$ rpki-client -vvf rpkica.twnic.tw/rpki/DYXNET/0/36312e35362e38302e302f32312d3231203d3e2039323434.roa File: 36312e35362e38302e302f32312d3231203d3e2039323434.roa (raw, json) Hash identifier: BtytB4ImCxwmDNMsYcsPUOT+c3DhbJMzf7Pj6Zu2TSA= Subject key identifier: C2:DF:90:6C:37:C7:93:8D:D4:3F:F0:6D:F6:79:D9:C5:A8:CE:92:51 Certificate issuer: /CN=157D536924EE6C5A7711625C6906CB5139BE6605 Certificate serial: 5EC6F0370C3D1D456DAF4F4EB60382EBD58B61F3 Authority key identifier: 15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DYXNET/0/36312e35362e38302e302f32312d3231203d3e2039323434.roa Signing time: Mon 11 May 2026 17:18:31 +0000 ROA not before: Mon 11 May 2026 17:13:31 +0000 ROA not after: Mon 10 May 2027 17:18:31 +0000 asID: 9244 IP address blocks: 61.56.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:c6:f0:37:0c:3d:1d:45:6d:af:4f:4e:b6:03:82:eb:d5:8b:61:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157D536924EE6C5A7711625C6906CB5139BE6605 Validity Not Before: May 11 17:13:31 2026 GMT Not After : May 10 17:18:31 2027 GMT Subject: CN=C2DF906C37C7938DD43FF06DF679D9C5A8CE9251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:49:0c:fb:02:28:20:8e:89:c7:c4:b3:8e:12: 02:3f:5e:c4:cc:d7:3b:7a:9a:a3:2d:0a:39:b0:38: 8d:84:8c:73:44:a1:d1:57:11:09:ea:a8:1f:0c:82: 85:27:05:19:9c:f9:82:d3:6c:00:f6:74:1e:de:93: 70:6b:0f:54:35:05:c9:12:bc:b4:7c:82:55:8d:ab: 96:4d:05:db:0f:ba:f7:3d:20:ad:f8:21:7e:71:c7: 03:77:7d:19:26:77:40:0d:73:92:99:f9:7b:dd:7c: 76:2d:07:8d:fa:47:96:a9:25:e5:af:49:1a:93:1e: 72:87:cc:f1:c6:74:9b:dd:e9:e5:1c:b0:5e:1f:13: 49:64:a0:b7:3a:19:2c:37:e8:c3:02:21:97:f1:64: fc:47:d8:3e:c1:27:da:9b:17:3b:d5:05:12:8b:4c: 9e:5c:41:7c:a1:de:fc:44:49:0a:cf:d2:33:80:2a: f2:57:64:ec:a6:ac:fe:5b:f2:07:2d:a2:6b:b3:7b: 8f:69:f3:19:4d:85:5f:2b:e1:39:80:48:eb:24:f0: 22:3c:cd:aa:0e:c3:a0:37:c3:f3:c8:e6:71:79:b8: d0:68:02:7d:0f:b9:8b:f4:35:55:86:3b:e3:cf:da: bb:e1:57:27:9b:fc:6c:59:73:f4:9d:85:2f:4f:4f: d8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DF:90:6C:37:C7:93:8D:D4:3F:F0:6D:F6:79:D9:C5:A8:CE:92:51 X509v3 Authority Key Identifier: keyid:15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/36312e35362e38302e302f32312d3231203d3e2039323434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/21 Signature Algorithm: sha256WithRSAEncryption 25:09:7d:67:12:a3:70:18:e0:d8:50:0d:f2:93:60:a4:65:36: b7:dc:06:f8:c9:c2:82:77:d9:a6:a1:3c:da:48:e9:65:18:68: