$ rpki-client -vvf rpkica.twnic.tw/rpki/TSMC/0/3230322e3132362e36342e302f32302d3234203d3e2033343632.roa File: 3230322e3132362e36342e302f32302d3234203d3e2033343632.roa (raw, json) Hash identifier: pv9lagNPR6ISK4mgr1r0U+d2oQ424uEiHyejWXcDKkg= Subject key identifier: 67:F2:F5:36:86:DF:8C:05:8E:1C:B8:35:17:35:F7:47:4C:2A:A7:B8 Certificate issuer: /CN=BD49467776DCA7472F88470782DAD5722E5AFE49 Certificate serial: 0588ECC252C1966077A3576308059952F9C9B650 Authority key identifier: BD:49:46:77:76:DC:A7:47:2F:88:47:07:82:DA:D5:72:2E:5A:FE:49 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BD49467776DCA7472F88470782DAD5722E5AFE49.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TSMC/0/3230322e3132362e36342e302f32302d3234203d3e2033343632.roa Signing time: Mon 11 May 2026 17:27:34 +0000 ROA not before: Mon 11 May 2026 17:22:34 +0000 ROA not after: Mon 10 May 2027 17:27:34 +0000 asID: 3462 IP address blocks: 202.126.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TSMC/0/BD49467776DCA7472F88470782DAD5722E5AFE49.crl rsync://rpkica.twnic.tw/rpki/TSMC/0/BD49467776DCA7472F88470782DAD5722E5AFE49.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BD49467776DCA7472F88470782DAD5722E5AFE49.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:88:ec:c2:52:c1:96:60:77:a3:57:63:08:05:99:52:f9:c9:b6:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD49467776DCA7472F88470782DAD5722E5AFE49 Validity Not Before: May 11 17:22:34 2026 GMT Not After : May 10 17:27:34 2027 GMT Subject: CN=67F2F53686DF8C058E1CB8351735F7474C2AA7B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0b:35:7a:66:13:09:13:c0:f5:cb:23:66:f6: 60:f1:bc:95:56:cc:cb:90:05:9d:62:fb:41:fc:97: 92:01:a7:bb:76:6f:86:bd:17:f5:a6:47:0f:19:99: 4a:8e:4d:b2:94:0b:b3:bd:dc:5d:18:29:5b:34:38: 82:e8:c7:e0:7c:10:6e:ca:17:e1:f7:c8:29:7a:2c: 1f:4d:7e:45:cb:f6:29:d6:31:43:72:a7:c5:72:25: ae:08:26:ca:15:d7:b8:c5:a8:49:dc:b7:af:77:72: 09:35:a1:0c:88:ac:05:d2:3d:42:3a:53:ae:25:86: 98:87:f8:1d:4b:0b:0c:dd:4f:ba:04:b6:9d:58:f9: 61:45:7b:5a:f5:50:10:47:a6:c2:6b:fa:48:d6:85: 8b:2a:1b:5d:30:ec:02:1e:bd:0f:90:f9:c2:4a:31: 56:57:10:46:56:d8:8e:79:02:d6:d1:28:bb:b6:37: b0:4d:28:02:c1:cc:0e:d0:0f:85:9a:a6:e1:b9:fe: ac:e1:31:46:17:e7:43:86:26:34:98:9b:35:d7:8c: 95:a2:7d:ea:be:0a:00:5b:7e:59:af:09:be:4e:b0: 4c:f0:10:a3:19:bc:a7:14:cf:25:f9:33:63:92:da: 92:f5:78:c4:5a:0b:bf:df:e6:53:a0:55:22:62:e9: c5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F2:F5:36:86:DF:8C:05:8E:1C:B8:35:17:35:F7:47:4C:2A:A7:B8 X509v3 Authority Key Identifier: keyid:BD:49:46:77:76:DC:A7:47:2F:88:47:07:82:DA:D5:72:2E:5A:FE:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TSMC/0/BD49467776DCA7472F88470782DAD5722E5AFE49.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BD49467776DCA7472F88470782DAD5722E5AFE49.