$ rpki-client -vvf rpkica.twnic.tw/rpki/KE-ING/0/3232302e3135372e3131322e302f32302d3234203d3e203138303432.roa File: 3232302e3135372e3131322e302f32302d3234203d3e203138303432.roa (raw, json) Hash identifier: wLcmvrG3+9+VQcoGh/RouCPLhBf4BpOjD6kqqbR7944= Subject key identifier: BD:82:87:52:9C:42:0B:A0:99:C7:6D:71:BB:F3:D5:51:AB:54:97:DC Certificate issuer: /CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Certificate serial: 61B557E92BB53A608E602F957F43BC3240DA2E89 Authority key identifier: 04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KE-ING/0/3232302e3135372e3131322e302f32302d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 17:04:21 +0000 ROA not before: Mon 11 May 2026 16:59:21 +0000 ROA not after: Mon 10 May 2027 17:04:21 +0000 asID: 18042 IP address blocks: 220.157.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 10:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b5:57:e9:2b:b5:3a:60:8e:60:2f:95:7f:43:bc:32:40:da:2e:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B Validity Not Before: May 11 16:59:21 2026 GMT Not After : May 10 17:04:21 2027 GMT Subject: CN=BD8287529C420BA099C76D71BBF3D551AB5497DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:16:33:3a:ff:d5:84:fa:37:a3:30:bd:c8:cf: 2c:df:9e:a3:5d:ec:07:cb:f8:70:2d:65:f2:98:99: ab:f7:b3:65:ed:ee:05:a6:d2:0d:5f:18:4a:b0:fe: 3e:5d:2b:b9:ae:b2:1d:39:18:d5:3f:7d:e8:7a:8d: 54:bc:f9:41:88:ed:cc:73:e3:7c:51:71:5e:c8:98: 11:3c:90:6b:66:22:ee:a3:1e:b3:7c:68:7c:40:51: 62:79:43:39:43:5f:ed:eb:97:c8:7c:b2:32:62:e5: 77:db:fd:34:62:c4:04:55:a1:e0:56:49:b3:fa:9d: d1:bf:f1:60:06:a6:16:b1:fb:c8:de:94:a6:7f:be: a8:4f:e8:76:1e:53:97:4f:13:cb:5c:24:03:e3:75: f6:35:be:05:b4:52:af:cf:1a:78:c3:8f:37:a6:cd: 8b:03:19:de:d7:dc:dc:75:83:c7:b1:69:9d:36:fb: da:bf:4e:34:75:be:2a:34:a1:f9:fc:58:09:1a:29: 84:98:f6:86:e6:84:9a:b4:28:29:b7:3b:bb:2d:c8: db:28:d1:cf:63:02:7d:d7:97:5c:8f:7e:e0:c2:e7: 6f:cd:2a:fb:6f:9b:82:85:e7:7f:73:c5:4d:e2:66: c9:2a:29:ad:9d:f1:42:2c:2f:cb:83:35:cf:21:63: d1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:82:87:52:9C:42:0B:A0:99:C7:6D:71:BB:F3:D5:51:AB:54:97:DC X509v3 Authority Key Identifier: keyid:04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/3232302e3135372e3131322e302f32302d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.112.0/20 Signature Algorithm: sha256WithRSAEncryption 85:2a:19:55:9c:b7:c8:6c:aa:2c:95:d3:a0:0a:55:39:4d:c7: 