$ rpki-client -vvf rpkica.twnic.tw/rpki/HOSTIN/0/323430313a393563303a3a2f33322d3332203d3e2039363738.roa File: 323430313a393563303a3a2f33322d3332203d3e2039363738.roa (raw, json) Hash identifier: jOtFlREhO9CilnpGChErgEs47lUXhbvvQOV2p/o59ZQ= Subject key identifier: 7D:42:75:BB:D9:85:D3:83:72:02:46:CB:41:35:4D:E0:32:E0:B7:26 Certificate issuer: /CN=60A6F20E39E81962FD3770C4C44C5E10DFD32D2A Certificate serial: 638A97B421EBD5DE128CF3186CF1C0D1814D11E3 Authority key identifier: 60:A6:F2:0E:39:E8:19:62:FD:37:70:C4:C4:4C:5E:10:DF:D3:2D:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/60A6F20E39E81962FD3770C4C44C5E10DFD32D2A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HOSTIN/0/323430313a393563303a3a2f33322d3332203d3e2039363738.roa Signing time: Mon 11 May 2026 17:07:04 +0000 ROA not before: Mon 11 May 2026 17:02:04 +0000 ROA not after: Mon 10 May 2027 17:07:04 +0000 asID: 9678 IP address blocks: 2401:95c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HOSTIN/0/60A6F20E39E81962FD3770C4C44C5E10DFD32D2A.crl rsync://rpkica.twnic.tw/rpki/HOSTIN/0/60A6F20E39E81962FD3770C4C44C5E10DFD32D2A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/60A6F20E39E81962FD3770C4C44C5E10DFD32D2A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:8a:97:b4:21:eb:d5:de:12:8c:f3:18:6c:f1:c0:d1:81:4d:11:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60A6F20E39E81962FD3770C4C44C5E10DFD32D2A Validity Not Before: May 11 17:02:04 2026 GMT Not After : May 10 17:07:04 2027 GMT Subject: CN=7D4275BBD985D383720246CB41354DE032E0B726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:45:b9:35:3e:0a:c6:15:84:c1:a2:c4:89:ab: aa:0a:6c:76:8b:d1:19:32:dd:b0:62:63:99:b7:dc: 6b:bf:15:37:86:70:65:70:9d:6d:9b:93:b7:c5:08: e9:06:53:05:aa:33:69:8d:34:3b:d5:82:70:00:d6: d1:1f:5c:b8:5b:2b:2d:43:b7:6c:b1:95:4e:50:39: ff:03:06:94:05:7f:42:84:0f:26:e0:51:32:c2:51: ea:a2:b4:d4:80:d0:88:60:08:7d:25:7c:db:6b:81: dc:92:bd:94:41:ce:e3:87:ff:46:0f:90:b1:32:18: 59:86:88:ed:35:c8:ca:aa:d3:df:df:3c:24:e6:f1: 01:c7:97:01:fd:67:22:56:a5:73:96:73:17:1c:23: 59:36:0b:d3:a0:64:ef:17:bc:b4:98:b4:77:46:7b: cf:7b:2a:c3:6f:c5:48:04:0b:82:82:5c:d8:38:3e: 42:35:15:c4:07:55:37:84:3b:41:79:65:c7:d7:70: 33:d6:aa:e4:ff:ac:03:41:6c:c9:b1:fa:55:7a:a6: 61:8a:9b:8a:e4:56:3c:5d:2c:07:ef:ee:c9:bc:f2: a9:2e:f6:5b:3a:31:ba:50:ee:ce:0a:b5:f0:19:f3: 35:49:6a:af:f9:fc:79:90:b3:fd:81:af:9d:a1:c0: 2b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:42:75:BB:D9:85:D3:83:72:02:46:CB:41:35:4D:E0:32:E0:B7:26 X509v3 Authority Key Identifier: keyid:60:A6:F2:0E:39:E8:19:62:FD:37:70:C4:C4:4C:5E:10:DF:D3:2D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/0/60A6F20E39E81962FD3770C4C44C5E10DFD32D2A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/60A6F20E39E81962FD3770C4C44C5E10DFD32D2A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/0/323430313a393563303a3a2f33322d3332203d3e2039363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:95c0::/32 