$ rpki-client -vvf rpkica.twnic.tw/rpki/DWT/0/323430343a386363303a3a2f33322d3332203d3e203138343234.roa File: 323430343a386363303a3a2f33322d3332203d3e203138343234.roa (raw, json) Hash identifier: 4gWScR61JgdW+DF1aY1dC9SjqQwbjRsFEvvKJ9OCgWM= Subject key identifier: E2:F0:3F:A7:ED:3B:41:70:FC:DD:34:A4:E7:E0:A0:CB:5E:04:38:AB Certificate issuer: /CN=27CCE49F4A9C14852B3A304359D3CB1E4E332C3E Certificate serial: 518F9103DABC6BE7A98958DA5AB9DFC4B5D855B4 Authority key identifier: 27:CC:E4:9F:4A:9C:14:85:2B:3A:30:43:59:D3:CB:1E:4E:33:2C:3E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DWT/0/323430343a386363303a3a2f33322d3332203d3e203138343234.roa Signing time: Mon 11 May 2026 17:07:10 +0000 ROA not before: Mon 11 May 2026 17:02:10 +0000 ROA not after: Mon 10 May 2027 17:07:10 +0000 asID: 18424 IP address blocks: 2404:8cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.crl rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:8f:91:03:da:bc:6b:e7:a9:89:58:da:5a:b9:df:c4:b5:d8:55:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27CCE49F4A9C14852B3A304359D3CB1E4E332C3E Validity Not Before: May 11 17:02:10 2026 GMT Not After : May 10 17:07:10 2027 GMT Subject: CN=E2F03FA7ED3B4170FCDD34A4E7E0A0CB5E0438AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:58:e4:cb:87:26:80:73:0c:a7:3c:d3:40:8d: be:82:86:67:59:3d:5a:29:49:17:37:37:98:0c:e6: 58:73:86:fe:66:ba:31:44:aa:b7:42:f1:db:8e:bc: de:dc:b9:3b:dd:c3:5c:89:84:3d:70:12:7b:05:d1: f2:32:91:2f:d9:39:0e:ce:d4:e8:bd:77:db:ed:f1: 69:3c:eb:96:8f:e2:74:bc:17:82:b2:04:a2:82:10: 38:78:22:91:df:1f:53:03:66:ea:e9:89:8d:33:be: ef:ae:2b:da:60:b9:cb:4d:b7:56:7b:2e:5c:f8:51: 0d:ba:fc:3d:24:f7:79:57:85:61:35:52:6f:7b:bd: 03:1d:67:57:7f:f7:24:89:bb:dd:f0:57:25:ea:10: 3f:0d:c6:70:c6:35:97:9c:74:20:ab:07:41:56:ad: a6:f5:e7:b2:5c:da:86:ad:5f:ce:5f:a8:2d:47:52: 83:43:b5:38:b7:d9:d0:dc:ed:30:93:7d:36:fb:30: a8:dc:57:4c:00:b3:38:9a:89:fc:46:78:2e:fa:6a: 8e:3b:e9:f4:91:6a:e4:a7:0b:60:5d:7a:65:b7:f0: b5:44:3e:d5:c4:c1:57:67:c1:79:26:25:89:85:8c: dd:94:49:a6:50:67:a5:44:ad:f5:f3:3c:a0:21:3c: 89:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:F0:3F:A7:ED:3B:41:70:FC:DD:34:A4:E7:E0:A0:CB:5E:04:38:AB X509v3 Authority Key Identifier: keyid:27:CC:E4:9F:4A:9C:14:85:2B:3A:30:43:59:D3:CB:1E:4E:33:2C:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DWT/0/323430343a386363303a3a2f33322d3332203d3e203138343234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:8cc0::/32 Signature Algorithm: sha256WithRSAEncryption