$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/5PX3XPInRwLdrxjNJFjpDmV_YWE.roa File: 5PX3XPInRwLdrxjNJFjpDmV_YWE.roa (raw, json) Hash identifier: oZRkpZSmBjyDmZ2aKyrQVa9J3wZO7SNOQisdVK+47NQ= Subject key identifier: E4:F5:F7:5C:F2:27:47:02:DD:AF:18:CD:24:58:E9:0E:65:7F:61:61 Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Certificate serial: 0210 Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/5PX3XPInRwLdrxjNJFjpDmV_YWE.roa Signing time: Wed 25 Mar 2026 08:35:40 +0000 ROA not before: Wed 25 Mar 2026 08:35:40 +0000 ROA not after: Wed 30 Dec 2026 15:30:20 +0000 asID: 152612 IP address blocks: 2402:43e0:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 06:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Validity Not Before: Mar 25 08:35:40 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=E4F5F75CF2274702DDAF18CD2458E90E657F6161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6f:af:95:70:e3:44:10:51:09:80:bb:14:87: c3:87:fc:0d:72:69:a2:af:35:31:3d:83:af:09:63: ca:58:b2:8c:fc:7a:81:20:0d:9f:ab:57:bc:c0:7a: 0a:38:0c:76:ff:c5:4f:be:48:f8:83:66:fd:ca:50: 5e:86:cd:1e:4d:8b:a7:97:ab:74:45:67:be:f9:b5: 86:b2:91:33:c5:5b:49:99:53:55:f6:04:1b:14:06: b5:40:54:3f:23:3a:24:17:04:87:6d:ea:17:7c:44: 16:1f:f2:8c:4c:6f:b1:33:90:e6:35:bf:a8:69:75: 84:33:2b:df:c4:ff:de:a6:b3:ed:8c:1c:8e:a9:d6: bb:64:9c:ff:b9:99:bc:af:15:e2:3a:64:f1:8a:24: e1:f2:9e:8f:7c:6c:0a:ff:0f:f6:f0:de:e7:07:7d: 5b:69:88:ae:0b:3a:56:38:de:0a:7a:18:bf:1a:14: ae:d5:4b:4d:ad:2b:27:7e:b1:83:ca:09:6d:48:45: 80:fc:46:8c:79:49:18:fb:5e:8c:53:40:a1:7d:6c: 2e:fc:28:b8:9d:69:2f:0d:e1:85:fe:f1:c0:29:82: 8d:94:3a:c7:4a:da:bf:28:59:c3:67:49:59:a9:5e: e7:a5:ae:11:00:6a:80:bb:47:a4:fc:e1:61:30:67: 49:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F5:F7:5C:F2:27:47:02:DD:AF:18:CD:24:58:E9:0E:65:7F:61:61 X509v3 Authority Key Identifier: keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/5PX3XPInRwLdrxjNJFjpDmV_YWE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:43e0:10::/44 Signature Algorithm: sha256WithRSAEncryption 16:df:a4:83:8b:e6:8d:63:30:48:8d:b5:43:7a:e1:10:ea:95: 69:04:92:1c:45:aa:d9:67:23:77:4f:52:05:47:06:f2:f3:33: b3:59:ee:3c:99:2a:c2:84:e8:b6:ce:8f:b4:4b:2d:94:eb:20: 11:a3:19:95:f7:cb:1b:68:66:63:c7:07:b8:65:af:bb:a7:71: b0:c5:67:a9:c8:28:d3:4e:36:36:a9:75:f3:91:90:41:35:1e: 1d:b5:18:32:e2:cc:58:11:b5:b5:10:4d:d2:f4:49:e1:f0:43: 78:56:93:81:47:c2:00:ae:76:da:45:72:88:ab:73:06:bb:fc: d1:49:02:6b:b7:7b:09:e1:f7:ce:11:76:0d:75:c3:f9:91:95: 6b:e9:f0:bd:e8:06:6e:be:21:f5:ee:06:f9:10:f2:2e:c5:14: c2:d1:77:c5:eb:c8:8f:42:3e:97:dd:e0:10:4c:e5:6b:26:3a: 4d:17:27:63:47:61:2b:13:c9:f1:55:7b:ff:6e:9d:aa:71:b7: 17:82:46:cd:dd:30:ea:be:37:78:16:42:e9:05:82:37:74:ef: 75:55:6c:23:d2:4c:a0:b0:9b:7e:0c:64:08:1f:c4:7b:97:01: 55:f9:bf:5b:1e:1f:37:5d:74:29:0d:da:e5:73:26:82:ee:5c: 47:60:50:d8 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkM3 NTJDQTU5RUI4RUFFRjIzRDIyNURDNjdBQTA4NTIwMUYxRjc5QzAeFw0yNjAzMjUw ODM1NDBaFw0yNjEyMzAxNTMwMjBaMDMxMTAvBgNVBAMTKEU0RjVGNzVDRjIyNzQ3 MDJEREFGMThDRDI0NThFOTBFNjU3RjYxNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCub6+VcONEEFEJgLsUh8OH/A1yaaKvNTE9g68JY8pYsoz8eoEg DZ+rV7zAego4DHb/xU++SPiDZv3KUF6GzR5Ni6eXq3RFZ775tYaykTPFW0mZU1X2 BBsUBrVAVD8jOiQXBIdt6hd8RBYf8oxMb7EzkOY1v6hpdYQzK9/E/96ms+2MHI6p 1rtknP+5mbyvFeI6ZPGKJOHyno98bAr/D/bw3ucHfVtpiK4LOlY43gp6GL8aFK7V S02tKyd+sYPKCW1IRYD8Rox5SRj7XoxTQKF9bC78KLidaS8N4YX+8cApgo2UOsdK 2r8oWcNnSVmpXuelrhEAaoC7R6T84WEwZ0k3AgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQU5PX3XPInRwLdrxjNJFjpDmV/YWEwHwYDVR0jBBgwFoAU/HUspZ646u8j0iXc Z6oIUgHx95wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJO RVQvX0hVc3BaNjQ2dThqMGlYY1o2b0lVZ0h4OTV3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9fSFVzcFo2NDZ1OGowaVhjWjZvSVVnSHg5NXcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5FVC81UFgzWFBJblJ3TGRy eGpOSkZqcERtVl9ZV0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcEJAJD4AAQMA0GCSqGSIb3DQEBCwUAA4IBAQAW36SDi+aNYzBIjbVDeuEQ6pVp BJIcRarZZyN3T1IFRwby8zOzWe48mSrChOi2zo+0Sy2U6yARoxmV98sbaGZjxwe4 Za+7p3GwxWepyCjTTjY2qXXzkZBBNR4dtRgy4sxYEbW1EE3S9Enh8EN4VpOBR8IA rnbaRXKIq3MGu/zRSQJrt3sJ4ffOEXYNdcP5kZVr6fC96AZuviH17gb5EPIuxRTC 0XfF68iPQj6X3eAQTOVrJjpNFydjR2ErE8nxVXv/bp2qcbcXgkbN3TDqvjd4FkLp BYI3dO91VWwj0kygsJt+DGQIH8R7lwFV+b9bHh83XXQpDdrlcyaC7lxHYFDY -----END CERTIFICATE-----Generated at Fri Mar 27 05:17:30 2026 by rpki-client