Signature Algorithm: sha256WithRSAEncryption 09:72:e5:31:4d:19:12:fd:1f:f6:94:8d:b9:1b:e4:f8:b2:c6: d3:72:29:34:a5:7b:11:33:8b:5c:7a:95:05:d0:55:c0:23:eb: d5:1b:64:e7:67:6e:37:01:d2:2b:10:4e:ef:3d:05:79:c0:70: fd:87:5b:c9:fe:87:af:54:53:c7:d6:3f:4e:d5:a2:80:89:c8: 88:f6:f9:c3:fa:aa:b0:77:e0:d4:3c:80:3f:d1:7d:4e:51:25: 20:77:f5:ed:bb:92:65:e6:91:b0:5e:fe:43:69:38:55:32:fe: 3b:a5:95:08:79:93:bb:82:34:f4:de:29:26:8e:a8:d3:f0:b9: 00:4a:24:dc:a5:20:c3:7b:14:8a:20:29:bb:f2:90:44:3d:ef: 58:39:96:0c:ef:1a:dd:6b:1f:49:bf:13:27:28:d8:fa:79:be: 85:94:84:26:dd:02:8e:13:24:3c:25:bd:85:e9:54:91:b1:c9: 86:8c:8a:16:ab:90:9b:70:78:00:55:f2:93:17:e8:81:ca:13: d5:12:49:8e:02:17:e5:53:92:63:16:2e:7b:5e:d9:61:d5:e6: e8:75:9d:e5:99:b3:a0:8a:fc:55:c2:61:d7:86:e2:6b:0f:f0: 9d:a7:35:b8:05:b7:f6:5a:cd:5c:40:4f:49:12:dd:d7:dd:47: c5:21:70:c9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUY4qXtCHr1d4SjPMYbPHA0YFNEeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBBNkYyMEUzOUU4MTk2MkZEMzc3MEM0QzQ0QzVFMTBE RkQzMkQyQTAeFw0yNjA1MTExNzAyMDRaFw0yNzA1MTAxNzA3MDRaMDMxMTAvBgNV BAMTKDdENDI3NUJCRDk4NUQzODM3MjAyNDZDQjQxMzU0REUwMzJFMEI3MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSRbk1PgrGFYTBosSJq6oKbHaL 0Rky3bBiY5m33Gu/FTeGcGVwnW2bk7fFCOkGUwWqM2mNNDvVgnAA1tEfXLhbKy1D t2yxlU5QOf8DBpQFf0KEDybgUTLCUeqitNSA0IhgCH0lfNtrgdySvZRBzuOH/0YP kLEyGFmGiO01yMqq09/fPCTm8QHHlwH9ZyJWpXOWcxccI1k2C9OgZO8XvLSYtHdG e897KsNvxUgEC4KCXNg4PkI1FcQHVTeEO0F5ZcfXcDPWquT/rANBbMmx+lV6pmGK m4rkVjxdLAfv7sm88qku9ls6MbpQ7s4KtfAZ8zVJaq/5/HmQs/2Br52hwCurAgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQUfUJ1u9mF04NyAkbLQTVN4DLgtyYwHwYDVR0j BBgwFoAUYKbyDjnoGWL9N3DExExeEN/TLSowDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSE9TVElO LzAvNjBBNkYyMEUzOUU4MTk2MkZEMzc3MEM0QzQ0QzVFMTBERkQzMkQyQS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS82MEE2RjIwRTM5RTgxOTYyRkQzNzcwQzRDNDRD NUUxMERGRDMyRDJBLmNlcjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSE9TVElOLzAvMzIzNDMwMzEzYTM5 MzU2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzkzNjM3Mzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAZXAMA0GCSqGSIb3DQEBCwUAA4IBAQAJcuUxTRkS/R/2lI25G+T4ssbTcik0 pXsRM4tcepUF0FXAI+vVG2TnZ243AdIrEE7vPQV5wHD9h1vJ/oevVFPH1j9O1aKA iciI9vnD+qqwd+DUPIA/0X1OUSUgd/Xtu5Jl5pGwXv5DaThVMv47pZUIeZO7gjT0 3ikmjqjT8LkASiTcpSDDexSKICm78pBEPe9YOZYM7xrdax9JvxMnKNj6eb6FlIQm 3QKOEyQ8Jb2F6VSRscmGjIoWq5CbcHgAVfKTF+iByhPVEkmOAhflU5JjFi57Xtlh 1ebodZ3lmbOgivxVwmHXhuJrD/CdpzW4Bbf2Ws1cQE9JEt3X3UfFIXDJ -----END CERTIFICATE-----Generated at Wed May 13 09:08:35 2026 by rpki-client