$ rpki-client -vvf rpkica.twnic.tw/rpki/GSN/0/36312e36302e302e302f31372d3137203d3e2034373832.roa File: 36312e36302e302e302f31372d3137203d3e2034373832.roa (raw, json) Hash identifier: RxtL1JrL62KxxH9+j1ZECsfg+3xXdkmccPO6Ql29WBI= Subject key identifier: 71:56:10:4A:D2:B9:54:08:7D:40:93:45:DE:2F:20:9A:A3:33:60:EB Certificate issuer: /CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Certificate serial: 631651113D58F0F157EED7410FF7E7664266914E Authority key identifier: C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSN/0/36312e36302e302e302f31372d3137203d3e2034373832.roa Signing time: Tue 12 May 2026 01:29:22 +0000 ROA not before: Tue 12 May 2026 01:24:22 +0000 ROA not after: Tue 11 May 2027 01:29:22 +0000 asID: 4782 IP address blocks: 61.60.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:16:51:11:3d:58:f0:f1:57:ee:d7:41:0f:f7:e7:66:42:66:91:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351 Validity Not Before: May 12 01:24:22 2026 GMT Not After : May 11 01:29:22 2027 GMT Subject: CN=7156104AD2B954087D409345DE2F209AA33360EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:48:ce:ad:65:cf:91:d0:d7:71:e9:c7:38:b1: 43:3d:4e:9a:6f:20:e7:fc:5e:84:01:45:7e:a7:e5: 42:60:db:67:76:74:03:03:8d:5f:cc:0e:33:1a:1c: 94:54:b1:39:4b:dd:72:2e:aa:b2:3b:d1:61:68:50: 94:1e:68:0e:2d:18:20:86:e2:db:83:d2:eb:21:f3: e1:c5:80:87:30:3c:cb:7e:b8:86:bc:61:6a:a1:e4: 95:46:c6:07:e3:ff:0d:b8:32:c9:e1:8f:ff:5c:7f: 57:17:d7:91:8f:81:fd:d8:85:f6:40:2b:5c:73:9e: 10:8d:31:05:b5:f3:82:e1:13:be:99:f5:63:53:34: 53:21:95:1c:8f:d3:3d:7c:a0:99:d7:20:b7:91:c9: c4:8c:63:8d:3a:63:26:4d:2c:4f:03:f3:8a:07:f3: 60:80:e4:3b:8f:2a:37:d4:8e:4d:92:cf:71:37:4f: 0f:68:29:96:0a:56:b2:e0:80:5c:0e:23:69:f2:bb: 5b:b6:fc:19:2b:c2:6c:7d:16:b2:fd:11:36:42:03: 87:79:56:2c:44:e3:1f:3b:c5:01:2e:39:da:b3:ac: 4a:db:5e:1e:1a:f4:bd:8f:fa:81:c3:82:19:37:33: 8e:94:90:7f:92:09:6b:b0:cc:02:9e:01:52:26:08: 49:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:56:10:4A:D2:B9:54:08:7D:40:93:45:DE:2F:20:9A:A3:33:60:EB X509v3 Authority Key Identifier: keyid:C0:34:BD:9C:72:35:DC:2D:2C:C1:FD:7E:21:D4:3D:D0:6A:FD:C3:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSN/0/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C034BD9C7235DC2D2CC1FD7E21D43DD06AFDC351.