$ rpki-client -vvf rpkica.twnic.tw/rpki/DYXNET/0/36312e35362e38382e302f32312d3231203d3e2039323434.roa File: 36312e35362e38382e302f32312d3231203d3e2039323434.roa (raw, json) Hash identifier: Yv9i1Wf6abh3HnSZnR0KOLnhp4lGY5xfo27UjbSYy+8= Subject key identifier: 3C:7D:3E:82:58:6E:3C:00:00:B1:F1:8B:0F:E9:D7:98:81:A2:74:97 Certificate issuer: /CN=157D536924EE6C5A7711625C6906CB5139BE6605 Certificate serial: 2BAC6DB538352AD5016D6C331E169F81DBCE7169 Authority key identifier: 15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DYXNET/0/36312e35362e38382e302f32312d3231203d3e2039323434.roa Signing time: Mon 11 May 2026 16:54:37 +0000 ROA not before: Mon 11 May 2026 16:49:37 +0000 ROA not after: Mon 10 May 2027 16:54:37 +0000 asID: 9244 IP address blocks: 61.56.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ac:6d:b5:38:35:2a:d5:01:6d:6c:33:1e:16:9f:81:db:ce:71:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157D536924EE6C5A7711625C6906CB5139BE6605 Validity Not Before: May 11 16:49:37 2026 GMT Not After : May 10 16:54:37 2027 GMT Subject: CN=3C7D3E82586E3C0000B1F18B0FE9D79881A27497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:05:2c:58:12:d1:7f:bb:ba:e1:0b:e6:94:4f: 0c:fa:6f:d4:fc:11:9a:8f:d6:cc:9e:fb:77:be:a8: 8b:7a:68:59:4f:39:a4:6d:eb:b1:11:4b:c7:31:f7: fa:00:87:8c:64:2e:8d:56:35:af:69:f4:44:d5:7a: f2:07:83:bb:72:b5:c5:97:58:57:24:fe:a4:8e:5f: 16:7e:c8:9d:2f:de:4b:fc:db:b3:1b:91:31:d7:a5: a6:ee:ce:64:2f:6e:7a:49:8b:10:4b:a3:6b:fb:c5: a6:34:02:d1:79:38:e3:28:bf:54:09:7c:2e:59:aa: 99:b5:b7:60:65:6b:7f:ac:18:11:8c:62:02:fb:09: 74:0e:91:5d:b5:24:57:73:e1:20:96:76:d4:a0:91: 43:eb:4f:53:14:29:5a:21:29:84:c3:ad:08:8e:31: dc:cf:e5:3b:cf:7b:ee:36:e9:67:ba:d8:56:95:64: 9d:5a:90:2a:7d:0a:f2:ce:de:af:f4:05:c8:fb:e1: 09:16:62:6a:4a:2a:8b:f8:60:17:1f:17:b2:bb:f8: a9:83:a4:5e:d0:3c:8a:ec:56:09:e6:6c:a1:61:c7: 48:51:6d:72:b5:2f:9d:6d:57:94:a6:d3:e1:55:1f: 15:7e:8b:c4:0e:f8:47:f2:83:96:5b:e0:f5:c4:c4: 3d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7D:3E:82:58:6E:3C:00:00:B1:F1:8B:0F:E9:D7:98:81:A2:74:97 X509v3 Authority Key Identifier: keyid:15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/36312e35362e38382e302f32312d3231203d3e2039323434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.56.88.