$ rpki-client -vvf rpkica.twnic.tw/rpki/NCHC/0/3231312e37392e34382e302f32302d3234203d3e2037353339.roa File: 3231312e37392e34382e302f32302d3234203d3e2037353339.roa (raw, json) Hash identifier: zGnJyZ0D1nHAUduWv/k7+HUZrGVfV62GWYW/VYZP4Xo= Subject key identifier: 47:F6:8F:9A:3B:9F:3F:CC:92:E3:E8:D3:92:29:43:F1:38:B4:6B:A8 Certificate issuer: /CN=2C4838ED872E38E97456B74C33E4178C4E1253A2 Certificate serial: 7D9B55AB7D8AE8B8329FC7BED3AE4DB9130B239D Authority key identifier: 2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCHC/0/3231312e37392e34382e302f32302d3234203d3e2037353339.roa Signing time: Mon 11 May 2026 16:42:10 +0000 ROA not before: Mon 11 May 2026 16:37:10 +0000 ROA not after: Mon 10 May 2027 16:42:10 +0000 asID: 7539 IP address blocks: 211.79.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.crl rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:9b:55:ab:7d:8a:e8:b8:32:9f:c7:be:d3:ae:4d:b9:13:0b:23:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C4838ED872E38E97456B74C33E4178C4E1253A2 Validity Not Before: May 11 16:37:10 2026 GMT Not After : May 10 16:42:10 2027 GMT Subject: CN=47F68F9A3B9F3FCC92E3E8D3922943F138B46BA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:65:34:ff:f4:95:09:d6:82:60:0f:7b:e0:a0: 5a:90:1a:5e:7e:ae:18:ad:ee:45:99:1f:31:24:c4: bf:a3:80:f4:47:3b:23:55:50:13:dc:66:73:6d:23: 51:ef:59:7b:40:f1:c8:a4:91:0b:8a:da:dc:d2:ba: a8:ac:e8:00:74:81:df:12:c2:d3:0f:6c:94:97:4d: 6d:05:1d:73:5f:28:de:33:3a:a1:bb:46:de:f5:75: e5:27:7d:e5:86:0b:e0:4c:8a:4d:49:70:da:03:e7: 9b:a7:89:8e:42:15:65:c8:46:fe:e5:95:a1:13:ef: 91:8b:b5:e8:98:19:d2:24:97:fa:af:ae:ba:df:30: e8:fd:09:f0:8b:07:13:06:89:58:78:8e:5f:f5:8c: c9:71:88:3d:e9:d9:3d:ee:6b:e6:d8:e7:57:1d:46: a5:94:7b:64:99:82:a3:1b:3e:a0:c7:f7:34:62:b2: d0:8e:a8:e2:c6:2e:7d:ca:24:2f:f1:47:45:6f:01: 07:9c:b3:1b:88:55:9d:63:c5:82:09:bd:ec:df:be: b5:e6:86:83:b9:3f:08:8a:06:76:fd:97:f4:7b:70: aa:b0:26:73:36:9f:db:a5:42:01:fb:9c:e2:7c:59: 77:65:33:24:b0:cb:07:30:0e:54:da:56:1b:d9:34: db:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F6:8F:9A:3B:9F:3F:CC:92:E3:E8:D3:92:29:43:F1:38:B4:6B:A8 X509v3 Authority Key Identifier: keyid:2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/3231312e37392e34382e302f32302d3234203d3e2037353339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.79.48.0/20 Signature Algorithm: sha256WithRSAEncryption 2c:a5:88:27:8f:b7:41:45:55:c8:18:18:dd:1f:b8:56:c9:03: 