$ rpki-client -vvf rpkica.twnic.tw/rpki/TDC/0/323430313a6136303a3a2f33322d3332203d3e203138303431.roa File: 323430313a6136303a3a2f33322d3332203d3e203138303431.roa (raw, json) Hash identifier: W1whgs9nNrUE4RVKtECQcAsJLL/TFHZVPsexycz3Kms= Subject key identifier: AC:66:92:DD:DC:D9:E1:CB:8A:6E:2D:5F:EF:80:28:17:33:E2:85:1F Certificate issuer: /CN=68584CD1C7EB0808E1AE2DE4C195CCE1325705F0 Certificate serial: 643B8AD37BF0F7D5D7ED5B0E4F2D8ABBB1FDA07A Authority key identifier: 68:58:4C:D1:C7:EB:08:08:E1:AE:2D:E4:C1:95:CC:E1:32:57:05:F0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TDC/0/323430313a6136303a3a2f33322d3332203d3e203138303431.roa Signing time: Mon 11 May 2026 17:31:37 +0000 ROA not before: Mon 11 May 2026 17:26:37 +0000 ROA not after: Mon 10 May 2027 17:31:37 +0000 asID: 18041 IP address blocks: 2401:a60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TDC/0/68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.crl rsync://rpkica.twnic.tw/rpki/TDC/0/68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:3b:8a:d3:7b:f0:f7:d5:d7:ed:5b:0e:4f:2d:8a:bb:b1:fd:a0:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68584CD1C7EB0808E1AE2DE4C195CCE1325705F0 Validity Not Before: May 11 17:26:37 2026 GMT Not After : May 10 17:31:37 2027 GMT Subject: CN=AC6692DDDCD9E1CB8A6E2D5FEF80281733E2851F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0c:b8:5d:6b:be:33:9e:7d:9d:ba:00:90:de: 86:90:51:e1:f6:55:bd:ad:8b:e4:fb:0d:30:49:5c: 3e:49:e8:f4:10:26:96:bb:86:87:56:bf:4c:7f:0e: b8:da:f9:cd:e4:78:84:c4:82:62:91:d5:a1:b1:b0: b0:3f:62:9d:d4:1b:85:90:db:da:16:a7:48:39:d5: fe:75:7a:65:e2:71:8c:11:02:ae:3e:7c:ce:b6:6f: 1b:a9:70:47:9d:e1:a7:b6:84:3d:52:1a:c4:42:5b: 4e:da:c1:d0:b7:52:b7:7c:bf:1a:76:54:76:ab:bb: c8:7c:a6:88:59:63:97:8b:f0:d4:07:b1:2f:72:9b: e2:8d:d8:98:11:da:b8:bf:7d:cd:66:0c:14:01:89: 94:e7:0a:a7:8e:22:e1:2f:75:24:f0:0c:fb:de:36: f5:49:4d:e7:f3:b9:0f:2a:1a:c7:14:ac:4e:0e:c3: e9:fd:eb:06:3d:ce:60:e7:ab:00:c5:17:53:aa:e7: 7f:e2:30:dc:3f:04:ff:cf:52:eb:92:46:01:03:63: 4c:05:25:d5:a2:af:f1:0f:90:36:3f:60:b8:ec:ed: 72:65:a2:4e:e8:e7:2b:7e:03:5f:3f:68:a1:2c:45: 06:74:ce:0b:94:d0:3e:ab:01:9a:88:c7:27:b6:d7: e7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:66:92:DD:DC:D9:E1:CB:8A:6E:2D:5F:EF:80:28:17:33:E2:85:1F X509v3 Authority Key Identifier: keyid:68:58:4C:D1:C7:EB:08:08:E1:AE:2D:E4:C1:95:CC:E1:32:57:05:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TDC/0/68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68584CD1C7EB0808E1AE2DE4C195CCE1325705F0.