$ rpki-client -vvf rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a3330313a3a2f34382d3634203d3e20313532363132.roa File: 323430323a343365303a3330313a3a2f34382d3634203d3e20313532363132.roa (raw, json) Hash identifier: 05+WKbQh6sstRH+yIl8/yofc8QcUG3HK5qslmx7kBo8= Subject key identifier: AE:34:46:CB:D1:5D:8A:7B:F7:05:B2:2E:96:5B:B3:49:7F:3D:EE:6D Certificate issuer: /CN=0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78 Certificate serial: 09636B73F07BD93F07B78D85680AEDAEDEC1866B Authority key identifier: 0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer Subject info access: rsync://rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a3330313a3a2f34382d3634203d3e20313532363132.roa Signing time: Mon 11 May 2026 17:58:38 +0000 ROA not before: Mon 11 May 2026 17:53:38 +0000 ROA not after: Mon 10 May 2027 17:58:38 +0000 asID: 152612 IP address blocks: 2402:43e0:301::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.crl rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:63:6b:73:f0:7b:d9:3f:07:b7:8d:85:68:0a:ed:ae:de:c1:86:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78 Validity Not Before: May 11 17:53:38 2026 GMT Not After : May 10 17:58:38 2027 GMT Subject: CN=AE3446CBD15D8A7BF705B22E965BB3497F3DEE6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ac:f2:0e:03:4a:d5:8e:39:a6:df:e6:d5:2e: d6:bf:be:07:66:b7:63:fe:1c:5d:80:7b:69:e9:4b: ad:71:cd:bd:43:fa:65:b9:1f:a3:00:f6:9d:2c:b6: 39:0f:51:3d:33:2f:5b:63:bc:78:02:0a:97:e8:30: 14:a4:bd:44:3c:0b:da:b6:82:5b:67:b2:93:91:72: 00:72:96:ad:13:60:6a:05:c6:8c:ea:ec:c0:b3:f7: f9:8b:48:78:84:a5:a1:ff:13:8d:54:cc:e8:26:ff: 06:95:f3:83:1d:b3:bb:37:32:13:0e:a4:9e:7b:24: c1:e0:ee:b6:22:35:9a:fa:0e:d7:e4:de:93:b1:e9: fb:97:64:e5:b2:7f:5d:4b:b7:76:83:f0:c4:f0:0e: 9a:63:cf:bd:f7:92:39:40:97:6f:b2:90:1f:eb:c0: 72:a9:e8:31:6a:9e:7d:b2:69:3f:be:3f:53:46:98: fe:b4:e9:c6:5d:6f:c7:f6:e0:97:d8:0d:0b:85:45: 03:f4:27:99:f1:5b:64:f1:c2:24:ee:32:c8:5a:59: 96:6b:c8:a8:a3:f6:26:e4:c0:61:6a:46:c3:5d:85: 93:f9:ed:49:54:60:c9:6e:85:9b:fd:64:31:42:76: 10:68:52:62:58:a3:1b:ed:4f:2c:bc:41:2a:2b:d8: ba:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:34:46:CB:D1:5D:8A:7B:F7:05:B2:2E:96:5B:B3:49:7F:3D:EE:6D X509v3 Authority Key Identifier: keyid:0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a3330313a3a2f34382d3634203d3e20313532363132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:43e0:301::/48 Signature Algorithm: sha256WithRSAEncryption 8b:b7:9c:36:70:de:92:d6:76:c9:4c:40:03:12:5f:2c:3d:9b: