$ rpki-client -vvf rpkica.twnic.tw/rpki/HST/0/323430353a363434303a3a2f33322d3332203d3e20313331363636.roa File: 323430353a363434303a3a2f33322d3332203d3e20313331363636.roa (raw, json) Hash identifier: QB2gyR5XQYs4MfGBjgJf/jtuHKKTmEl5qfrVI5ynL/A= Subject key identifier: 81:72:A5:E2:15:D9:DC:BC:69:27:3E:97:49:D1:1F:5E:EA:C8:2B:09 Certificate issuer: /CN=E87D26C09449CEB4EE5FD7CC200B073CA53BCA44 Certificate serial: 287B3E2EBA933772CDF51D24FD65687756C28653 Authority key identifier: E8:7D:26:C0:94:49:CE:B4:EE:5F:D7:CC:20:0B:07:3C:A5:3B:CA:44 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HST/0/323430353a363434303a3a2f33322d3332203d3e20313331363636.roa Signing time: Mon 11 May 2026 17:40:03 +0000 ROA not before: Mon 11 May 2026 17:35:03 +0000 ROA not after: Mon 10 May 2027 17:40:03 +0000 asID: 131666 IP address blocks: 2405:6440::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HST/0/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.crl rsync://rpkica.twnic.tw/rpki/HST/0/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:7b:3e:2e:ba:93:37:72:cd:f5:1d:24:fd:65:68:77:56:c2:86:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E87D26C09449CEB4EE5FD7CC200B073CA53BCA44 Validity Not Before: May 11 17:35:03 2026 GMT Not After : May 10 17:40:03 2027 GMT Subject: CN=8172A5E215D9DCBC69273E9749D11F5EEAC82B09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:19:83:76:78:49:b9:3c:a9:f1:f2:18:9d:bb: 8c:da:7c:6c:28:cd:bd:ec:b7:08:5b:c4:1b:af:bc: 1e:62:41:9e:02:ea:0c:c1:04:99:ae:ce:2a:2b:ef: 07:be:e5:3c:fb:45:1b:f8:bb:19:97:f0:5d:83:53: d4:8f:b1:de:e9:4b:ca:be:16:b7:6d:ca:68:0c:be: 48:eb:d9:26:4a:87:a2:d4:2e:07:2f:27:d1:b7:4d: 86:b7:8c:c6:c3:f3:a5:b6:b7:5f:4b:b0:e5:76:53: 83:e0:3e:fc:fd:58:f8:e9:1d:63:d8:da:ac:86:13: df:5b:1f:f8:93:b9:dc:ec:1e:38:51:df:9d:22:71: 45:bf:cb:f2:bd:dc:62:d0:77:50:14:3f:6a:33:b4: 4f:32:80:2a:bd:07:f5:3e:e4:59:2a:9b:d1:1f:5a: 44:59:9e:2e:7a:91:8b:10:c0:3b:75:d5:4d:13:59: 14:fd:61:28:b1:d2:e0:8c:cb:c6:70:ab:72:e2:f4: 60:58:d3:2e:28:d9:a9:2a:51:6d:d7:e0:29:fa:91: 54:51:25:51:1c:93:15:ce:32:6f:ad:33:a0:b0:5e: 3a:cd:91:69:d5:cf:40:04:6a:fc:64:c5:c8:74:f3: 10:ab:58:36:1c:6f:f8:d2:22:74:d9:f8:c2:55:fe: 73:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:72:A5:E2:15:D9:DC:BC:69:27:3E:97:49:D1:1F:5E:EA:C8:2B:09 X509v3 Authority Key Identifier: keyid:E8:7D:26:C0:94:49:CE:B4:EE:5F:D7:CC:20:0B:07:3C:A5:3B:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HST/0/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E87D26C09449CEB4EE5FD7CC200B073CA53BCA44.