$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/3PbsONAF8Oxd3AhCARaD-i-6Z_s.roa File: 3PbsONAF8Oxd3AhCARaD-i-6Z_s.roa (raw, json) Hash identifier: iZUQwaC0nT3Sb0rk+mOFsjWPIihT2yT1106ISBL95As= Subject key identifier: DC:F6:EC:38:D0:05:F0:EC:5D:DC:08:42:01:16:83:FA:2F:BA:67:FB Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Certificate serial: 01D4 Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/3PbsONAF8Oxd3AhCARaD-i-6Z_s.roa Signing time: Thu 19 Mar 2026 15:32:33 +0000 ROA not before: Thu 19 Mar 2026 15:32:33 +0000 ROA not after: Wed 30 Dec 2026 15:30:20 +0000 asID: 18040 IP address blocks: 2402:43e0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 06:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Validity Not Before: Mar 19 15:32:33 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=DCF6EC38D005F0EC5DDC0842011683FA2FBA67FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:04:7f:47:58:bc:c9:e8:91:e0:d2:f6:d9:74: ed:6c:ee:d3:dd:b3:ff:3c:69:47:4c:44:b8:5f:b1: e5:23:65:4c:84:ed:18:02:4b:22:dc:10:6a:fa:9c: d2:1f:aa:b6:ad:82:2a:97:d4:ff:8b:95:8e:13:28: 1a:50:4b:6a:3e:a2:e8:42:98:4c:63:85:41:10:44: 22:fa:4f:1f:d8:32:b9:36:ca:06:f2:e7:1f:a4:50: 0c:e7:77:58:6e:be:44:16:58:33:39:a8:83:00:11: 5f:92:b7:0a:ef:e3:f8:e8:90:ab:60:a5:20:d9:0c: 8d:fc:2f:30:d3:a4:41:67:3e:d0:dc:b1:54:2f:29: 80:de:9e:d8:f1:f6:c2:1a:22:33:e7:79:94:2f:8e: df:21:e1:25:5a:a5:4d:b1:4d:30:58:05:0f:04:22: 93:ad:b5:09:65:7f:98:4f:c1:3c:2d:ff:d3:1c:09: 1e:cb:f4:6c:4e:9f:41:87:0f:8a:f5:b0:19:bd:74: 8c:64:b0:b1:82:d3:fa:2c:df:a2:3f:91:1b:a6:f8: 49:e8:99:30:f4:07:a2:3c:46:94:b0:21:05:df:b9: ab:8e:c8:2b:46:93:1b:8e:9d:b7:b3:7e:a3:46:45: 88:c5:13:48:a0:11:8e:9c:67:14:c3:4c:c4:72:9b: c5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F6:EC:38:D0:05:F0:EC:5D:DC:08:42:01:16:83:FA:2F:BA:67:FB X509v3 Authority Key Identifier: keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/3PbsONAF8Oxd3AhCARaD-i-6Z_s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:43e0::/44 Signature Algorithm: sha256WithRSAEncryption 9b:b1:65:2e:69:71:ea:2d:c2:bb:12:24:80:12:c8:aa:8f:d8: 44:c1:1e:aa:9d:12:6f:bd:57:26:da:d4:2e:7f:47:65:e4:72: 10:75:bf:12:84:9d:02:17:64:81:28:72:96:fd:16:ce:9f:6f: 7d:14:64:b6:28:1a:cc:04:51:d4:e0:6b:6c:b7:36:6b:7f:78: 10:bf:20:35:a1:a5:22:38:fe:b8:9e:19:07:51:f1:20:21:50: 19:eb:83:18:c1:8e:03:47:68:3c:27:01:db:d2:c9:f0:1f:2c: 35:a7:77:45:74:04:26:39:ab:07:e5:4a:16:8c:3f:bb:1d:2c: d9:f7:f4:ea:10:46:54:1b:98:84:13:54:54:55:30:4e:5b:e6: 25:ea:ff:0d:eb:67:01:2b:a2:5f:17:e7:fd:f3:8c:ef:1b:eb: 9b:3a:d0:cc:e0:7c:a4:16:cb:4f:92:2c:56:c0:20:1d:b5:74: c8:20:5e:4d:9c:f9:b2:2d:47:d8:d8:e9:25:7d:ab:75:a6:99: 2a:65:1c:1f:75:94:bd:09:01:7d:9f:45:41:86:ab:dd:10:c9: 1f:1b:11:35:11:71:df:e9:f9:e5:b4:b3:f9:cb:06:33:09:66: a2:5c:77:73:1a:7d:9d:73:71:61:bb:2d:02:b3:6a:11:c4:a7: b1:a7:4f:74 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkM3 NTJDQTU5RUI4RUFFRjIzRDIyNURDNjdBQTA4NTIwMUYxRjc5QzAeFw0yNjAzMTkx NTMyMzNaFw0yNjEyMzAxNTMwMjBaMDMxMTAvBgNVBAMTKERDRjZFQzM4RDAwNUYw RUM1RERDMDg0MjAxMTY4M0ZBMkZCQTY3RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRBH9HWLzJ6JHg0vbZdO1s7tPds/88aUdMRLhfseUjZUyE7RgC SyLcEGr6nNIfqratgiqX1P+LlY4TKBpQS2o+ouhCmExjhUEQRCL6Tx/YMrk2ygby 5x+kUAznd1huvkQWWDM5qIMAEV+Stwrv4/jokKtgpSDZDI38LzDTpEFnPtDcsVQv KYDentjx9sIaIjPneZQvjt8h4SVapU2xTTBYBQ8EIpOttQllf5hPwTwt/9McCR7L 9GxOn0GHD4r1sBm9dIxksLGC0/os36I/kRum+EnomTD0B6I8RpSwIQXfuauOyCtG kxuOnbezfqNGRYjFE0igEY6cZxTDTMRym8UVAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQU3PbsONAF8Oxd3AhCARaD+i+6Z/swHwYDVR0jBBgwFoAU/HUspZ646u8j0iXc Z6oIUgHx95wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJO RVQvX0hVc3BaNjQ2dThqMGlYY1o2b0lVZ0h4OTV3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9fSFVzcFo2NDZ1OGowaVhjWjZvSVVnSHg5NXcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5FVC8zUGJzT05BRjhPeGQz QWhDQVJhRC1pLTZaX3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcEJAJD4AAAMA0GCSqGSIb3DQEBCwUAA4IBAQCbsWUuaXHqLcK7EiSAEsiqj9hE wR6qnRJvvVcm2tQuf0dl5HIQdb8ShJ0CF2SBKHKW/RbOn299FGS2KBrMBFHU4Gts tzZrf3gQvyA1oaUiOP64nhkHUfEgIVAZ64MYwY4DR2g8JwHb0snwHyw1p3dFdAQm OasH5UoWjD+7HSzZ9/TqEEZUG5iEE1RUVTBOW+Yl6v8N62cBK6JfF+f984zvG+ub OtDM4HykFstPkixWwCAdtXTIIF5NnPmyLUfY2Oklfat1ppkqZRwfdZS9CQF9n0VB hqvdEMkfGxE1EXHf6fnltLP5ywYzCWaiXHdzGn2dc3Fhuy0Cs2oRxKexp090 -----END CERTIFICATE-----Generated at Fri Mar 27 05:17:29 2026 by rpki-client