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TDC/0/323430313a6136303a3a2f33322d3332203d3e203138303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:a60::/32 Signature Algorithm: sha256WithRSAEncryption 28:fa:25:bf:bb:dc:1a:9a:84:e8:3d:3d:7f:16:71:65:5d:eb: c7:39:07:a8:4c:5f:d7:fd:af:94:64:87:5e:75:8d:5d:1e:7f: 80:f0:27:99:f4:14:49:b3:eb:b9:67:dc:b2:e2:51:53:21:b4: c7:1a:f8:a4:e5:0b:c3:00:37:1c:81:9d:ef:55:1b:ab:00:36: 7d:6f:36:4e:3b:47:63:32:38:00:b6:5d:d0:9f:7a:ee:5b:de: c9:65:04:82:1e:bd:23:e4:b5:75:e1:c5:ac:32:7d:39:c5:0c: f7:44:5f:0e:6f:1a:68:3b:61:3f:54:25:64:e3:b5:71:31:0b: ad:84:e6:26:b2:1c:29:42:0a:7f:51:03:ee:e0:8d:a8:31:49: 45:8d:da:ce:bc:a2:d7:93:fb:90:89:6c:f8:25:b5:b1:5f:0b: 31:46:99:83:90:9c:8e:67:49:63:4a:b1:56:bb:40:cd:dc:50: 9b:b3:03:ca:8c:5f:b9:bc:01:a1:70:cd:64:bb:61:3e:63:2f: c9:b5:b7:b4:52:81:a1:50:72:70:46:bf:56:ec:f3:82:e0:38: 8e:87:f2:ef:00:c9:b1:2b:0d:97:0d:4e:87:75:46:7e:1b:14: ff:e6:ff:ea:a7:f1:69:ea:88:48:71:b9:41:64:76:63:ba:b5: 9f:df:e0:cb -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIUZDuK03vw99XX7VsOTy2Ku7H9oHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg1ODRDRDFDN0VCMDgwOEUxQUUyREU0QzE5NUNDRTEz MjU3MDVGMDAeFw0yNjA1MTExNzI2MzdaFw0yNzA1MTAxNzMxMzdaMDMxMTAvBgNV BAMTKEFDNjY5MkRERENEOUUxQ0I4QTZFMkQ1RkVGODAyODE3MzNFMjg1MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjDLhda74znn2dugCQ3oaQUeH2 Vb2ti+T7DTBJXD5J6PQQJpa7hodWv0x/Drja+c3keITEgmKR1aGxsLA/Yp3UG4WQ 29oWp0g51f51emXicYwRAq4+fM62bxupcEed4ae2hD1SGsRCW07awdC3Urd8vxp2 VHaru8h8pohZY5eL8NQHsS9ym+KN2JgR2ri/fc1mDBQBiZTnCqeOIuEvdSTwDPve NvVJTefzuQ8qGscUrE4Ow+n96wY9zmDnqwDFF1Oq53/iMNw/BP/PUuuSRgEDY0wF JdWir/EPkDY/YLjs7XJlok7o5yt+A18/aKEsRQZ0zguU0D6rAZqIxye21+fFAgMB AAGjggHaMIIB1jAdBgNVHQ4EFgQUrGaS3dzZ4cuKbi1f74AoFzPihR8wHwYDVR0j BBgwFoAUaFhM0cfrCAjhri3kwZXM4TJXBfAwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVERDLzAv Njg1ODRDRDFDN0VCMDgwOEUxQUUyREU0QzE5NUNDRTEzMjU3MDVGMC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS82ODU4NENEMUM3RUIwODA4RTFBRTJERTRDMTk1Q0NF MTMyNTcwNUYwLmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVERDLzAvMzIzNDMwMzEzYTYxMzYzMDNh M2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzgzMDM0MzEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAQpg MA0GCSqGSIb3DQEBCwUAA4IBAQAo+iW/u9wamoToPT1/FnFlXevHOQeoTF/X/a+U ZIdedY1dHn+A8CeZ9BRJs+u5Z9yy4lFTIbTHGvik5QvDADccgZ3vVRurADZ9bzZO O0djMjgAtl3Qn3ruW97JZQSCHr0j5LV14cWsMn05xQz3RF8ObxpoO2E/VCVk47Vx MQuthOYmshwpQgp/UQPu4I2oMUlFjdrOvKLXk/uQiWz4JbWxXwsxRpmDkJyOZ0lj SrFWu0DN3FCbswPKjF+5vAGhcM1ku2E+Yy/Jtbe0UoGhUHJwRr9W7POC4DiOh/Lv AMmxKw2XDU6HdUZ+GxT/5v/qp/Fp6ohIcblBZHZjurWf3+DL -----END CERTIFICATE-----Generated at Wed May 13 06:19:00 2026 by rpki-client