$ rpki-client -vvf rpkica.twnic.tw/rpki/DWT/0/323430343a386363303a3a2f33322d3332203d3e203234313638.roa File: 323430343a386363303a3a2f33322d3332203d3e203234313638.roa (raw, json) Hash identifier: GFZcsrLoo/r07dkSVQFIiODF08z6N22aERXHcseplrA= Subject key identifier: BE:04:A5:DB:FB:89:83:A2:5E:0C:C9:0F:03:3C:09:43:B2:D2:F8:B6 Certificate issuer: /CN=27CCE49F4A9C14852B3A304359D3CB1E4E332C3E Certificate serial: 03DD03C964F4CEF17C7882D694BAEE61C0DAF324 Authority key identifier: 27:CC:E4:9F:4A:9C:14:85:2B:3A:30:43:59:D3:CB:1E:4E:33:2C:3E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DWT/0/323430343a386363303a3a2f33322d3332203d3e203234313638.roa Signing time: Mon 11 May 2026 16:45:52 +0000 ROA not before: Mon 11 May 2026 16:40:52 +0000 ROA not after: Mon 10 May 2027 16:45:52 +0000 asID: 24168 IP address blocks: 2404:8cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.crl rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:dd:03:c9:64:f4:ce:f1:7c:78:82:d6:94:ba:ee:61:c0:da:f3:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27CCE49F4A9C14852B3A304359D3CB1E4E332C3E Validity Not Before: May 11 16:40:52 2026 GMT Not After : May 10 16:45:52 2027 GMT Subject: CN=BE04A5DBFB8983A25E0CC90F033C0943B2D2F8B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b9:25:e7:ce:bc:7e:9f:a4:a3:6b:0a:ee:12: 38:63:3d:6c:56:70:e4:f4:cd:39:94:a9:c5:89:30: d7:3d:86:4d:61:51:8c:e1:88:da:30:da:62:4c:5a: 75:54:9e:b7:fe:9f:57:0f:c0:71:b3:bf:c0:ae:da: d9:65:c1:ae:f0:91:bd:14:6f:57:05:f3:df:bc:1b: da:cf:9e:e7:f5:a6:79:b0:a2:20:67:14:da:33:9a: f7:71:9d:0b:84:cd:c2:a0:21:d9:3f:24:3f:98:06: 14:b6:04:e5:74:7c:a8:58:93:82:74:e5:77:57:60: 11:2e:1e:60:05:b0:54:35:91:fa:28:f8:6f:72:62: 79:5e:08:f5:a3:46:05:27:f0:ba:be:a7:8a:c7:63: d4:33:62:5e:e9:4e:e8:82:12:e1:79:d3:d3:56:e4: 73:a0:07:67:1f:dd:2c:b3:c8:f7:73:76:9e:55:da: b0:df:68:ec:d3:77:12:40:16:da:a4:e1:45:3d:21: ba:fd:e4:f5:a1:7c:93:c8:e8:fb:67:dd:8b:a6:6b: 16:0a:11:32:2f:2f:dd:0c:f9:36:8a:32:0b:5f:53: 9d:26:a8:60:ee:6a:40:97:e1:05:2e:2d:48:d5:67: a5:9e:f7:80:c2:7f:af:e7:41:f7:32:6e:6d:91:3c: d3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:04:A5:DB:FB:89:83:A2:5E:0C:C9:0F:03:3C:09:43:B2:D2:F8:B6 X509v3 Authority Key Identifier: keyid:27:CC:E4:9F:4A:9C:14:85:2B:3A:30:43:59:D3:CB:1E:4E:33:2C:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DWT/0/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/27CCE49F4A9C14852B3A304359D3CB1E4E332C3E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DWT/0/323430343a386363303a3a2f33322d3332203d3e203234313638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:8cc0::/32 