$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/1/3139322e3139322e32342e302f32332d3233203d3e2031363539.roa File: 3139322e3139322e32342e302f32332d3233203d3e2031363539.roa (raw, json) Hash identifier: xtWrObZcj7B4RkUh4vAnEpEuAWW/4dMzvfw5qNWNa64= Subject key identifier: 9B:38:03:0F:03:98:EB:EE:71:5E:54:1A:B3:9F:03:E3:75:5B:00:B7 Certificate issuer: /CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Certificate serial: 16EBA388AC5112D2E19BE0BD13CB82D9C9AFE052 Authority key identifier: B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/1/3139322e3139322e32342e302f32332d3233203d3e2031363539.roa Signing time: Mon 11 May 2026 21:00:38 +0000 ROA not before: Mon 11 May 2026 20:55:38 +0000 ROA not after: Mon 10 May 2027 21:00:38 +0000 asID: 1659 IP address blocks: 192.192.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 01:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:eb:a3:88:ac:51:12:d2:e1:9b:e0:bd:13:cb:82:d9:c9:af:e0:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7F1A12A59F9E0244C445D196D33CF5076B3CF6A Validity Not Before: May 11 20:55:38 2026 GMT Not After : May 10 21:00:38 2027 GMT Subject: CN=9B38030F0398EBEE715E541AB39F03E3755B00B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:10:99:04:c2:be:ba:14:48:30:d6:0b:b7:68: a7:a7:36:a8:08:58:51:76:52:e8:d7:82:47:8a:61: 3b:5e:6b:67:8e:8d:a1:6f:ef:0d:55:94:88:c6:5a: 9e:86:29:77:19:ca:a7:14:c0:be:7d:e5:15:b4:65: ec:96:4d:d6:25:f0:cf:9c:5d:9d:81:66:6d:07:64: 9b:9f:33:04:8f:6a:73:6b:44:57:a5:fc:69:a2:b2: b1:ce:9c:c3:ef:d7:f0:e2:cb:8b:e3:ca:dd:78:56: 89:79:74:5e:a7:41:32:f8:d9:36:d0:cd:bd:6c:0b: a3:95:79:c9:39:1f:23:9e:ed:c6:82:76:dc:89:b4: f1:77:7c:16:18:47:40:e3:75:67:17:51:35:6b:34: f9:6e:47:3b:a8:db:17:c4:09:c1:18:84:d9:45:a3: c6:b7:a9:cc:a3:b7:33:55:1d:9d:26:32:12:56:e2: b8:ac:04:a7:b8:36:ab:d5:76:51:aa:39:4f:a4:47: 19:85:2d:79:e2:9d:dc:ab:dc:28:a9:ae:d3:43:72: 2c:a8:7d:20:af:e7:6b:cb:2d:a6:5f:7b:a6:1c:d6: fd:c9:fe:2c:ef:0d:ce:86:7d:1c:58:90:31:9e:db: 74:9a:b5:e8:7a:68:b0:b7:95:68:78:4d:44:06:69: 63:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:38:03:0F:03:98:EB:EE:71:5E:54:1A:B3:9F:03:E3:75:5B:00:B7 X509v3 Authority Key Identifier: keyid:B7:F1:A1:2A:59:F9:E0:24:4C:44:5D:19:6D:33:CF:50:76:B3:CF:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TANET/1/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B7F1A12A59F9E0244C445D196D33CF5076B3CF6A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/1/3139322e3139322e32342e302f32332d3233203d3e2031363539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.192.24.0/23 