$ rpki-client -vvf rpkica.twnic.tw/rpki/YUANJHEN/0/34332e3235342e31362e302f32322d3332203d3e20313331313439.roa File: 34332e3235342e31362e302f32322d3332203d3e20313331313439.roa (raw, json) Hash identifier: dbJE/Gdn4JhQH0dnbyKF/th0Px9Dxj1VCZJpdchA0ms= Subject key identifier: 9E:0C:F2:99:41:A2:D4:C5:9D:37:E6:1D:B8:99:68:7D:6C:3C:B7:7C Certificate issuer: /CN=809590BEFB516AA616A45FA21C8495BBB968261F Certificate serial: 5ED99FDFDF47CA52362C39111ED9C23821D77EA8 Authority key identifier: 80:95:90:BE:FB:51:6A:A6:16:A4:5F:A2:1C:84:95:BB:B9:68:26:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/809590BEFB516AA616A45FA21C8495BBB968261F.cer Subject info access: rsync://rpkica.twnic.tw/rpki/YUANJHEN/0/34332e3235342e31362e302f32322d3332203d3e20313331313439.roa Signing time: Mon 11 May 2026 17:26:39 +0000 ROA not before: Mon 11 May 2026 17:21:39 +0000 ROA not after: Mon 10 May 2027 17:26:39 +0000 asID: 131149 IP address blocks: 43.254.16.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/YUANJHEN/0/809590BEFB516AA616A45FA21C8495BBB968261F.crl rsync://rpkica.twnic.tw/rpki/YUANJHEN/0/809590BEFB516AA616A45FA21C8495BBB968261F.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/809590BEFB516AA616A45FA21C8495BBB968261F.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d9:9f:df:df:47:ca:52:36:2c:39:11:1e:d9:c2:38:21:d7:7e:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=809590BEFB516AA616A45FA21C8495BBB968261F Validity Not Before: May 11 17:21:39 2026 GMT Not After : May 10 17:26:39 2027 GMT Subject: CN=9E0CF29941A2D4C59D37E61DB899687D6C3CB77C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b0:9e:a2:37:b4:ed:40:f9:76:96:95:53:fe: 1c:29:2f:fd:1b:e9:d8:e8:d0:9b:87:df:15:e1:a9: cf:3b:46:60:c5:5e:50:a6:30:a3:54:33:93:a9:a9: e4:7a:d1:9d:cf:11:4c:25:43:ee:ec:b8:3a:36:42: ad:32:38:a0:f2:f7:35:49:01:96:8a:ec:93:b8:b4: bd:98:7f:1f:be:c6:ff:f1:7e:24:d5:b2:b3:3f:d0: ae:7c:63:0b:6a:13:6c:2e:9a:95:05:73:1f:f7:6d: 8f:88:d0:ed:42:a3:7a:44:85:c4:79:e3:f2:c2:56: a6:bb:e8:1b:f9:cb:64:2c:85:22:ae:bd:e4:ad:b2: 82:29:93:a6:37:72:2e:34:64:b1:57:01:e2:02:98: 89:09:5d:24:85:aa:fb:74:21:30:bd:1d:54:60:a2: 42:7d:38:ca:9c:36:42:5e:47:9d:ea:57:14:85:2f: 4a:6e:94:d1:55:46:cc:e1:70:2b:c9:41:be:0b:7e: b3:a2:28:6a:48:5a:46:45:fb:26:79:73:e5:4a:7c: 94:a9:6a:cf:a6:c7:92:ce:2c:a1:77:cc:91:88:de: 51:47:d0:71:af:69:c1:be:8f:01:50:76:e8:e7:0e: df:6b:70:33:bd:e3:92:9d:8a:4c:6a:60:7c:4d:a3: dd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0C:F2:99:41:A2:D4:C5:9D:37:E6:1D:B8:99:68:7D:6C:3C:B7:7C X509v3 Authority Key Identifier: keyid:80:95:90:BE:FB:51:6A:A6:16:A4:5F:A2:1C:84:95:BB:B9:68:26:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/YUANJHEN/0/809590BEFB516AA616A45FA21C8495BBB968261F.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/809590BEFB516AA616A45FA21C8495BBB968261F.