$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/3131372e35362e302e302f31362d3136203d3e2034373832.roa File: 3131372e35362e302e302f31362d3136203d3e2034373832.roa (raw, json) Hash identifier: MFCSbHbqKYuWPiPCKMVh2kx7z7XCHdm/WXFRairBaN0= Subject key identifier: F8:65:C4:7C:94:76:8E:FC:17:67:28:61:66:A5:F7:CE:9E:B4:C3:B6 Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 0103DF49EED5DA7A96724FEB7CA240824355BAEB Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/3131372e35362e302e302f31362d3136203d3e2034373832.roa Signing time: Mon 11 May 2026 17:11:05 +0000 ROA not before: Mon 11 May 2026 17:06:05 +0000 ROA not after: Mon 10 May 2027 17:11:05 +0000 asID: 4782 IP address blocks: 117.56.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:03:df:49:ee:d5:da:7a:96:72:4f:eb:7c:a2:40:82:43:55:ba:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 11 17:06:05 2026 GMT Not After : May 10 17:11:05 2027 GMT Subject: CN=F865C47C94768EFC1767286166A5F7CE9EB4C3B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f1:43:33:d9:7f:e2:e0:65:51:a8:0b:b5:ae: 7d:4f:7c:2d:82:c9:0f:15:70:01:b6:bf:7f:08:2d: f2:6c:00:d7:7c:9b:5d:72:26:75:e5:e2:ca:fb:24: 10:97:3b:46:89:52:bb:cc:d4:dd:eb:6e:8b:83:df: 45:52:58:b6:2e:e0:f9:7c:e2:9f:94:e5:cf:9c:2f: 9a:88:50:94:4d:69:75:e1:db:f9:87:9a:34:85:15: 1f:0c:99:db:85:6e:ee:de:12:c0:57:02:8b:7e:87: eb:08:18:86:29:fb:83:be:1b:2a:27:47:5f:08:15: 06:8d:c0:c6:66:ad:5a:0b:88:fc:37:44:09:af:a9: 6b:0f:65:d6:c0:1c:33:7c:17:36:dc:60:43:b3:e5: d4:f0:4d:b3:f0:bd:9d:09:36:cc:ac:e7:d5:0f:b6: 02:60:2f:92:49:13:f5:41:bf:13:6c:52:d3:1a:ae: b5:62:d3:2a:e3:25:3a:3f:25:71:4e:7e:7b:8a:28: 8e:5b:17:6f:c5:a8:85:6f:b2:2e:05:05:3d:d9:0f: 66:5b:bd:e0:23:7d:43:dd:7e:4d:d1:03:74:41:e3: fe:2e:92:c3:14:bb:6e:4b:17:af:5e:52:d7:a4:ac: 4d:7b:b7:ef:d8:e4:21:07:89:ce:85:cf:87:a2:cf: a2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:65:C4:7C:94:76:8E:FC:17:67:28:61:66:A5:F7:CE:9E:B4:C3:B6 X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/3131372e35362e302e302f31362d3136203d3e2034373832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 58:94:58:d1:0c:d4:f1:68:7c:ba:3c:f1:a9:c2:c8:91:14:00: c1:6e:09:c4:93:e7:95:df:cc:8f:b8:e9:81:11:39:23:cb:a5: b3:e6:c8:a2:3c:03:c9:25:3b:2b:33:cf:94:d8:fe:88:bc:c6: 2d:6f:c7:42:de:f3:0a:08:2b:fe:2f:25:6b:2f:a4:4c:ca:79: 45:d5:af:72:57:f5:29:21:4a:83:1a:82:51:a3:61:d3:ce:c3: b6:07:7f:f7:c0:d6:08:0f:9e:70:be:bf:41:1b:ff:7d:7d:b2: d5:7a:5a:07:01:98:11:0e:ef:6e:33:58:50:9b:35:2a:2e:a8: 0a:65:e2:aa:56:4f:61:ec:74:71:a3:d8:5d:79:44:63:da:84: d7:5e:01:a7:0c:5a:96:53:45:c6:e3:be:3d:df:2a:79:2c:5b: ae:7b:ef:0a:37:3b:35:45:4c:24:93:f4:1e:06:1a:8d:12:de: 6b:b4:c4:d2:d5:47:a3:c3:51:d5:7b:7f:23:f3:8c:2c:27:55: 01:13:3c:4d:cb:77:ba:01:18:fb:3c:76:f3:89:6c:11:95:d1: d6:f4:98:33:58:ae:5b:a8:02:18:ce:50:0d:64:39:eb:c8:5a: af:09:04:dd:b4:e8:5b:d6:a7:34:ff:b0:d3:b3:ba:f0:3c:33: 4d:66:07:e7 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgIUAQPfSe7V2nqWck/rfKJAgkNVuuswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTExNzA2MDVaFw0yNzA1MTAxNzExMDVaMDMxMTAvBgNV BAMTKEY4NjVDNDdDOTQ3NjhFRkMxNzY3Mjg2MTY2QTVGN0NFOUVCNEMzQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC48UMz2X/i4GVRqAu1rn1PfC2C yQ8VcAG2v38ILfJsANd8m11yJnXl4sr7JBCXO0aJUrvM1N3rbouD30VSWLYu4Pl8 4p+U5c+cL5qIUJRNaXXh2/mHmjSFFR8MmduFbu7eEsBXAot+h+sIGIYp+4O+Gyon R18IFQaNwMZmrVoLiPw3RAmvqWsPZdbAHDN8FzbcYEOz5dTwTbPwvZ0JNsys59UP tgJgL5JJE/VBvxNsUtMarrVi0yrjJTo/JXFOfnuKKI5bF2/FqIVvsi4FBT3ZD2Zb veAjfUPdfk3RA3RB4/4uksMUu25LF69eUtekrE17t+/Y5CEHic6Fz4eiz6J/AgMB AAGjggHWMIIB0jAdBgNVHQ4EFgQU+GXEfJR2jvwXZyhhZqX3zp60w7YwHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzEzMTM3MmUzNTM2MmUzMDJl MzAyZjMxMzYyZDMxMzYyMDNkM2UyMDM0MzczODMyLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAdTgwDQYJ KoZIhvcNAQELBQADggEBAFiUWNEM1PFofLo88anCyJEUAMFuCcST55XfzI+46YER OSPLpbPmyKI8A8klOyszz5TY/oi8xi1vx0Le8woIK/4vJWsvpEzKeUXVr3JX9Skh SoMaglGjYdPOw7YHf/fA1ggPnnC+v0Eb/319stV6WgcBmBEO724zWFCbNSouqApl 4qpWT2HsdHGj2F15RGPahNdeAacMWpZTRcbjvj3fKnksW6577wo3OzVFTCST9B4G Go0S3mu0xNLVR6PDUdV7fyPzjCwnVQETPE3Ld7oBGPs8dvOJbBGV0db0mDNYrluo AhjOUA1kOevIWq8JBN206FvWpzT/sNOzuvA8M01mB+c= -----END CERTIFICATE-----Generated at Wed May 13 00:31:52 2026 by rpki-client