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TSMC/0/3230322e3132362e36342e302f32302d3234203d3e2033343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.126.64.0/20 Signature Algorithm: sha256WithRSAEncryption 06:10:46:42:a2:ba:cb:cc:89:bc:4e:22:2d:83:c8:ba:3c:34: ed:5b:e7:40:78:85:a0:08:02:de:5e:74:e8:4b:58:53:69:1f: 2b:91:47:e8:8d:2f:50:34:ce:7d:a1:de:9b:eb:eb:7a:f0:90: fd:56:41:9c:01:6e:66:0f:37:d8:f5:ac:b3:39:02:12:bb:86: e3:7b:e0:b6:6c:79:ad:f6:4e:26:4c:61:34:ec:f6:68:56:e1: 6f:00:83:69:22:28:5d:c8:c0:17:2c:31:07:6f:55:d3:f9:bf: bd:80:40:6d:ba:8b:3a:ed:eb:b6:d0:e2:98:72:44:07:50:05: 03:4c:b6:93:1f:cb:46:73:34:f9:eb:bc:3d:c5:9b:76:c0:e7: dc:2a:74:a9:8e:ad:1c:41:37:91:d6:f3:56:1a:fe:f2:7f:34: 39:ee:09:f0:56:08:7f:47:71:ef:87:46:29:9e:ea:96:57:bd: 6e:8d:2b:d1:4c:32:ff:74:71:d2:fc:ea:cb:3d:1d:fb:69:5f: 73:b7:8d:24:33:22:7a:29:86:52:48:f9:b3:4d:5c:e1:cd:a9: cd:3e:82:6b:01:af:1e:5d:ff:5d:ef:ca:83:86:7d:01:03:2c: 4c:bc:5e:9c:ec:87:94:c6:da:81:ba:78:e8:29:ec:3a:4f:2b: 51:92:03:6c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUBYjswlLBlmB3o1djCAWZUvnJtlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ0OTQ2Nzc3NkRDQTc0NzJGODg0NzA3ODJEQUQ1NzIy RTVBRkU0OTAeFw0yNjA1MTExNzIyMzRaFw0yNzA1MTAxNzI3MzRaMDMxMTAvBgNV BAMTKDY3RjJGNTM2ODZERjhDMDU4RTFDQjgzNTE3MzVGNzQ3NEMyQUE3QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtCzV6ZhMJE8D1yyNm9mDxvJVW zMuQBZ1i+0H8l5IBp7t2b4a9F/WmRw8ZmUqOTbKUC7O93F0YKVs0OILox+B8EG7K F+H3yCl6LB9NfkXL9inWMUNyp8VyJa4IJsoV17jFqEnct693cgk1oQyIrAXSPUI6 U64lhpiH+B1LCwzdT7oEtp1Y+WFFe1r1UBBHpsJr+kjWhYsqG10w7AIevQ+Q+cJK MVZXEEZW2I55AtbRKLu2N7BNKALBzA7QD4WapuG5/qzhMUYX50OGJjSYmzXXjJWi feq+CgBbflmvCb5OsEzwEKMZvKcUzyX5M2OS2pL1eMRaC7/f5lOgVSJi6cVhAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUZ/L1NobfjAWOHLg1FzX3R0wqp7gwHwYDVR0j BBgwFoAUvUlGd3bcp0cviEcHgtrVci5a/kkwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFNNQy8w L0JENDk0Njc3NzZEQ0E3NDcyRjg4NDcwNzgyREFENTcyMkU1QUZFNDkuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQkQ0OTQ2Nzc3NkRDQTc0NzJGODg0NzA3ODJEQUQ1 NzIyRTVBRkU0OS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RTTUMvMC8zMjMwMzIyZTMxMzIzNjJl MzYzNDJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDMzMzQzNjMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE yn5AMA0GCSqGSIb3DQEBCwUAA4IBAQAGEEZCorrLzIm8TiItg8i6PDTtW+dAeIWg CALeXnToS1hTaR8rkUfojS9QNM59od6b6+t68JD9VkGcAW5mDzfY9ayzOQISu4bj e+C2bHmt9k4mTGE07PZoVuFvAINpIihdyMAXLDEHb1XT+b+9gEBtuos67eu20OKY ckQHUAUDTLaTH8tGczT567w9xZt2wOfcKnSpjq0cQTeR1vNWGv7yfzQ57gnwVgh/ R3Hvh0YpnuqWV71ujSvRTDL/dHHS/OrLPR37aV9zt40kMyJ6KYZSSPmzTVzhzanN PoJrAa8eXf9d78qDhn0BAyxMvF6c7IeUxtqBunjoKew6TytRkgNs -----END CERTIFICATE-----Generated at Wed May 13 04:27:11 2026 by rpki-client