$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNIC/0/323430343a3137383a3a2f33322d3332203d3e2031363539.roa File: 323430343a3137383a3a2f33322d3332203d3e2031363539.roa (raw, json) Hash identifier: L2BURXqSkdV6FluyEI51vUM+hCObGAZu51W3U7sVyb4= Subject key identifier: 07:46:8F:AC:ED:8B:E1:4F:DE:54:93:7A:8B:86:8C:DA:8A:75:13:88 Certificate issuer: /CN=275746BB137CE730FB0CAA28AAE57D4EDE0A1E99 Certificate serial: 04F70DB31F325680BF3322DF23D3A0C6FA0B7714 Authority key identifier: 27:57:46:BB:13:7C:E7:30:FB:0C:AA:28:AA:E5:7D:4E:DE:0A:1E:99 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNIC/0/323430343a3137383a3a2f33322d3332203d3e2031363539.roa Signing time: Mon 11 May 2026 17:40:26 +0000 ROA not before: Mon 11 May 2026 17:35:26 +0000 ROA not after: Mon 10 May 2027 17:40:26 +0000 asID: 1659 IP address blocks: 2404:178::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNIC/0/275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.crl rsync://rpkica.twnic.tw/rpki/TWNIC/0/275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:f7:0d:b3:1f:32:56:80:bf:33:22:df:23:d3:a0:c6:fa:0b:77:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=275746BB137CE730FB0CAA28AAE57D4EDE0A1E99 Validity Not Before: May 11 17:35:26 2026 GMT Not After : May 10 17:40:26 2027 GMT Subject: CN=07468FACED8BE14FDE54937A8B868CDA8A751388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8c:4c:8e:06:36:22:e9:00:af:6f:eb:8a:0a: d7:b1:e3:c4:69:d8:25:da:81:78:17:2c:c7:16:79: ba:7f:81:10:c5:1e:a4:82:3c:e2:74:32:c0:dc:57: ea:c7:9a:ab:bb:04:c8:d3:ac:ea:0f:5d:31:c3:3a: 2f:ff:a7:94:f6:28:44:a6:92:e1:76:fc:d6:ff:9f: 20:ae:bd:52:84:1c:9e:ea:21:fd:cb:6d:39:63:f4: c5:c1:30:8d:3b:ea:86:32:af:d8:33:64:5b:a8:4d: 4c:66:0f:2b:b7:9c:bb:b7:bd:c6:42:94:87:10:88: 0b:d7:4b:af:54:33:70:15:36:d7:46:26:4e:ed:65: 68:6c:12:91:39:2f:ca:04:28:cf:b6:09:80:9d:84: 67:7d:24:e7:fc:96:ee:66:54:f3:4b:e1:56:97:dc: 53:86:6b:02:47:21:eb:63:34:01:16:95:4a:e2:7f: e1:b0:71:a5:d7:2f:7f:85:46:e8:10:c3:69:fe:c7: c2:d4:64:07:90:81:53:d6:1a:bc:27:15:2a:fe:6c: 4c:15:4e:47:1c:a7:a4:bd:c5:b4:dc:a1:90:60:56: ef:51:5c:4c:75:c6:e5:13:a2:53:5e:41:c4:d6:b2: e1:aa:ff:fb:66:09:47:6c:ee:b0:52:f7:80:c3:bf: 03:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:46:8F:AC:ED:8B:E1:4F:DE:54:93:7A:8B:86:8C:DA:8A:75:13:88 X509v3 Authority Key Identifier: keyid:27:57:46:BB:13:7C:E7:30:FB:0C:AA:28:AA:E5:7D:4E:DE:0A:1E:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNIC/0/275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/275746BB137CE730FB0CAA28AAE57D4EDE0A1E99.