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/YUANJHEN/0/34332e3235342e31362e302f32322d3332203d3e20313331313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.16.0/22 Signature Algorithm: sha256WithRSAEncryption 42:21:07:fa:49:c3:7d:c0:f0:f2:01:bd:01:76:9b:ec:b4:0f: 0c:38:c4:09:3b:62:5e:16:10:b2:df:36:1d:79:79:cd:4b:88: 4e:9f:26:dd:fe:c0:7d:b2:42:94:79:1e:de:7e:05:56:d4:cb: 12:7f:e4:17:47:84:db:0c:83:6a:1d:e2:80:d7:1a:6b:c9:ee: 88:af:97:1b:97:7d:05:ce:8b:ae:ed:82:5a:25:17:56:fd:ea: 7e:75:56:4d:30:ae:ab:a9:7c:df:ec:20:5e:67:d9:69:28:e0: f1:2b:d5:25:e8:b9:cb:13:9d:c0:a1:80:0e:3c:d0:0a:ec:51: 5b:3a:0c:2c:68:93:04:e1:e5:24:25:51:84:ce:a6:5c:af:63: 32:82:a2:0f:40:68:7a:a3:49:8d:92:48:20:b0:d7:16:f6:67: 05:f6:9b:9f:5c:b2:f6:0c:5f:a2:d3:74:6a:6d:3f:06:1e:ab: 92:10:7e:56:8b:18:be:de:04:b6:c8:fc:6f:10:22:53:7e:bb: b3:9e:65:56:be:07:79:53:6c:3a:6f:26:4f:3a:82:6f:3a:aa: 6e:f6:f5:f0:4e:70:01:96:e8:52:be:fe:3e:7a:3c:6e:45:ce: 80:fb:9e:72:1a:fb:ee:9c:02:be:70:12:ea:78:d0:28:7f:d2: ec:78:10:12 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXtmf399HylI2LDkRHtnCOCHXfqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODA5NTkwQkVGQjUxNkFBNjE2QTQ1RkEyMUM4NDk1QkJC OTY4MjYxRjAeFw0yNjA1MTExNzIxMzlaFw0yNzA1MTAxNzI2MzlaMDMxMTAvBgNV BAMTKDlFMENGMjk5NDFBMkQ0QzU5RDM3RTYxREI4OTk2ODdENkMzQ0I3N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCisJ6iN7TtQPl2lpVT/hwpL/0b 6djo0JuH3xXhqc87RmDFXlCmMKNUM5OpqeR60Z3PEUwlQ+7suDo2Qq0yOKDy9zVJ AZaK7JO4tL2Yfx++xv/xfiTVsrM/0K58YwtqE2wumpUFcx/3bY+I0O1Co3pEhcR5 4/LCVqa76Bv5y2QshSKuveStsoIpk6Y3ci40ZLFXAeICmIkJXSSFqvt0ITC9HVRg okJ9OMqcNkJeR53qVxSFL0pulNFVRszhcCvJQb4LfrOiKGpIWkZF+yZ5c+VKfJSp as+mx5LOLKF3zJGI3lFH0HGvacG+jwFQdujnDt9rcDO945KdikxqYHxNo909AgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQUngzymUGi1MWdN+YduJlofWw8t3wwHwYDVR0j BBgwFoAUgJWQvvtRaqYWpF+iHISVu7loJh8wDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWVVBTkpI RU4vMC84MDk1OTBCRUZCNTE2QUE2MTZBNDVGQTIxQzg0OTVCQkI5NjgyNjFGLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzgwOTU5MEJFRkI1MTZBQTYxNkE0NUZBMjFD ODQ5NUJCQjk2ODI2MUYuY2VyMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcwC4Zi cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ZVUFOSkhFTi8wLzM0MzMyZTMy MzUzNDJlMzEzNjJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDMxMzMzMTMxMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAiv+EDANBgkqhkiG9w0BAQsFAAOCAQEAQiEH+knDfcDw8gG9AXab 7LQPDDjECTtiXhYQst82HXl5zUuITp8m3f7AfbJClHke3n4FVtTLEn/kF0eE2wyD ah3igNcaa8nuiK+XG5d9Bc6Lru2CWiUXVv3qfnVWTTCuq6l83+wgXmfZaSjg8SvV Jei5yxOdwKGADjzQCuxRWzoMLGiTBOHlJCVRhM6mXK9jMoKiD0BoeqNJjZJIILDX FvZnBfabn1yy9gxfotN0am0/Bh6rkhB+VosYvt4Etsj8bxAiU367s55lVr4HeVNs Om8mTzqCbzqqbvb18E5wAZboUr7+Pno8bkXOgPuechr77pwCvnAS6njQKH/S7HgQ Eg== -----END CERTIFICATE-----Generated at Wed May 13 14:36:32 2026 by rpki-client