$ rpki-client -vvf rpkica.twnic.tw/rpki/TINP/0/34392e3231332e3132382e302f31372d3234203d3e2034373830.roa File: 34392e3231332e3132382e302f31372d3234203d3e2034373830.roa (raw, json) Hash identifier: WjsN/gQB782zVCbPzF5wwoFHlpFdlC15xpTrK1jeNHk= Subject key identifier: 70:2C:BD:6E:0C:68:A3:4C:3F:38:A4:48:12:9A:F9:79:72:D9:7E:65 Certificate issuer: /CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Certificate serial: 4D38202D5DC4FCDA884328D2603F97A6BBDCEC71 Authority key identifier: BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TINP/0/34392e3231332e3132382e302f31372d3234203d3e2034373830.roa Signing time: Mon 11 May 2026 17:10:49 +0000 ROA not before: Mon 11 May 2026 17:05:49 +0000 ROA not after: Mon 10 May 2027 17:10:49 +0000 asID: 4780 IP address blocks: 49.213.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:38:20:2d:5d:c4:fc:da:88:43:28:d2:60:3f:97:a6:bb:dc:ec:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Validity Not Before: May 11 17:05:49 2026 GMT Not After : May 10 17:10:49 2027 GMT Subject: CN=702CBD6E0C68A34C3F38A448129AF97972D97E65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d6:98:6c:61:30:96:89:b2:db:17:8f:ab:22: 14:81:12:d5:12:1b:9c:0a:ea:2c:56:cd:6c:62:35: e9:41:f2:97:62:94:a0:bf:b1:c8:7c:29:65:ea:86: 9d:89:42:53:46:66:95:f1:f9:02:79:f0:a7:e8:f4: 9b:bc:ea:52:37:75:b8:7e:6c:49:43:dc:2e:3a:d3: 21:08:de:23:7e:fc:79:d4:20:3d:09:de:5f:70:f1: d6:4c:2d:e4:5f:78:c9:b7:b7:2d:73:f4:40:4b:7d: 05:38:6f:bc:0d:9e:cc:c8:76:76:ae:7e:48:44:22: 72:d4:88:06:b3:68:87:95:c3:55:ed:9f:12:3e:20: d1:32:ea:41:7d:9a:bb:e0:32:2f:f7:4b:d7:eb:43: 6d:20:10:49:55:2d:21:3a:15:05:81:01:c1:50:30: eb:c2:48:1f:52:8f:16:c7:51:05:d8:a1:62:8d:28: 53:6c:94:09:ac:2c:2f:9b:da:01:1b:c9:74:25:f4: 9d:dd:e7:ba:d1:26:6c:5c:ac:52:6c:41:00:39:ca: 64:04:41:d8:bb:e3:96:15:e8:fe:c7:bc:9f:3b:b3: c2:50:fd:a9:ca:ef:81:e6:2e:3e:4f:0d:c4:58:75: 84:3d:03:e1:40:9e:d8:db:2a:c8:f1:44:86:df:51: 12:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2C:BD:6E:0C:68:A3:4C:3F:38:A4:48:12:9A:F9:79:72:D9:7E:65 X509v3 Authority Key Identifier: keyid:BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TINP/0/34392e3231332e3132382e302f31372d3234203d3e2034373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.213.128.0/17 Signature Algorithm: sha256WithRSAEncryption 0f:78:ca:96:8c:34:78:b2:cd:ed:74:61:9b:46:41:7f:84:70: 