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSN/0/36312e36302e302e302f31372d3137203d3e2034373832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.60.0.0/17 Signature Algorithm: sha256WithRSAEncryption 48:ed:39:04:2b:0d:4d:38:a0:12:7f:79:09:f3:b0:7c:71:19: 4b:1b:49:af:fc:c4:db:13:60:3a:99:a8:b7:56:d6:a9:b6:51: 45:7b:70:45:cc:84:91:d1:6f:ec:09:2d:6c:3f:76:d6:c6:a7: c7:3a:04:e3:60:2e:c1:0d:47:f8:3c:52:a6:31:74:86:26:70: d2:85:8b:fa:88:c0:77:a1:fb:c1:3c:00:81:22:e2:b2:66:77: ba:60:44:1e:26:2f:af:af:fa:d6:34:57:58:51:d6:c9:55:14: a7:9d:82:f8:c7:a4:27:b9:41:49:88:2a:d1:c9:10:7f:ba:d9: 00:84:dd:62:ab:53:0c:8a:6f:b6:b8:d2:f4:5a:2e:5d:4a:ab: ec:c5:e8:11:5d:68:10:73:00:dc:e2:ac:50:3e:86:2a:af:17: 17:f5:a7:90:13:45:f7:d8:96:44:05:36:b6:71:4f:fb:68:d8: c8:cc:c8:b4:20:22:59:29:03:bf:a7:0a:36:e8:36:7f:b2:21: 0c:b1:da:ef:2a:99:ed:39:73:86:12:77:3e:57:cb:5a:b3:82: 4e:ab:88:7a:83:a9:41:95:d3:72:20:54:f4:b7:8e:ab:9c:2f: 2b:7a:04:e5:2e:09:2a:d4:31:dc:15:98:1b:a9:62:87:51:4f: 09:6f:03:22 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgIUYxZRET1Y8PFX7tdBD/fnZkJmkU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2 QUZEQzM1MTAeFw0yNjA1MTIwMTI0MjJaFw0yNzA1MTEwMTI5MjJaMDMxMTAvBgNV BAMTKDcxNTYxMDRBRDJCOTU0MDg3RDQwOTM0NURFMkYyMDlBQTMzMzYwRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoSM6tZc+R0Ndx6cc4sUM9Tppv IOf8XoQBRX6n5UJg22d2dAMDjV/MDjMaHJRUsTlL3XIuqrI70WFoUJQeaA4tGCCG 4tuD0ush8+HFgIcwPMt+uIa8YWqh5JVGxgfj/w24Msnhj/9cf1cX15GPgf3YhfZA K1xznhCNMQW184LhE76Z9WNTNFMhlRyP0z18oJnXILeRycSMY406YyZNLE8D84oH 82CA5DuPKjfUjk2Sz3E3Tw9oKZYKVrLggFwOI2nyu1u2/Bkrwmx9FrL9ETZCA4d5 VixE4x87xQEuOdqzrErbXh4a9L2P+oHDghk3M46UkH+SCWuwzAKeAVImCEmDAgMB AAGjggHVMIIB0TAdBgNVHQ4EFgQUcVYQStK5VAh9QJNF3i8gmqMzYOswHwYDVR0j BBgwFoAUwDS9nHI13C0swf1+IdQ90Gr9w1EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAv QzAzNEJEOUM3MjM1REMyRDJDQzFGRDdFMjFENDNERDA2QUZEQzM1MS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9DMDM0QkQ5QzcyMzVEQzJEMkNDMUZEN0UyMUQ0M0RE MDZBRkRDMzUxLmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuGVXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NOLzAvMzYzMTJlMzYzMDJlMzAyZTMw MmYzMTM3MmQzMTM3MjAzZDNlMjAzNDM3MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBz08ADANBgkq hkiG9w0BAQsFAAOCAQEASO05BCsNTTigEn95CfOwfHEZSxtJr/zE2xNgOpmot1bW qbZRRXtwRcyEkdFv7AktbD921sanxzoE42AuwQ1H+DxSpjF0hiZw0oWL+ojAd6H7 wTwAgSLismZ3umBEHiYvr6/61jRXWFHWyVUUp52C+MekJ7lBSYgq0ckQf7rZAITd YqtTDIpvtrjS9FouXUqr7MXoEV1oEHMA3OKsUD6GKq8XF/WnkBNF99iWRAU2tnFP +2jYyMzItCAiWSkDv6cKNug2f7IhDLHa7yqZ7TlzhhJ3PlfLWrOCTquIeoOpQZXT ciBU9LeOq5wvK3oE5S4JKtQx3BWYG6lih1FPCW8DIg== -----END CERTIFICATE-----Generated at Wed May 13 00:32:05 2026 by rpki-client