$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/36312e36332e302e302f31392d3234203d3e203138303432.roa File: 36312e36332e302e302f31392d3234203d3e203138303432.roa (raw, json) Hash identifier: ce6KCDMBv96RefDUeQM/i3f6SD0bb9d9s4rNef5Dg+c= Subject key identifier: 2F:66:E6:44:94:32:09:61:C7:C5:10:5C:EF:38:A1:B0:E2:49:7B:CC Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 0270B24C9753DE17F097FA02075EFCC42259A548 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36332e302e302f31392d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 16:45:11 +0000 ROA not before: Mon 11 May 2026 16:40:11 +0000 ROA not after: Mon 10 May 2027 16:45:11 +0000 asID: 18042 IP address blocks: 61.63.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:70:b2:4c:97:53:de:17:f0:97:fa:02:07:5e:fc:c4:22:59:a5:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: May 11 16:40:11 2026 GMT Not After : May 10 16:45:11 2027 GMT Subject: CN=2F66E64494320961C7C5105CEF38A1B0E2497BCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a4:ff:25:cc:60:a9:6c:09:a4:47:e7:12:0f: b3:ce:7f:97:08:b4:65:48:30:ed:64:76:04:d6:1c: 6f:61:94:66:3a:92:ff:a9:13:e7:e1:56:bb:58:9a: 26:1f:f3:cf:b4:f5:e2:e5:96:74:fa:7d:f1:cf:01: f4:16:9f:1d:5b:e5:24:a2:1f:f4:69:49:b3:5f:47: cf:74:06:f5:8c:7a:fd:72:21:8c:17:4f:8c:47:33: 0b:41:ad:30:40:46:3a:9f:3e:bf:d1:2e:56:56:1d: bc:50:2d:28:b0:7e:9c:71:9c:4b:32:81:12:21:39: a0:4e:63:92:16:a5:df:68:d5:13:b9:eb:fb:72:e4: 94:96:d6:5d:c7:a9:8d:f2:a2:d7:26:58:f9:1d:61: f9:dc:17:ca:ba:2a:ce:d4:34:71:82:3c:fc:ca:69: c0:b7:38:fc:e9:63:cd:95:b2:48:5b:50:aa:29:90: e3:b8:9e:28:27:d8:22:49:e3:9a:51:f7:fd:6b:c0: 53:3d:9d:36:06:c7:61:ed:ca:f4:b0:1b:73:42:f7: 94:7f:32:06:3c:85:86:d2:61:ee:4a:76:c7:bb:03: f1:b4:62:18:b8:f8:52:b4:2c:f2:08:5d:a9:7e:4c: 2a:e5:92:d0:35:1b:f0:c5:5e:8d:d3:4c:b8:4a:f5: 78:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:66:E6:44:94:32:09:61:C7:C5:10:5C:EF:38:A1:B0:E2:49:7B:CC X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/36312e36332e302e302f31392d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.63.0.0/19 Signature Algorithm: sha256WithRSAEncryption 69:44:c7:3b:c7:bc:f2:db:e6:51:f4:ae:80:63:30:90:2d:3d: e8:37:a5:d6:5b:06:7d:05:a7:a9:e7:d0:14:a2:2e:b7:86:bd: ca:e3:43:06:bb:4e:0b:95:8a:fe:28:2e:83:df:90:cc:11:62: 6a:dd:2f:0b:a5:2a:3e:00:a6:ee:dc:78:19:c6:68:0f:a9:e5: 28:94:2b:30:b7:e0:70:23:4e:82:40:f7:5e:1a:78:08:ff:82: 27:f2:86:83:99:3e:2f:5f:cb:d5:b3:ec:ee:47:bf:5b:8b:6c: 93:04:91:48:6a:8a:5c:a0:be:13:32:49:bc:cd:e1:30:c5:28: d6:c4:84:4a:c8:0e:0d:bf:b1:e4:a7:dd:16:a8:be:ba:7c:54: e3:9d:ae:97:b2:55:32:96:ac:92:7d:2a:ed:df:cc:99:89:6e: c8:1b:fd:07:67:f5:52:71:0d:e1:4c:6c:50:c8:f7:01:86:f3: 5c:dd:16:a9:4a:4e:6b:8e:7f:80:17:b5:7a:7f:cc:c9:d0:81: d0:08:53:38:e4:41:dd:f1:c7:01:66:a5:9d:96:3e:0e:ad:cf: c3:04:79:5b:51:bb:76:e7:81:e0:d1:7e:aa:47:3d:20:02:76: ed:d4:67:20:d5:09:65:2f:4e:7c:80:8c:b6:e3:d0:07:a2:2b: 27:c0:9d:70 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIUAnCyTJdT3hfwl/oCB178xCJZpUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA1MTExNjQwMTFaFw0yNzA1MTAxNjQ1MTFaMDMxMTAvBgNV BAMTKDJGNjZFNjQ0OTQzMjA5NjFDN0M1MTA1Q0VGMzhBMUIwRTI0OTdCQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqpP8lzGCpbAmkR+cSD7POf5cI tGVIMO1kdgTWHG9hlGY6kv+pE+fhVrtYmiYf88+09eLllnT6ffHPAfQWnx1b5SSi H/RpSbNfR890BvWMev1yIYwXT4xHMwtBrTBARjqfPr/RLlZWHbxQLSiwfpxxnEsy gRIhOaBOY5IWpd9o1RO56/ty5JSW1l3HqY3yotcmWPkdYfncF8q6Ks7UNHGCPPzK acC3OPzpY82VskhbUKopkOO4nign2CJJ45pR9/1rwFM9nTYGx2HtyvSwG3NC95R/ MgY8hYbSYe5Kdse7A/G0Yhi4+FK0LPIIXal+TCrlktA1G/DFXo3TTLhK9XiHAgMB AAGjggHXMIIB0zAdBgNVHQ4EFgQUL2bmRJQyCWHHxRBc7zihsOJJe8wwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzYzMTJlMzYzMzJlMzAyZTMw MmYzMTM5MmQzMjM0MjAzZDNlMjAzMTM4MzAzNDMyLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPT8AMA0G CSqGSIb3DQEBCwUAA4IBAQBpRMc7x7zy2+ZR9K6AYzCQLT3oN6XWWwZ9Baep59AU oi63hr3K40MGu04LlYr+KC6D35DMEWJq3S8LpSo+AKbu3HgZxmgPqeUolCswt+Bw I06CQPdeGngI/4In8oaDmT4vX8vVs+zuR79bi2yTBJFIaopcoL4TMkm8zeEwxSjW xIRKyA4Nv7Hkp90WqL66fFTjna6XslUylqySfSrt38yZiW7IG/0HZ/VScQ3hTGxQ yPcBhvNc3RapSk5rjn+AF7V6f8zJ0IHQCFM45EHd8ccBZqWdlj4Orc/DBHlbUbt2 54Hg0X6qRz0gAnbt1Gcg1QllL058gIy249AHoisnwJ1w -----END CERTIFICATE-----Generated at Tue May 12 22:33:06 2026 by rpki-client