$ rpki-client -vvf rpkica.twnic.tw/rpki/NARL/0/3231312e37332e38362e302f32342d3234203d3e203138343134.roa File: 3231312e37332e38362e302f32342d3234203d3e203138343134.roa (raw, json) Hash identifier: RcN4dOIBTFqY1G5jI8viPt6e6PNTMt4L6CpBX1XlPOU= Subject key identifier: 29:7D:A2:43:FE:77:45:2A:57:12:0D:BD:02:63:48:C9:14:57:19:F2 Certificate issuer: /CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Certificate serial: 4E5C294257ED574CA007256FE45813CC5263C7C8 Authority key identifier: 9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NARL/0/3231312e37332e38362e302f32342d3234203d3e203138343134.roa Signing time: Fri 05 Jun 2026 09:24:21 +0000 ROA not before: Fri 05 Jun 2026 09:19:21 +0000 ROA not after: Fri 04 Jun 2027 09:24:21 +0000 asID: 18414 IP address blocks: 211.73.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 23:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5c:29:42:57:ed:57:4c:a0:07:25:6f:e4:58:13:cc:52:63:c7:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Validity Not Before: Jun 5 09:19:21 2026 GMT Not After : Jun 4 09:24:21 2027 GMT Subject: CN=297DA243FE77452A57120DBD026348C9145719F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ac:95:7e:42:76:95:22:32:3b:cb:4b:97:42: 33:25:9b:05:08:84:1e:11:83:0b:b1:95:5f:a6:7d: e1:e3:29:f3:2a:34:96:f1:be:92:87:ef:da:fc:11: 04:dc:14:a0:83:4d:a5:d4:14:42:af:0b:56:58:bb: 14:f2:35:d7:5f:c0:d5:5d:66:29:52:85:45:8a:ed: 77:0f:26:3a:f1:f9:17:13:19:28:5c:3b:d6:1a:95: 48:c0:70:e6:e7:db:1f:26:b8:55:10:ca:3c:8b:d8: be:f2:eb:d6:24:6a:fd:a0:57:0c:2d:50:52:3b:9e: b5:e6:bf:37:fc:2f:37:35:24:bf:c9:ec:29:c5:87: 97:bc:aa:e7:25:8f:6b:8b:04:e5:12:59:50:29:56: 15:8d:34:0f:bd:d3:db:0b:9e:40:8f:1b:53:17:ea: 7e:17:dd:1c:c8:49:8a:4c:29:17:13:05:20:e6:a4: a9:04:08:5a:14:e0:63:77:73:06:29:a5:f0:39:65: c9:b9:19:4f:5f:49:3d:cc:eb:92:84:95:6d:88:c1: 72:51:0a:b6:31:49:8d:76:6d:db:a8:85:c7:03:42: ab:5b:07:d1:8a:8c:a7:97:5e:f5:af:4b:06:30:08: b8:4c:ea:f3:51:18:21:20:79:4d:4c:7b:0c:b3:e6: 29:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:7D:A2:43:FE:77:45:2A:57:12:0D:BD:02:63:48:C9:14:57:19:F2 X509v3 Authority Key Identifier: keyid:9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NARL/0/3231312e37332e38362e302f32342d3234203d3e203138343134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.73.86.0/24 Signature Algorithm: sha256WithRSAEncryption cd:17:9e:56:5f:d3:c8:7a:75:54:c2:b1:9b:ab:9b:f9:1e:50: 