$ rpki-client -vvf rpkica.twnic.tw/rpki/QISDA/0/323430323a6361303a3a2f33322d3438203d3e20313331363831.roa File: 323430323a6361303a3a2f33322d3438203d3e20313331363831.roa (raw, json) Hash identifier: S/vvxrC76LtkDDAr3Lwj+sG9Po2jPNI3vSVyXNzI5B0= Subject key identifier: 49:7B:4C:D0:EC:77:2D:CD:33:F4:6A:BC:53:72:8F:12:70:6A:81:1D Certificate issuer: /CN=8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4 Certificate serial: 19BC92DD74004F581001E75F464143F654B5F8E8 Authority key identifier: 86:81:A4:AE:9D:1E:38:75:36:C2:E0:B9:1C:79:A8:76:CF:7D:E4:E4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/QISDA/0/323430323a6361303a3a2f33322d3438203d3e20313331363831.roa Signing time: Mon 11 May 2026 17:58:46 +0000 ROA not before: Mon 11 May 2026 17:53:46 +0000 ROA not after: Mon 10 May 2027 17:58:46 +0000 asID: 131681 IP address blocks: 2402:ca0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.crl rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:bc:92:dd:74:00:4f:58:10:01:e7:5f:46:41:43:f6:54:b5:f8:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4 Validity Not Before: May 11 17:53:46 2026 GMT Not After : May 10 17:58:46 2027 GMT Subject: CN=497B4CD0EC772DCD33F46ABC53728F12706A811D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b7:3f:49:44:fe:a2:99:e5:ff:fd:e0:59:e7: 9c:19:8a:fc:c6:bc:9a:0e:0a:74:66:91:69:1a:b4: 15:7b:ee:51:64:18:74:b8:fb:3e:10:36:18:58:02: 90:00:36:d7:17:3c:5c:ed:20:f3:b9:a4:88:e2:d2: 9b:46:fc:3a:53:fa:5d:b9:71:cc:91:49:63:d6:b0: 71:96:b5:84:5b:4a:d0:59:e2:ca:3d:bd:52:76:68: de:ef:f8:16:ff:06:20:59:be:f6:9f:39:3a:c8:5a: 16:06:ac:94:3d:56:4d:91:4e:0c:0b:99:92:a9:75: 60:78:8f:dc:10:fc:32:b1:76:0d:dd:46:24:3f:be: de:78:3b:c5:a9:e5:34:b3:16:38:82:dd:f7:2b:96: 4d:b0:48:bd:25:7e:dc:f3:8a:d9:71:38:b7:2f:6c: cd:1e:0a:2a:35:93:bf:6f:73:2e:7e:8a:c3:40:1d: ab:4b:e2:60:99:e7:b3:01:de:bd:a0:fa:84:cc:52: 2f:93:b4:13:10:c2:e2:21:f4:0b:cb:09:39:bf:8c: 34:9d:04:b1:2b:85:16:42:b7:45:89:2b:b3:b7:b8: cf:5a:e1:03:62:38:6f:bc:08:58:e2:d0:37:e9:a0: 69:7a:40:3c:40:1f:74:d8:ca:75:29:9b:5e:e9:3f: 74:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:7B:4C:D0:EC:77:2D:CD:33:F4:6A:BC:53:72:8F:12:70:6A:81:1D X509v3 Authority Key Identifier: keyid:86:81:A4:AE:9D:1E:38:75:36:C2:E0:B9:1C:79:A8:76:CF:7D:E4:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/QISDA/0/323430323a6361303a3a2f33322d3438203d3e20313331363831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ca0::/32 Signature Algorithm: sha256WithRSAEncryption 