$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/36312e35362e302e302f32302d3234203d3e203138313833.roa File: 36312e35362e302e302f32302d3234203d3e203138313833.roa (raw, json) Hash identifier: Z8hYEPWVHSTXdVxKiYoHCeRE+yhXuCK4vUjrYBstEPs= Subject key identifier: 18:CD:76:70:BD:6A:A7:25:C2:CA:F2:5B:C3:CB:D8:64:35:B0:A2:32 Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 4332C170DC7CDCA35E6CBFEB5DCF919B49AC2A0E Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/36312e35362e302e302f32302d3234203d3e203138313833.roa Signing time: Mon 11 May 2026 17:57:13 +0000 ROA not before: Mon 11 May 2026 17:52:13 +0000 ROA not after: Mon 10 May 2027 17:57:13 +0000 asID: 18183 IP address blocks: 61.56.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:32:c1:70:dc:7c:dc:a3:5e:6c:bf:eb:5d:cf:91:9b:49:ac:2a:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 11 17:52:13 2026 GMT Not After : May 10 17:57:13 2027 GMT Subject: CN=18CD7670BD6AA725C2CAF25BC3CBD86435B0A232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0a:54:e9:f2:68:2c:a7:46:51:fb:67:78:f8: 22:76:a4:df:52:36:e7:25:75:46:d5:9f:d3:52:85: a8:d0:1f:66:2d:db:ea:8f:f2:e1:b3:29:4b:60:31: 3c:fa:87:22:d4:85:6a:14:08:f3:e3:9c:fd:30:87: d8:4c:b1:bd:d1:26:f6:c6:76:50:5b:6a:23:84:72: 1d:89:aa:91:d7:1c:ec:5c:2b:37:60:3d:e5:57:04: 1a:df:fa:3e:bc:b6:18:d7:ea:af:31:93:62:50:cc: af:2a:96:02:04:f5:e6:e1:22:24:44:dd:19:af:58: 8a:28:6a:b8:77:27:db:d4:5a:2a:2e:55:9a:a5:41: 2f:32:f3:eb:44:d0:35:bc:ed:2d:16:2d:49:ed:46: 13:0c:66:2b:25:c9:76:82:86:6e:41:bb:22:c3:1f: dd:9d:e4:a2:7b:3f:40:d8:15:26:eb:57:83:df:72: 2d:6a:90:c4:51:f6:15:6d:17:eb:97:c3:d7:69:73: 5c:ca:d4:a9:5f:07:a1:20:a7:e8:3c:7b:29:4f:73: 0b:9a:a4:15:03:8c:9e:d5:1f:21:45:aa:dc:7b:b2: 1a:b0:15:68:3e:27:03:b1:e4:92:3a:47:c1:ac:33: d4:0d:50:9b:d9:29:9d:bc:22:e5:a0:0c:49:f9:78: 31:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:CD:76:70:BD:6A:A7:25:C2:CA:F2:5B:C3:CB:D8:64:35:B0:A2:32 X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/36312e35362e302e302f32302d3234203d3e203138313833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.56.0.0/20 Signature Algorithm: sha256WithRSAEncryption 3c:ab:01:a6:04:64:f9:35:ca:b2:8b:34:85:41:b2:bc:15:5a: 78:e2:b8:69:84:08:0f:c7:c0:d2:a7:53:70:0c:16:44:19:4f: f5:2b:8e:a9:5f:80:b9:da:8c:4e:94:59:0c:c4:8b:98:70:f0: a3:78:be:16:ab:ed:84:36:c9:20:3a:e7:e4:eb:3e:44:f0:09: 2f:82:3b:6c:11:90:6d:f5:c0:2b:5c:24:f8:0e:1c:50:81:06: be:cf:93:5c:10:e8:e8:83:c8:60:dd:7b:ac:0e:0e:66:d0:2f: b7:c3:d5:cd:33:fa:00:dc:f7:d9:44:5e:5f:f8:d3:03:02:bc: 98:ec:9c:46:a9:79:84:83:5f:c6:55:fb:da:ea:c1:b2:ed:5a: 5b:8c:a1:27:ce:35:7d:42:49:98:be:72:01:8a:50:0b:5a:71: 60:e8:2f:c6:68:3c:7c:74:35:21:e8:cd:a0:be:53:e0:bf:47: b4:61:ce:51:7d:72:fc:06:cb:c8:0a:ac:d6:7b:fc:12:aa:26: e8:ef:96:e3:1e:a1:a0:39:d1:3f:da:48:c5:56:a7:16:38:b3: 33:22:39:c7:db:b6:87:2e:5d:ad:82:c3:99:7e:1a:b3:48:3d: 43:e6:6c:7e:1c:2a:f0:82:2b:5f:bf:e1:a9:0e:0e:3b:9e:1f: b3:ee:fc:ab -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIUQzLBcNx83KNebL/rXc+Rm0msKg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTExNzUyMTNaFw0yNzA1MTAxNzU3MTNaMDMxMTAvBgNV BAMTKDE4Q0Q3NjcwQkQ2QUE3MjVDMkNBRjI1QkMzQ0JEODY0MzVCMEEyMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrClTp8mgsp0ZR+2d4+CJ2pN9S NucldUbVn9NShajQH2Yt2+qP8uGzKUtgMTz6hyLUhWoUCPPjnP0wh9hMsb3RJvbG dlBbaiOEch2JqpHXHOxcKzdgPeVXBBrf+j68thjX6q8xk2JQzK8qlgIE9ebhIiRE 3RmvWIooarh3J9vUWiouVZqlQS8y8+tE0DW87S0WLUntRhMMZislyXaChm5BuyLD H92d5KJ7P0DYFSbrV4Pfci1qkMRR9hVtF+uXw9dpc1zK1KlfB6Egp+g8eylPcwua pBUDjJ7VHyFFqtx7shqwFWg+JwOx5JI6R8GsM9QNUJvZKZ28IuWgDEn5eDE1AgMB AAGjggHXMIIB0zAdBgNVHQ4EFgQUGM12cL1qpyXCyvJbw8vYZDWwojIwHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzYzMTJlMzUzNjJlMzAyZTMw MmYzMjMwMmQzMjM0MjAzZDNlMjAzMTM4MzEzODMzLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTgAMA0G CSqGSIb3DQEBCwUAA4IBAQA8qwGmBGT5NcqyizSFQbK8FVp44rhphAgPx8DSp1Nw DBZEGU/1K46pX4C52oxOlFkMxIuYcPCjeL4Wq+2ENskgOufk6z5E8AkvgjtsEZBt 9cArXCT4DhxQgQa+z5NcEOjog8hg3XusDg5m0C+3w9XNM/oA3PfZRF5f+NMDAryY 7JxGqXmEg1/GVfva6sGy7VpbjKEnzjV9QkmYvnIBilALWnFg6C/GaDx8dDUh6M2g vlPgv0e0Yc5RfXL8BsvICqzWe/wSqibo75bjHqGgOdE/2kjFVqcWOLMzIjnH27aH Ll2tgsOZfhqzSD1D5mx+HCrwgitfv+GpDg47nh+z7vyr -----END CERTIFICATE-----Generated at Wed May 13 00:31:44 2026 by rpki-client