$ rpki-client -vvf rpkica.twnic.tw/rpki/CHINATRUST/0/323430353a333330303a3a2f33322d3936203d3e20313331313433.roa File: 323430353a333330303a3a2f33322d3936203d3e20313331313433.roa (raw, json) Hash identifier: ZKiaer8NjI3ngd1EbZw69ZFOR2ZlmwyGwjPK8gzDQck= Subject key identifier: 25:D5:AA:5C:47:B7:FF:91:0A:A4:5A:1A:3D:C0:98:26:EA:90:A9:2B Certificate issuer: /CN=8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D Certificate serial: 43558CE74408AD031A74C5166975366F2EA71502 Authority key identifier: 80:99:DF:C0:CF:C8:3C:5D:DF:D9:0C:A5:EA:31:4C:C9:A8:67:7F:2D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/323430353a333330303a3a2f33322d3936203d3e20313331313433.roa Signing time: Mon 11 May 2026 17:06:32 +0000 ROA not before: Mon 11 May 2026 17:01:32 +0000 ROA not after: Mon 10 May 2027 17:06:32 +0000 asID: 131143 IP address blocks: 2405:3300::/32 maxlen: 96 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.crl rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:55:8c:e7:44:08:ad:03:1a:74:c5:16:69:75:36:6f:2e:a7:15:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D Validity Not Before: May 11 17:01:32 2026 GMT Not After : May 10 17:06:32 2027 GMT Subject: CN=25D5AA5C47B7FF910AA45A1A3DC09826EA90A92B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f3:8b:ca:6b:d8:1c:35:27:31:cb:c8:c0:96: cb:fd:71:3f:72:7a:e0:a4:23:cd:e9:c9:dc:ee:c5: b6:ea:45:8a:10:32:17:5b:09:92:15:55:f3:25:d1: 9f:8e:8d:45:64:3d:c9:1f:17:c6:e9:d1:07:9e:4a: 93:67:b7:c8:3b:a0:ae:bd:da:e7:ad:1c:e7:41:ab: dc:3c:dc:4a:ec:7e:ba:6f:8e:16:dc:bd:da:c3:d7: d9:30:4f:fb:b8:ed:5f:45:77:ea:ec:d5:ed:8f:35: 1b:38:80:30:7a:0d:12:fe:22:e7:7c:b3:38:48:b4: e0:da:0a:a9:72:53:fe:c4:51:76:12:07:e0:05:ec: d8:e8:bc:c5:e8:53:06:5a:a4:fd:7e:e2:c4:4c:4b: eb:3a:55:4a:52:72:25:b2:00:81:56:f6:cf:df:5b: 03:f3:1a:5e:5c:14:09:16:2b:d5:fc:98:38:37:01: 2c:2f:72:06:cc:9f:35:6e:17:97:bd:27:a7:b5:0e: d1:61:21:3b:12:7d:79:c3:11:78:59:87:c3:15:3b: 96:9f:f2:e1:74:2c:f5:de:d3:27:cc:af:bf:46:b8: 91:5c:78:04:ac:0c:cd:06:26:94:8b:33:e5:ac:9d: 61:f2:e7:22:5c:18:6b:5e:de:09:12:fa:08:1f:ba: e3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D5:AA:5C:47:B7:FF:91:0A:A4:5A:1A:3D:C0:98:26:EA:90:A9:2B X509v3 Authority Key Identifier: keyid:80:99:DF:C0:CF:C8:3C:5D:DF:D9:0C:A5:EA:31:4C:C9:A8:67:7F:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/323430353a333330303a3a2f33322d3936203d3e20313331313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3300::/32 Signature Algorithm: sha256WithRSAEncryption 4f:f5:bd:e1:7f:48:35:5f:d8:1e:9e:87:32:a5:51:05:1a:d6: 