$ rpki-client -vvf rpkica.twnic.tw/rpki/PNI/1/3138372e37392e3234302e302f32312d3332203d3e20313331363432.roa File: 3138372e37392e3234302e302f32312d3332203d3e20313331363432.roa (raw, json) Hash identifier: 3hkv3oIEXxYKcJ6+wpyKK8B+zNNvwWzz7gTiuX5XoeM= Subject key identifier: 66:AF:04:20:7B:A3:A2:47:3F:2B:3D:5A:3B:36:AD:70:18:41:2A:54 Certificate issuer: /CN=3C219263F26B99E2DB375CD0CDFE5E54B57B5C26 Certificate serial: 436492A8A21EC8C34A23354A039BF70F010108B3 Authority key identifier: 3C:21:92:63:F2:6B:99:E2:DB:37:5C:D0:CD:FE:5E:54:B5:7B:5C:26 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2/3C219263F26B99E2DB375CD0CDFE5E54B57B5C26.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PNI/1/3138372e37392e3234302e302f32312d3332203d3e20313331363432.roa Signing time: Tue 12 May 2026 09:50:49 +0000 ROA not before: Tue 12 May 2026 09:45:49 +0000 ROA not after: Tue 11 May 2027 09:50:49 +0000 asID: 131642 IP address blocks: 187.79.240.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PNI/1/3C219263F26B99E2DB375CD0CDFE5E54B57B5C26.crl rsync://rpkica.twnic.tw/rpki/PNI/1/3C219263F26B99E2DB375CD0CDFE5E54B57B5C26.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2/3C219263F26B99E2DB375CD0CDFE5E54B57B5C26.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/2/71525972E3C1153DE53054798F51A5BD55C75019.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/2/71525972E3C1153DE53054798F51A5BD55C75019.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/cVJZcuPBFT3lMFR5j1GlvVXHUBk.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:64:92:a8:a2:1e:c8:c3:4a:23:35:4a:03:9b:f7:0f:01:01:08:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C219263F26B99E2DB375CD0CDFE5E54B57B5C26 Validity Not Before: May 12 09:45:49 2026 GMT Not After : May 11 09:50:49 2027 GMT Subject: CN=66AF04207BA3A2473F2B3D5A3B36AD7018412A54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d9:85:e8:a4:25:05:90:16:be:2a:51:60:d9: a6:33:f8:da:dd:dd:86:d5:cc:d1:54:42:4d:57:d2: 3c:05:0a:10:29:0e:4c:8a:36:4f:0d:e8:3c:1b:f2: 41:70:3d:3b:fa:9f:62:65:70:f5:b4:4a:c4:ff:cf: fd:7f:23:02:a3:c1:6f:aa:e8:7c:e1:20:c7:37:4e: 39:fe:9a:27:ff:7c:e0:f9:c2:09:17:76:be:b3:22: 20:65:21:b8:44:82:2c:bf:34:b4:77:a8:2b:af:7f: af:27:23:9e:c8:da:07:84:fb:c2:23:57:0f:20:6d: e1:34:24:73:ea:c2:84:83:96:40:16:9b:cb:d5:99: 89:29:35:8b:c3:84:67:6d:ef:15:73:e5:0f:16:7a: da:ba:fc:87:4b:55:3d:ca:19:c4:9e:1f:1b:f8:dc: a4:b7:10:71:1b:58:b3:37:66:20:54:db:aa:ca:99: 1a:24:0f:73:de:3d:c0:dc:20:3c:6d:ce:1e:dd:74: d8:ef:30:b9:3b:26:22:d8:38:f0:66:f6:94:67:c7: 41:dd:3d:99:99:58:65:6f:04:55:a9:5a:28:27:af: 2c:87:f7:02:7a:dc:72:b4:fb:c7:1a:d9:e2:75:58: ca:99:9f:35:53:fe:91:df:4b:c0:c7:be:f0:a6:19: 3f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:AF:04:20:7B:A3:A2:47:3F:2B:3D:5A:3B:36:AD:70:18:41:2A:54 X509v3 Authority Key Identifier: keyid:3C:21:92:63:F2:6B:99:E2:DB:37:5C:D0:CD:FE:5E:54:B5:7B:5C:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PNI/1/3C219263F26B99E2DB375CD0CDFE5E54B57B5C26.