3d:63:2f:25:8c:7d:5b:3b:03:53:0b:07:3b:60:a9:49:4a:9f: f3:77:66:2a:d7:e5:ef:e3:c6:d5:35:84:c6:94:c3:ae:d4:df: 54:3c:94:c3:49:b6:4a:ab:1d:d8:4a:04:78:e5:66:bc:e6:53: c7:40:47:d9:dc:ce:ec:33:ea:eb:0e:dd:60:36:0b:85:0e:52: ab:c5:9a:e1:06:e3:a0:fa:c8:95:80:66:ba:55:b4:96:28:b6: 7a:cc:d8:04:00:ab:c8:df:05:d0:d8:39:b1:ec:09:30:6e:a4: 15:45:6e:8a:bb:cf:cd:d4:9a:26:f4:11:f8:ca:8f:0a:17:ea: 89:68:81:f9:7b:b2:e2:72:ca:5e:4a:7a:8b:92:a6:fc:41:27: 42:72:b8:67:be:b6:ce:21:1b:91:73:f2:e8:bb:f0:84:84:e4: c2:1b:db:15:7f:70:75:a2:ee:eb:e1:4b:70:eb:19:3e:ef:80: 93:a6:cb:83:be:53:8c:23:56:d9:29:38:46:09:a9:b2:44:83: f3:2e:0a:ff:68:30:39:6b:80:02:1b:04:b9:9d:1e:c6:ff:e9: 6a:0f:3e:31:92:e9:20:89:c3:34:49:96:23:fc:88:0f:79:56: b8:dc:04:83 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIUYbVX6Su1OmCOYC+Vf0O8MkDaLokwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0Qy MzMyNEU0QjAeFw0yNjA1MTExNjU5MjFaFw0yNzA1MTAxNzA0MjFaMDMxMTAvBgNV BAMTKEJEODI4NzUyOUM0MjBCQTA5OUM3NkQ3MUJCRjNENTUxQUI1NDk3REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXFjM6/9WE+jejML3IzyzfnqNd 7AfL+HAtZfKYmav3s2Xt7gWm0g1fGEqw/j5dK7mush05GNU/feh6jVS8+UGI7cxz 43xRcV7ImBE8kGtmIu6jHrN8aHxAUWJ5QzlDX+3rl8h8sjJi5Xfb/TRixARVoeBW SbP6ndG/8WAGphax+8jelKZ/vqhP6HYeU5dPE8tcJAPjdfY1vgW0Uq/PGnjDjzem zYsDGd7X3Nx1g8exaZ02+9q/TjR1vio0ofn8WAkaKYSY9obmhJq0KCm3O7styNso 0c9jAn3Xl1yPfuDC52/NKvtvm4KF539zxU3iZskqKa2d8UIsL8uDNc8hY9GtAgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQUvYKHUpxCC6CZx21xu/PVUatUl9wwHwYDVR0j BBgwFoAUBJ1NvPql7iinm/SeYj6HzSMyTkswDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5H LzAvMDQ5RDREQkNGQUE1RUUyOEE3OUJGNDlFNjIzRTg3Q0QyMzMyNEU0Qi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8wNDlENERCQ0ZBQTVFRTI4QTc5QkY0OUU2MjNF ODdDRDIzMzI0RTRCLmNlcjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0UtSU5HLzAvMzIzMjMwMmUzMTM1 MzcyZTMxMzEzMjJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDMxMzgzMDM0MzIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBATcnXAwDQYJKoZIhvcNAQELBQADggEBAIUqGVWct8hsqiyV06AKVTlN xz1jLyWMfVs7A1MLBztgqUlKn/N3ZirX5e/jxtU1hMaUw67U31Q8lMNJtkqrHdhK BHjlZrzmU8dAR9nczuwz6usO3WA2C4UOUqvFmuEG46D6yJWAZrpVtJYotnrM2AQA q8jfBdDYObHsCTBupBVFboq7z83Umib0EfjKjwoX6ologfl7suJyyl5KeouSpvxB J0JyuGe+ts4hG5Fz8ui78ISE5MIb2xV/cHWi7uvhS3DrGT7vgJOmy4O+U4wjVtkp OEYJqbJEg/MuCv9oMDlrgAIbBLmdHsb/6WoPPjGS6SCJwzRJliP8iA95VrjcBIM= -----END CERTIFICATE-----Generated at Wed May 13 05:36:43 2026 by rpki-client