7e:4c:fe:1e:90:aa:56:f5:8e:b1:21:7f:fa:ec:13:83:0a:c8: 03:e2:8b:94:1e:95:7d:c3:7c:07:7e:ae:67:5b:8c:a0:98:4e: 78:f6:d3:05:a1:f5:01:99:9b:6f:75:86:9a:a9:27:d1:ec:68: 6c:9d:4c:e9:ce:29:0e:2e:3d:4f:70:fd:03:42:50:f0:fd:1f: 2b:b6:40:b8:9b:e0:05:11:b6:ca:98:cc:fb:99:21:f1:de:1b: cc:7d:43:b7:a9:3a:08:2f:3c:d9:2a:e3:e6:b4:c5:4e:7a:8c: 1a:af:92:4b:2b:a2:c8:15:7a:88:01:93:d6:88:6b:61:de:07: b6:39:95:2c:34:6c:ee:0e:37:65:64:9c:6d:5c:ac:63:43:50: d1:29:2e:40:12:75:74:a2:b9:bf:79:de:bc:ea:8a:0e:01:d5: eb:e2:df:2d:2f:62:9d:56:e8:b8:5e:fa:36:a9:7b:15:67:42: 08:eb:0f:bc:23:c5:01:18:96:60:28:f1:bd:18:6f:4b:43:bb: 8b:c9:7f:63:53:9b:f5:38:1f:bd:25:35:59:cf:97:3a:13:6f: c3:63:59:bf:51:73:fd:ee:d0:33:c1:88:82:6c:e7:15:67:79: b7:96:65:7c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUTlwpQlftV0ygByVv5FgTzFJjx8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ4NUJCOEQ5MzAwNkQzNTg2RTI4RDBENjYxMkNBRkFD QzhFQTZDMTAeFw0yNjA2MDUwOTE5MjFaFw0yNzA2MDQwOTI0MjFaMDMxMTAvBgNV BAMTKDI5N0RBMjQzRkU3NzQ1MkE1NzEyMERCRDAyNjM0OEM5MTQ1NzE5RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrrJV+QnaVIjI7y0uXQjMlmwUI hB4RgwuxlV+mfeHjKfMqNJbxvpKH79r8EQTcFKCDTaXUFEKvC1ZYuxTyNddfwNVd ZilShUWK7XcPJjrx+RcTGShcO9YalUjAcObn2x8muFUQyjyL2L7y69Ykav2gVwwt UFI7nrXmvzf8Lzc1JL/J7CnFh5e8quclj2uLBOUSWVApVhWNNA+909sLnkCPG1MX 6n4X3RzISYpMKRcTBSDmpKkECFoU4GN3cwYppfA5Zcm5GU9fST3M65KElW2IwXJR CrYxSY12bduohccDQqtbB9GKjKeXXvWvSwYwCLhM6vNRGCEgeU1Mewyz5imJAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUKX2iQ/53RSpXEg29AmNIyRRXGfIwHwYDVR0j BBgwFoAUnYW7jZMAbTWG4o0NZhLK+syOpsEwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkFSTC8w LzlEODVCQjhEOTMwMDZEMzU4NkUyOEQwRDY2MTJDQUZBQ0M4RUE2QzEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvOUQ4NUJCOEQ5MzAwNkQzNTg2RTI4RDBENjYxMkNB RkFDQzhFQTZDMS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05BUkwvMC8zMjMxMzEyZTM3MzMyZTM4 MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM4MzQzMTM0LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 00lWMA0GCSqGSIb3DQEBCwUAA4IBAQDNF55WX9PIenVUwrGbq5v5HlB+TP4ekKpW 9Y6xIX/67BODCsgD4ouUHpV9w3wHfq5nW4ygmE549tMFofUBmZtvdYaaqSfR7Ghs nUzpzikOLj1PcP0DQlDw/R8rtkC4m+AFEbbKmMz7mSHx3hvMfUO3qToILzzZKuPm tMVOeowar5JLK6LIFXqIAZPWiGth3ge2OZUsNGzuDjdlZJxtXKxjQ1DRKS5AEnV0 orm/ed686ooOAdXr4t8tL2KdVui4Xvo2qXsVZ0II6w+8I8UBGJZgKPG9GG9LQ7uL yX9jU5v1OB+9JTVZz5c6E2/DY1m/UXP97tAzwYiCbOcVZ3m3lmV8 -----END CERTIFICATE-----Generated at Sat Jun 13 10:19:29 2026 by rpki-client