$ rpki-client -vvf rpkica.twnic.tw/rpki/IDT/0/323430363a326663303a3a2f33322d3332203d3e20313334383233.roa File: 323430363a326663303a3a2f33322d3332203d3e20313334383233.roa (raw, json) Hash identifier: T6rxUJGmT1hptwoFyjautezkOkglfrNk05IrJlVztRE= Subject key identifier: FF:2C:21:48:1C:C5:0D:8A:6B:3C:F7:37:E0:A3:AF:5A:5C:96:73:02 Certificate issuer: /CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Certificate serial: 3841D41F61EF01EF4A13C73FBF9E9656EA98DA60 Authority key identifier: 35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IDT/0/323430363a326663303a3a2f33322d3332203d3e20313334383233.roa Signing time: Mon 11 May 2026 17:31:40 +0000 ROA not before: Mon 11 May 2026 17:26:40 +0000 ROA not after: Mon 10 May 2027 17:31:40 +0000 asID: 134823 IP address blocks: 2406:2fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:41:d4:1f:61:ef:01:ef:4a:13:c7:3f:bf:9e:96:56:ea:98:da:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Validity Not Before: May 11 17:26:40 2026 GMT Not After : May 10 17:31:40 2027 GMT Subject: CN=FF2C21481CC50D8A6B3CF737E0A3AF5A5C967302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cf:35:67:2a:2b:0a:80:36:94:99:ff:c1:75: 82:d7:b7:47:1d:2b:e3:a9:c4:a6:b8:fb:26:22:a8: 1f:ed:b9:17:08:fd:bb:d2:85:8f:ea:17:3f:e1:4a: c3:21:bc:a9:cb:2b:02:61:ba:e7:98:67:93:7e:1f: f5:5e:e5:b7:c2:c3:02:04:d0:0f:f1:47:57:fd:26: da:d8:52:e1:da:45:85:c9:12:7a:ad:e8:a3:15:b6: 19:72:7b:53:95:24:0a:85:8d:22:e8:e9:ef:f4:e6: 56:a0:fa:1d:62:70:fa:c4:02:30:e0:99:72:e8:9f: b0:87:b8:30:1f:54:f6:b3:94:03:37:0d:08:ce:ac: 4a:66:e6:b5:88:c0:4a:4a:a6:28:90:24:c6:5e:0a: 7b:07:13:09:02:52:e9:6c:45:be:13:78:1a:cb:f9: 69:55:54:ba:52:78:a5:8d:ce:a8:bc:a5:0d:fc:3d: 8c:fa:af:40:d4:a4:26:1c:2d:6d:94:7d:29:27:89: d8:dc:29:5e:cf:ac:3a:ae:26:fe:a4:58:25:d0:c6: 49:9c:99:c7:d7:3b:2a:fc:99:80:7f:ae:64:38:c4: e3:07:d9:85:df:16:4d:c9:f7:da:1d:b2:c3:95:cd: f4:f6:a3:02:49:c7:d0:a2:91:a5:f7:50:9f:28:f3: 50:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2C:21:48:1C:C5:0D:8A:6B:3C:F7:37:E0:A3:AF:5A:5C:96:73:02 X509v3 Authority Key Identifier: keyid:35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IDT/0/323430363a326663303a3a2f33322d3332203d3e20313334383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:2fc0::/32 Signature Algorithm: sha256WithRSAEncryption 2c:bc:a1:56:75:9c:9b:50:83:c1:f3:c9:a7:3f:d4:fc:88:15: 30:e1:45:98:42:cc:3e:18:53:a0:9c:bc:42:1b:82:a1:58:50: 9c:70:0a:63:6b:8c:8a:02:a6:a3:ea:65:66:33:78:2c:27:cc: bf:bf:ac:3f:29:db:fe:65:38:9b:d1:66:70:67:17:18:7c:b6: a7:dc:30:e8:46:f7:47:34:45:c5:05:48:a3:1a:e4:61:70:cb: d3:b0:73:46:63:52:cc:0f:58:5e:78:33:e5:52:d4:c3:26:e1: 53:16:04:8e:7b:0d:89:81:05:90:8d:fd:a6:49:b0:6f:28:8e: 45:4a:98:ba:e3:95:8c:7d:65:55:c4:15:6d:f3:7e:e3:aa:6c: 14:a2:05:9b:c8:48:03:b4:9a:a3:90:c0:c3:71:5e:c6:ae:13: 99:08:24:87:06:34:cb:01:83:c3:7f:41:53:cf:67:4c:d0:2a: d4:0c:9b:5d:0b:08:17:c7:32:4a:c1:04:64:3e:99:f7:58:e0: e4:31:e6:7e:4c:e8:ee:fb:ac:e0:fd:50:3e:1c:00:00:b6:64: ee:a7:a3:ae:3a:8b:c8:9f:79:8a:ab:86:2e:d1:a9:73:b3:7b: ec:cd:10:ea:02:c2:a3:52:b2:12:0a:ae:9f:62:62:88:da:e5: cc:aa:ce:f0 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUOEHUH2HvAe9KE8c/v56WVuqY2mAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3 QjgyOUU0RDAeFw0yNjA1MTExNzI2NDBaFw0yNzA1MTAxNzMxNDBaMDMxMTAvBgNV BAMTKEZGMkMyMTQ4MUNDNTBEOEE2QjNDRjczN0UwQTNBRjVBNUM5NjczMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0zzVnKisKgDaUmf/BdYLXt0cd K+OpxKa4+yYiqB/tuRcI/bvShY/qFz/hSsMhvKnLKwJhuueYZ5N+H/Ve5bfCwwIE 0A/xR1f9JtrYUuHaRYXJEnqt6KMVthlye1OVJAqFjSLo6e/05lag+h1icPrEAjDg mXLon7CHuDAfVPazlAM3DQjOrEpm5rWIwEpKpiiQJMZeCnsHEwkCUulsRb4TeBrL +WlVVLpSeKWNzqi8pQ38PYz6r0DUpCYcLW2UfSknidjcKV7PrDquJv6kWCXQxkmc mcfXOyr8mYB/rmQ4xOMH2YXfFk3J99odssOVzfT2owJJx9CikaX3UJ8o81ALAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQU/ywhSBzFDYprPPc34KOvWlyWcwIwHwYDVR0j BBgwFoAUNchmvgAN6rhwyXvtctCngHuCnk0wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAv MzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3QjgyOUU0RC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8zNUM4NjZCRTAwMERFQUI4NzBDOTdCRUQ3MkQwQTc4 MDdCODI5RTRELmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAvMzIzNDMwMzYzYTMyNjY2MzMw M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzEzMzM0MzgzMjMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JAYvwDANBgkqhkiG9w0BAQsFAAOCAQEALLyhVnWcm1CDwfPJpz/U/IgVMOFFmELM PhhToJy8QhuCoVhQnHAKY2uMigKmo+plZjN4LCfMv7+sPynb/mU4m9FmcGcXGHy2 p9ww6Eb3RzRFxQVIoxrkYXDL07BzRmNSzA9YXngz5VLUwybhUxYEjnsNiYEFkI39 pkmwbyiORUqYuuOVjH1lVcQVbfN+46psFKIFm8hIA7Sao5DAw3Fexq4TmQgkhwY0 ywGDw39BU89nTNAq1AybXQsIF8cySsEEZD6Z91jg5DHmfkzo7vus4P1QPhwAALZk 7qejrjqLyJ95iquGLtGpc7N77M0Q6gLCo1KyEgqun2JiiNrlzKrO8A== -----END CERTIFICATE-----Generated at Wed May 13 09:08:23 2026 by rpki-client