$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/36312e35372e33322e302f31392d3139203d3e2034373832.roa File: 36312e35372e33322e302f31392d3139203d3e2034373832.roa (raw, json) Hash identifier: aqyU1VbOW0v1AFwJhVg9uuI3iSWv7CEHxJprPdp3Meo= Subject key identifier: 0A:69:B0:C7:FB:82:85:FD:EA:6A:F9:04:7B:ED:2F:15:62:DE:44:62 Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 22638410413043A5DC544561105B53A92A7E1023 Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/36312e35372e33322e302f31392d3139203d3e2034373832.roa Signing time: Mon 11 May 2026 16:45:54 +0000 ROA not before: Mon 11 May 2026 16:40:54 +0000 ROA not after: Mon 10 May 2027 16:45:54 +0000 asID: 4782 IP address blocks: 61.57.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:63:84:10:41:30:43:a5:dc:54:45:61:10:5b:53:a9:2a:7e:10:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 11 16:40:54 2026 GMT Not After : May 10 16:45:54 2027 GMT Subject: CN=0A69B0C7FB8285FDEA6AF9047BED2F1562DE4462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:64:92:1d:32:7e:82:66:c3:bb:52:6a:35:9c: f8:b0:28:ab:52:e5:3a:db:22:9d:17:6d:1e:66:12: b0:6c:0b:6c:bf:58:ce:a1:09:ac:28:14:16:56:95: 2e:97:d2:bd:b3:23:05:7c:a1:64:97:29:02:44:db: f1:f5:61:ca:f9:91:5c:82:a2:da:9f:33:02:30:ec: 8a:4c:de:1f:1f:05:4a:89:a6:76:ca:39:85:c5:da: 17:79:0c:b1:e7:ba:98:c6:60:41:0e:8a:67:5b:4c: 0a:95:44:35:90:5d:4c:0b:c6:ee:d1:6b:49:a6:46: 6e:2e:7d:b1:1a:b2:40:3c:10:65:ab:06:21:9f:d0: 2d:29:0b:1c:09:33:30:9e:df:e4:23:d0:56:d7:6d: 55:d3:2d:cc:b0:4f:70:43:3c:e1:d0:62:3a:39:30: e6:64:19:e4:f0:b9:7a:de:14:0c:c8:0b:ef:8b:3b: 75:b0:4a:e5:63:8a:c5:ae:79:bf:44:03:0c:52:39: 06:27:9b:ac:ab:bd:d2:ef:7c:78:7a:30:3b:ba:45: 38:e7:08:e8:73:b0:f9:f4:ba:62:78:c5:b5:e2:21: ef:c6:b0:fc:8f:52:b2:54:5d:da:d1:a3:93:34:fb: c6:21:a2:66:de:67:71:f2:61:33:dd:66:a5:f4:f4: c8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:69:B0:C7:FB:82:85:FD:EA:6A:F9:04:7B:ED:2F:15:62:DE:44:62 X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/36312e35372e33322e302f31392d3139203d3e2034373832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.57.32.0/19 Signature Algorithm: sha256WithRSAEncryption 64:f0:de:38:ae:2d:e9:5c:4b:a6:8d:96:3f:77:b9:e3:48:74: 80:b1:0b:56:ea:45:40:89:28:98:0d:af:ab:e1:da:7f:04:b0: 8c:fe:e1:20:6f:4f:1b:ac:df:60:b6:24:27:2a:8c:06:c3:38: 3e:ea:cc:3b:31:01:51:9d:11:bd:a0:d7:86:0f:e3:38:40:e6: c1:0c:00:44:2e:da:55:60:d5:d3:18:66:9a:4b:29:54:a3:59: 65:da:f6:ba:c4:fa:db:c5:f7:f2:6b:a2:55:37:bf:bd:b9:90: 0c:fc:f0:3c:50:55:99:68:2c:66:73:c8:b4:4a:44:40:f1:49: 8e:2c:f6:a9:5b:06:ba:3f:41:07:d6:08:c8:e2:be:8b:0b:c7: c1:d4:e5:f2:40:1f:54:4e:8d:5c:fb:4a:cc:f1:23:da:cb:29: 4d:c3:61:a9:28:41:9d:10:d7:0b:17:e8:17:c2:24:ee:e4:0f: f0:ea:fe:3e:42:32:f3:5e:c9:3f:d4:bf:4e:0d:ef:64:67:49: 28:72:3f:6a:d4:4c:fe:db:d2:3a:98:83:a1:1e:d9:82:59:03: 50:ab:46:ec:3a:d7:5e:62:61:af:89:51:cd:2a:0b:9d:fb:94: 83:09:67:35:8c:09:ce:0c:b5:60:2a:4f:df:ed:91:a8:48:dc: f2:c9:0d:20 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIUImOEEEEwQ6XcVEVhEFtTqSp+ECMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTExNjQwNTRaFw0yNzA1MTAxNjQ1NTRaMDMxMTAvBgNV BAMTKDBBNjlCMEM3RkI4Mjg1RkRFQTZBRjkwNDdCRUQyRjE1NjJERTQ0NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ZJIdMn6CZsO7Umo1nPiwKKtS 5TrbIp0XbR5mErBsC2y/WM6hCawoFBZWlS6X0r2zIwV8oWSXKQJE2/H1Ycr5kVyC otqfMwIw7IpM3h8fBUqJpnbKOYXF2hd5DLHnupjGYEEOimdbTAqVRDWQXUwLxu7R a0mmRm4ufbEaskA8EGWrBiGf0C0pCxwJMzCe3+Qj0FbXbVXTLcywT3BDPOHQYjo5 MOZkGeTwuXreFAzIC++LO3WwSuVjisWueb9EAwxSOQYnm6yrvdLvfHh6MDu6RTjn COhzsPn0umJ4xbXiIe/GsPyPUrJUXdrRo5M0+8YhombeZ3HyYTPdZqX09MiTAgMB AAGjggHXMIIB0zAdBgNVHQ4EFgQUCmmwx/uChf3qavkEe+0vFWLeRGIwHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzYzMTJlMzUzNzJlMzMzMjJl MzAyZjMxMzkyZDMxMzkyMDNkM2UyMDM0MzczODMyLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPTkgMA0G CSqGSIb3DQEBCwUAA4IBAQBk8N44ri3pXEumjZY/d7njSHSAsQtW6kVAiSiYDa+r 4dp/BLCM/uEgb08brN9gtiQnKowGwzg+6sw7MQFRnRG9oNeGD+M4QObBDABELtpV YNXTGGaaSylUo1ll2va6xPrbxffya6JVN7+9uZAM/PA8UFWZaCxmc8i0SkRA8UmO LPapWwa6P0EH1gjI4r6LC8fB1OXyQB9UTo1c+0rM8SPayylNw2GpKEGdENcLF+gX wiTu5A/w6v4+QjLzXsk/1L9ODe9kZ0kocj9q1Ez+29I6mIOhHtmCWQNQq0bsOtde YmGviVHNKgud+5SDCWc1jAnODLVgKk/f7ZGoSNzyyQ0g -----END CERTIFICATE-----Generated at Wed May 13 00:31:44 2026 by rpki-client