$ rpki-client -vvf rpkica.twnic.tw/rpki/APPIER/0/323430333a383634303a3a2f33322d3634203d3e20333936393832.roa File: 323430333a383634303a3a2f33322d3634203d3e20333936393832.roa (raw, json) Hash identifier: Jm1SzTARAHpPF8XgcCqrOsbDyqd1bedbKKWEeTdyjNA= Subject key identifier: 38:DB:CE:4D:C8:89:C7:71:7B:79:D6:23:CD:83:24:63:6E:98:2A:58 Certificate issuer: /CN=881BEE1F93D58BAEDFAC994B677AAAD03CC59C78 Certificate serial: 36C1A4DD6F94D9A4F07BF2CAC8EE0AD46892269E Authority key identifier: 88:1B:EE:1F:93:D5:8B:AE:DF:AC:99:4B:67:7A:AA:D0:3C:C5:9C:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/881BEE1F93D58BAEDFAC994B677AAAD03CC59C78.cer Subject info access: rsync://rpkica.twnic.tw/rpki/APPIER/0/323430333a383634303a3a2f33322d3634203d3e20333936393832.roa Signing time: Mon 11 May 2026 17:39:12 +0000 ROA not before: Mon 11 May 2026 17:34:12 +0000 ROA not after: Mon 10 May 2027 17:39:12 +0000 asID: 396982 IP address blocks: 2403:8640::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/APPIER/0/881BEE1F93D58BAEDFAC994B677AAAD03CC59C78.crl rsync://rpkica.twnic.tw/rpki/APPIER/0/881BEE1F93D58BAEDFAC994B677AAAD03CC59C78.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/881BEE1F93D58BAEDFAC994B677AAAD03CC59C78.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 12:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c1:a4:dd:6f:94:d9:a4:f0:7b:f2:ca:c8:ee:0a:d4:68:92:26:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=881BEE1F93D58BAEDFAC994B677AAAD03CC59C78 Validity Not Before: May 11 17:34:12 2026 GMT Not After : May 10 17:39:12 2027 GMT Subject: CN=38DBCE4DC889C7717B79D623CD8324636E982A58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:4a:d2:b4:0a:3e:20:d3:dd:2f:cf:e0:fd: 9d:1e:51:14:49:d0:95:dd:be:bc:3e:22:0f:8a:b2: 48:d1:64:08:40:83:8e:b8:37:68:d2:b5:00:d5:e8: 2a:2c:7c:4e:b4:d0:2e:05:49:4a:36:a8:68:5f:bd: a1:e0:93:ed:cb:18:0b:a4:35:be:83:eb:8d:3c:db: f9:32:c7:59:de:b5:df:67:14:fa:c1:d4:1f:44:af: de:cf:90:8e:6e:fd:01:20:23:ba:3e:24:5a:e7:a9: cc:f3:49:87:e1:a0:11:04:78:b1:53:68:06:60:60: 7c:5b:b9:b2:98:27:79:27:28:d8:fb:d4:d4:f0:f1: 6f:a8:67:2e:73:a7:7c:32:15:d8:1a:65:33:d7:51: d5:53:f4:6e:d4:33:dd:f2:53:bc:57:a6:8e:0f:c4: ce:ea:aa:1a:34:01:09:c6:0e:64:f3:2c:2e:8f:a5: 9e:85:87:9f:80:03:b7:84:3e:e4:f6:ce:d3:35:e1: ad:f7:e7:e9:13:30:47:d2:a1:91:71:96:74:9e:c6: 1e:f9:aa:78:75:8a:33:ce:59:3b:69:24:85:b4:9d: 64:98:a1:aa:ae:85:4f:3f:7c:01:e4:ab:f2:56:7e: a3:1d:7f:19:6e:80:d7:5a:37:67:66:f4:14:35:92: 4d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DB:CE:4D:C8:89:C7:71:7B:79:D6:23:CD:83:24:63:6E:98:2A:58 X509v3 Authority Key Identifier: keyid:88:1B:EE:1F:93:D5:8B:AE:DF:AC:99:4B:67:7A:AA:D0:3C:C5:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/APPIER/0/881BEE1F93D58BAEDFAC994B677AAAD03CC59C78.