$ rpki-client -vvf rpkica.twnic.tw/rpki/PNI/0/323430353a636463303a3a2f33322d313234203d3e20313331363432.roa File: 323430353a636463303a3a2f33322d313234203d3e20313331363432.roa (raw, json) Hash identifier: B+rZIPiEbFPdUxH0aia2ffpZrMmBBOdtjQ5TGrFZI/g= Subject key identifier: CE:E1:0A:9A:77:B0:69:80:B9:99:B6:7F:E6:B0:12:5B:A8:79:B7:A5 Certificate issuer: /CN=9F4621BE2CEB15DD74809D52692588598490FABF Certificate serial: 6F68DFEB02822E2F3E4F8DD6D7CA8A6DC9931D63 Authority key identifier: 9F:46:21:BE:2C:EB:15:DD:74:80:9D:52:69:25:88:59:84:90:FA:BF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PNI/0/323430353a636463303a3a2f33322d313234203d3e20313331363432.roa Signing time: Mon 11 May 2026 17:37:53 +0000 ROA not before: Mon 11 May 2026 17:32:53 +0000 ROA not after: Mon 10 May 2027 17:37:53 +0000 asID: 131642 IP address blocks: 2405:cdc0::/32 maxlen: 124 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.crl rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:68:df:eb:02:82:2e:2f:3e:4f:8d:d6:d7:ca:8a:6d:c9:93:1d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F4621BE2CEB15DD74809D52692588598490FABF Validity Not Before: May 11 17:32:53 2026 GMT Not After : May 10 17:37:53 2027 GMT Subject: CN=CEE10A9A77B06980B999B67FE6B0125BA879B7A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:88:64:3e:f8:62:67:c9:c3:42:ba:ad:6d:06: 8b:58:8b:72:c9:5f:f4:7c:61:e8:64:d8:bd:3b:3f: 95:f6:01:d1:9f:ca:12:96:81:31:1d:e0:ce:3c:67: ba:7a:4a:ab:8d:1d:4c:11:60:d5:f9:fc:9b:99:8e: c3:08:51:0a:7d:cb:03:8d:2a:05:8a:52:f5:3a:8a: f8:a5:45:67:c0:6c:fe:2f:0d:ba:2f:ab:f5:ce:8e: 59:a3:ae:52:69:c4:26:49:50:dd:12:a2:73:15:35: c5:42:71:29:ca:fd:b7:66:5f:51:25:68:d8:5f:78: 31:e4:83:6d:02:45:1b:2d:44:66:65:7f:65:8b:eb: 9f:b4:d8:75:de:35:28:3d:21:14:f0:1d:de:95:d2: e8:2e:bc:17:79:3b:55:bc:51:fb:c7:d8:98:47:05: e9:5f:dd:42:3a:75:9f:e5:c1:a0:52:bd:87:28:04: 6b:a6:b8:80:02:18:03:f0:3a:04:08:fe:f2:ab:ed: d9:5c:3c:04:f4:d8:0a:1e:a5:f9:10:53:35:3d:c2: 23:c1:57:19:24:4f:27:83:9b:25:15:ed:9f:44:4c: 1f:f6:80:f3:09:f0:22:de:7a:18:c6:6c:55:67:42: 70:77:36:75:ae:86:45:fa:84:4e:79:3b:50:f4:43: d1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E1:0A:9A:77:B0:69:80:B9:99:B6:7F:E6:B0:12:5B:A8:79:B7:A5 X509v3 Authority Key Identifier: keyid:9F:46:21:BE:2C:EB:15:DD:74:80:9D:52:69:25:88:59:84:90:FA:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PNI/0/323430353a636463303a3a2f33322d313234203d3e20313331363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:cdc0::/32 Signature Algorithm: