a:a9:9d:cd:49:75:d6:9c:a7:67:81:60:30:0f:92: 10:ae:96:3f:73:94:b9:cb:b5:dd:8e:fc:52:2b:7d: 59:af:99:e9:44:7d:21:ae:d6:95:f6:0f:83:1d:22: cd:1a:3d:5a:c4:de:b9:48:db:62:b6:68:f9:a5:ea: ec:02:1a:6e:22:ee:91:0f:59:1e:9f:1a:2e:21:b9: 9e:37:c5:9b:83:d9:7b:4f:93:4f:82:c7:85:94:70: ae:ba:11:ed:d8:b7:ad:a3:87:1b:c2:7f:82:ef:2e: af:c5:5c:88:89:2b:ea:df:14:cc:6d:48:8b:88:06: 39:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:90:37:71:D7:CC:F9:1B:C8:96:FE:5E:FA:19:DD:96:C8:FC:BA:6B X509v3 Authority Key Identifier: keyid:15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/36312e35362e37322e302f32312d3231203d3e2039323434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.56.72.0/21 Signature Algorithm: sha256WithRSAEncryption 6b:4b:65:d4:fb:fb:a7:e5:0e:91:d5:c2:df:1c:d7:fa:cb:90: 27:f4:c0:14:81:92:8c:08:54:46:e6:3f:55:f7:67:86:2b:23: 00:86:35:70:54:ed:9e:13:af:4c:4c:60:55:eb:b4:bf:6f:49: ec:fd:7c:02:15:e9:cc:19:cc:53:1d:45:2a:5b:9f:a3:cb:a8: 75:94:be:07:10:0f:06:66:84:dd:4a:68:36:ef:65:14:2d:72: 05:42:96:a7:6d:23:5f:9e:7e:85:aa:69:4a:fc:71:ef:8c:e6: d8:68:9c:6c:89:3f:6d:7f:4e:d1:fc:93:b4:99:cf:06:80:c7: b3:57:64:23:e0:7a:43:64:08:f9:84:0b:f4:31:41:01:b4:ad: b2:6e:da:7d:0c:d7:17:b9:73:d2:68:83:cf:b1:49:ce:ed:a6: bf:de:a5:0c:71:41:82:e5:9f:09:c1:0c:65:4d:19:79:c8:cb: c0:4c:6d:69:77:a7:87:cd:1c:c6:ce:d8:2f:5c:a7:10:23:e8: 22:ee:e4:6a:6a:0f:cb:0f:76:92:72:0e:63:71:2d:18:15:39: 3b:3f:e5:7b:8f:a6:c5:aa:11:23:7c:5a:74:9f:76:f9:ae:ee: a7:4c:43:99:d3:33:5e:42:91:0c:4a:58:67:0b:89:b4:2a:ce: 70:bc:f1:10 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIULji7AoD6Jdw9kyAJp6oNykck9m4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEz OUJFNjYwNTAeFw0yNjA1MTExNjQ5MzVaFw0yNzA1MTAxNjU0MzVaMDMxMTAvBgNV BAMTKDc4OTAzNzcxRDdDQ0Y5MUJDODk2RkU1RUZBMTlERDk2QzhGQ0JBNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1zchGfYhC2xzDWR3om10DRnmX +GPZUIEZTT9EPMJiY18FWKn0eAk5cWHHixE581x51Xkks8HkCf/sDcf+gAgfgbE3 K8hedXsfy+xTSlzcSGlLYsc9EtXKgjo04C8fxh/8grYcfvrmCzamNeCfxQeO43vl zt6u+X8ji4xqA2QYFTIbRbLIHSqpnc1Jddacp2eBYDAPkhCulj9zlLnLtd2O/FIr fVmvmelEfSGu1pX2D4MdIs0aPVrE3rlI22K2aPml6uwCGm4i7pEPWR6fGi4huZ43 xZuD2XtPk0+Cx4WUcK66Ee3Yt62jhxvCf4LvLq/FXIiJK+rfFMxtSIuIBjkhAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUeJA3cdfM+RvIlv5e+hndlsj8umswHwYDVR0j BBgwFoAUFX1TaSTubFp3EWJcaQbLUTm+ZgUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVU LzAvMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEzOUJFNjYwNS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8xNTdENTM2OTI0RUU2QzVBNzcxMTYyNUM2OTA2 Q0I1MTM5QkU2NjA1LmNlcjB2BggrBgEFBQcBCwRqMGgwZgYIKwYBBQUHMAuGWnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVULzAvMzYzMTJlMzUzNjJl MzczMjJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDM5MzIzNDM0LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD PThIMA0GCSqGSIb3DQEBCwUAA4IBAQBrS2XU+/un5Q6R1cLfHNf6y5An9MAUgZKM CFRG5j9V92eGKyMAhjVwVO2eE69MTGBV67S/b0ns/XwCFenMGcxTHUUqW5+jy6h1 lL4HEA8GZoTdSmg272UULXIFQpanbSNfnn6FqmlK/HHvjObYaJxsiT9tf07R/JO0 mc8GgMezV2Qj4HpDZAj5hAv0MUEBtK2ybtp9DNcXuXPSaIPPsUnO7aa/3qUMcUGC 5Z8JwQxlTRl5yMvATG1pd6eHzRzGztgvXKcQI+gi7uRqag/LD3aScg5jcS0YFTk7 P+V7j6bFqhEjfFp0n3b5ru6nTEOZ0zNeQpEMSlhnC4m0Ks5wvPEQ -----END CERTIFICATE-----Generated at Wed May 13 06:04:52 2026 by rpki-client