$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/3132342e3139392e36342e302f31392d3139203d3e2034373832.roa File: 3132342e3139392e36342e302f31392d3139203d3e2034373832.roa (raw, json) Hash identifier: WuXDtugnIouFSIQBa95DW12JV+9YmfPeEhQ2M/9bHLw= Subject key identifier: 44:DD:22:A3:2A:19:B7:75:DC:A6:40:6E:54:5C:66:63:7A:40:BD:4B Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 71852B76F6D0ACC717A5112A3699674C9F2600AE Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/3132342e3139392e36342e302f31392d3139203d3e2034373832.roa Signing time: Mon 11 May 2026 16:45:56 +0000 ROA not before: Mon 11 May 2026 16:40:56 +0000 ROA not after: Mon 10 May 2027 16:45:56 +0000 asID: 4782 IP address blocks: 124.199.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:85:2b:76:f6:d0:ac:c7:17:a5:11:2a:36:99:67:4c:9f:26:00:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 11 16:40:56 2026 GMT Not After : May 10 16:45:56 2027 GMT Subject: CN=44DD22A32A19B775DCA6406E545C66637A40BD4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:51:bd:7c:a3:38:09:77:73:03:ee:de:16:5e: b4:95:4c:ae:36:89:62:ed:28:3d:da:db:e3:b1:9c: 73:5a:00:2d:99:c3:8d:e8:cb:10:76:a7:93:76:07: a0:2d:e8:40:3f:24:c3:e9:13:0d:f1:06:10:91:48: e0:83:77:84:ae:25:89:67:18:bb:8c:4d:ad:1c:f6: cb:8a:04:fd:91:9f:38:13:15:49:1d:df:49:d3:e5: 62:30:5f:7f:a3:c1:b2:77:ae:fc:27:da:98:41:ae: 95:3f:00:5d:cc:49:6f:46:8a:f2:14:ae:31:47:81: 37:48:bc:e2:5b:4d:80:49:24:b6:0a:a1:34:e4:8b: 2f:b4:73:7d:20:40:54:b1:10:1e:a7:4d:a2:0b:5f: 7f:51:e8:6b:34:26:03:37:b1:48:42:bf:19:88:4e: 29:5a:43:7f:73:24:e2:8d:7d:67:2a:d7:db:7f:6e: 99:ff:63:bb:a9:70:78:30:c5:80:5e:32:95:43:a8: 7d:34:c9:c5:dc:1a:65:a3:11:88:f1:ca:fa:38:6e: 63:31:f5:c3:04:84:8d:ef:8e:29:0f:50:cf:7d:51: ba:d6:26:ce:5f:9c:5c:c2:62:84:99:b4:08:43:48: ba:a7:2c:22:eb:5c:dc:15:ec:80:eb:03:31:d6:6c: b8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DD:22:A3:2A:19:B7:75:DC:A6:40:6E:54:5C:66:63:7A:40:BD:4B X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/3132342e3139392e36342e302f31392d3139203d3e2034373832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.199.64.0/19 Signature Algorithm: sha256WithRSAEncryption b5:7d:61:c1:0a:a5:b7:d9:be:a6:c9:87:ba:0c:cb:3d:0d:ea: 30:58:73:43:38:88:b3:a0:16:01:9e:06:14:ed:1e:dd:fa:90: 30:32:7b:11:33:bf:5b:39:be:98:62:86:ad:e4:41:6d:ed:54: 20:ec:97:bd:e1:44:89:16:a4:ce:f2:48:f9:67:46:f3:31:9d: 93:f8:df:94:62:2e:c1:2a:b3:30:2b:9e:60:eb:bf:52:73:bb: 34:86:da:26:8d:0f:c8:1a:f3:3b:d9:5e:73:3d:66:46:b8:0b: dc:eb:99:d1:a5:40:db:96:29:4c:78:cf:f4:92:f4:cd:84:c6: 16:f4:2a:90:cd:8c:36:31:91:aa:e3:e9:85:f6:96:40:06:f1: df:2c:e3:bc:b2:76:bd:43:2c:92:43:f0:9a:95:9e:1f:aa:09: 8e:3c:79:4d:57:1b:95:48:df:fa:c5:dd:0b:ec:d8:86:fc:9f: f6:2c:56:4f:e6:41:cf:57:c6:54:94:8d:f1:f0:d3:0d:db:cf: 73:45:72:62:23:59:0b:b8:2f:b3:49:e0:4d:7b:c8:1a:2e:88: 30:77:82:f9:98:f7:c7:59:39:db:6d:76:b5:e6:23:20:18:a8: 61:7b:67:86:85:c7:48:ba:04:d8:c0:12:67:5f:61:d8:88:63: 03:77:9d:ff -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUcYUrdvbQrMcXpREqNplnTJ8mAK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTExNjQwNTZaFw0yNzA1MTAxNjQ1NTZaMDMxMTAvBgNV BAMTKDQ0REQyMkEzMkExOUI3NzVEQ0E2NDA2RTU0NUM2NjYzN0E0MEJENEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSUb18ozgJd3MD7t4WXrSVTK42 iWLtKD3a2+OxnHNaAC2Zw43oyxB2p5N2B6At6EA/JMPpEw3xBhCRSOCDd4SuJYln GLuMTa0c9suKBP2RnzgTFUkd30nT5WIwX3+jwbJ3rvwn2phBrpU/AF3MSW9GivIU rjFHgTdIvOJbTYBJJLYKoTTkiy+0c30gQFSxEB6nTaILX39R6Gs0JgM3sUhCvxmI TilaQ39zJOKNfWcq19t/bpn/Y7upcHgwxYBeMpVDqH00ycXcGmWjEYjxyvo4bmMx 9cMEhI3vjikPUM99UbrWJs5fnFzCYoSZtAhDSLqnLCLrXNwV7IDrAzHWbLjLAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQURN0ioyoZt3XcpkBuVFxmY3pAvUswHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzEzMjM0MmUzMTM5MzkyZTM2 MzQyZTMwMmYzMTM5MmQzMTM5MjAzZDNlMjAzNDM3MzgzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXzH QDANBgkqhkiG9w0BAQsFAAOCAQEAtX1hwQqlt9m+psmHugzLPQ3qMFhzQziIs6AW AZ4GFO0e3fqQMDJ7ETO/Wzm+mGKGreRBbe1UIOyXveFEiRakzvJI+WdG8zGdk/jf lGIuwSqzMCueYOu/UnO7NIbaJo0PyBrzO9lecz1mRrgL3OuZ0aVA25YpTHjP9JL0 zYTGFvQqkM2MNjGRquPphfaWQAbx3yzjvLJ2vUMskkPwmpWeH6oJjjx5TVcblUjf +sXdC+zYhvyf9ixWT+ZBz1fGVJSN8fDTDdvPc0VyYiNZC7gvs0ngTXvIGi6IMHeC +Zj3x1k52212teYjIBioYXtnhoXHSLoE2MASZ19h2IhjA3ed/w== -----END CERTIFICATE-----Generated at Wed May 13 00:31:45 2026 by rpki-client