$ rpki-client -vvf rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a3a2f33322d3438203d3e20313532363136.roa File: 323430323a343736303a3a2f33322d3438203d3e20313532363136.roa (raw, json) Hash identifier: lKmthCTTisqjHpuoP2bikfzfGXpUjgsnHNJya4mfXq4= Subject key identifier: F3:ED:86:16:47:31:C6:33:FB:32:24:B9:51:3B:D3:3E:46:1C:F1:D1 Certificate issuer: /CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Certificate serial: 2F76A3055991732029426A0C09AB83211079FED5 Authority key identifier: 67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a3a2f33322d3438203d3e20313532363136.roa Signing time: Mon 11 May 2026 17:57:47 +0000 ROA not before: Mon 11 May 2026 17:52:47 +0000 ROA not after: Mon 10 May 2027 17:57:47 +0000 asID: 152616 IP address blocks: 2402:4760::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:76:a3:05:59:91:73:20:29:42:6a:0c:09:ab:83:21:10:79:fe:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Validity Not Before: May 11 17:52:47 2026 GMT Not After : May 10 17:57:47 2027 GMT Subject: CN=F3ED86164731C633FB3224B9513BD33E461CF1D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e4:04:cd:c1:62:51:b8:ec:20:50:ab:fd:14: 7b:87:5e:7a:96:92:df:c4:30:97:ed:14:21:fd:2c: 82:45:78:06:85:f7:1b:96:42:9c:0b:1d:7c:80:e6: 55:0b:59:79:a7:e5:d5:97:8e:e6:20:a1:cc:47:fa: 32:9f:81:6d:26:72:d6:ee:fb:05:ed:7c:18:d2:72: d9:08:19:1e:e5:d7:59:8d:d9:40:80:84:a3:1f:c3: d1:6d:2f:47:6e:49:26:27:fa:8e:2b:81:25:52:90: 2f:c7:28:ca:11:cb:3a:dd:3c:c8:47:b6:e3:dc:45: 35:40:1a:23:5c:a8:eb:60:19:d2:01:6c:81:7b:2d: ee:a6:cb:d5:3f:78:c5:45:c7:a2:9e:e0:d2:d3:fe: 70:59:34:8a:1a:10:5b:ab:d2:5f:55:9d:0d:5f:33: 1c:1e:64:e6:64:af:6f:8a:d2:ef:f0:ce:b5:52:07: df:2e:b9:9b:b8:c3:89:31:7d:43:eb:6e:98:e4:66: 25:3b:9b:72:8b:1c:85:e5:91:8b:33:ce:94:03:b6: 55:47:0c:f1:24:4e:34:98:d0:bd:76:4b:e5:25:13: d6:9c:ae:e3:4a:0e:6f:5f:ca:5a:f6:5c:de:62:79: b3:87:f2:e5:3c:c3:91:27:0e:82:68:c2:79:4f:8b: ce:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:ED:86:16:47:31:C6:33:FB:32:24:B9:51:3B:D3:3E:46:1C:F1:D1 X509v3 Authority Key Identifier: keyid:67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a3a2f33322d3438203d3e20313532363136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4760::/32 Signature Algorithm: sha256WithRSAEncryption 6c:8b:d6:14:84:4e:68:31:a9:d5:b4:b2:38:88:a1:54:2f:a9: 53:82:eb:6a:a6:09:04:05:35:eb:45:08:9f:6d:a1:8b:8e:6c: fe:c3:a3:36:88:00:14:4c:87:f4:e7:f4:c9:91:6b:d1:db:19: ab:c4:46:cd:2e:8f:cc:2d:03:19:17:3a:ee:49:18:1e:a3:0f: c0:90:dc:14:e6:09:80:82:5c:d5:1f:a6:18:89:02:f8:48:c6: 3e:08:f1:cd:35:0c:12:da:23:ef:57:05:9d:cf:fa:97:40:df: 99:db:f7:87:97:35:50:a4:58:82:fd:e7:c2:67:0d:b6:fc:b2: e0:5d:be:4d:be:d2:48:87:0a:aa:74:b1:cc:e7:1b:fc:18:6d: 75:4b:91:f5:ec:f4:59:98:2d:f0:1a:36:1a:18:1b:46:91:de: 20:1c:c9:a9:c2:f1:4a:a4:c0:35:8f:0f:1a:45:cb:2f:36:72: 9d:59:b3:e6:cf:8a:61:38:6d:03:63:dc:fa:47:4a:ca:53:ca: 28:77:c4:ca:80:0e:73:1b:8b:35:d4:fa:df:d4:cd:73:87:9d: e3:48:fb:ed:4f:ae:fb:09:b0:6a:b7:25:2f:c4:96:13:3a:19: 87:ee:67:98:08:cf:5c:74:1d:29:13:25:d9:d7:1f:b5:b8:9e: fc:90:80:82 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUL3ajBVmRcyApQmoMCauDIRB5/tUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3Njc5 QUU1RTlGRDAeFw0yNjA1MTExNzUyNDdaFw0yNzA1MTAxNzU3NDdaMDMxMTAvBgNV BAMTKEYzRUQ4NjE2NDczMUM2MzNGQjMyMjRCOTUxM0JEMzNFNDYxQ0YxRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH5ATNwWJRuOwgUKv9FHuHXnqW kt/EMJftFCH9LIJFeAaF9xuWQpwLHXyA5lULWXmn5dWXjuYgocxH+jKfgW0mctbu +wXtfBjSctkIGR7l11mN2UCAhKMfw9FtL0duSSYn+o4rgSVSkC/HKMoRyzrdPMhH tuPcRTVAGiNcqOtgGdIBbIF7Le6my9U/eMVFx6Ke4NLT/nBZNIoaEFur0l9VnQ1f MxweZOZkr2+K0u/wzrVSB98uuZu4w4kxfUPrbpjkZiU7m3KLHIXlkYszzpQDtlVH DPEkTjSY0L12S+UlE9acruNKDm9fylr2XN5iebOH8uU8w5EnDoJownlPi84zAgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQU8+2GFkcxxjP7MiS5UTvTPkYc8dEwHwYDVR0j BBgwFoAUZx2pX2fXA6jrwzMOeCcXZ5rl6f0wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkhJUy8w LzY3MURBOTVGNjdENzAzQThFQkMzMzMwRTc4MjcxNzY3OUFFNUU5RkQuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3 Njc5QUU1RTlGRC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0JISVMvMC8zMjM0MzAzMjNhMzQzNzM2 MzAzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzMTM1MzIzNjMxMzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAkdgMA0GCSqGSIb3DQEBCwUAA4IBAQBsi9YUhE5oManVtLI4iKFUL6lTgutq pgkEBTXrRQifbaGLjmz+w6M2iAAUTIf05/TJkWvR2xmrxEbNLo/MLQMZFzruSRge ow/AkNwU5gmAglzVH6YYiQL4SMY+CPHNNQwS2iPvVwWdz/qXQN+Z2/eHlzVQpFiC /efCZw22/LLgXb5NvtJIhwqqdLHM5xv8GG11S5H17PRZmC3wGjYaGBtGkd4gHMmp wvFKpMA1jw8aRcsvNnKdWbPmz4phOG0DY9z6R0rKU8ood8TKgA5zG4s11Prf1M1z h53jSPvtT677CbBqtyUvxJYTOhmH7meYCM9cdB0pEyXZ1x+1uJ78kICC -----END CERTIFICATE-----Generated at Wed May 13 07:01:41 2026 by rpki-client