$ rpki-client -vvf rpkica.twnic.tw/rpki/KKCO/0/3230322e3132332e3132362e302f32332d3234203d3e20313331363435.roa File: 3230322e3132332e3132362e302f32332d3234203d3e20313331363435.roa (raw, json) Hash identifier: X5pJ+pB5W852b19TEIzFlXBOz+DsW3q2s1s2BmWLs78= Subject key identifier: 3F:C8:EB:03:C1:25:7B:F4:94:E5:18:C8:3F:CD:C8:B8:5F:4B:A5:F7 Certificate issuer: /CN=1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694 Certificate serial: 2EE8655601D7854716F50A877BF102CFAC773FE5 Authority key identifier: 1B:F4:19:77:3D:1E:15:EE:FD:6C:A2:BB:4E:50:DB:EF:74:AB:96:94 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KKCO/0/3230322e3132332e3132362e302f32332d3234203d3e20313331363435.roa Signing time: Mon 11 May 2026 17:56:43 +0000 ROA not before: Mon 11 May 2026 17:51:43 +0000 ROA not after: Mon 10 May 2027 17:56:43 +0000 asID: 131645 IP address blocks: 202.123.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KKCO/0/1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.crl rsync://rpkica.twnic.tw/rpki/KKCO/0/1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e8:65:56:01:d7:85:47:16:f5:0a:87:7b:f1:02:cf:ac:77:3f:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694 Validity Not Before: May 11 17:51:43 2026 GMT Not After : May 10 17:56:43 2027 GMT Subject: CN=3FC8EB03C1257BF494E518C83FCDC8B85F4BA5F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d6:55:57:0f:3d:a3:27:7c:86:6e:22:f7:24: 04:85:1c:4d:ec:dc:0c:81:f4:24:b7:b1:70:54:f2: d9:28:18:4f:61:a3:e3:3a:70:5e:ab:30:d4:53:c3: 56:9b:f0:12:08:64:65:aa:c1:4a:75:de:cd:ba:5c: f7:dd:12:9d:4c:44:e1:ab:ec:20:0f:65:ea:df:63: a1:20:2a:b2:d7:e7:ee:3e:62:94:97:c0:c1:c5:22: 4c:3c:73:76:83:cf:60:dd:98:56:2c:ef:bc:e2:6a: 0f:62:b3:97:8d:4d:95:a7:8e:ee:af:e4:ec:76:85: 66:47:30:72:44:9b:2d:c4:4d:8a:a3:ae:34:2e:d9: 1d:da:99:ec:a9:67:65:b3:3a:c0:ce:a2:23:99:01: 78:fa:42:5d:be:fd:1a:09:95:9c:4c:60:a1:7e:27: 0a:d6:95:89:a8:18:64:8b:65:c8:3d:49:58:57:b1: 7b:dc:62:6d:e7:9d:b1:a1:45:fc:62:51:32:32:fa: 50:e6:28:31:27:00:5e:3b:d9:64:64:b3:8e:d5:0e: ab:b9:40:47:39:2a:bd:ec:18:e1:b3:d3:47:c9:27: 70:d0:e4:38:d9:43:d3:44:6c:ec:c8:45:46:f0:3a: b1:c5:46:88:8c:8e:6b:25:2e:0b:4c:12:ef:5b:50: 02:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C8:EB:03:C1:25:7B:F4:94:E5:18:C8:3F:CD:C8:B8:5F:4B:A5:F7 X509v3 Authority Key Identifier: keyid:1B:F4:19:77:3D:1E:15:EE:FD:6C:A2:BB:4E:50:DB:EF:74:AB:96:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KKCO/0/1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1BF419773D1E15EEFD6CA2BB4E50DBEF74AB9694.