$ rpki-client -vvf rpkica.twnic.tw/rpki/SHIYIYI/0/34392e3231332e33342e302f32332d3234203d3e2037353336.roa File: 34392e3231332e33342e302f32332d3234203d3e2037353336.roa (raw, json) Hash identifier: UiYvDw3Nz5+XLnUJ6ot0sHBwCYvrMQN4qa4YEtJyIAc= Subject key identifier: CA:11:DF:5F:EB:57:D8:20:E2:6C:67:8D:7F:DE:8B:A5:7C:05:1F:3E Certificate issuer: /CN=CA678C886D87F023B9297877BF550E88E90AE169 Certificate serial: 14705F16F83EB6E66E24E36033386B2C94A9173D Authority key identifier: CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/34392e3231332e33342e302f32332d3234203d3e2037353336.roa Signing time: Mon 11 May 2026 17:55:44 +0000 ROA not before: Mon 11 May 2026 17:50:44 +0000 ROA not after: Mon 10 May 2027 17:55:44 +0000 asID: 7536 IP address blocks: 49.213.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:70:5f:16:f8:3e:b6:e6:6e:24:e3:60:33:38:6b:2c:94:a9:17:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA678C886D87F023B9297877BF550E88E90AE169 Validity Not Before: May 11 17:50:44 2026 GMT Not After : May 10 17:55:44 2027 GMT Subject: CN=CA11DF5FEB57D820E26C678D7FDE8BA57C051F3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:73:a2:d2:41:04:2d:00:59:75:bd:ad:7a:25: fe:b8:b2:d7:38:66:2e:ff:8d:9f:74:bf:39:a5:36: fb:6d:0a:c4:3a:bd:35:07:b7:bb:3c:eb:75:86:26: a1:16:60:ba:0a:a1:ed:75:0c:9b:bb:89:dd:3f:97: 2c:b5:2a:2e:cf:1b:28:14:db:a8:4e:d4:14:88:bd: a6:7d:aa:0d:3a:f7:5f:40:ab:3e:76:db:56:34:f9: 71:dd:06:da:44:c4:8c:fd:cc:ee:78:f6:2f:86:dd: ab:57:0b:19:e9:96:df:09:db:69:53:f3:0b:32:70: 1d:80:c6:fd:fb:40:55:1c:e4:6a:d2:30:49:89:c7: a7:14:43:ee:da:7c:76:99:0a:9b:a3:dc:fc:93:ed: 2f:45:a0:d3:2f:31:f1:8e:cf:e7:c8:84:ba:cb:33: 81:82:8e:f2:35:f9:3c:94:85:b1:9c:de:4a:e7:00: ca:62:28:ca:83:9a:15:b5:09:3a:32:41:ab:12:ad: 15:5c:e4:5d:1e:88:1b:e0:40:f6:a9:26:92:b8:f1: fe:30:58:ee:a5:30:3c:1e:f3:61:ea:a5:0c:35:02: 10:94:9e:8b:f7:02:72:36:37:e5:fb:14:80:c0:b1: 15:4e:1d:ab:ee:1c:0b:aa:e0:e7:3c:3c:1e:66:13: fe:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:11:DF:5F:EB:57:D8:20:E2:6C:67:8D:7F:DE:8B:A5:7C:05:1F:3E X509v3 Authority Key Identifier: keyid:CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/34392e3231332e33342e302f32332d3234203d3e2037353336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.213.34.