$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/Q1DqTbMpiir5UFRuTi2BE-qhMfg.roa File: Q1DqTbMpiir5UFRuTi2BE-qhMfg.roa (raw, json) Hash identifier: 4HAZnLXTMzSOAfi5Mx9kchZON+HKCUChxcmYzfMF+NU= Subject key identifier: 43:50:EA:4D:B3:29:8A:2A:F9:50:54:6E:4E:2D:81:13:EA:A1:31:F8 Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Certificate serial: 0207 Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/Q1DqTbMpiir5UFRuTi2BE-qhMfg.roa Signing time: Wed 25 Mar 2026 08:10:47 +0000 ROA not before: Wed 25 Mar 2026 08:10:47 +0000 ROA not after: Wed 30 Dec 2026 15:30:20 +0000 asID: 18040 IP address blocks: 2402:43e0::/44 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 06:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Validity Not Before: Mar 25 08:10:47 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=4350EA4DB3298A2AF950546E4E2D8113EAA131F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:50:75:57:2b:91:e8:b3:b0:08:78:13:9f:c6: 9a:3b:12:90:3a:fc:14:d1:f4:d1:00:21:66:58:d4: 45:33:58:d1:76:f7:64:2b:d0:57:e4:d2:c3:b0:b3: 48:2b:e2:da:57:14:d4:40:d7:cb:5c:4a:e5:28:7d: 2e:2f:96:98:80:a8:18:39:ae:ed:c0:c1:e8:ad:ca: 3a:c1:3d:f4:a1:b3:7c:ca:dd:f8:4a:a9:63:5f:8d: 08:dd:c2:98:ef:e4:f6:33:53:e0:b4:1c:26:f3:fe: 47:f1:2e:fb:2c:c8:83:d6:e2:52:a2:df:79:3f:b0: f6:2b:10:55:6f:79:a0:ab:62:4e:b5:e7:bf:b9:ac: ae:82:25:58:56:f1:6b:d7:c6:85:0a:ec:85:77:82: 97:d0:aa:70:cf:66:39:0b:3f:fe:fe:b7:14:1c:77: 9d:39:34:5b:41:a7:b7:e2:d8:e1:2c:83:18:6c:bb: 0a:53:59:53:f1:15:d5:9b:ee:5c:73:4f:dd:5c:6f: f0:0a:29:2e:ec:34:9f:f7:83:22:4f:cc:4c:77:f7: e5:4c:d5:a9:97:d0:04:d1:a1:a9:dc:05:3e:c8:8a: 43:51:fe:14:0a:e9:95:42:7b:0e:da:a8:2b:4c:ca: 39:19:1b:f6:bc:86:b4:58:b3:44:aa:2f:1a:f4:0d: 64:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:50:EA:4D:B3:29:8A:2A:F9:50:54:6E:4E:2D:81:13:EA:A1:31:F8 X509v3 Authority Key Identifier: keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/Q1DqTbMpiir5UFRuTi2BE-qhMfg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:43e0::/44 Signature Algorithm: sha256WithRSAEncryption 32:83:c6:a5:93:da:1b:c5:df:2d:2c:33:35:bc:29:bd:c9:69: 91:15:e7:e9:4b:9b:02:33:83:45:c2:c3:cf:35:ee:8f:7e:9c: fc:4f:f1:fe:d9:b9:77:11:0c:d8:a7:ee:21:46:07:85:1c:38: c2:88:c3:1f:83:72:86:f1:3c:2b:0d:c8:8e:f5:d2:34:dc:e4: 3f:9f:1a:d8:3e:c0:67:b8:f1:bc:88:0b:09:f1:2b:2d:7b:17: 55:c4:b8:d5:72:64:ef:c2:05:2e:f4:3e:6b:11:e3:ad:a2:d9: 36:8c:cd:1f:e3:da:00:54:fa:f3:e7:ba:ca:9f:f6:99:f3:6d: 9d:df:59:bd:fc:f8:30:61:93:6b:bc:eb:b8:75:8e:e1:84:2a: 1a:84:35:a9:fa:19:47:e6:31:0b:7a:35:36:e9:95:d4:33:b0: 97:04:da:32:46:e1:02:b8:a4:45:f1:32:cd:17:25:30:42:68: 88:62:d7:50:6d:09:37:e4:1c:48:5e:b0:be:8a:09:4c:df:68: 10:1d:ff:00:a2:61:3e:d6:ec:42:63:80:06:0c:66:04:41:ab: 6b:5a:69:6b:2a:6f:23:8c:5f:68:7e:77:bd:65:ea:32:93:c4: ca:6b:e4:a7:17:07:02:60:5e:46:88:ba:71:d8:8c:0b:f0:d6: 17:08:ef:57 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkM3 NTJDQTU5RUI4RUFFRjIzRDIyNURDNjdBQTA4NTIwMUYxRjc5QzAeFw0yNjAzMjUw ODEwNDdaFw0yNjEyMzAxNTMwMjBaMDMxMTAvBgNVBAMTKDQzNTBFQTREQjMyOThB MkFGOTUwNTQ2RTRFMkQ4MTEzRUFBMTMxRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8UHVXK5Hos7AIeBOfxpo7EpA6/BTR9NEAIWZY1EUzWNF292Qr 0Ffk0sOws0gr4tpXFNRA18tcSuUofS4vlpiAqBg5ru3AweityjrBPfShs3zK3fhK qWNfjQjdwpjv5PYzU+C0HCbz/kfxLvssyIPW4lKi33k/sPYrEFVveaCrYk6157+5 rK6CJVhW8WvXxoUK7IV3gpfQqnDPZjkLP/7+txQcd505NFtBp7fi2OEsgxhsuwpT WVPxFdWb7lxzT91cb/AKKS7sNJ/3gyJPzEx39+VM1amX0ATRoancBT7IikNR/hQK 6ZVCew7aqCtMyjkZG/a8hrRYs0SqLxr0DWQTAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUQ1DqTbMpiir5UFRuTi2BE+qhMfgwHwYDVR0jBBgwFoAU/HUspZ646u8j0iXc Z6oIUgHx95wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJO RVQvX0hVc3BaNjQ2dThqMGlYY1o2b0lVZ0h4OTV3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9fSFVzcFo2NDZ1OGowaVhjWjZvSVVnSHg5NXcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5FVC9RMURxVGJNcGlpcjVV RlJ1VGkyQkUtcWhNZmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcEJAJD4AAAMA0GCSqGSIb3DQEBCwUAA4IBAQAyg8alk9obxd8tLDM1vCm9yWmR FefpS5sCM4NFwsPPNe6Pfpz8T/H+2bl3EQzYp+4hRgeFHDjCiMMfg3KG8TwrDciO 9dI03OQ/nxrYPsBnuPG8iAsJ8SstexdVxLjVcmTvwgUu9D5rEeOtotk2jM0f49oA VPrz57rKn/aZ822d31m9/PgwYZNrvOu4dY7hhCoahDWp+hlH5jELejU26ZXUM7CX BNoyRuECuKRF8TLNFyUwQmiIYtdQbQk35BxIXrC+iglM32gQHf8AomE+1uxCY4AG DGYEQatrWmlrKm8jjF9ofne9Zeoyk8TKa+SnFwcCYF5GiLpx2IwL8NYXCO9X -----END CERTIFICATE-----Generated at Fri Mar 27 05:17:29 2026 by rpki-client