$ rpki-client -vvf rpkica.twnic.tw/rpki/TINP/0/34392e3231332e3136372e302f32342d3234203d3e2034373830.roa File: 34392e3231332e3136372e302f32342d3234203d3e2034373830.roa (raw, json) Hash identifier: yx/7YOsbjwjRhQe0U+uGLOP4bLyVd7fSkPkkLHMpe7E= Subject key identifier: F3:97:EA:4A:A3:CB:D6:41:DF:71:2A:18:17:AA:34:FD:2C:BC:8F:AE Certificate issuer: /CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Certificate serial: 3EC07113D7DC22DB449B4211DB10248E7032C3A6 Authority key identifier: BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TINP/0/34392e3231332e3136372e302f32342d3234203d3e2034373830.roa Signing time: Mon 11 May 2026 17:07:55 +0000 ROA not before: Mon 11 May 2026 17:02:55 +0000 ROA not after: Mon 10 May 2027 17:07:55 +0000 asID: 4780 IP address blocks: 49.213.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c0:71:13:d7:dc:22:db:44:9b:42:11:db:10:24:8e:70:32:c3:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Validity Not Before: May 11 17:02:55 2026 GMT Not After : May 10 17:07:55 2027 GMT Subject: CN=F397EA4AA3CBD641DF712A1817AA34FD2CBC8FAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:15:d6:b8:90:00:82:b3:97:9d:9c:5b:3a:64: 87:a5:65:51:66:f6:e3:96:b9:4c:95:48:ae:d4:5f: ca:f5:da:25:bc:aa:45:29:5e:a1:66:0b:b0:79:ec: 20:1b:c5:d0:08:e8:12:e7:b6:3f:1a:f9:6f:5b:51: 74:6e:3f:b7:f7:87:01:b4:3c:78:6b:f3:ad:97:7a: f3:df:dd:7f:67:a7:a1:0a:92:52:fc:03:2b:08:4f: c2:90:c6:ed:91:6b:2c:d5:e2:c5:00:73:4f:19:b5: 3a:ee:dd:fe:04:e8:32:1f:ba:6e:fd:71:a9:b5:2c: 4f:dc:f2:dd:54:83:bc:fb:33:32:bb:bd:4a:51:f4: 2f:ba:9f:2c:f8:61:9d:94:dd:95:56:62:f3:b1:71: 53:70:b5:ce:1a:d5:1f:77:10:f3:19:00:4e:e0:bd: 39:25:dd:5e:35:77:6f:cd:3b:36:36:76:e3:b4:51: 11:5b:a9:e3:ca:f4:e7:d4:d9:aa:0d:75:84:5b:6d: 75:93:6e:7e:13:df:1e:50:c9:63:b5:b9:28:ac:85: 41:5d:23:9d:aa:e9:c9:02:1f:21:c6:af:70:32:d4: 8e:27:be:71:4a:78:69:30:36:18:53:42:c5:73:54: 4b:2d:f0:f4:d9:e5:43:33:78:75:3b:0b:80:99:fe: 7e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:97:EA:4A:A3:CB:D6:41:DF:71:2A:18:17:AA:34:FD:2C:BC:8F:AE X509v3 Authority Key Identifier: keyid:BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TINP/0/34392e3231332e3136372e302f32342d3234203d3e2034373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.213.167.0/24 Signature Algorithm: sha256WithRSAEncryption 64:17:02:6f:f9:69:f0:4e:a9:7d:dd:60:a6:00:07:16:4e:4f: 