b6:67:d0:cb:f8:84:2f:f7:68:8c:32:1b:ba:c8:97:cb:88:8e: be:1a:ee:69:80:79:d2:0b:6d:79:27:9a:3f:8c:ec:45:88:19: 96:f9:7b:91:fc:de:ab:81:77:1a:93:84:da:92:a9:95:15:16: 2b:d7:25:a0:fb:a6:c1:14:bd:6e:3a:1f:7e:40:8a:18:02:ab: 01:a4:e5:b0:96:94:ad:b2:bd:db:2b:18:4b:74:c5:ae:08:f2: 14:05:d6:3f:8a:30:a5:f1:40:f5:c6:d0:1e:8a:e7:49:82:15: af:b8:7a:24:2a:30:86:8f:79:b8:71:c6:27:ce:2f:bb:8f:14: c4:1a:ed:06:cd:57:2a:a5:11:75:a4:70:3a:e4:a1:aa:03:69: 14:5d:22:58:d3:3b:ea:f4:27:e5:20:5a:f4:24:b4:06:8c:9e: ab:6b:16:f3:5f:e3:fc:9e:83:ab:5a:63:5f:bf:1d:1a:58:6b: 4e:9b:de:49:7c:68:ff:1d:cf:d5:9e:17:69:20:f6:58:02:4f: fd:37:5f:ef:89:20:48:36:a3:c4:ef:58:fe:78:74:27:ca:07: 6a:8b:07:4e:c0:8a:9d:a6:d8:80:4c:09:5b:8e:55:7b:44:c2: 4a:f7:b8:6e -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUCWNrc/B72T8Ht42FaArtrt7BhmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEY2QjM0MjdDRDQwM0RFNzBEOTdDRERDQUZBMEJEQkMx NjZDM0U3ODAeFw0yNjA1MTExNzUzMzhaFw0yNzA1MTAxNzU4MzhaMDMxMTAvBgNV BAMTKEFFMzQ0NkNCRDE1RDhBN0JGNzA1QjIyRTk2NUJCMzQ5N0YzREVFNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFrPIOA0rVjjmm3+bVLta/vgdm t2P+HF2Ae2npS61xzb1D+mW5H6MA9p0stjkPUT0zL1tjvHgCCpfoMBSkvUQ8C9q2 gltnspORcgBylq0TYGoFxozq7MCz9/mLSHiEpaH/E41UzOgm/waV84Mds7s3MhMO pJ57JMHg7rYiNZr6Dtfk3pOx6fuXZOWyf11Lt3aD8MTwDppjz733kjlAl2+ykB/r wHKp6DFqnn2yaT++P1NGmP606cZdb8f24JfYDQuFRQP0J5nxW2TxwiTuMshaWZZr yKij9ibkwGFqRsNdhZP57UlUYMluhZv9ZDFCdhBoUmJYoxvtTyy8QSor2Lq1AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUrjRGy9Fdinv3BbIulluzSX897m0wHwYDVR0j BBgwFoAUD2s0J81APecNl83cr6C9vBZsPngwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQU9URVJO RVQvMC8wRjZCMzQyN0NENDAzREU3MEQ5N0NERENBRkEwQkRCQzE2NkMzRTc4LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzBGNkIzNDI3Q0Q0MDNERTcwRDk3Q0REQ0FG QTBCREJDMTY2QzNFNzguY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuG anJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQU9URVJORVQvMC8zMjM0MzAz MjNhMzQzMzY1MzAzYTMzMzAzMTNhM2EyZjM0MzgyZDM2MzQyMDNkM2UyMDMxMzUz MjM2MzEzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACQCQ+ADATANBgkqhkiG9w0BAQsFAAOCAQEAi7ec NnDektZ2yUxAAxJfLD2btmfQy/iEL/dojDIbusiXy4iOvhruaYB50gtteSeaP4zs RYgZlvl7kfzeq4F3GpOE2pKplRUWK9cloPumwRS9bjoffkCKGAKrAaTlsJaUrbK9 2ysYS3TFrgjyFAXWP4owpfFA9cbQHornSYIVr7h6JCowho95uHHGJ84vu48UxBrt Bs1XKqURdaRwOuShqgNpFF0iWNM76vQn5SBa9CS0Boyeq2sW81/j/J6Dq1pjX78d GlhrTpveSXxo/x3P1Z4XaSD2WAJP/Tdf74kgSDajxO9Y/nh0J8oHaosHTsCKnabY gEwJW45Ve0TCSve4bg== -----END CERTIFICATE-----Generated at Wed May 13 03:55:07 2026 by rpki-client