$ rpki-client -vvf rpkica.twnic.tw/rpki/VEETIME/0/3231302e3230392e3232342e302f32302d3230203d3e203137383039.roa File: 3231302e3230392e3232342e302f32302d3230203d3e203137383039.roa (raw, json) Hash identifier: 9OTjd1mep6IPgqXFoxxVS3ovWHthylNIwJZwJfJ3DXU= Subject key identifier: A0:93:19:61:B2:4A:EB:B1:FD:8A:7F:8A:AC:7F:CF:69:A9:28:4A:4D Certificate issuer: /CN=ECA3BB4256FC8CACBF436229ABC0DA288E64A671 Certificate serial: 7D5AE0984523AB29BC62A1C2EA9FCFFC8B947A69 Authority key identifier: EC:A3:BB:42:56:FC:8C:AC:BF:43:62:29:AB:C0:DA:28:8E:64:A6:71 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.cer Subject info access: rsync://rpkica.twnic.tw/rpki/VEETIME/0/3231302e3230392e3232342e302f32302d3230203d3e203137383039.roa Signing time: Thu 21 May 2026 15:57:34 +0000 ROA not before: Thu 21 May 2026 15:52:34 +0000 ROA not after: Thu 20 May 2027 15:57:34 +0000 asID: 17809 IP address blocks: 210.209.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/VEETIME/0/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.crl rsync://rpkica.twnic.tw/rpki/VEETIME/0/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:5a:e0:98:45:23:ab:29:bc:62:a1:c2:ea:9f:cf:fc:8b:94:7a:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECA3BB4256FC8CACBF436229ABC0DA288E64A671 Validity Not Before: May 21 15:52:34 2026 GMT Not After : May 20 15:57:34 2027 GMT Subject: CN=A0931961B24AEBB1FD8A7F8AAC7FCF69A9284A4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3e:92:99:a9:b5:f3:2b:b5:10:28:b3:41:65: 8b:e5:53:36:3a:1d:1c:5f:dd:d2:f1:77:c3:7f:88: 85:9b:22:96:d2:0d:63:c1:5f:93:c6:bb:97:14:e0: fb:a9:12:bd:e6:87:0c:4c:de:3b:44:b9:ee:9f:25: a6:d6:20:91:f7:ec:a9:e7:da:86:a6:c3:9d:62:a0: fe:10:bc:46:e8:5a:3b:26:15:3a:1d:c0:b5:d1:e3: 74:99:91:c0:08:fc:bb:b3:48:33:53:47:e8:16:99: b5:ce:2e:a8:1c:c5:07:0a:b3:ae:6a:b1:4d:bd:a1: 7d:b7:ca:57:5b:14:e1:58:27:cf:bc:ec:53:b1:01: 22:e9:c3:67:77:77:69:bb:4e:b6:ee:ac:b5:97:8c: 47:f9:73:08:77:99:01:ba:a9:ec:5d:c0:da:a4:80: 10:18:0c:72:4c:30:61:ef:21:9e:c9:9c:c1:dc:3c: 01:85:35:ba:b3:4e:fb:92:09:ce:8c:6f:b0:51:59: 3e:b0:62:13:c3:45:b2:e4:e2:a4:16:33:b6:3f:0e: b2:f8:5f:cb:ea:1f:f6:a2:43:b8:02:45:91:48:1d: 62:a2:20:b1:bd:99:df:db:59:21:9d:1a:1d:59:9e: 52:3e:c1:86:6d:f4:6d:d8:f5:39:97:6a:3c:94:08: e7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:93:19:61:B2:4A:EB:B1:FD:8A:7F:8A:AC:7F:CF:69:A9:28:4A:4D X509v3 Authority Key Identifier: keyid:EC:A3:BB:42:56:FC:8C:AC:BF:43:62:29:AB:C0:DA:28:8E:64:A6:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/VEETIME/0/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/ECA3BB4256FC8CACBF436229ABC0DA288E64A671.