55:10:70:04:0a:da:0b:e8:a2:63:60:d9:3f:c2:d3:96:d4:08: 91:4f:af:42:0b:5c:6f:57:2a:77:f6:a5:85:f0:98:d6:3c:2e: eb:8a:27:61:80:0d:a8:f2:ad:2b:d1:3e:92:bf:05:6c:5e:eb: 88:d1:8b:d4:be:26:69:b9:71:11:22:7e:56:11:67:58:66:92: e4:87:be:d0:97:56:44:ad:29:86:6b:a5:ee:72:d7:f6:9f:2c: 4c:1e:f9:66:49:f1:88:2f:73:89:38:48:02:3a:3b:98:35:f0: 7d:dc:15:a1:7a:04:05:5a:3b:d5:f6:b8:30:10:3d:d6:18:a7: 32:73:f5:98:3c:47:f6:3e:d3:9e:2d:9f:9b:bb:8a:d9:91:2c: 06:f4:3a:ca:cd:f6:3a:e9:f4:66:57:54:cf:2b:f3:e9:b5:6a: 49:62:21:4a:f9:c3:cf:46:5e:9d:1e:4a:4e:1b:00:e9:21:29: 70:7b:4f:b7:4c:45:dc:0c:1b:96:91:b1:78:6a:93:84:5b:6e: 44:72:1e:ee:73:af:ce:ce:b0:80:99:eb:4e:94:11:d5:a3:ae: 28:85:a1:37:0c:36:0b:05:69:68:08:69:44:cf:bf:dd:aa:e0: 36:1d:6a:37 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUPsBxE9fcIttEm0IR2xAkjnAyw6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3M0Qy NDdBNTYwRjAeFw0yNjA1MTExNzAyNTVaFw0yNzA1MTAxNzA3NTVaMDMxMTAvBgNV BAMTKEYzOTdFQTRBQTNDQkQ2NDFERjcxMkExODE3QUEzNEZEMkNCQzhGQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsFda4kACCs5ednFs6ZIelZVFm 9uOWuUyVSK7UX8r12iW8qkUpXqFmC7B57CAbxdAI6BLntj8a+W9bUXRuP7f3hwG0 PHhr862XevPf3X9np6EKklL8AysIT8KQxu2RayzV4sUAc08ZtTru3f4E6DIfum79 cam1LE/c8t1Ug7z7MzK7vUpR9C+6nyz4YZ2U3ZVWYvOxcVNwtc4a1R93EPMZAE7g vTkl3V41d2/NOzY2duO0URFbqePK9OfU2aoNdYRbbXWTbn4T3x5QyWO1uSishUFd I52q6ckCHyHGr3Ay1I4nvnFKeGkwNhhTQsVzVEst8PTZ5UMzeHU7C4CZ/n73AgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQU85fqSqPL1kHfcSoYF6o0/Sy8j64wHwYDVR0j BBgwFoAUvML37QzVZ3yYh+DyS6jnPSR6Vg8wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElOUC8w L0JDQzJGN0VEMENENTY3N0M5ODg3RTBGMjRCQThFNzNEMjQ3QTU2MEYuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3 M0QyNDdBNTYwRi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RJTlAvMC8zNDM5MmUzMjMxMzMyZTMx MzYzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzczODMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA MdWnMA0GCSqGSIb3DQEBCwUAA4IBAQBkFwJv+WnwTql93WCmAAcWTk9VEHAECtoL 6KJjYNk/wtOW1AiRT69CC1xvVyp39qWF8JjWPC7riidhgA2o8q0r0T6SvwVsXuuI 0YvUviZpuXERIn5WEWdYZpLkh77Ql1ZErSmGa6Xuctf2nyxMHvlmSfGIL3OJOEgC OjuYNfB93BWhegQFWjvV9rgwED3WGKcyc/WYPEf2PtOeLZ+bu4rZkSwG9DrKzfY6 6fRmV1TPK/PptWpJYiFK+cPPRl6dHkpOGwDpISlwe0+3TEXcDBuWkbF4apOEW25E ch7uc6/OzrCAmetOlBHVo64ohaE3DDYLBWloCGlEz7/dquA2HWo3 -----END CERTIFICATE-----Generated at Wed May 13 02:19:02 2026 by rpki-client