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:a4:15:28:bf:c3:4b:42:f0:59:a7:ba:58:0a:93:c3:0e:16: 19:a4:e7:0c:0c:27:15:96:53:c4:ac:25:c9:c8:08:d2:ac:67: df:ce:fd:79:26:28:bb:c3:3f:bc:a7:5b:4a:fe:34:ad:5c:ac: 49:0d:80:5f:da:59:16:b7:a7:c5:dc:5b:80:25:83:49:d7:9b: 00:c8:7b:b5:76:db:05:e9:15:a5:81:58:3a:e9:bc:ec:d5:15: 42:30:97:b5:0f:27:5b:74:60:18:5e:a3:47:97:04:d7:9b:da: e6:ee:9c:c5:17:0a:7e:e9:64:28:ec:46:3a:94:27:99:6b:12: 23:35:55:ab:dc:41:9c:fe:0b:6d:6f:d0:15:38:78:bb:d3:d4: 36:2b:18:a1:5d:bb:36:66:11:8d:a1:ef:23:bf:95:cc:a4:26: e9:8e:b5:20:93:1f:35:1a:56:97:41:1b:d1:55:fb:8d:44:3d: 63:ae:b4:81:a1:88:19:76:ad:41:24:38:71:b2:99:f2:48:4e: 65:79:81:60:37:2e:e1:19:b4:0c:02:4f:8a:64:0a:47:ed:38: ed:41:93:65:46:74:46:01:a7:5f:7b:2f:3e:a8:5a:75:96:f3: a2:79:4a:01:7c:1b:a2:aa:ea:ef:9a:05:2d:00:3f:35:02:41: f8:16:ec:f7 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUFHBfFvg+tuZuJONgMzhrLJSpFz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1NTBFODhF OTBBRTE2OTAeFw0yNjA1MTExNzUwNDRaFw0yNzA1MTAxNzU1NDRaMDMxMTAvBgNV BAMTKENBMTFERjVGRUI1N0Q4MjBFMjZDNjc4RDdGREU4QkE1N0MwNTFGM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjc6LSQQQtAFl1va16Jf64stc4 Zi7/jZ90vzmlNvttCsQ6vTUHt7s863WGJqEWYLoKoe11DJu7id0/lyy1Ki7PGygU 26hO1BSIvaZ9qg06919Aqz5221Y0+XHdBtpExIz9zO549i+G3atXCxnplt8J22lT 8wsycB2Axv37QFUc5GrSMEmJx6cUQ+7afHaZCpuj3PyT7S9FoNMvMfGOz+fIhLrL M4GCjvI1+TyUhbGc3krnAMpiKMqDmhW1CToyQasSrRVc5F0eiBvgQPapJpK48f4w WO6lMDwe82HqpQw1AhCUnov3AnI2N+X7FIDAsRVOHavuHAuq4Oc8PB5mE/4bAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUyhHfX+tX2CDibGeNf96LpXwFHz4wHwYDVR0j BBgwFoAUymeMiG2H8CO5KXh3v1UOiOkK4WkwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0hJWUlZ SS8wL0NBNjc4Qzg4NkQ4N0YwMjNCOTI5Nzg3N0JGNTUwRTg4RTkwQUUxNjkuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1 NTBFODhFOTBBRTE2OS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1y c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NISVlJWUkvMC8zNDM5MmUzMjMx MzMyZTMzMzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNzM1MzMzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEATHVIjANBgkqhkiG9w0BAQsFAAOCAQEAPKQVKL/DS0LwWae6WAqTww4WGaTn DAwnFZZTxKwlycgI0qxn3879eSYou8M/vKdbSv40rVysSQ2AX9pZFrenxdxbgCWD SdebAMh7tXbbBekVpYFYOum87NUVQjCXtQ8nW3RgGF6jR5cE15va5u6cxRcKfulk KOxGOpQnmWsSIzVVq9xBnP4LbW/QFTh4u9PUNisYoV27NmYRjaHvI7+VzKQm6Y61 IJMfNRpWl0Eb0VX7jUQ9Y660gaGIGXatQSQ4cbKZ8khOZXmBYDcu4Rm0DAJPimQK R+047UGTZUZ0RgGnX3svPqhadZbzonlKAXwboqrq75oFLQA/NQJB+Bbs9w== -----END CERTIFICATE-----Generated at Wed May 13 07:57:32 2026 by rpki-client