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HST/0/323430353a363434303a3a2f33322d3332203d3e20313331363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6440::/32 Signature Algorithm: sha256WithRSAEncryption 1e:ca:e6:f8:75:5f:b7:9b:e6:cc:b9:e2:f0:08:54:75:81:6b: 8e:54:cb:19:89:5c:53:a4:ad:da:10:47:57:59:50:e4:c3:a3: ba:24:00:06:3c:00:47:3d:ca:16:de:70:e6:d1:9b:20:9f:a1: 19:0f:7e:bf:7d:b8:5d:fd:a4:12:a1:cd:76:54:93:bc:2c:87: bd:d3:0b:96:5e:6e:33:2d:d0:c5:7b:2a:6a:16:1c:53:18:96: d3:75:e4:d4:f4:b5:c9:b9:b7:fb:a1:ff:c6:eb:ea:ba:b6:a2: f6:91:1a:67:0f:54:33:2b:f0:c9:fa:65:9e:ac:ac:c8:43:43: 1e:62:da:df:58:63:5f:05:7d:53:34:89:5d:a1:b1:ff:98:b2: 01:72:83:2c:26:9e:cc:bd:f0:a9:90:80:70:ec:95:4d:b3:a1: ae:8a:6b:dc:97:77:d3:d0:37:62:b8:19:6e:67:70:a3:cf:86: 7a:63:99:17:cd:f3:f8:ff:5e:56:f6:ad:04:67:97:7b:bd:c0: 96:fe:eb:c5:50:30:3f:ac:31:eb:ba:0c:ec:b2:32:d2:80:32: 49:18:be:16:21:3d:01:f0:dc:9c:6e:54:b9:f5:b7:7e:d1:72: d0:1e:48:55:0d:10:44:ae:1c:b6:fa:9c:31:2a:e9:a3:96:b7: 60:69:b2:67 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUKHs+LrqTN3LN9R0k/WVod1bChlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg3RDI2QzA5NDQ5Q0VCNEVFNUZEN0NDMjAwQjA3M0NB NTNCQ0E0NDAeFw0yNjA1MTExNzM1MDNaFw0yNzA1MTAxNzQwMDNaMDMxMTAvBgNV BAMTKDgxNzJBNUUyMTVEOURDQkM2OTI3M0U5NzQ5RDExRjVFRUFDODJCMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLGYN2eEm5PKnx8hidu4zafGwo zb3stwhbxBuvvB5iQZ4C6gzBBJmuzior7we+5Tz7RRv4uxmX8F2DU9SPsd7pS8q+ FrdtymgMvkjr2SZKh6LULgcvJ9G3TYa3jMbD86W2t19LsOV2U4PgPvz9WPjpHWPY 2qyGE99bH/iTudzsHjhR350icUW/y/K93GLQd1AUP2oztE8ygCq9B/U+5Fkqm9Ef WkRZni56kYsQwDt11U0TWRT9YSix0uCMy8Zwq3Li9GBY0y4o2akqUW3X4Cn6kVRR JVEckxXOMm+tM6CwXjrNkWnVz0AEavxkxch08xCrWDYcb/jSInTZ+MJV/nNzAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUgXKl4hXZ3LxpJz6XSdEfXurIKwkwHwYDVR0j BBgwFoAU6H0mwJRJzrTuX9fMIAsHPKU7ykQwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFNULzAv RTg3RDI2QzA5NDQ5Q0VCNEVFNUZEN0NDMjAwQjA3M0NBNTNCQ0E0NC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9FODdEMjZDMDk0NDlDRUI0RUU1RkQ3Q0MyMDBCMDcz Q0E1M0JDQTQ0LmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFNULzAvMzIzNDMwMzUzYTM2MzQzNDMw M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzEzMzMxMzYzNjM2LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JAVkQDANBgkqhkiG9w0BAQsFAAOCAQEAHsrm+HVft5vmzLni8AhUdYFrjlTLGYlc U6St2hBHV1lQ5MOjuiQABjwARz3KFt5w5tGbIJ+hGQ9+v324Xf2kEqHNdlSTvCyH vdMLll5uMy3QxXsqahYcUxiW03Xk1PS1ybm3+6H/xuvqurai9pEaZw9UMyvwyfpl nqysyENDHmLa31hjXwV9UzSJXaGx/5iyAXKDLCaezL3wqZCAcOyVTbOhropr3Jd3 09A3YrgZbmdwo8+GemOZF83z+P9eVvatBGeXe73Alv7rxVAwP6wx67oM7LIy0oAy SRi+FiE9AfDcnG5UufW3ftFy0B5IVQ0QRK4ctvqcMSrpo5a3YGmyZw== -----END CERTIFICATE-----Generated at Wed May 13 04:54:24 2026 by rpki-client