Signature Algorithm: sha256WithRSAEncryption 41:9b:7d:5c:2e:47:fa:c2:41:fe:8e:53:a3:e4:3e:68:5c:e9: ed:1f:10:7b:a2:e9:8d:a3:61:14:6c:36:e3:68:0c:32:01:a3: d3:d4:cc:d1:fd:96:fc:9c:e8:10:06:bd:c6:e4:12:64:eb:2a: f3:3f:fb:07:c8:c4:20:68:a3:d9:8f:a7:63:7b:0e:fe:8c:00: c4:95:af:9f:b2:f2:ec:de:eb:ef:6b:83:6a:ee:df:ad:85:ea: b6:d5:67:41:73:fc:37:c7:1a:c6:2f:8f:ca:cc:c6:ad:25:d0: d6:01:46:dd:84:1f:28:fb:3b:1d:94:ac:e4:02:c6:32:8b:3f: bf:78:34:5d:75:ea:d2:d6:5a:22:de:aa:69:c2:6e:6c:58:35: 99:fd:59:bb:a8:26:de:a7:83:42:fe:d7:bc:9c:d3:d0:95:87: 31:28:cd:c5:4f:e1:c1:0a:94:55:84:8b:1e:43:ce:68:9a:8d: 7b:2f:66:b1:64:ad:ed:ce:aa:23:16:9d:f7:ef:09:20:60:42: de:07:74:e6:1d:a6:54:da:0c:cc:3c:e1:50:20:a8:b3:83:fa: 21:06:cc:18:aa:43:d5:23:ef:1c:48:2e:c1:99:d8:ac:42:c7: 60:10:1e:ec:86:49:47:f7:9e:32:fb:57:7d:07:71:82:14:00: 79:db:fd:0a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUFuujiKxREtLhm+C9E8uC2cmv4FIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdGMUExMkE1OUY5RTAyNDRDNDQ1RDE5NkQzM0NGNTA3 NkIzQ0Y2QTAeFw0yNjA1MTEyMDU1MzhaFw0yNzA1MTAyMTAwMzhaMDMxMTAvBgNV BAMTKDlCMzgwMzBGMDM5OEVCRUU3MTVFNTQxQUIzOUYwM0UzNzU1QjAwQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrEJkEwr66FEgw1gu3aKenNqgI WFF2UujXgkeKYTtea2eOjaFv7w1VlIjGWp6GKXcZyqcUwL595RW0ZeyWTdYl8M+c XZ2BZm0HZJufMwSPanNrRFel/GmisrHOnMPv1/Diy4vjyt14Vol5dF6nQTL42TbQ zb1sC6OVeck5HyOe7caCdtyJtPF3fBYYR0DjdWcXUTVrNPluRzuo2xfECcEYhNlF o8a3qcyjtzNVHZ0mMhJW4risBKe4NqvVdlGqOU+kRxmFLXnindyr3CiprtNDciyo fSCv52vLLaZfe6Yc1v3J/izvDc6GfRxYkDGe23Sateh6aLC3lWh4TUQGaWNfAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUmzgDDwOY6+5xXlQas58D43VbALcwHwYDVR0j BBgwFoAUt/GhKln54CRMRF0ZbTPPUHazz2owDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv MS9CN0YxQTEyQTU5RjlFMDI0NEM0NDVEMTk2RDMzQ0Y1MDc2QjNDRjZBLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8wL0I3RjFBMTJBNTlGOUUwMjQ0QzQ0NUQxOTZEMzND RjUwNzZCM0NGNkEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8xLzMxMzkzMjJlMzEzOTMy MmUzMjM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzEzNjM1Mzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHAwBgwDQYJKoZIhvcNAQELBQADggEBAEGbfVwuR/rCQf6OU6PkPmhc6e0fEHui 6Y2jYRRsNuNoDDIBo9PUzNH9lvyc6BAGvcbkEmTrKvM/+wfIxCBoo9mPp2N7Dv6M AMSVr5+y8uze6+9rg2ru362F6rbVZ0Fz/DfHGsYvj8rMxq0l0NYBRt2EHyj7Ox2U rOQCxjKLP794NF116tLWWiLeqmnCbmxYNZn9WbuoJt6ng0L+17yc09CVhzEozcVP 4cEKlFWEix5DzmiajXsvZrFkre3OqiMWnffvCSBgQt4HdOYdplTaDMw84VAgqLOD +iEGzBiqQ9Uj7xxILsGZ2KxCx2AQHuyGSUf3njL7V30HcYIUAHnb/Qo= -----END CERTIFICATE-----Generated at Wed May 13 00:44:10 2026 by rpki-client