sha256WithRSAEncryption ba:16:47:69:1c:59:36:d7:d0:93:2f:76:fc:f3:e6:20:c6:e0: 66:f6:7c:2a:97:26:33:ca:86:26:87:e9:55:3d:0c:ec:88:c7: 31:44:0d:9d:20:65:d0:1d:a6:83:53:4d:d5:c5:a4:5c:d2:64: 3d:81:55:8d:35:35:a7:1a:e2:30:55:ea:ba:91:38:0c:74:47: 5b:6b:d7:f5:ac:fd:9b:3f:3d:73:95:55:eb:37:bc:fe:9d:8e: 35:3b:5f:a1:9b:22:7d:ee:35:ba:30:c0:ff:78:f3:75:19:2a: 6b:f3:44:6b:dd:8d:02:82:bc:aa:a8:66:15:31:97:ab:8b:58: ae:39:ce:e5:96:71:1e:1d:45:25:31:52:ed:34:26:1f:b9:f5: b1:19:49:9b:88:ae:03:8e:63:15:ff:b4:12:72:59:b9:e3:d1: a5:f4:71:3b:3a:7a:1f:9b:38:95:56:f6:bf:54:c4:4c:a4:42: 6b:bd:b3:f9:ec:2c:5f:d4:3c:50:d6:bc:93:eb:eb:1b:64:de: e5:ed:1c:23:33:b6:1a:c5:c4:64:9f:86:ee:57:29:05:8a:ad: 86:b5:57:25:80:5c:8a:60:47:18:2b:5a:98:31:0c:12:9b:08: 4a:ab:d2:d2:49:d5:34:36:ed:30:ba:57:e2:f1:c6:f5:8a:87: 53:43:ea:12 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUb2jf6wKCLi8+T43W18qKbcmTHWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY0NjIxQkUyQ0VCMTVERDc0ODA5RDUyNjkyNTg4NTk4 NDkwRkFCRjAeFw0yNjA1MTExNzMyNTNaFw0yNzA1MTAxNzM3NTNaMDMxMTAvBgNV BAMTKENFRTEwQTlBNzdCMDY5ODBCOTk5QjY3RkU2QjAxMjVCQTg3OUI3QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNiGQ++GJnycNCuq1tBotYi3LJ X/R8Yehk2L07P5X2AdGfyhKWgTEd4M48Z7p6SquNHUwRYNX5/JuZjsMIUQp9ywON KgWKUvU6ivilRWfAbP4vDbovq/XOjlmjrlJpxCZJUN0SonMVNcVCcSnK/bdmX1El aNhfeDHkg20CRRstRGZlf2WL65+02HXeNSg9IRTwHd6V0uguvBd5O1W8UfvH2JhH Belf3UI6dZ/lwaBSvYcoBGumuIACGAPwOgQI/vKr7dlcPAT02AoepfkQUzU9wiPB VxkkTyeDmyUV7Z9ETB/2gPMJ8CLeehjGbFVnQnB3NnWuhkX6hE55O1D0Q9H9AgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQUzuEKmnewaYC5mbZ/5rASW6h5t6UwHwYDVR0j BBgwFoAUn0YhvizrFd10gJ1SaSWIWYSQ+r8wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUE5JLzAv OUY0NjIxQkUyQ0VCMTVERDc0ODA5RDUyNjkyNTg4NTk4NDkwRkFCRi5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85RjQ2MjFCRTJDRUIxNURENzQ4MDlENTI2OTI1ODg1 OTg0OTBGQUJGLmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUE5JLzAvMzIzNDMwMzUzYTYzNjQ2MzMw M2EzYTJmMzMzMjJkMzEzMjM0MjAzZDNlMjAzMTMzMzEzNjM0MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBc3AMA0GCSqGSIb3DQEBCwUAA4IBAQC6FkdpHFk219CTL3b88+YgxuBm9nwq lyYzyoYmh+lVPQzsiMcxRA2dIGXQHaaDU03VxaRc0mQ9gVWNNTWnGuIwVeq6kTgM dEdba9f1rP2bPz1zlVXrN7z+nY41O1+hmyJ97jW6MMD/ePN1GSpr80Rr3Y0Cgryq qGYVMZeri1iuOc7llnEeHUUlMVLtNCYfufWxGUmbiK4DjmMV/7QSclm549Gl9HE7 OnofmziVVva/VMRMpEJrvbP57Cxf1DxQ1ryT6+sbZN7l7RwjM7YaxcRkn4buVykF iq2GtVclgFyKYEcYK1qYMQwSmwhKq9LSSdU0Nu0wulfi8cb1iodTQ+oS -----END CERTIFICATE-----Generated at Wed May 13 07:56:33 2026 by rpki-client