$ rpki-client -vvf rpkica.twnic.tw/rpki/VEETIME/0/3132312e3235342e39362e302f32302d3230203d3e203137383039.roa File: 3132312e3235342e39362e302f32302d3230203d3e203137383039.roa (raw, json) Hash identifier: hNxLXJ25OoKZzgfndeadlr+P1PvwKsCnwXpLoizWi1k= Subject key identifier: 02:E7:9E:16:31:3B:0F:87:0B:3B:38:17:D5:0A:F5:13:56:66:B0:D1 Certificate issuer: /CN=ECA3BB4256FC8CACBF436229ABC0DA288E64A671 Certificate serial: 359C9B2C4144AA2B6558D1B0A7B7EA30D86E9909 Authority key identifier: EC:A3:BB:42:56:FC:8C:AC:BF:43:62:29:AB:C0:DA:28:8E:64:A6:71 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.cer Subject info access: rsync://rpkica.twnic.tw/rpki/VEETIME/0/3132312e3235342e39362e302f32302d3230203d3e203137383039.roa Signing time: Thu 21 May 2026 15:57:13 +0000 ROA not before: Thu 21 May 2026 15:52:13 +0000 ROA not after: Thu 20 May 2027 15:57:13 +0000 asID: 17809 IP address blocks: 121.254.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/VEETIME/0/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.crl rsync://rpkica.twnic.tw/rpki/VEETIME/0/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:9c:9b:2c:41:44:aa:2b:65:58:d1:b0:a7:b7:ea:30:d8:6e:99:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECA3BB4256FC8CACBF436229ABC0DA288E64A671 Validity Not Before: May 21 15:52:13 2026 GMT Not After : May 20 15:57:13 2027 GMT Subject: CN=02E79E16313B0F870B3B3817D50AF5135666B0D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:21:aa:8a:ed:0b:2e:bd:5c:f2:fa:ac:78:de: c6:b9:58:b3:a9:b0:45:4b:59:b5:2e:92:6b:c1:ff: 09:69:b0:bb:1a:5a:a4:75:3c:82:55:5c:7f:96:aa: 6a:be:2f:f7:0e:b2:ec:c0:e1:de:07:43:8c:28:6b: 36:63:eb:13:7d:13:39:2b:c5:ed:a4:66:d0:ae:08: 5f:27:ee:e4:f4:9a:d8:cf:9f:23:c7:d7:1a:3f:51: f1:6b:9d:f0:31:09:6c:13:15:da:44:68:ce:c3:de: f2:00:b5:e4:a4:3d:d0:01:7f:01:23:bb:31:68:bb: 20:f3:27:1a:35:f0:cd:15:15:2b:92:67:45:4e:08: 6b:05:4f:9a:cb:42:3c:dd:cb:2b:85:07:24:ec:38: b4:39:19:00:bd:75:0e:f7:9f:87:db:ed:e8:c6:59: 88:98:ce:d7:c6:10:b6:dc:49:d8:9c:29:6b:1f:29: 31:00:09:85:04:10:59:eb:c5:b9:e5:e7:f2:cc:46: 6d:3e:07:76:d4:9a:67:04:b1:57:1f:e0:1f:d3:d4: a0:1b:6e:23:3d:5c:bf:33:05:25:48:d3:7a:35:3a: c6:10:52:17:0b:da:9b:2a:6c:60:47:88:c1:d9:4b: 2a:0e:db:23:f3:a7:a7:38:87:a8:5f:79:4b:1c:2c: b5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E7:9E:16:31:3B:0F:87:0B:3B:38:17:D5:0A:F5:13:56:66:B0:D1 X509v3 Authority Key Identifier: keyid:EC:A3:BB:42:56:FC:8C:AC:BF:43:62:29:AB:C0:DA:28:8E:64:A6:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/VEETIME/0/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/VEETIME/0/3132312e3235342e39362e302f32302d3230203d3e203137383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.254.96.