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNIC/0/323430343a3137383a3a2f33322d3332203d3e2031363539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:178::/32 Signature Algorithm: sha256WithRSAEncryption 24:0a:b2:fe:80:5d:de:39:59:10:7c:47:a3:23:16:38:b9:30: 81:be:3e:58:98:28:1b:90:05:fd:09:40:20:34:7d:b9:ab:f6: fe:26:7d:db:a7:08:0a:cb:fc:6c:13:00:c8:bd:17:04:a5:2d: 99:98:09:10:b9:66:24:9a:f1:10:6b:94:96:04:f2:84:74:68: eb:78:f1:51:15:56:21:9b:c9:a9:1e:18:0c:54:72:23:6b:29: 12:e1:25:75:73:3d:35:54:f9:8d:21:ca:13:fa:30:89:e7:84: 30:52:fe:b7:05:bb:d8:4d:2e:0a:47:72:ba:d4:5a:86:ee:82: 42:76:77:6f:ae:ec:d2:a5:8d:28:8d:49:a6:67:1e:f9:07:fc: 43:c8:7c:00:41:48:7a:5b:9d:15:31:87:ad:79:96:f2:74:67: e1:dc:9f:35:9b:df:08:c8:80:1d:76:79:b3:d4:5f:fb:eb:32: de:ae:8a:92:da:fe:8a:5e:7e:95:6c:53:76:1c:33:f1:d7:63: d8:f1:82:f2:2a:e7:cc:29:cb:27:69:b8:7a:21:55:92:e3:cc: 51:90:5c:d9:a3:4e:97:f9:b8:24:09:c2:f7:ba:94:a6:af:0f: 8b:91:1a:43:c4:6e:de:3c:c6:1f:00:86:c9:04:29:82:b7:a6: 11:e3:fc:27 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUBPcNsx8yVoC/MyLfI9OgxvoLdxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjc1NzQ2QkIxMzdDRTczMEZCMENBQTI4QUFFNTdENEVE RTBBMUU5OTAeFw0yNjA1MTExNzM1MjZaFw0yNzA1MTAxNzQwMjZaMDMxMTAvBgNV BAMTKDA3NDY4RkFDRUQ4QkUxNEZERTU0OTM3QThCODY4Q0RBOEE3NTEzODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7jEyOBjYi6QCvb+uKCtex48Rp 2CXagXgXLMcWebp/gRDFHqSCPOJ0MsDcV+rHmqu7BMjTrOoPXTHDOi//p5T2KESm kuF2/Nb/nyCuvVKEHJ7qIf3LbTlj9MXBMI076oYyr9gzZFuoTUxmDyu3nLu3vcZC lIcQiAvXS69UM3AVNtdGJk7tZWhsEpE5L8oEKM+2CYCdhGd9JOf8lu5mVPNL4VaX 3FOGawJHIetjNAEWlUrif+GwcaXXL3+FRugQw2n+x8LUZAeQgVPWGrwnFSr+bEwV Tkccp6S9xbTcoZBgVu9RXEx1xuUTolNeQcTWsuGq//tmCUds7rBS94DDvwMrAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQUB0aPrO2L4U/eVJN6i4aM2op1E4gwHwYDVR0j BBgwFoAUJ1dGuxN85zD7DKooquV9Tt4KHpkwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUMv MC8yNzU3NDZCQjEzN0NFNzMwRkIwQ0FBMjhBQUU1N0Q0RURFMEExRTk5LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzI3NTc0NkJCMTM3Q0U3MzBGQjBDQUEyOEFBRTU3 RDRFREUwQTFFOTkuY2VyMHUGCCsGAQUFBwELBGkwZzBlBggrBgEFBQcwC4ZZcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQy8wLzMyMzQzMDM0M2EzMTM3 MzgzYTNhMmYzMzMyMmQzMzMyMjAzZDNlMjAzMTM2MzUzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE AXgwDQYJKoZIhvcNAQELBQADggEBACQKsv6AXd45WRB8R6MjFji5MIG+PliYKBuQ Bf0JQCA0fbmr9v4mfdunCArL/GwTAMi9FwSlLZmYCRC5ZiSa8RBrlJYE8oR0aOt4 8VEVViGbyakeGAxUciNrKRLhJXVzPTVU+Y0hyhP6MInnhDBS/rcFu9hNLgpHcrrU WobugkJ2d2+u7NKljSiNSaZnHvkH/EPIfABBSHpbnRUxh615lvJ0Z+HcnzWb3wjI gB12ebPUX/vrMt6uipLa/opefpVsU3YcM/HXY9jxgvIq58wpyydpuHohVZLjzFGQ XNmjTpf5uCQJwve6lKavD4uRGkPEbt48xh8AhskEKYK3phHj/Cc= -----END CERTIFICATE-----Generated at Wed May 13 06:01:19 2026 by rpki-client