$ rpki-client -vvf rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a3230323a3a2f34382d3634203d3e20323136313938.roa File: 323430323a343365303a3230323a3a2f34382d3634203d3e20323136313938.roa (raw, json) Hash identifier: xy3LIoWre1+mMyvT9VOx/ZHRWCAr+PwFxmupLTWd54U= Subject key identifier: 82:69:52:D4:FD:17:02:12:F8:C3:A8:FB:F5:10:51:90:EB:CF:39:FD Certificate issuer: /CN=0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78 Certificate serial: 329072A9AA1EC8EDF08FA82B1F3A051AC0A2B749 Authority key identifier: 0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer Subject info access: rsync://rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a3230323a3a2f34382d3634203d3e20323136313938.roa Signing time: Mon 11 May 2026 17:58:45 +0000 ROA not before: Mon 11 May 2026 17:53:45 +0000 ROA not after: Mon 10 May 2027 17:58:45 +0000 asID: 216198 IP address blocks: 2402:43e0:202::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.crl rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:90:72:a9:aa:1e:c8:ed:f0:8f:a8:2b:1f:3a:05:1a:c0:a2:b7:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78 Validity Not Before: May 11 17:53:45 2026 GMT Not After : May 10 17:58:45 2027 GMT Subject: CN=826952D4FD170212F8C3A8FBF5105190EBCF39FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:42:f5:ca:9c:f2:45:81:1a:ee:66:63:d4:ea: 46:4f:79:5f:3c:ef:4d:cb:28:d7:08:41:a8:c1:5d: e2:28:e3:3b:57:10:1c:4e:af:35:31:bd:da:fe:93: fd:b7:67:dd:18:e8:94:29:8c:0c:db:f7:29:90:37: 12:de:b1:b4:ee:0b:2e:05:5e:df:b4:52:ee:93:f9: a0:42:05:84:50:28:4e:61:b8:ac:f6:a1:db:ec:96: b0:da:f9:cb:b1:a3:af:2b:e8:1e:80:b4:6c:4f:e7: ee:5d:eb:a5:57:b7:e0:d2:ef:04:f1:23:21:5f:36: 2a:47:9e:89:ae:8a:60:bc:10:30:6f:fe:cd:69:44: f9:43:0c:93:3f:d9:1d:04:ee:d4:12:2a:88:6a:43: 1f:59:4e:fb:77:69:c4:5d:46:a6:fc:a1:d3:b0:1f: a9:fa:e9:a1:3c:e2:3a:eb:1d:b1:9e:e2:82:4c:9d: 3f:89:4a:a2:1d:ee:fa:b1:80:a5:fb:67:cf:c8:7c: b6:fb:c0:fb:9e:68:54:11:fe:12:e9:8d:ac:ee:eb: 7b:7c:c3:27:89:f8:41:11:4c:3d:29:72:cc:2c:28: 8e:99:86:0d:7e:f8:8b:5a:81:af:23:6a:d7:b5:72: 04:e0:51:13:19:e3:0d:b2:6e:3e:9e:3f:3c:06:ae: 91:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:69:52:D4:FD:17:02:12:F8:C3:A8:FB:F5:10:51:90:EB:CF:39:FD X509v3 Authority Key Identifier: keyid:0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a3230323a3a2f34382d3634203d3e20323136313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:43e0:202::/48 Signature Algorithm: sha256WithRSAEncryption bf:d1:1d:ed:80:49:3f:cd:6d:7a:cb:7e:4d:ff:99:d9:75:b0: 