20:64:1d:8b:9b:de:42:26:d2:9f:76:74:32:6e:9c:55:52:80: 70:56:d3:53:b5:d0:9d:be:08:e0:93:b0:77:3f:01:a5:98:b8: 4c:cc:ed:bd:ea:07:46:36:b7:90:c9:22:87:b3:f7:5b:6a:95: fe:7b:4d:b9:8b:0f:f0:1a:8a:b6:c8:1d:8a:27:04:77:01:04: 00:20:9e:22:0b:07:1c:24:d0:3a:b0:8e:f6:b0:2f:3a:a2:b5: 34:74:57:96:47:58:98:0e:49:19:96:6c:e7:0b:57:3f:a0:89: 61:6f:20:d0:67:ae:a3:1e:f9:30:4c:60:a6:a2:07:95:7c:3b: 63:e6:7a:8b:7d:b9:f5:f8:7f:2d:a1:20:f6:34:89:fc:3a:38: 45:a0:88:a1:a9:25:4d:18:ff:2a:90:48:a6:1b:65:d6:a8:0e: 57:5f:cd:81:1e:a4:d3:e7:e7:e6:8e:28:a6:34:dd:87:41:7c: 49:47:64:1f:e4:96:67:2a:cf:b9:b1:3b:52:b8:f5:b2:7e:58: 7e:e6:7e:a4:a1:7b:77:b9:bd:50:f4:7a:ff:a1:84:44:3c:e5: dd:0e:59:c5:55:23:f3:6e:c2:70:b6:85:7a:ec:78:c4:4a:92: 34:40:fa:3f:6b:96:4c:a6:30:68:a7:53:87:f5:c0:d2:e3:e8: 95:5f:e9:46 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUGbyS3XQAT1gQAedfRkFD9lS1+OgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY4MUE0QUU5RDFFMzg3NTM2QzJFMEI5MUM3OUE4NzZD RjdERTRFNDAeFw0yNjA1MTExNzUzNDZaFw0yNzA1MTAxNzU4NDZaMDMxMTAvBgNV BAMTKDQ5N0I0Q0QwRUM3NzJEQ0QzM0Y0NkFCQzUzNzI4RjEyNzA2QTgxMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5tz9JRP6imeX//eBZ55wZivzG vJoOCnRmkWkatBV77lFkGHS4+z4QNhhYApAANtcXPFztIPO5pIji0ptG/DpT+l25 ccyRSWPWsHGWtYRbStBZ4so9vVJ2aN7v+Bb/BiBZvvafOTrIWhYGrJQ9Vk2RTgwL mZKpdWB4j9wQ/DKxdg3dRiQ/vt54O8Wp5TSzFjiC3fcrlk2wSL0lftzzitlxOLcv bM0eCio1k79vcy5+isNAHatL4mCZ57MB3r2g+oTMUi+TtBMQwuIh9AvLCTm/jDSd BLErhRZCt0WJK7O3uM9a4QNiOG+8CFji0DfpoGl6QDxAH3TYynUpm17pP3QfAgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQUSXtM0Ox3Lc0z9Gq8U3KPEnBqgR0wHwYDVR0j BBgwFoAUhoGkrp0eOHU2wuC5HHmods995OQwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUUlTREEv MC84NjgxQTRBRTlEMUUzODc1MzZDMkUwQjkxQzc5QTg3NkNGN0RFNEU0LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzg2ODFBNEFFOUQxRTM4NzUzNkMyRTBCOTFDNzlB ODc2Q0Y3REU0RTQuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9RSVNEQS8wLzMyMzQzMDMyM2E2MzYx MzAzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzMTMzMzEzNjM4MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAgygMA0GCSqGSIb3DQEBCwUAA4IBAQAgZB2Lm95CJtKfdnQybpxVUoBwVtNT tdCdvgjgk7B3PwGlmLhMzO296gdGNreQySKHs/dbapX+e025iw/wGoq2yB2KJwR3 AQQAIJ4iCwccJNA6sI72sC86orU0dFeWR1iYDkkZlmznC1c/oIlhbyDQZ66jHvkw TGCmogeVfDtj5nqLfbn1+H8toSD2NIn8OjhFoIihqSVNGP8qkEimG2XWqA5XX82B HqTT5+fmjiimNN2HQXxJR2Qf5JZnKs+5sTtSuPWyflh+5n6koXt3ub1Q9Hr/oYRE POXdDlnFVSPzbsJwtoV67HjESpI0QPo/a5ZMpjBop1OH9cDS4+iVX+lG -----END CERTIFICATE-----Generated at Wed May 13 04:55:00 2026 by rpki-client