c2:9d:51:db:44:81:45:f8:2f:d7:9b:de:30:ef:46:4d:06:4a: 5b:df:03:53:68:da:f1:0b:4c:ff:e4:66:1e:a1:40:58:b4:8f: 0a:43:62:10:67:12:d5:c4:e9:e2:cb:39:9e:79:37:62:eb:ce: 22:76:79:c2:32:59:cb:bf:84:90:24:33:02:e3:8f:54:f5:ae: b5:eb:b7:4f:75:e7:26:eb:28:aa:48:2e:1d:01:4d:84:e5:24: 9c:6d:21:fd:c2:e7:6d:f3:e6:a8:ef:a1:29:2d:d9:e7:be:3c: 05:36:c5:c4:aa:3c:73:e4:16:34:5f:4f:d1:5e:5a:7a:6e:67: 45:75:52:77:cc:90:d3:17:f3:7b:db:03:d2:c1:c9:61:53:27: 5d:dd:11:f7:20:31:7b:ef:34:77:dc:69:73:31:5e:75:98:ef: 6e:01:1d:da:4b:d9:ea:76:3c:d1:68:fd:d8:27:d7:03:b7:e3: 60:9c:a4:79:34:57:f0:e0:ef:d9:57:c2:43:40:11:5f:03:3e: e2:76:a2:cc:19:6d:28:d4:18:83:9c:4b:6e:cd:c7:83:35:15: 7a:37:70:e1:a7:dd:7e:1d:25:06:74:8a:ca:39:d5:33:8f:7a: d5:af:66:c8:a6:37:c1:33:df:9a:72:50:22:08:1d:ef:6d:5b: d0:8c:93:66 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUUY+RA9q8a+epiVjaWrnfxLXYVbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdDQ0U0OUY0QTlDMTQ4NTJCM0EzMDQzNTlEM0NCMUU0 RTMzMkMzRTAeFw0yNjA1MTExNzAyMTBaFw0yNzA1MTAxNzA3MTBaMDMxMTAvBgNV BAMTKEUyRjAzRkE3RUQzQjQxNzBGQ0REMzRBNEU3RTBBMENCNUUwNDM4QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYWOTLhyaAcwynPNNAjb6ChmdZ PVopSRc3N5gM5lhzhv5mujFEqrdC8duOvN7cuTvdw1yJhD1wEnsF0fIykS/ZOQ7O 1Oi9d9vt8Wk865aP4nS8F4KyBKKCEDh4IpHfH1MDZurpiY0zvu+uK9pguctNt1Z7 Llz4UQ26/D0k93lXhWE1Um97vQMdZ1d/9ySJu93wVyXqED8NxnDGNZecdCCrB0FW rab157Jc2oatX85fqC1HUoNDtTi32dDc7TCTfTb7MKjcV0wAsziaifxGeC76ao47 6fSRauSnC2BdemW38LVEPtXEwVdnwXkmJYmFjN2USaZQZ6VErfXzPKAhPIlRAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQU4vA/p+07QXD83TSk5+Cgy14EOKswHwYDVR0j BBgwFoAUJ8zkn0qcFIUrOjBDWdPLHk4zLD4wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFdULzAv MjdDQ0U0OUY0QTlDMTQ4NTJCM0EzMDQzNTlEM0NCMUU0RTMzMkMzRS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8yN0NDRTQ5RjRBOUMxNDg1MkIzQTMwNDM1OUQzQ0Ix RTRFMzMyQzNFLmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFdULzAvMzIzNDMwMzQzYTM4NjM2MzMw M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzEzODM0MzIzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE jMAwDQYJKoZIhvcNAQELBQADggEBAMKdUdtEgUX4L9eb3jDvRk0GSlvfA1No2vEL TP/kZh6hQFi0jwpDYhBnEtXE6eLLOZ55N2LrziJ2ecIyWcu/hJAkMwLjj1T1rrXr t0915ybrKKpILh0BTYTlJJxtIf3C523z5qjvoSkt2ee+PAU2xcSqPHPkFjRfT9Fe WnpuZ0V1UnfMkNMX83vbA9LByWFTJ13dEfcgMXvvNHfcaXMxXnWY724BHdpL2ep2 PNFo/dgn1wO342CcpHk0V/Dg79lXwkNAEV8DPuJ2oswZbSjUGIOcS27Nx4M1FXo3 cOGn3X4dJQZ0iso51TOPetWvZsimN8Ez35pyUCIIHe9tW9CMk2Y= -----END CERTIFICATE-----Generated at Wed May 13 08:40:09 2026 by rpki-client