79:8c:80:84:30:77:1b:fc:06:a6:03:aa:80:cd:28:a0:94:30: b7:a4:b9:f8:b8:cf:75:73:c0:e9:57:8a:b6:6b:62:24:5c:4e: 9c:82:04:09:97:3f:27:0c:c1:3e:21:81:4a:71:f5:29:3c:01: cb:44:dd:06:2e:a6:0a:a7:17:a7:27:d1:bb:3a:f9:c5:3e:e9: 4c:09:a5:43:af:1a:6b:2b:27:a8:fd:78:7d:bd:2f:ec:43:a9: 52:64:5d:ff:fd:72:f7:9b:94:c7:9d:d1:83:d5:dc:4a:1c:d2: e7:6f:36:ac:12:47:bb:c0:04:2a:e0:f4:87:4e:72:ab:83:8c: 6d:01:2e:94:64:f4:b1:7c:2f:e1:cc:9f:44:5b:4d:60:9a:9b: 38:1b:27:61:71:3f:18:82:03:14:b6:fe:c0:8b:ea:72:c6:5a: 2f:64:64:5f:64:42:69:e8:91:8f:e4:44:bf:32:b8:f9:73:a9: 38:c9:83:f1:86:92:49:d2:60:fe:ac:80:df:16:34:e2:1e:86: 26:62:f2:97:97:45:71:ad:8c:07:d4:3e:87:4a:ec:99:b3:a1: 66:ca:66:15:e2:00:fc:36:d9:92:19:ad:0b:71:10:1e:68:b0: e0:cf:c9:9a -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUMpByqaoeyO3wj6grHzoFGsCit0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEY2QjM0MjdDRDQwM0RFNzBEOTdDRERDQUZBMEJEQkMx NjZDM0U3ODAeFw0yNjA1MTExNzUzNDVaFw0yNzA1MTAxNzU4NDVaMDMxMTAvBgNV BAMTKDgyNjk1MkQ0RkQxNzAyMTJGOEMzQThGQkY1MTA1MTkwRUJDRjM5RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcQvXKnPJFgRruZmPU6kZPeV88 703LKNcIQajBXeIo4ztXEBxOrzUxvdr+k/23Z90Y6JQpjAzb9ymQNxLesbTuCy4F Xt+0Uu6T+aBCBYRQKE5huKz2odvslrDa+cuxo68r6B6AtGxP5+5d66VXt+DS7wTx IyFfNipHnomuimC8EDBv/s1pRPlDDJM/2R0E7tQSKohqQx9ZTvt3acRdRqb8odOw H6n66aE84jrrHbGe4oJMnT+JSqId7vqxgKX7Z8/IfLb7wPueaFQR/hLpjazu63t8 wyeJ+EERTD0pcswsKI6Zhg1++Itaga8jate1cgTgURMZ4w2ybj6ePzwGrpGXAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUgmlS1P0XAhL4w6j79RBRkOvPOf0wHwYDVR0j BBgwFoAUD2s0J81APecNl83cr6C9vBZsPngwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQU9URVJO RVQvMC8wRjZCMzQyN0NENDAzREU3MEQ5N0NERENBRkEwQkRCQzE2NkMzRTc4LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzBGNkIzNDI3Q0Q0MDNERTcwRDk3Q0REQ0FG QTBCREJDMTY2QzNFNzguY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuG anJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQU9URVJORVQvMC8zMjM0MzAz MjNhMzQzMzY1MzAzYTMyMzAzMjNhM2EyZjM0MzgyZDM2MzQyMDNkM2UyMDMyMzEz NjMxMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACQCQ+ACAjANBgkqhkiG9w0BAQsFAAOCAQEAv9Ed 7YBJP81test+Tf+Z2XWweYyAhDB3G/wGpgOqgM0ooJQwt6S5+LjPdXPA6VeKtmti JFxOnIIECZc/JwzBPiGBSnH1KTwBy0TdBi6mCqcXpyfRuzr5xT7pTAmlQ68aaysn qP14fb0v7EOpUmRd//1y95uUx53Rg9XcShzS5282rBJHu8AEKuD0h05yq4OMbQEu lGT0sXwv4cyfRFtNYJqbOBsnYXE/GIIDFLb+wIvqcsZaL2RkX2RCaeiRj+REvzK4 +XOpOMmD8YaSSdJg/qyA3xY04h6GJmLyl5dFca2MB9Q+h0rsmbOhZspmFeIA/DbZ khmtC3EQHmiw4M/Jmg== -----END CERTIFICATE-----Generated at Tue May 12 21:52:57 2026 by rpki-client