ff:68:73:33:a7:76:e3:07:b4:c0:26:07:eb:30:2e:c1:cd:88: fb:8c:3a:d9:3d:78:01:95:f4:83:7b:03:0f:bb:60:f1:d5:90: b0:98:8a:5f:d0:c6:e3:64:1a:83:f9:ee:f4:0a:a7:3d:cc:cb: 6f:a9:54:4d:b5:13:ef:6b:be:12:67:7d:37:41:b9:fa:8b:16: 85:1c:78:25:91:eb:78:80:2d:7f:92:93:f1:1b:95:3a:a6:a1: 03:11:ca:b8:df:70:4a:fc:a0:be:15:89:a7:f9:f7:e7:bb:1b: 8a:4c:bc:b8:fc:bd:13:1e:5a:60:66:54:48:13:05:cb:f5:e6: 27:30:ca:86:eb:7e:cf:6c:fc:3f:96:f4:b8:41:93:b1:28:0d: 22:ce:7e:ca:2e:0d:1e:2e:81:5f:d4:0d:48:83:f9:a7:75:a6: 35:d2:76:14:88:59:64:67:d7:4a:79:3a:ac:4e:5c:3c:83:ba: bc:7e:4f:28:fe:89:aa:ad:b0:92:bc:cf:3c:9a:6b:cf:f9:25: f4:f1:62:56:b5:25:a4:e7:18:e2:fc:8a:69:3f:c5:a3:3f:f2: f4:c8:7f:82 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUXsbwNww9HUVtr09OtgOC69WLYfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEz OUJFNjYwNTAeFw0yNjA1MTExNzEzMzFaFw0yNzA1MTAxNzE4MzFaMDMxMTAvBgNV BAMTKEMyREY5MDZDMzdDNzkzOERENDNGRjA2REY2NzlEOUM1QThDRTkyNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxSQz7AiggjonHxLOOEgI/XsTM 1zt6mqMtCjmwOI2EjHNEodFXEQnqqB8MgoUnBRmc+YLTbAD2dB7ek3BrD1Q1BckS vLR8glWNq5ZNBdsPuvc9IK34IX5xxwN3fRkmd0ANc5KZ+XvdfHYtB436R5apJeWv SRqTHnKHzPHGdJvd6eUcsF4fE0lkoLc6GSw36MMCIZfxZPxH2D7BJ9qbFzvVBRKL TJ5cQXyh3vxESQrP0jOAKvJXZOymrP5b8gctomuze49p8xlNhV8r4TmASOsk8CI8 zaoOw6A3w/PI5nF5uNBoAn0PuYv0NVWGO+PP2rvhVyeb/GxZc/SdhS9PT9ipAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUwt+QbDfHk43UP/Bt9nnZxajOklEwHwYDVR0j BBgwFoAUFX1TaSTubFp3EWJcaQbLUTm+ZgUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVU LzAvMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEzOUJFNjYwNS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8xNTdENTM2OTI0RUU2QzVBNzcxMTYyNUM2OTA2 Q0I1MTM5QkU2NjA1LmNlcjB2BggrBgEFBQcBCwRqMGgwZgYIKwYBBQUHMAuGWnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVULzAvMzYzMTJlMzUzNjJl MzgzMDJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDM5MzIzNDM0LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD PThQMA0GCSqGSIb3DQEBCwUAA4IBAQAlCX1nEqNwGODYUA3yk2CkZTa33Ab4ycKC d9mmoTzaSOllGGj/aHMzp3bjB7TAJgfrMC7BzYj7jDrZPXgBlfSDewMPu2Dx1ZCw mIpf0MbjZBqD+e70Cqc9zMtvqVRNtRPva74SZ303Qbn6ixaFHHglket4gC1/kpPx G5U6pqEDEcq433BK/KC+FYmn+ffnuxuKTLy4/L0THlpgZlRIEwXL9eYnMMqG637P bPw/lvS4QZOxKA0izn7KLg0eLoFf1A1Ig/mndaY10nYUiFlkZ9dKeTqsTlw8g7q8 fk8o/omqrbCSvM88mmvP+SX08WJWtSWk5xji/IppP8WjP/L0yH+C -----END CERTIFICATE-----Generated at Wed May 13 06:04:52 2026 by rpki-client