$ rpki-client -vvf rpkica.twnic.tw/rpki/KKH/1/3136312e3234382e3132382e302f32332d3234203d3e20313331363435.roa File: 3136312e3234382e3132382e302f32332d3234203d3e20313331363435.roa (raw, json) Hash identifier: A2tEu7HgD7mnKwNZUDnZPRv7DPPNtScV1zkEjUfoaE8= Subject key identifier: A2:08:2C:CB:AC:7B:F0:DC:50:E7:5A:61:B5:77:F7:61:92:BB:CF:69 Certificate issuer: /CN=589DA145B1A822538BB2E68D892E6742B34F0701 Certificate serial: 32732BCBBECB888A5E4AF1B43BB488AAD455CB5C Authority key identifier: 58:9D:A1:45:B1:A8:22:53:8B:B2:E6:8D:89:2E:67:42:B3:4F:07:01 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/589DA145B1A822538BB2E68D892E6742B34F0701.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KKH/1/3136312e3234382e3132382e302f32332d3234203d3e20313331363435.roa Signing time: Mon 11 May 2026 17:39:31 +0000 ROA not before: Mon 11 May 2026 17:34:31 +0000 ROA not after: Mon 10 May 2027 17:39:31 +0000 asID: 131645 IP address blocks: 161.248.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.crl rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/589DA145B1A822538BB2E68D892E6742B34F0701.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:73:2b:cb:be:cb:88:8a:5e:4a:f1:b4:3b:b4:88:aa:d4:55:cb:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=589DA145B1A822538BB2E68D892E6742B34F0701 Validity Not Before: May 11 17:34:31 2026 GMT Not After : May 10 17:39:31 2027 GMT Subject: CN=A2082CCBAC7BF0DC50E75A61B577F76192BBCF69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ec:8b:ce:52:93:c9:b5:4a:2f:44:5a:36:2e: e4:bb:b3:33:82:08:db:09:09:0a:4c:9e:a3:9e:3e: e0:22:74:00:42:cb:11:c4:20:a4:77:4f:87:18:08: 4a:9b:28:5a:24:ef:86:05:a3:fa:fe:2c:1e:a4:9f: 06:fc:d5:fe:c0:a7:18:01:ad:69:75:7c:02:7e:f0: 4c:d1:fe:5c:b0:04:4b:c8:f3:5c:09:c3:7d:98:e9: 35:47:18:50:8c:d0:6a:ea:fa:0c:cd:d5:f2:d0:85: 73:d1:df:91:98:2d:ec:70:b9:c2:cc:9c:26:d3:ff: 14:a6:38:6e:c1:18:51:f6:80:d5:62:44:79:e5:09: fb:ac:79:0a:db:df:bd:87:48:d1:c2:2b:b4:c9:85: 2b:d5:ea:90:24:42:2e:ef:9a:92:67:58:2f:9a:fd: 35:e5:09:1d:53:a2:b6:bb:63:98:13:23:4e:07:fb: b9:59:33:cc:82:09:56:45:2a:d8:0a:9f:55:73:1d: 06:40:01:66:9e:cf:1e:e1:4b:b7:25:39:4c:cb:1a: e8:a7:d1:62:31:2a:61:e3:0f:a8:85:78:ae:10:56: ef:94:2d:f4:94:2c:f4:a6:d5:f8:9e:9c:71:7e:fe: 70:d0:92:e8:f5:c6:3d:e4:87:e2:58:3c:35:21:9e: 1e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:08:2C:CB:AC:7B:F0:DC:50:E7:5A:61:B5:77:F7:61:92:BB:CF:69 X509v3 Authority Key Identifier: keyid:58:9D:A1:45:B1:A8:22:53:8B:B2:E6:8D:89:2E:67:42:B3:4F:07:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/589DA145B1A822538BB2E68D892E6742B34F0701.