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:ee:e4:a3:b0:6e:4e:c6:d1:c6:0b:ee:03:10:9f:13:eb:d2: fb:53:94:db:7b:0a:6b:e8:40:02:8d:46:62:57:46:29:49:a8: 07:b9:ce:d4:c6:d0:f8:6b:54:0e:11:66:3e:e2:d8:29:73:8d: 9d:e9:06:b0:b8:eb:ce:e4:06:78:27:df:2a:82:d1:2e:32:47: c0:e1:b4:1a:07:5a:34:ce:b3:f2:a3:e8:5a:4b:77:be:eb:e9: 5a:c4:fa:71:42:f2:13:b8:54:c7:3f:17:de:cc:2d:53:67:7d: 15:6f:f9:a0:20:88:29:52:25:01:1b:58:6b:f7:0e:d5:7a:e5: f2:98:5b:c4:b6:71:b2:67:5a:ba:93:75:28:89:21:4f:44:81: c2:40:6d:fa:56:38:42:6b:f8:ed:fe:8d:c1:a9:d4:8e:84:f3: 6b:ce:c1:e1:1a:77:fa:e5:8e:41:96:fe:5a:1a:f4:39:9d:d6: 64:f4:3d:5d:12:93:ed:36:73:5a:3e:91:1b:93:18:dd:4c:29: 1a:37:4f:12:24:7e:e2:57:70:40:7d:6f:21:b7:4a:c1:36:9f: 2c:b3:0f:be:69:9f:97:8d:d1:0a:5b:9f:b8:6f:62:86:e3:1b: 56:7c:15:2b:71:0b:71:4b:3d:38:fb:41:ea:8b:55:9b:42:5b: 4c:71:c2:75 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIUNZybLEFEqitlWNGwp7fqMNhumQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUNBM0JCNDI1NkZDOENBQ0JGNDM2MjI5QUJDMERBMjg4 RTY0QTY3MTAeFw0yNjA1MjExNTUyMTNaFw0yNzA1MjAxNTU3MTNaMDMxMTAvBgNV BAMTKDAyRTc5RTE2MzEzQjBGODcwQjNCMzgxN0Q1MEFGNTEzNTY2NkIwRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcIaqK7QsuvVzy+qx43sa5WLOp sEVLWbUukmvB/wlpsLsaWqR1PIJVXH+Wqmq+L/cOsuzA4d4HQ4woazZj6xN9Ezkr xe2kZtCuCF8n7uT0mtjPnyPH1xo/UfFrnfAxCWwTFdpEaM7D3vIAteSkPdABfwEj uzFouyDzJxo18M0VFSuSZ0VOCGsFT5rLQjzdyyuFByTsOLQ5GQC9dQ73n4fb7ejG WYiYztfGELbcSdicKWsfKTEACYUEEFnrxbnl5/LMRm0+B3bUmmcEsVcf4B/T1KAb biM9XL8zBSVI03o1OsYQUhcL2psqbGBHiMHZSyoO2yPzp6c4h6hfeUscLLWRAgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQUAueeFjE7D4cLOzgX1Qr1E1ZmsNEwHwYDVR0j BBgwFoAU7KO7Qlb8jKy/Q2Ipq8DaKI5kpnEwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVkVFVElN RS8wL0VDQTNCQjQyNTZGQzhDQUNCRjQzNjIyOUFCQzBEQTI4OEU2NEE2NzEuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvRUNBM0JCNDI1NkZDOENBQ0JGNDM2MjI5QUJD MERBMjg4RTY0QTY3MS5jZXIwfQYIKwYBBQUHAQsEcTBvMG0GCCsGAQUFBzALhmFy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1ZFRVRJTUUvMC8zMTMyMzEyZTMy MzUzNDJlMzkzNjJlMzAyZjMyMzAyZDMyMzAyMDNkM2UyMDMxMzczODMwMzkucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAR5/mAwDQYJKoZIhvcNAQELBQADggEBAEru5KOwbk7G0cYL7gMQnxPr 0vtTlNt7CmvoQAKNRmJXRilJqAe5ztTG0PhrVA4RZj7i2ClzjZ3pBrC4687kBngn 3yqC0S4yR8DhtBoHWjTOs/Kj6FpLd77r6VrE+nFC8hO4VMc/F97MLVNnfRVv+aAg iClSJQEbWGv3DtV65fKYW8S2cbJnWrqTdSiJIU9EgcJAbfpWOEJr+O3+jcGp1I6E 82vOweEad/rljkGW/loa9Dmd1mT0PV0Sk+02c1o+kRuTGN1MKRo3TxIkfuJXcEB9 byG3SsE2nyyzD75pn5eN0Qpbn7hvYobjG1Z8FStxC3FLPTj7QeqLVZtCW0xxwnU= -----END CERTIFICATE-----Generated at Sat Jun 13 13:10:58 2026 by rpki-client