04:03:ed:24:8e:45:af:16:1a:b1:14:32:a0:d4:40:5f:37:ea: a3:2a:5b:22:03:8c:a9:61:7e:87:f9:94:af:c4:12:db:c9:ac: 1e:7d:91:6d:dd:d0:a6:83:45:a9:4f:b1:f6:86:f9:44:07:9f: d0:56:58:35:1f:5a:8e:3f:97:3a:1f:54:9a:14:06:8b:73:cf: 8b:07:08:46:5a:65:a8:ba:9e:db:b1:81:25:77:76:3e:ea:8c: c3:ee:14:40:f4:0d:23:0f:15:59:f5:64:7b:bc:59:f5:9a:71: 9d:87:04:41:b3:18:e9:3d:d1:8d:d8:ce:e7:7e:bc:0a:3e:33: 9a:97:ff:d2:08:81:cf:20:db:da:75:27:29:ae:6e:a1:6d:79: 0e:15:bc:3b:a8:bf:ab:04:71:26:31:82:7d:02:82:2e:ad:45: 82:ea:49:51:88:81:53:9b:5a:3a:6b:b5:9f:82:fa:74:b1:01: bb:5c:82:fc:96:46:14:56:b0:bf:33:7b:82:9c:9a:81:ad:96: 7c:0f:8f:d3:c6:83:0d:3f:42:6d:04:c6:d9:b9:a3:d8:b2:f8: 94:6d:54:66:ef:b5:0e:3e:35:a4:2e:c1:90:7c:2a:94:b6:87: 99:e1:bd:9e -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUQ1WM50QIrQMadMUWaXU2by6nFQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODA5OURGQzBDRkM4M0M1RERGRDkwQ0E1RUEzMTRDQzlB ODY3N0YyRDAeFw0yNjA1MTExNzAxMzJaFw0yNzA1MTAxNzA2MzJaMDMxMTAvBgNV BAMTKDI1RDVBQTVDNDdCN0ZGOTEwQUE0NUExQTNEQzA5ODI2RUE5MEE5MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ84vKa9gcNScxy8jAlsv9cT9y euCkI83pydzuxbbqRYoQMhdbCZIVVfMl0Z+OjUVkPckfF8bp0QeeSpNnt8g7oK69 2uetHOdBq9w83ErsfrpvjhbcvdrD19kwT/u47V9Fd+rs1e2PNRs4gDB6DRL+Iud8 szhItODaCqlyU/7EUXYSB+AF7NjovMXoUwZapP1+4sRMS+s6VUpSciWyAIFW9s/f WwPzGl5cFAkWK9X8mDg3ASwvcgbMnzVuF5e9J6e1DtFhITsSfXnDEXhZh8MVO5af 8uF0LPXe0yfMr79GuJFceASsDM0GJpSLM+WsnWHy5yJcGGte3gkS+ggfuuPbAgMB AAGjggHtMIIB6TAdBgNVHQ4EFgQUJdWqXEe3/5EKpFoaPcCYJuqQqSswHwYDVR0j BBgwFoAUgJnfwM/IPF3f2Qyl6jFMyahnfy0wDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFU UlVTVC8wLzgwOTlERkMwQ0ZDODNDNURERkQ5MENBNUVBMzE0Q0M5QTg2NzdGMkQu Y3JsMG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBLzEvODA5OURGQzBDRkM4M0M1RERGRDkwQ0E1 RUEzMTRDQzlBODY3N0YyRC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcw C4ZkcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElOQVRSVVNULzAvMzIz NDMwMzUzYTMzMzMzMDMwM2EzYTJmMzMzMjJkMzkzNjIwM2QzZTIwMzEzMzMxMzEz NDMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAUzADANBgkqhkiG9w0BAQsFAAOCAQEAT/W94X9INV/Y Hp6HMqVRBRrWBAPtJI5FrxYasRQyoNRAXzfqoypbIgOMqWF+h/mUr8QS28msHn2R bd3QpoNFqU+x9ob5RAef0FZYNR9ajj+XOh9UmhQGi3PPiwcIRlplqLqe27GBJXd2 PuqMw+4UQPQNIw8VWfVke7xZ9ZpxnYcEQbMY6T3RjdjO5368Cj4zmpf/0giBzyDb 2nUnKa5uoW15DhW8O6i/qwRxJjGCfQKCLq1FgupJUYiBU5taOmu1n4L6dLEBu1yC /JZGFFawvzN7gpyaga2WfA+P08aDDT9CbQTG2bmj2LL4lG1UZu+1Dj41pC7BkHwq lLaHmeG9ng== -----END CERTIFICATE-----Generated at Wed May 13 03:58:45 2026 by rpki-client