$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/3231302e3234312e302e302f31372d3137203d3e2034373832.roa File: 3231302e3234312e302e302f31372d3137203d3e2034373832.roa (raw, json) Hash identifier: KmWKCTE0ohasfgtfRxTrbUHfQbw/Y7nPMFINp2KhTpA= Subject key identifier: 19:AF:38:B9:B2:90:62:75:24:37:93:31:96:97:80:5C:FF:3E:AB:94 Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 1AE8816C566BCD5E83616A4AB512B6A1046D7F2A Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/3231302e3234312e302e302f31372d3137203d3e2034373832.roa Signing time: Mon 11 May 2026 16:48:32 +0000 ROA not before: Mon 11 May 2026 16:43:32 +0000 ROA not after: Mon 10 May 2027 16:48:32 +0000 asID: 4782 IP address blocks: 210.241.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:e8:81:6c:56:6b:cd:5e:83:61:6a:4a:b5:12:b6:a1:04:6d:7f:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 11 16:43:32 2026 GMT Not After : May 10 16:48:32 2027 GMT Subject: CN=19AF38B9B2906275243793319697805CFF3EAB94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9d:1e:e3:f6:83:24:4a:f2:45:71:ef:5b:24: 84:a1:43:c4:0b:dd:c1:cf:5e:e7:bc:41:e9:86:c9: ce:04:1f:4a:02:54:2a:1d:15:d4:91:29:28:33:75: 03:3b:97:9e:db:eb:10:73:17:f1:3d:90:e4:28:96: 82:0d:20:6c:4f:5e:d7:18:5a:f6:14:6f:9c:6c:e4: e9:06:08:71:b2:05:7d:9e:88:82:ae:74:69:4d:2f: f6:f5:2c:f1:5a:78:b8:05:59:69:5b:06:01:0d:13: 1e:d2:93:59:c6:5d:05:e0:d0:d6:ab:78:d4:ee:87: 9b:72:18:64:48:a7:05:97:59:38:f3:89:33:cb:e1: b7:ec:c3:b1:18:ff:0e:60:87:da:1e:c4:6b:99:43: 06:cc:ea:49:6e:ee:f4:ee:9e:61:e5:be:ba:56:98: 7b:0d:75:06:b5:92:b1:48:4e:ad:77:98:57:58:fb: de:26:d2:8d:c5:97:16:d5:f7:e6:79:f6:4f:7c:fd: 55:fe:e1:c3:7b:35:06:a7:2d:f8:e3:99:ae:b9:20: 72:7e:0b:25:98:4a:b1:b6:6e:28:b1:fa:17:5b:7d: c1:76:dd:6b:b7:30:4a:fa:b8:ba:22:84:40:44:97: b9:e5:db:5d:69:e1:3a:f1:8f:27:32:b5:43:b5:ac: b7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AF:38:B9:B2:90:62:75:24:37:93:31:96:97:80:5C:FF:3E:AB:94 X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/3231302e3234312e302e302f31372d3137203d3e2034373832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.241.0.0/17 Signature Algorithm: sha256WithRSAEncryption ab:87:4b:8c:0e:32:87:3d:29:ca:f4:bd:c7:84:22:d9:af:e6: 36:e5:96:4a:83:a0:3d:12:b0:8c:dd:84:48:28:09:76:5f:6c: fa:7a:6a:c2:c7:d2:27:c9:4c:f0:03:de:17:1b:fc:5e:88:f3: ae:12:58:9e:e3:bb:ad:b4:90:08:cb:39:93:0e:f9:fc:bf:fd: f5:e8:a4:34:04:43:d6:be:ea:41:cb:af:74:19:3e:27:c9:63: 5f:98:42:25:a9:e9:69:48:3f:a4:66:51:f5:b8:12:43:1b:58: 63:94:f9:70:97:a5:81:53:8b:f6:92:4a:91:7f:04:b9:39:f1: 5e:36:84:82:af:8d:f8:78:e8:3a:02:f7:6f:0a:ad:55:68:4c: c0:d8:6f:60:26:cf:37:51:c1:7e:08:68:1d:6a:0f:30:b1:eb: 13:69:b3:08:7c:09:f1:47:5c:b9:26:83:74:11:2f:57:a1:57: 66:9b:e9:4b:49:9b:12:a8:57:fb:2f:54:d5:18:b2:b9:eb:8b: 02:50:5a:ac:4a:f8:4c:8d:ef:f1:24:c1:96:61:f4:ce:c5:81: f9:88:7a:3d:8c:82:a7:86:a5:f7:7b:75:aa:0e:44:f8:4f:2c: c6:2e:53:54:a8:db:fc:c0:3c:58:1f:ce:08:3a:75:57:0f:e0: 06:8a:6a:e4 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUGuiBbFZrzV6DYWpKtRK2oQRtfyowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTExNjQzMzJaFw0yNzA1MTAxNjQ4MzJaMDMxMTAvBgNV BAMTKDE5QUYzOEI5QjI5MDYyNzUyNDM3OTMzMTk2OTc4MDVDRkYzRUFCOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDenR7j9oMkSvJFce9bJIShQ8QL 3cHPXue8QemGyc4EH0oCVCodFdSRKSgzdQM7l57b6xBzF/E9kOQoloINIGxPXtcY WvYUb5xs5OkGCHGyBX2eiIKudGlNL/b1LPFaeLgFWWlbBgENEx7Sk1nGXQXg0Nar eNTuh5tyGGRIpwWXWTjziTPL4bfsw7EY/w5gh9oexGuZQwbM6klu7vTunmHlvrpW mHsNdQa1krFITq13mFdY+94m0o3FlxbV9+Z59k98/VX+4cN7NQanLfjjma65IHJ+ CyWYSrG2biix+hdbfcF23Wu3MEr6uLoihEBEl7nl211p4TrxjycytUO1rLdBAgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQUGa84ubKQYnUkN5MxlpeAXP8+q5QwHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzIzMTMwMmUzMjM0MzEyZTMw MmUzMDJmMzEzNzJkMzEzNzIwM2QzZTIwMzQzNzM4MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfS8QAw DQYJKoZIhvcNAQELBQADggEBAKuHS4wOMoc9Kcr0vceEItmv5jbllkqDoD0SsIzd hEgoCXZfbPp6asLH0ifJTPAD3hcb/F6I864SWJ7ju620kAjLOZMO+fy//fXopDQE Q9a+6kHLr3QZPifJY1+YQiWp6WlIP6RmUfW4EkMbWGOU+XCXpYFTi/aSSpF/BLk5 8V42hIKvjfh46DoC928KrVVoTMDYb2AmzzdRwX4IaB1qDzCx6xNpswh8CfFHXLkm g3QRL1ehV2ab6UtJmxKoV/svVNUYsrnriwJQWqxK+EyN7/EkwZZh9M7FgfmIej2M gqeGpfd7daoORPhPLMYuU1So2/zAPFgfzgg6dVcP4AaKauQ= -----END CERTIFICATE-----Generated at Wed May 13 00:31:47 2026 by rpki-client