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/VEETIME/0/3231302e3230392e3232342e302f32302d3230203d3e203137383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.209.224.0/20 Signature Algorithm: sha256WithRSAEncryption a6:60:37:6a:6b:84:fb:9f:d3:46:e9:f7:8a:1c:d7:dd:ae:9a: cd:6e:77:cc:dc:87:de:dd:24:13:44:71:e4:26:3e:ae:1b:cd: e7:d2:4f:03:5d:00:bb:11:8b:82:c1:1a:1a:29:2a:ae:c0:d0: ce:51:56:73:9d:b4:98:f9:15:2d:f1:3f:5b:03:0b:0b:08:99: 87:fd:da:c7:ef:f9:eb:e2:8d:30:a8:43:18:57:66:9e:7d:d4: a8:96:d3:30:52:27:f9:18:f5:47:99:42:4f:ab:32:7e:39:de: 03:ba:d7:c2:f7:4a:00:ee:5b:02:88:af:81:0f:31:3f:6d:19: 7d:c9:fb:d5:1a:f8:4e:38:a6:5f:2c:e3:36:cd:0f:9e:38:e2: c5:f9:35:10:d3:32:52:01:cd:0c:7b:e4:61:97:7e:0b:42:8b: 4a:68:94:b1:9a:44:87:54:ad:b8:e8:6b:28:9d:cd:de:5f:cd: a3:27:f1:29:21:81:48:ad:d9:71:12:e8:ee:c5:9a:cd:df:26: 1b:83:b6:59:e8:18:e9:7f:0e:ac:fd:ec:d8:2b:12:4e:f8:da: ce:83:c3:89:0f:34:1b:55:e9:64:8a:59:34:f5:0f:93:ef:42: e6:b2:3a:7c:dc:9f:38:ea:e8:35:54:3a:40:bb:74:1d:ff:ab: 57:53:8f:1e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfVrgmEUjqym8YqHC6p/P/IuUemkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUNBM0JCNDI1NkZDOENBQ0JGNDM2MjI5QUJDMERBMjg4 RTY0QTY3MTAeFw0yNjA1MjExNTUyMzRaFw0yNzA1MjAxNTU3MzRaMDMxMTAvBgNV BAMTKEEwOTMxOTYxQjI0QUVCQjFGRDhBN0Y4QUFDN0ZDRjY5QTkyODRBNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAPpKZqbXzK7UQKLNBZYvlUzY6 HRxf3dLxd8N/iIWbIpbSDWPBX5PGu5cU4PupEr3mhwxM3jtEue6fJabWIJH37Knn 2oamw51ioP4QvEboWjsmFTodwLXR43SZkcAI/LuzSDNTR+gWmbXOLqgcxQcKs65q sU29oX23yldbFOFYJ8+87FOxASLpw2d3d2m7TrburLWXjEf5cwh3mQG6qexdwNqk gBAYDHJMMGHvIZ7JnMHcPAGFNbqzTvuSCc6Mb7BRWT6wYhPDRbLk4qQWM7Y/DrL4 X8vqH/aiQ7gCRZFIHWKiILG9md/bWSGdGh1ZnlI+wYZt9G3Y9TmXajyUCOeJAgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQUoJMZYbJK67H9in+KrH/PaakoSk0wHwYDVR0j BBgwFoAU7KO7Qlb8jKy/Q2Ipq8DaKI5kpnEwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVkVFVElN RS8wL0VDQTNCQjQyNTZGQzhDQUNCRjQzNjIyOUFCQzBEQTI4OEU2NEE2NzEuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvRUNBM0JCNDI1NkZDOENBQ0JGNDM2MjI5QUJD MERBMjg4RTY0QTY3MS5jZXIwfwYIKwYBBQUHAQsEczBxMG8GCCsGAQUFBzALhmNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1ZFRVRJTUUvMC8zMjMxMzAyZTMy MzAzOTJlMzIzMjM0MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzEzNzM4MzAzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBNLR4DANBgkqhkiG9w0BAQsFAAOCAQEApmA3amuE+5/TRun3ihzX 3a6azW53zNyH3t0kE0Rx5CY+rhvN59JPA10AuxGLgsEaGikqrsDQzlFWc520mPkV LfE/WwMLCwiZh/3ax+/56+KNMKhDGFdmnn3UqJbTMFIn+Rj1R5lCT6syfjneA7rX wvdKAO5bAoivgQ8xP20Zfcn71Rr4TjimXyzjNs0Pnjjixfk1ENMyUgHNDHvkYZd+ C0KLSmiUsZpEh1StuOhrKJ3N3l/NoyfxKSGBSK3ZcRLo7sWazd8mG4O2WegY6X8O rP3s2CsSTvjazoPDiQ80G1XpZIpZNPUPk+9C5rI6fNyfOOroNVQ6QLt0Hf+rV1OP Hg== -----END CERTIFICATE-----Generated at Sat Jun 13 11:29:54 2026 by rpki-client