$ rpki-client -vvf rpkica.twnic.tw/rpki/TBCOM/0/3231302e3230322e35362e302f32312d3234203d3e203137373039.roa File: 3231302e3230322e35362e302f32312d3234203d3e203137373039.roa (raw, json) Hash identifier: xftW1GRATpHGzJ3JWesoRnDlcPOcB4oNrZ0G3whDWII= Subject key identifier: 3E:7D:BF:B7:D2:CF:DA:5C:0A:D1:67:00:9D:40:94:E2:67:AC:E4:7F Certificate issuer: /CN=C0ACF76C345159D3241315F2997526806968CB40 Certificate serial: 16985EF1DA9AF753AC8263FB2E9A0EB01B7D5B17 Authority key identifier: C0:AC:F7:6C:34:51:59:D3:24:13:15:F2:99:75:26:80:69:68:CB:40 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C0ACF76C345159D3241315F2997526806968CB40.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TBCOM/0/3231302e3230322e35362e302f32312d3234203d3e203137373039.roa Signing time: Mon 11 May 2026 17:37:03 +0000 ROA not before: Mon 11 May 2026 17:32:03 +0000 ROA not after: Mon 10 May 2027 17:37:03 +0000 asID: 17709 IP address blocks: 210.202.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TBCOM/0/C0ACF76C345159D3241315F2997526806968CB40.crl rsync://rpkica.twnic.tw/rpki/TBCOM/0/C0ACF76C345159D3241315F2997526806968CB40.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C0ACF76C345159D3241315F2997526806968CB40.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:98:5e:f1:da:9a:f7:53:ac:82:63:fb:2e:9a:0e:b0:1b:7d:5b:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0ACF76C345159D3241315F2997526806968CB40 Validity Not Before: May 11 17:32:03 2026 GMT Not After : May 10 17:37:03 2027 GMT Subject: CN=3E7DBFB7D2CFDA5C0AD167009D4094E267ACE47F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:95:75:cf:87:ea:b2:72:8e:79:bd:a9:9a: 3f:21:30:bb:99:7c:35:27:c3:fc:19:e2:de:73:5d: 56:0e:1e:2e:fd:dd:1c:60:23:00:29:fd:24:35:d6: 16:53:e7:16:2a:8b:f2:49:08:9f:9b:db:b3:7d:58: 74:22:1d:10:4f:c4:f5:a4:b7:27:90:0a:12:82:a3: 20:1a:35:81:41:0c:43:9b:dd:c3:86:52:ae:3d:28: 5f:ee:1c:a1:75:01:0d:b7:4d:d7:8d:5a:01:8d:99: 79:c3:26:81:02:4c:70:1a:f4:df:46:21:41:3b:63: f2:72:a7:4a:18:07:ef:e1:15:38:2b:4b:bb:49:99: 96:b2:26:d0:ed:c5:a0:f9:1a:2c:54:87:03:af:2e: 43:ed:64:a2:c3:35:6a:d8:04:e4:0a:08:8d:fd:7a: 3c:7c:d8:a1:a7:ad:f2:f8:71:91:de:29:97:2a:a9: 13:8a:e5:2b:d9:f1:00:e6:13:3e:ee:0a:b3:86:2a: da:36:b7:e4:69:e2:d1:78:92:3e:68:cc:2d:6d:01: 5f:71:95:59:f3:d5:df:46:54:55:40:08:e2:80:b7: a6:f6:ca:4d:f9:f5:07:83:26:0b:aa:ff:ca:6a:db: 3d:bb:89:6a:db:d2:e4:49:15:07:3a:71:bd:76:e6: 8a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7D:BF:B7:D2:CF:DA:5C:0A:D1:67:00:9D:40:94:E2:67:AC:E4:7F X509v3 Authority Key Identifier: keyid:C0:AC:F7:6C:34:51:59:D3:24:13:15:F2:99:75:26:80:69:68:CB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TBCOM/0/C0ACF76C345159D3241315F2997526806968CB40.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C0ACF76C345159D3241315F2997526806968CB40.