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2/3C219263F26B99E2DB375CD0CDFE5E54B57B5C26.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PNI/1/3138372e37392e3234302e302f32312d3332203d3e20313331363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 187.79.240.0/21 Signature Algorithm: sha256WithRSAEncryption 00:9d:41:b0:17:ef:35:3d:13:a6:1a:cf:2c:c5:54:13:74:69: d8:67:62:91:20:d3:93:21:a2:73:d4:dd:2b:35:c0:52:5e:64: b9:68:51:57:ce:8d:12:02:90:a4:dd:60:2c:85:ff:8f:25:c3: d0:c6:77:80:bf:05:e0:b0:06:df:af:df:94:35:60:2d:5f:d9: a4:b4:d9:d8:5c:c0:7a:cb:75:80:ff:1a:99:d1:5a:a9:ed:e1: 47:79:49:10:1e:b3:6e:04:c5:2d:e7:a5:68:30:72:08:63:fc: bb:be:f1:10:9a:47:7c:b8:0e:c6:6f:53:9f:87:37:6f:e8:45: 29:a2:59:0d:18:c0:e8:51:1d:63:27:3e:68:11:ec:46:d9:4c: b2:72:de:5e:da:6c:a7:06:92:64:49:cd:ee:ff:ac:7a:9a:cf: e6:b7:1a:cc:0f:e7:df:de:92:e4:23:94:e4:49:36:08:69:8c: d3:58:1e:83:60:a8:f3:8b:f6:2b:07:09:de:f4:b6:5e:7a:c8: ee:f8:ba:b5:85:8d:f2:8d:9a:00:8f:41:2a:be:37:c8:e3:e3: cf:0c:94:84:12:21:29:2c:87:26:35:74:e4:e9:bf:87:40:f6: 37:e8:2c:11:f3:f9:02:c3:4c:81:2f:54:5d:23:af:2c:ac:3b: d1:9b:99:f0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUQ2SSqKIeyMNKIzVKA5v3DwEBCLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0MyMTkyNjNGMjZCOTlFMkRCMzc1Q0QwQ0RGRTVFNTRC NTdCNUMyNjAeFw0yNjA1MTIwOTQ1NDlaFw0yNzA1MTEwOTUwNDlaMDMxMTAvBgNV BAMTKDY2QUYwNDIwN0JBM0EyNDczRjJCM0Q1QTNCMzZBRDcwMTg0MTJBNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC02YXopCUFkBa+KlFg2aYz+Nrd 3YbVzNFUQk1X0jwFChApDkyKNk8N6Dwb8kFwPTv6n2JlcPW0SsT/z/1/IwKjwW+q 6HzhIMc3Tjn+mif/fOD5wgkXdr6zIiBlIbhEgiy/NLR3qCuvf68nI57I2geE+8Ij Vw8gbeE0JHPqwoSDlkAWm8vVmYkpNYvDhGdt7xVz5Q8Wetq6/IdLVT3KGcSeHxv4 3KS3EHEbWLM3ZiBU26rKmRokD3PePcDcIDxtzh7ddNjvMLk7JiLYOPBm9pRnx0Hd PZmZWGVvBFWpWignryyH9wJ63HK0+8ca2eJ1WMqZnzVT/pHfS8DHvvCmGT+1AgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUZq8EIHujokc/Kz1aOzatcBhBKlQwHwYDVR0j BBgwFoAUPCGSY/JrmeLbN1zQzf5eVLV7XCYwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUE5JLzEv M0MyMTkyNjNGMjZCOTlFMkRCMzc1Q0QwQ0RGRTVFNTRCNTdCNUMyNi5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMi8zQzIxOTI2M0YyNkI5OUUyREIzNzVDRDBDREZFNUU1 NEI1N0I1QzI2LmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUE5JLzEvMzEzODM3MmUzNzM5MmUzMjM0 MzAyZTMwMmYzMjMxMmQzMzMyMjAzZDNlMjAzMTMzMzEzNjM0MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAO7T/AwDQYJKoZIhvcNAQELBQADggEBAACdQbAX7zU9E6YazyzFVBN0adhnYpEg 05MhonPU3Ss1wFJeZLloUVfOjRICkKTdYCyF/48lw9DGd4C/BeCwBt+v35Q1YC1f 2aS02dhcwHrLdYD/GpnRWqnt4Ud5SRAes24ExS3npWgwcghj/Lu+8RCaR3y4DsZv U5+HN2/oRSmiWQ0YwOhRHWMnPmgR7EbZTLJy3l7abKcGkmRJze7/rHqaz+a3GswP 59/ekuQjlORJNghpjNNYHoNgqPOL9isHCd70tl56yO74urWFjfKNmgCPQSq+N8jj 488MlIQSISkshyY1dOTpv4dA9jfoLBHz+QLDTIEvVF0jryysO9GbmfA= -----END CERTIFICATE-----Generated at Wed May 13 07:45:31 2026 by rpki-client