$ rpki-client -vvf rpkica.twnic.tw/rpki/M2NIM/0/323430313a383432303a3a2f33322d3438203d3e203332353935.roa File: 323430313a383432303a3a2f33322d3438203d3e203332353935.roa (raw, json) Hash identifier: 7IK6gvzs6uMwoViSpBOdjJrk5WxLH5pe447RiZaITJY= Subject key identifier: 3C:24:4E:C1:05:BE:A5:D7:94:D3:94:B4:41:CD:17:08:9B:23:5E:3A Certificate issuer: /CN=E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB Certificate serial: 1B646861F30426B0C63FB9FB83E9C6681D803E85 Authority key identifier: E5:AA:3B:0F:9F:58:C9:34:21:C6:48:20:4A:B4:31:A4:AD:C4:B0:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/M2NIM/0/323430313a383432303a3a2f33322d3438203d3e203332353935.roa Signing time: Mon 11 May 2026 17:36:17 +0000 ROA not before: Mon 11 May 2026 17:31:17 +0000 ROA not after: Mon 10 May 2027 17:36:17 +0000 asID: 32595 IP address blocks: 2401:8420::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/M2NIM/0/E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.crl rsync://rpkica.twnic.tw/rpki/M2NIM/0/E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:64:68:61:f3:04:26:b0:c6:3f:b9:fb:83:e9:c6:68:1d:80:3e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB Validity Not Before: May 11 17:31:17 2026 GMT Not After : May 10 17:36:17 2027 GMT Subject: CN=3C244EC105BEA5D794D394B441CD17089B235E3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:82:42:a4:0c:70:ac:39:33:2c:99:79:53:35: e1:6b:ca:20:97:4f:ce:c9:50:d1:bd:a4:87:01:09: 24:d4:f7:51:8e:e4:26:32:c1:97:ee:d0:73:e0:94: 02:b1:e4:07:ba:dc:89:97:0b:6e:66:53:fa:c4:03: 74:f7:a5:91:19:2d:b0:c5:1b:d2:01:f3:d6:14:bd: f0:93:59:f3:2f:67:2c:2e:16:bf:26:19:79:c3:fe: 3d:64:c3:9e:2b:15:65:ee:cf:3b:d2:98:63:04:8c: 3e:1e:df:20:8f:e4:c0:36:f6:f2:9e:62:70:c7:30: 16:ba:d1:40:42:65:29:c0:54:8a:96:71:a3:50:c9: cc:10:9e:d7:5c:1a:73:15:57:94:5d:d6:2d:e9:0e: d3:b7:15:98:89:f8:42:31:4d:cc:fe:5c:84:ff:d6: ef:f6:ee:e5:bf:43:ed:7d:da:20:42:89:d0:bc:34: 89:bd:08:6d:11:ed:3a:c9:ee:6f:6a:f6:62:41:4e: ce:92:72:db:1c:e8:f2:f6:a4:ac:c2:5b:cb:09:3d: 3d:74:5a:cb:32:d4:1b:ee:0a:a7:50:79:4b:75:a3: 84:cf:01:87:8d:34:c0:53:f5:47:fc:dc:2d:29:37: 1d:e4:06:f8:79:ef:2c:a3:57:52:d2:86:62:d0:6f: 87:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:24:4E:C1:05:BE:A5:D7:94:D3:94:B4:41:CD:17:08:9B:23:5E:3A X509v3 Authority Key Identifier: keyid:E5:AA:3B:0F:9F:58:C9:34:21:C6:48:20:4A:B4:31:A4:AD:C4:B0:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/M2NIM/0/E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E5AA3B0F9F58C93421C648204AB431A4ADC4B0CB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/M2NIM/0/323430313a383432303a3a2f33322d3438203d3e203332353935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8420::/32 