$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/3131372e35362e302e302f31382d3138203d3e2034373832.roa File: 3131372e35362e302e302f31382d3138203d3e2034373832.roa (raw, json) Hash identifier: 8DMQSxYkXT39Wjc0+DxN6goaO03iNCXQLyzqirPMqAs= Subject key identifier: B0:AE:1D:D3:A1:0A:B5:8D:1B:7E:CF:1A:CF:57:A9:59:A2:76:DB:D1 Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 65A0BDE414F6A8A0FEF9B2A4746C8C911F7B3E4A Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/3131372e35362e302e302f31382d3138203d3e2034373832.roa Signing time: Mon 11 May 2026 17:06:13 +0000 ROA not before: Mon 11 May 2026 17:01:13 +0000 ROA not after: Mon 10 May 2027 17:06:13 +0000 asID: 4782 IP address blocks: 117.56.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:a0:bd:e4:14:f6:a8:a0:fe:f9:b2:a4:74:6c:8c:91:1f:7b:3e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 11 17:01:13 2026 GMT Not After : May 10 17:06:13 2027 GMT Subject: CN=B0AE1DD3A10AB58D1B7ECF1ACF57A959A276DBD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:34:d7:5a:fc:a8:77:c9:c3:fb:65:0a:b8:c2: 78:57:8b:ad:74:3c:85:35:7e:59:fe:20:81:dd:e1: b0:68:01:3d:b9:86:0a:b1:d0:52:b2:eb:26:c9:79: 83:3c:ef:90:04:9d:90:d0:d7:ea:92:09:cd:b3:c7: e3:4a:9c:ea:d1:15:bc:20:1e:21:a4:2b:ba:bb:70: 54:2d:3d:ec:b3:a7:5f:01:31:3e:f5:33:1f:5b:88: 9c:c7:af:c0:9e:3d:3f:c1:93:c1:77:5a:49:93:7d: 29:ee:ca:7b:82:68:53:1a:e4:aa:8d:82:6c:b8:c1: c6:52:e5:52:f6:1f:05:e8:e0:86:a0:71:d9:c7:93: ef:43:6a:40:25:6a:97:a5:43:fa:64:a9:6e:d0:9a: ea:0b:99:22:d3:ae:51:e1:f3:c3:0f:1f:77:7c:2a: 51:10:41:a5:a0:14:71:a7:6e:ab:e1:58:11:78:2d: f9:55:f4:ef:f3:fa:8c:3b:28:16:c0:b4:64:c2:d5: 14:8b:59:57:52:e7:56:1f:a9:7a:97:ce:dc:ba:5e: 25:42:99:fe:d6:5c:f5:11:51:bd:4b:2d:be:c8:b8: 5f:54:f3:6b:79:a9:8a:27:d4:72:65:46:52:b3:6f: c5:64:ac:38:d1:31:a8:d6:d2:dc:06:e4:e7:09:47: ee:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:AE:1D:D3:A1:0A:B5:8D:1B:7E:CF:1A:CF:57:A9:59:A2:76:DB:D1 X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/3131372e35362e302e302f31382d3138203d3e2034373832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.56.0.0/18 Signature Algorithm: sha256WithRSAEncryption 16:15:d3:5f:3d:f6:e7:f8:f7:ec:a2:3b:d1:79:4d:3b:ba:f7: f1:24:66:f3:d7:7d:ce:7c:e7:eb:a3:3a:46:91:fc:27:50:f6: 18:2c:f6:d4:9e:d6:8b:1e:cc:a8:3f:4b:d6:41:43:7f:26:8b: d5:8a:4c:e2:f6:32:25:bc:e1:72:bc:07:f7:0c:24:ad:89:3b: 93:1a:b5:d0:98:9f:87:cd:23:b4:86:84:14:f7:cc:7c:e8:9d: 0f:e6:d1:94:dc:59:7b:93:14:1f:ed:5f:16:fd:e3:eb:ac:2f: d1:0b:bc:f6:fe:c0:cf:da:94:de:d8:78:6d:c0:ca:30:8e:47: 14:96:a4:ac:51:f5:53:89:10:f4:1c:e3:76:b9:ee:7a:b9:2d: b8:24:b2:a2:c9:79:b7:8d:96:57:13:e3:61:e4:12:89:19:10: f4:75:09:a3:19:2b:90:79:d1:82:e2:a9:a9:d7:9e:cf:70:76: 3c:52:cf:3b:0d:d2:29:5f:75:d5:5e:77:62:59:8e:8e:e2:ae: 08:e5:51:ec:f3:30:70:06:2c:fd:d1:e4:15:13:a0:9a:49:30: 9c:95:96:0a:ca:f2:41:6e:61:bf:ca:94:29:a7:8d:c7:4d:52: 35:5c:cc:9b:38:9f:a0:b2:cc:4f:6a:f0:06:05:39:51:30:d0: 3b:fc:30:54 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIUZaC95BT2qKD++bKkdGyMkR97PkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTExNzAxMTNaFw0yNzA1MTAxNzA2MTNaMDMxMTAvBgNV BAMTKEIwQUUxREQzQTEwQUI1OEQxQjdFQ0YxQUNGNTdBOTU5QTI3NkRCRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkNNda/Kh3ycP7ZQq4wnhXi610 PIU1fln+IIHd4bBoAT25hgqx0FKy6ybJeYM875AEnZDQ1+qSCc2zx+NKnOrRFbwg HiGkK7q7cFQtPeyzp18BMT71Mx9biJzHr8CePT/Bk8F3WkmTfSnuynuCaFMa5KqN gmy4wcZS5VL2HwXo4IagcdnHk+9DakAlapelQ/pkqW7QmuoLmSLTrlHh88MPH3d8 KlEQQaWgFHGnbqvhWBF4LflV9O/z+ow7KBbAtGTC1RSLWVdS51YfqXqXzty6XiVC mf7WXPURUb1LLb7IuF9U82t5qYon1HJlRlKzb8VkrDjRMajW0twG5OcJR+7JAgMB AAGjggHXMIIB0zAdBgNVHQ4EFgQUsK4d06EKtY0bfs8az1epWaJ229EwHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzEzMTM3MmUzNTM2MmUzMDJl MzAyZjMxMzgyZDMxMzgyMDNkM2UyMDM0MzczODMyLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGdTgAMA0G CSqGSIb3DQEBCwUAA4IBAQAWFdNfPfbn+PfsojvReU07uvfxJGbz133OfOfrozpG kfwnUPYYLPbUntaLHsyoP0vWQUN/JovVikzi9jIlvOFyvAf3DCStiTuTGrXQmJ+H zSO0hoQU98x86J0P5tGU3Fl7kxQf7V8W/ePrrC/RC7z2/sDP2pTe2HhtwMowjkcU lqSsUfVTiRD0HON2ue56uS24JLKiyXm3jZZXE+Nh5BKJGRD0dQmjGSuQedGC4qmp 157PcHY8Us87DdIpX3XVXndiWY6O4q4I5VHs8zBwBiz90eQVE6CaSTCclZYKyvJB bmG/ypQpp43HTVI1XMybOJ+gssxPavAGBTlRMNA7/DBU -----END CERTIFICATE-----Generated at Wed May 13 00:31:51 2026 by rpki-client