33:b9:84:c9:13:18:c0:df:5c:8a:9c:f3:c7:2b:57:8c:5e:5f: 5b:84:fa:1a:8b:a9:ba:5d:d5:ba:c1:1d:c3:f9:96:c3:56:8c: c7:13:94:a6:0b:49:61:b6:7d:42:c1:f0:c3:2f:f7:96:b1:1c: 14:5b:f8:fe:75:2c:64:88:0f:90:04:d0:8b:2b:7b:14:4a:64: 27:2d:2e:77:6d:d0:6e:c0:d7:c3:26:db:c7:5b:e6:c0:2a:59: ff:11:eb:24:12:28:0e:76:63:96:af:8d:47:19:c8:dd:1e:c9: f2:49:04:cb:06:df:ae:0d:9b:41:04:30:81:01:90:f2:16:9f: e3:92:c1:67:3d:0d:12:92:2f:ef:0c:8e:77:45:60:1a:1d:78: 5c:01:c9:99:e5:f7:ee:4d:ef:3d:63:48:19:a0:c1:72:00:4e: 9d:5b:77:25:e3:37:90:e1:f5:64:73:85:b5:8d:91:4f:66:38: 71:5a:6b:e4:73:d6:bd:25:4c:be:dc:ff:b1:c3:a5:5d:59:8e: 96:68:c8:52:82:1f:3a:95:b2:ea:55:ed:7f:b1:84:06:83:90: 70:48:4c:9d:97:1e:a9:cb:6a:90:7d:d7:b3:c1:07:38:83:43: 05:2b:42:c8 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUTTggLV3E/NqIQyjSYD+Xprvc7HEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3M0Qy NDdBNTYwRjAeFw0yNjA1MTExNzA1NDlaFw0yNzA1MTAxNzEwNDlaMDMxMTAvBgNV BAMTKDcwMkNCRDZFMEM2OEEzNEMzRjM4QTQ0ODEyOUFGOTc5NzJEOTdFNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp1phsYTCWibLbF4+rIhSBEtUS G5wK6ixWzWxiNelB8pdilKC/sch8KWXqhp2JQlNGZpXx+QJ58Kfo9Ju86lI3dbh+ bElD3C460yEI3iN+/HnUID0J3l9w8dZMLeRfeMm3ty1z9EBLfQU4b7wNnszIdnau fkhEInLUiAazaIeVw1XtnxI+INEy6kF9mrvgMi/3S9frQ20gEElVLSE6FQWBAcFQ MOvCSB9SjxbHUQXYoWKNKFNslAmsLC+b2gEbyXQl9J3d57rRJmxcrFJsQQA5ymQE Qdi745YV6P7HvJ87s8JQ/anK74HmLj5PDcRYdYQ9A+FAntjbKsjxRIbfURKBAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUcCy9bgxoo0w/OKRIEpr5eXLZfmUwHwYDVR0j BBgwFoAUvML37QzVZ3yYh+DyS6jnPSR6Vg8wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElOUC8w L0JDQzJGN0VEMENENTY3N0M5ODg3RTBGMjRCQThFNzNEMjQ3QTU2MEYuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3 M0QyNDdBNTYwRi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RJTlAvMC8zNDM5MmUzMjMxMzMyZTMx MzIzODJlMzAyZjMxMzcyZDMyMzQyMDNkM2UyMDM0MzczODMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH MdWAMA0GCSqGSIb3DQEBCwUAA4IBAQAPeMqWjDR4ss3tdGGbRkF/hHAzuYTJExjA 31yKnPPHK1eMXl9bhPoai6m6XdW6wR3D+ZbDVozHE5SmC0lhtn1CwfDDL/eWsRwU W/j+dSxkiA+QBNCLK3sUSmQnLS53bdBuwNfDJtvHW+bAKln/EeskEigOdmOWr41H GcjdHsnySQTLBt+uDZtBBDCBAZDyFp/jksFnPQ0Ski/vDI53RWAaHXhcAcmZ5ffu Te89Y0gZoMFyAE6dW3cl4zeQ4fVkc4W1jZFPZjhxWmvkc9a9JUy+3P+xw6VdWY6W aMhSgh86lbLqVe1/sYQGg5BwSEydlx6py2qQfdezwQc4g0MFK0LI -----END CERTIFICATE-----Generated at Wed May 13 00:34:01 2026 by rpki-client