Signature Algorithm: sha256WithRSAEncryption 03:af:30:40:1d:98:5a:94:ec:09:be:37:99:d3:d9:47:d0:ba: 7e:9a:83:39:fa:48:66:6b:2e:b9:c1:51:83:76:97:8c:06:c8: 8b:8c:48:e4:4c:15:e0:18:e7:3f:26:59:99:d4:b7:b8:49:2f: 9e:c8:84:34:aa:49:9d:4a:3e:9e:77:f2:cc:23:68:ea:41:5e: eb:9c:fa:f3:74:50:c8:0e:ba:79:57:5f:6d:c2:59:f9:ec:bc: 45:0d:ac:1a:f4:34:9c:2c:b3:ed:ab:cd:bd:ba:4f:8e:f1:94: 16:71:79:9a:c0:2b:73:0c:6a:13:b7:da:3d:9b:92:4d:2f:fd: 92:6c:68:e3:04:bc:72:d9:c0:44:93:55:5a:4d:2e:8a:eb:87: c0:a9:be:dc:7b:28:c5:b4:1e:9e:c4:4d:bd:6c:a7:85:53:30: c3:5f:c2:a1:ed:4f:af:a7:70:34:db:ee:0b:9f:6a:66:a6:d6: 5d:48:8a:63:a3:76:18:0a:97:80:3d:c2:73:f1:b9:e1:b5:60: ad:dd:24:9e:1d:39:f3:2d:13:1c:a8:4a:04:9d:e0:80:c5:4d: 4c:3c:88:4b:91:70:43:ec:df:02:e9:41:15:1a:6f:ed:12:09: 6f:ce:ee:80:ff:47:c6:cc:31:39:73:52:c4:67:52:54:ec:21: c4:78:0e:51 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUG2RoYfMEJrDGP7n7g+nGaB2APoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTVBQTNCMEY5RjU4QzkzNDIxQzY0ODIwNEFCNDMxQTRB REM0QjBDQjAeFw0yNjA1MTExNzMxMTdaFw0yNzA1MTAxNzM2MTdaMDMxMTAvBgNV BAMTKDNDMjQ0RUMxMDVCRUE1RDc5NEQzOTRCNDQxQ0QxNzA4OUIyMzVFM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbgkKkDHCsOTMsmXlTNeFryiCX T87JUNG9pIcBCSTU91GO5CYywZfu0HPglAKx5Ae63ImXC25mU/rEA3T3pZEZLbDF G9IB89YUvfCTWfMvZywuFr8mGXnD/j1kw54rFWXuzzvSmGMEjD4e3yCP5MA29vKe YnDHMBa60UBCZSnAVIqWcaNQycwQntdcGnMVV5Rd1i3pDtO3FZiJ+EIxTcz+XIT/ 1u/27uW/Q+192iBCidC8NIm9CG0R7TrJ7m9q9mJBTs6Sctsc6PL2pKzCW8sJPT10 Wssy1BvuCqdQeUt1o4TPAYeNNMBT9Uf83C0pNx3kBvh57yyjV1LShmLQb4c9AgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQUPCROwQW+pdeU05S0Qc0XCJsjXjowHwYDVR0j BBgwFoAU5ao7D59YyTQhxkggSrQxpK3EsMswDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTTJOSU0v MC9FNUFBM0IwRjlGNThDOTM0MjFDNjQ4MjA0QUI0MzFBNEFEQzRCMENCLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0U1QUEzQjBGOUY1OEM5MzQyMUM2NDgyMDRBQjQz MUE0QURDNEIwQ0IuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9NMk5JTS8wLzMyMzQzMDMxM2EzODM0 MzIzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMzMzIzNTM5MzUucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAYQgMA0GCSqGSIb3DQEBCwUAA4IBAQADrzBAHZhalOwJvjeZ09lH0Lp+moM5 +khmay65wVGDdpeMBsiLjEjkTBXgGOc/JlmZ1Le4SS+eyIQ0qkmdSj6ed/LMI2jq QV7rnPrzdFDIDrp5V19twln57LxFDawa9DScLLPtq829uk+O8ZQWcXmawCtzDGoT t9o9m5JNL/2SbGjjBLxy2cBEk1VaTS6K64fAqb7ceyjFtB6exE29bKeFUzDDX8Kh 7U+vp3A02+4Ln2pmptZdSIpjo3YYCpeAPcJz8bnhtWCt3SSeHTnzLRMcqEoEneCA xU1MPIhLkXBD7N8C6UEVGm/tEglvzu6A/0fGzDE5c1LEZ1JU7CHEeA5R -----END CERTIFICATE-----Generated at Wed May 13 05:50:58 2026 by rpki-client