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/881BEE1F93D58BAEDFAC994B677AAAD03CC59C78.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/APPIER/0/323430333a383634303a3a2f33322d3634203d3e20333936393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:8640::/32 Signature Algorithm: sha256WithRSAEncryption 1c:e8:7f:b8:ff:a2:5d:75:0d:b4:4d:8a:bf:6e:3b:24:49:35: c5:da:ab:96:5d:e0:e3:3d:a0:2a:4d:69:00:22:ac:1d:93:23: cf:2c:93:be:73:1a:47:cb:ae:81:83:90:af:e7:dd:bf:b2:32: 8d:f5:6f:ef:58:44:0d:02:da:c8:ba:e1:12:1c:11:3f:d6:62: ed:c1:b2:e7:73:b7:34:19:5f:78:40:8a:91:4d:1c:aa:04:77: f5:92:d4:4c:48:c9:45:33:96:c7:c1:20:7a:47:21:70:53:52: 00:35:d9:07:93:9d:6b:16:c1:17:c4:fe:1f:9c:40:45:81:d9: 9b:b8:53:3b:98:9d:76:84:df:0d:6c:6f:c0:c4:5d:2e:21:9f: 72:34:b5:40:ef:fb:37:76:a9:10:94:41:af:dc:68:f8:77:9b: 0b:a3:bd:ff:56:05:08:f6:06:c1:19:de:ba:e8:eb:0b:24:aa: e7:41:af:27:9a:a3:73:c1:83:d8:06:e6:84:e6:10:87:2e:4e: 19:a4:29:b2:16:51:97:bb:37:bd:7d:f3:b1:cd:6f:2b:ae:f3: 70:ee:a5:5b:a4:78:88:45:64:c2:3c:19:41:79:6f:d9:b6:0b: 15:d1:b8:32:57:00:87:76:27:a7:b6:e6:84:08:84:1b:55:f9: 2b:38:e5:59 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUNsGk3W+U2aTwe/LKyO4K1GiSJp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgxQkVFMUY5M0Q1OEJBRURGQUM5OTRCNjc3QUFBRDAz Q0M1OUM3ODAeFw0yNjA1MTExNzM0MTJaFw0yNzA1MTAxNzM5MTJaMDMxMTAvBgNV BAMTKDM4REJDRTREQzg4OUM3NzE3Qjc5RDYyM0NEODMyNDYzNkU5ODJBNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC39UrStAo+INPdL8/g/Z0eURRJ 0JXdvrw+Ig+KskjRZAhAg464N2jStQDV6CosfE600C4FSUo2qGhfvaHgk+3LGAuk Nb6D64082/kyx1netd9nFPrB1B9Er97PkI5u/QEgI7o+JFrnqczzSYfhoBEEeLFT aAZgYHxbubKYJ3knKNj71NTw8W+oZy5zp3wyFdgaZTPXUdVT9G7UM93yU7xXpo4P xM7qqho0AQnGDmTzLC6PpZ6Fh5+AA7eEPuT2ztM14a335+kTMEfSoZFxlnSexh75 qnh1ijPOWTtpJIW0nWSYoaquhU8/fAHkq/JWfqMdfxlugNdaN2dm9BQ1kk0tAgMB AAGjggHkMIIB4DAdBgNVHQ4EFgQUONvOTciJx3F7edYjzYMkY26YKlgwHwYDVR0j BBgwFoAUiBvuH5PVi67frJlLZ3qq0DzFnHgwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQVBQSUVS LzAvODgxQkVFMUY5M0Q1OEJBRURGQUM5OTRCNjc3QUFBRDAzQ0M1OUM3OC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS84ODFCRUUxRjkzRDU4QkFFREZBQzk5NEI2NzdB QUFEMDNDQzU5Qzc4LmNlcjB8BggrBgEFBQcBCwRwMG4wbAYIKwYBBQUHMAuGYHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQVBQSUVSLzAvMzIzNDMwMzMzYTM4 MzYzNDMwM2EzYTJmMzMzMjJkMzYzNDIwM2QzZTIwMzMzOTM2MzkzODMyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAOGQDANBgkqhkiG9w0BAQsFAAOCAQEAHOh/uP+iXXUNtE2Kv247JEk1 xdqrll3g4z2gKk1pACKsHZMjzyyTvnMaR8uugYOQr+fdv7IyjfVv71hEDQLayLrh EhwRP9Zi7cGy53O3NBlfeECKkU0cqgR39ZLUTEjJRTOWx8EgekchcFNSADXZB5Od axbBF8T+H5xARYHZm7hTO5iddoTfDWxvwMRdLiGfcjS1QO/7N3apEJRBr9xo+Heb C6O9/1YFCPYGwRneuujrCySq50GvJ5qjc8GD2AbmhOYQhy5OGaQpshZRl7s3vX3z sc1vK67zcO6lW6R4iEVkwjwZQXlv2bYLFdG4MlcAh3Ynp7bmhAiEG1X5KzjlWQ== -----END CERTIFICATE-----Generated at Wed May 13 05:37:59 2026 by rpki-client