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KKH/1/3136312e3234382e3132382e302f32332d3234203d3e20313331363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.248.128.0/23 Signature Algorithm: sha256WithRSAEncryption 43:47:38:cc:da:7c:f9:9b:ef:1c:36:79:62:0a:72:b3:88:3a: 17:bb:4a:ee:c1:7b:29:4c:e7:0d:6b:83:43:7a:4f:ff:81:85: 75:2b:d6:35:18:13:17:4f:e7:2e:8c:dd:83:2a:c3:ab:97:6e: 9d:b0:93:70:46:f5:a6:43:0b:c1:f8:c3:57:6a:48:7f:4d:dd: 13:a2:44:03:ac:11:f3:75:64:e4:49:55:33:b6:b1:01:38:9a: 68:e5:af:63:8e:bf:1e:c8:59:e0:2f:60:6c:c1:0b:df:39:b1: db:a5:94:d7:52:37:a7:c1:a5:b9:12:64:d8:9f:23:ad:fc:4c: 08:b4:84:a9:db:10:ea:8f:3e:48:cc:fd:e9:52:c3:be:0a:3a: 2c:18:81:c6:9a:d2:d1:1e:d7:0d:d3:c6:ac:32:d8:c4:42:f5: 57:2f:61:74:33:d6:62:3d:6f:53:38:56:25:f8:b0:08:42:19: 18:70:96:71:67:74:aa:d9:b6:6d:3d:07:c8:cd:5e:d4:cd:47: 50:db:a9:f3:56:7a:fa:8b:7a:ab:68:af:ae:80:9a:19:0f:17: e7:eb:f4:03:ea:cc:bf:e6:70:78:e9:ee:54:b1:24:fc:67:a3: 86:f4:45:31:b9:5d:07:6b:46:66:00:c1:ba:6f:4d:91:f0:1f: 8e:85:8e:1c -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUMnMry77LiIpeSvG0O7SIqtRVy1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg5REExNDVCMUE4MjI1MzhCQjJFNjhEODkyRTY3NDJC MzRGMDcwMTAeFw0yNjA1MTExNzM0MzFaFw0yNzA1MTAxNzM5MzFaMDMxMTAvBgNV BAMTKEEyMDgyQ0NCQUM3QkYwREM1MEU3NUE2MUI1NzdGNzYxOTJCQkNGNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa7IvOUpPJtUovRFo2LuS7szOC CNsJCQpMnqOePuAidABCyxHEIKR3T4cYCEqbKFok74YFo/r+LB6knwb81f7ApxgB rWl1fAJ+8EzR/lywBEvI81wJw32Y6TVHGFCM0Grq+gzN1fLQhXPR35GYLexwucLM nCbT/xSmOG7BGFH2gNViRHnlCfuseQrb372HSNHCK7TJhSvV6pAkQi7vmpJnWC+a /TXlCR1Tora7Y5gTI04H+7lZM8yCCVZFKtgKn1VzHQZAAWaezx7hS7clOUzLGuin 0WIxKmHjD6iFeK4QVu+ULfSULPSm1fienHF+/nDQkuj1xj3kh+JYPDUhnh6lAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUoggsy6x78NxQ51phtXf3YZK7z2kwHwYDVR0j BBgwFoAUWJ2hRbGoIlOLsuaNiS5nQrNPBwEwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0tILzEv NTg5REExNDVCMUE4MjI1MzhCQjJFNjhEODkyRTY3NDJCMzRGMDcwMS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMC81ODlEQTE0NUIxQTgyMjUzOEJCMkU2OEQ4OTJFNjc0 MkIzNEYwNzAxLmNlcjB9BggrBgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuGYXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0tILzEvMzEzNjMxMmUzMjM0MzgyZTMx MzIzODJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzMTM2MzQzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAaH4gDANBgkqhkiG9w0BAQsFAAOCAQEAQ0c4zNp8+ZvvHDZ5Ygpys4g6F7tK 7sF7KUznDWuDQ3pP/4GFdSvWNRgTF0/nLozdgyrDq5dunbCTcEb1pkMLwfjDV2pI f03dE6JEA6wR83Vk5ElVM7axATiaaOWvY46/HshZ4C9gbMEL3zmx26WU11I3p8Gl uRJk2J8jrfxMCLSEqdsQ6o8+SMz96VLDvgo6LBiBxprS0R7XDdPGrDLYxEL1Vy9h dDPWYj1vUzhWJfiwCEIZGHCWcWd0qtm2bT0HyM1e1M1HUNup81Z6+ot6q2ivroCa GQ8X5+v0A+rMv+ZweOnuVLEk/GejhvRFMbldB2tGZgDBum9NkfAfjoWOHA== -----END CERTIFICATE-----Generated at Wed May 13 10:40:31 2026 by rpki-client