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KKCO/0/3230322e3132332e3132362e302f32332d3234203d3e20313331363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.123.126.0/23 Signature Algorithm: sha256WithRSAEncryption 67:33:b9:c8:90:af:e0:e8:44:e2:90:1f:ed:bc:c9:6f:02:c5: 8f:9c:c8:05:dd:46:fe:7a:70:51:24:dd:a4:cd:ec:48:3f:9f: fa:ae:b0:71:d4:6e:95:5a:aa:3f:f9:99:aa:4c:f4:cc:d4:93: 83:d7:6c:79:9b:6d:a5:a6:ec:d0:09:5a:fd:69:8e:11:f8:51: a2:d4:9e:66:42:7d:6f:90:04:d7:11:80:97:e9:67:64:12:47: 97:e9:2a:31:74:34:83:78:3b:3b:03:c9:68:e0:84:d1:b7:48: 02:7a:95:e6:ae:a0:04:23:1d:a0:1a:c9:96:65:4d:bf:b3:ab: b1:90:bf:f7:34:19:ca:e5:9c:ca:3e:d4:15:10:44:59:90:d2: dd:5e:ea:4b:66:c1:8a:4c:83:fc:4b:bb:0a:50:9e:2c:45:14: 9b:b3:be:eb:fb:b6:cf:72:5d:0f:7c:f8:e8:bb:9e:38:9c:02: 95:e0:f8:85:55:a8:16:66:80:50:50:45:b0:08:9c:fa:e5:a1: ef:99:e3:a1:61:84:7a:f7:19:64:a2:83:ee:e3:16:ef:d4:73: 54:c0:a4:28:51:d2:73:b6:42:c5:48:a6:5a:97:6a:dd:52:70: f3:76:a3:c0:77:8d:00:58:30:6b:21:f8:77:01:1d:84:10:10: 41:bb:4c:72 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIULuhlVgHXhUcW9QqHe/ECz6x3P+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGNDE5NzczRDFFMTVFRUZENkNBMkJCNEU1MERCRUY3 NEFCOTY5NDAeFw0yNjA1MTExNzUxNDNaFw0yNzA1MTAxNzU2NDNaMDMxMTAvBgNV BAMTKDNGQzhFQjAzQzEyNTdCRjQ5NEU1MThDODNGQ0RDOEI4NUY0QkE1RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy1lVXDz2jJ3yGbiL3JASFHE3s 3AyB9CS3sXBU8tkoGE9ho+M6cF6rMNRTw1ab8BIIZGWqwUp13s26XPfdEp1MROGr 7CAPZerfY6EgKrLX5+4+YpSXwMHFIkw8c3aDz2DdmFYs77ziag9is5eNTZWnju6v 5Ox2hWZHMHJEmy3ETYqjrjQu2R3ameypZ2WzOsDOoiOZAXj6Ql2+/RoJlZxMYKF+ JwrWlYmoGGSLZcg9SVhXsXvcYm3nnbGhRfxiUTIy+lDmKDEnAF472WRks47VDqu5 QEc5Kr3sGOGz00fJJ3DQ5DjZQ9NEbOzIRUbwOrHFRoiMjmslLgtMEu9bUAIbAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUP8jrA8Ele/SU5RjIP83IuF9LpfcwHwYDVR0j BBgwFoAUG/QZdz0eFe79bKK7TlDb73SrlpQwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0tDTy8w LzFCRjQxOTc3M0QxRTE1RUVGRDZDQTJCQjRFNTBEQkVGNzRBQjk2OTQuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUJGNDE5NzczRDFFMTVFRUZENkNBMkJCNEU1MERC RUY3NEFCOTY5NC5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0tLQ08vMC8zMjMwMzIyZTMxMzIzMzJl MzEzMjM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzMxMzYzNDM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBynt+MA0GCSqGSIb3DQEBCwUAA4IBAQBnM7nIkK/g6ETikB/tvMlvAsWP nMgF3Ub+enBRJN2kzexIP5/6rrBx1G6VWqo/+ZmqTPTM1JOD12x5m22lpuzQCVr9 aY4R+FGi1J5mQn1vkATXEYCX6WdkEkeX6SoxdDSDeDs7A8lo4ITRt0gCepXmrqAE Ix2gGsmWZU2/s6uxkL/3NBnK5ZzKPtQVEERZkNLdXupLZsGKTIP8S7sKUJ4sRRSb s77r+7bPcl0PfPjou544nAKV4PiFVagWZoBQUEWwCJz65aHvmeOhYYR69xlkooPu 4xbv1HNUwKQoUdJztkLFSKZal2rdUnDzdqPAd40AWDBrIfh3AR2EEBBBu0xy -----END CERTIFICATE-----Generated at Wed May 13 09:37:45 2026 by rpki-client