20:2f:09:e7:7b:43:b3:48:95:cb:a0:4c:96:86:91:c9:ce:42: b0:2e:00:6f:ad:99:48:ba:fb:3e:52:ab:fd:10:e5:65:21:5f: 29:99:de:61:2d:fd:02:fe:64:51:53:30:0f:9d:c3:f8:c2:b2: dc:00:0f:15:68:35:36:f4:37:12:3e:cf:34:7f:ee:4a:83:72: 33:f6:43:60:82:ee:4f:45:07:0c:7b:50:f8:e4:54:62:4d:c7: c5:fe:65:1d:89:44:b4:f5:04:ae:e0:de:ff:e6:a2:4f:a6:3f: 57:da:e5:e2:23:43:05:ea:c9:dc:56:d4:cf:f0:1d:0e:4e:09: 59:92:8c:56:25:19:7b:4d:e7:7e:e7:27:8a:ae:0a:70:30:79: e0:41:bf:3b:38:7a:21:82:40:03:23:bc:f0:4c:f0:ed:90:36: 49:ac:e1:59:d5:1c:7b:ba:cb:14:22:4b:7d:4f:15:12:9f:18: 97:f6:a6:76:ee:18:a6:e1:c8:fb:76:00:f4:0e:24:09:9d:ef: b0:c8:27:85:c8:3d:a8:46:71:89:4d:b3:e0:81:23:e8:32:a5: dd:49:4b:fe:07:47:97:e8:4f:45:c4:5e:b8:b8:21:ea:e2:64: ba:77:45:ca -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUfZtVq32K6Lgyn8e+065NuRMLI50wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkM0ODM4RUQ4NzJFMzhFOTc0NTZCNzRDMzNFNDE3OEM0 RTEyNTNBMjAeFw0yNjA1MTExNjM3MTBaFw0yNzA1MTAxNjQyMTBaMDMxMTAvBgNV BAMTKDQ3RjY4RjlBM0I5RjNGQ0M5MkUzRThEMzkyMjk0M0YxMzhCNDZCQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZTT/9JUJ1oJgD3vgoFqQGl5+ rhit7kWZHzEkxL+jgPRHOyNVUBPcZnNtI1HvWXtA8cikkQuK2tzSuqis6AB0gd8S wtMPbJSXTW0FHXNfKN4zOqG7Rt71deUnfeWGC+BMik1JcNoD55uniY5CFWXIRv7l laET75GLteiYGdIkl/qvrrrfMOj9CfCLBxMGiVh4jl/1jMlxiD3p2T3ua+bY51cd RqWUe2SZgqMbPqDH9zRistCOqOLGLn3KJC/xR0VvAQecsxuIVZ1jxYIJvezfvrXm hoO5PwiKBnb9l/R7cKqwJnM2n9ulQgH7nOJ8WXdlMySwywcwDlTaVhvZNNudAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUR/aPmjufP8yS4+jTkilD8Ti0a6gwHwYDVR0j BBgwFoAULEg47YcuOOl0VrdMM+QXjE4SU6IwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNIQy8w LzJDNDgzOEVEODcyRTM4RTk3NDU2Qjc0QzMzRTQxNzhDNEUxMjUzQTIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMkM0ODM4RUQ4NzJFMzhFOTc0NTZCNzRDMzNFNDE3 OEM0RTEyNTNBMi5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSEMvMC8zMjMxMzEyZTM3MzkyZTM0 MzgyZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzNzM1MzMzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNNP MDANBgkqhkiG9w0BAQsFAAOCAQEALKWIJ4+3QUVVyBgY3R+4VskDIC8J53tDs0iV y6BMloaRyc5CsC4Ab62ZSLr7PlKr/RDlZSFfKZneYS39Av5kUVMwD53D+MKy3AAP FWg1NvQ3Ej7PNH/uSoNyM/ZDYILuT0UHDHtQ+ORUYk3Hxf5lHYlEtPUEruDe/+ai T6Y/V9rl4iNDBerJ3FbUz/AdDk4JWZKMViUZe03nfucniq4KcDB54EG/Ozh6IYJA AyO88Ezw7ZA2SazhWdUce7rLFCJLfU8VEp8Yl/amdu4YpuHI+3YA9A4kCZ3vsMgn hcg9qEZxiU2z4IEj6DKl3UlL/gdHl+hPRcReuLgh6uJkundFyg== -----END CERTIFICATE-----Generated at Wed May 13 04:27:09 2026 by rpki-client