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:f6:c5:82:f1:5f:46:ca:38:5a:6a:f6:5e:f0:3f:cd:b2:94: 94:55:be:e0:62:80:a9:26:c6:90:53:01:c0:d7:b0:79:b8:56: 56:12:e5:77:24:38:86:da:b8:09:8d:26:64:57:b6:ef:41:ad: d1:21:35:6b:3d:46:71:9f:c9:8b:ea:e8:79:32:09:59:19:33: 7e:8d:41:50:af:42:60:f5:18:6e:b7:5a:3f:0f:01:39:7e:f5: 99:dd:12:52:12:c4:39:08:5d:52:80:e0:58:2a:ad:ea:71:cc: 01:17:44:20:95:79:19:63:20:c3:be:6d:bc:93:32:f5:b7:22: c1:6a:31:61:89:65:f5:7c:92:40:6f:4e:3f:63:26:e0:e4:d3: ea:fc:05:cc:05:07:45:0b:3e:e1:d8:da:fa:1e:6d:36:bc:10: 0a:cb:fd:b7:d3:0c:45:c0:cc:64:e4:e3:55:ac:d3:53:92:2e: cc:dd:ce:3b:9c:bc:21:2d:5c:a7:47:c9:78:28:ba:f3:b6:b3: 12:c9:60:cd:a3:86:ab:f5:ad:e4:a3:65:36:e1:ac:37:4e:bd: 91:41:59:09:d9:97:c3:02:34:47:58:37:2f:7d:fd:b9:3c:48: bc:55:9e:80:9e:9e:cb:63:29:60:81:c6:02:9a:6f:ab:e9:66: f8:bd:f5:f5 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUK6xttTg1KtUBbWwzHhafgdvOcWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEz OUJFNjYwNTAeFw0yNjA1MTExNjQ5MzdaFw0yNzA1MTAxNjU0MzdaMDMxMTAvBgNV BAMTKDNDN0QzRTgyNTg2RTNDMDAwMEIxRjE4QjBGRTlENzk4ODFBMjc0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIBSxYEtF/u7rhC+aUTwz6b9T8 EZqP1sye+3e+qIt6aFlPOaRt67ERS8cx9/oAh4xkLo1WNa9p9ETVevIHg7tytcWX WFck/qSOXxZ+yJ0v3kv827MbkTHXpabuzmQvbnpJixBLo2v7xaY0AtF5OOMov1QJ fC5Zqpm1t2Bla3+sGBGMYgL7CXQOkV21JFdz4SCWdtSgkUPrT1MUKVohKYTDrQiO MdzP5TvPe+426We62FaVZJ1akCp9CvLO3q/0Bcj74QkWYmpKKov4YBcfF7K7+KmD pF7QPIrsVgnmbKFhx0hRbXK1L51tV5Sm0+FVHxV+i8QO+Efyg5Zb4PXExD0fAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUPH0+glhuPAAAsfGLD+nXmIGidJcwHwYDVR0j BBgwFoAUFX1TaSTubFp3EWJcaQbLUTm+ZgUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVU LzAvMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEzOUJFNjYwNS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8xNTdENTM2OTI0RUU2QzVBNzcxMTYyNUM2OTA2 Q0I1MTM5QkU2NjA1LmNlcjB2BggrBgEFBQcBCwRqMGgwZgYIKwYBBQUHMAuGWnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVULzAvMzYzMTJlMzUzNjJl MzgzODJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDM5MzIzNDM0LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD PThYMA0GCSqGSIb3DQEBCwUAA4IBAQB89sWC8V9GyjhaavZe8D/NspSUVb7gYoCp JsaQUwHA17B5uFZWEuV3JDiG2rgJjSZkV7bvQa3RITVrPUZxn8mL6uh5MglZGTN+ jUFQr0Jg9Rhut1o/DwE5fvWZ3RJSEsQ5CF1SgOBYKq3qccwBF0QglXkZYyDDvm28 kzL1tyLBajFhiWX1fJJAb04/Yybg5NPq/AXMBQdFCz7h2Nr6Hm02vBAKy/230wxF wMxk5ONVrNNTki7M3c47nLwhLVynR8l4KLrztrMSyWDNo4ar9a3ko2U24aw3Tr2R QVkJ2ZfDAjRHWDcvff25PEi8VZ6Anp7LYylggcYCmm+r6Wb4vfX1 -----END CERTIFICATE-----Generated at Wed May 13 06:04:52 2026 by rpki-client