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TBCOM/0/3231302e3230322e35362e302f32312d3234203d3e203137373039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.202.56.0/21 Signature Algorithm: sha256WithRSAEncryption 81:96:87:82:3e:a9:29:eb:4e:7e:9d:ba:07:91:a1:42:78:30: 2f:25:88:af:d5:a7:32:1b:ac:8a:fc:14:12:75:24:4f:94:80: 5e:bc:98:4c:76:16:a3:a5:ec:e6:ba:5e:f1:ae:6a:e8:a0:0f: 9c:a9:f7:5e:cb:b7:f4:c1:10:e4:7d:8d:fc:a0:f3:f8:f4:c2: c3:bc:30:4d:be:85:79:68:5d:c6:37:e9:9d:d9:2b:53:1f:89: 15:6a:2f:ec:c6:0f:5b:e7:73:bf:8e:0e:1e:5a:89:c9:73:cd: 1d:20:f7:8b:ef:7f:9a:28:17:5e:da:e0:09:25:7d:4b:8b:2f: 1f:f4:c2:e7:8d:94:28:9a:87:f8:be:d4:29:f7:cc:fd:a9:48: 81:b3:a6:b7:1b:e7:20:04:3d:46:94:eb:a2:84:8e:6c:22:e0: 27:96:d1:2e:6a:97:63:2f:b4:ba:d2:64:bd:ef:68:80:da:16: 91:43:95:66:3a:34:12:b0:65:a9:3e:4e:78:2a:c7:91:18:fb: f2:0d:56:e2:42:52:c7:f5:1f:7a:92:d6:d3:17:6e:bc:fb:80: 32:f6:c8:5a:f7:a8:fe:fa:7e:6c:b2:1c:56:8a:64:be:39:11: 0c:04:4d:32:12:61:d9:12:bd:b9:c8:39:25:f9:b2:0c:a0:b2: c4:b6:c3:a5 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUFphe8dqa91OsgmP7LpoOsBt9WxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBBQ0Y3NkMzNDUxNTlEMzI0MTMxNUYyOTk3NTI2ODA2 OTY4Q0I0MDAeFw0yNjA1MTExNzMyMDNaFw0yNzA1MTAxNzM3MDNaMDMxMTAvBgNV BAMTKDNFN0RCRkI3RDJDRkRBNUMwQUQxNjcwMDlENDA5NEUyNjdBQ0U0N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQBpV1z4fqsnKOeb2pmj8hMLuZ fDUnw/wZ4t5zXVYOHi793RxgIwAp/SQ11hZT5xYqi/JJCJ+b27N9WHQiHRBPxPWk tyeQChKCoyAaNYFBDEOb3cOGUq49KF/uHKF1AQ23TdeNWgGNmXnDJoECTHAa9N9G IUE7Y/Jyp0oYB+/hFTgrS7tJmZayJtDtxaD5GixUhwOvLkPtZKLDNWrYBOQKCI39 ejx82KGnrfL4cZHeKZcqqROK5SvZ8QDmEz7uCrOGKto2t+Rp4tF4kj5ozC1tAV9x lVnz1d9GVFVACOKAt6b2yk359QeDJguq/8pq2z27iWrb0uRJFQc6cb125op5AgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUPn2/t9LP2lwK0WcAnUCU4mes5H8wHwYDVR0j BBgwFoAUwKz3bDRRWdMkExXymXUmgGloy0AwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEJDT00v MC9DMEFDRjc2QzM0NTE1OUQzMjQxMzE1RjI5OTc1MjY4MDY5NjhDQjQwLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0MwQUNGNzZDMzQ1MTU5RDMyNDEzMTVGMjk5NzUy NjgwNjk2OENCNDAuY2VyMHsGCCsGAQUFBwELBG8wbTBrBggrBgEFBQcwC4ZfcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQkNPTS8wLzMyMzEzMDJlMzIzMDMy MmUzNTM2MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzEzNzM3MzAzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA9LKODANBgkqhkiG9w0BAQsFAAOCAQEAgZaHgj6pKetOfp26B5GhQngwLyWI r9WnMhusivwUEnUkT5SAXryYTHYWo6Xs5rpe8a5q6KAPnKn3Xsu39MEQ5H2N/KDz +PTCw7wwTb6FeWhdxjfpndkrUx+JFWov7MYPW+dzv44OHlqJyXPNHSD3i+9/migX XtrgCSV9S4svH/TC542UKJqH+L7UKffM/alIgbOmtxvnIAQ9RpTrooSObCLgJ5bR LmqXYy+0utJkve9ogNoWkUOVZjo0ErBlqT5OeCrHkRj78g1W4kJSx/UfepLW0xdu vPuAMvbIWveo/vp+bLIcVopkvjkRDARNMhJh2RK9ucg5JfmyDKCyxLbDpQ== -----END CERTIFICATE-----Generated at Wed May 13 06:47:37 2026 by rpki-client