Signature Algorithm: sha256WithRSAEncryption 7c:17:75:9b:35:75:75:dc:f5:24:30:ac:28:0c:d3:8f:72:9c: 19:dc:f5:8f:9e:96:e7:7c:ed:fc:88:10:01:22:b2:43:cd:68: a3:b3:9b:a6:e9:28:3a:6a:46:df:5d:c2:84:5b:b0:57:d4:b3: b6:87:f3:03:f4:ec:71:eb:fe:b5:98:e0:82:7e:d8:77:a7:7d: 0b:b2:db:09:cc:e6:52:6b:6e:fd:5d:49:f4:04:4d:89:65:be: 92:0f:b9:37:49:d1:7c:e1:62:04:43:c7:d0:33:ae:f2:86:6c: 35:33:7a:6e:60:7b:44:c2:5c:e0:b9:ee:97:d9:e7:ad:22:70: 9e:67:38:73:1d:32:19:d3:f7:25:a6:d4:e0:58:74:50:95:43: e2:b3:5e:b5:17:74:e2:21:fe:f2:96:8f:3b:ef:c7:c9:6b:fd: 0e:44:2c:07:4e:44:0e:e4:6c:4d:cd:0a:16:62:e9:f3:f1:1a: 40:e9:43:67:cc:ad:da:95:b4:43:eb:d4:55:6a:9d:87:3d:d9: b0:e3:3a:21:ab:8f:4b:d6:30:ad:82:b9:93:e4:d6:4c:b9:6e: 85:f7:f7:b6:98:e2:01:d8:32:d4:31:cb:9c:33:09:ba:2e:e9: 71:38:1e:2c:76:25:f2:20:4f:83:98:e9:f6:d4:26:3b:47:42: 61:2a:dd:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUA90DyWT0zvF8eILWlLruYcDa8yQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdDQ0U0OUY0QTlDMTQ4NTJCM0EzMDQzNTlEM0NCMUU0 RTMzMkMzRTAeFw0yNjA1MTExNjQwNTJaFw0yNzA1MTAxNjQ1NTJaMDMxMTAvBgNV BAMTKEJFMDRBNURCRkI4OTgzQTI1RTBDQzkwRjAzM0MwOTQzQjJEMkY4QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0uSXnzrx+n6SjawruEjhjPWxW cOT0zTmUqcWJMNc9hk1hUYzhiNow2mJMWnVUnrf+n1cPwHGzv8Cu2tllwa7wkb0U b1cF89+8G9rPnuf1pnmwoiBnFNozmvdxnQuEzcKgIdk/JD+YBhS2BOV0fKhYk4J0 5XdXYBEuHmAFsFQ1kfoo+G9yYnleCPWjRgUn8Lq+p4rHY9QzYl7pTuiCEuF509NW 5HOgB2cf3SyzyPdzdp5V2rDfaOzTdxJAFtqk4UU9Ibr95PWhfJPI6Ptn3YumaxYK ETIvL90M+TaKMgtfU50mqGDuakCX4QUuLUjVZ6We94DCf6/nQfcybm2RPNOzAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQUvgSl2/uJg6JeDMkPAzwJQ7LS+LYwHwYDVR0j BBgwFoAUJ8zkn0qcFIUrOjBDWdPLHk4zLD4wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFdULzAv MjdDQ0U0OUY0QTlDMTQ4NTJCM0EzMDQzNTlEM0NCMUU0RTMzMkMzRS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8yN0NDRTQ5RjRBOUMxNDg1MkIzQTMwNDM1OUQzQ0Ix RTRFMzMyQzNFLmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFdULzAvMzIzNDMwMzQzYTM4NjM2MzMw M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzNDMxMzYzOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE jMAwDQYJKoZIhvcNAQELBQADggEBAHwXdZs1dXXc9SQwrCgM049ynBnc9Y+elud8 7fyIEAEiskPNaKOzm6bpKDpqRt9dwoRbsFfUs7aH8wP07HHr/rWY4IJ+2HenfQuy 2wnM5lJrbv1dSfQETYllvpIPuTdJ0XzhYgRDx9AzrvKGbDUzem5ge0TCXOC57pfZ 560icJ5nOHMdMhnT9yWm1OBYdFCVQ+KzXrUXdOIh/vKWjzvvx8lr/Q5ELAdORA7k bE3NChZi6fPxGkDpQ2fMrdqVtEPr1FVqnYc92bDjOiGrj0vWMK2CuZPk1ky5boX3 97aY4gHYMtQxy5wzCbou6XE4Hix2JfIgT4OY6fbUJjtHQmEq3YU= -----END CERTIFICATE-----Generated at Wed May 13 08:28:20 2026 by rpki-client