$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/tpH271p44tFxIoooS8Y6JbCVsC4.roa File: tpH271p44tFxIoooS8Y6JbCVsC4.roa (raw, json) Hash identifier: Z0Kbx5ZrwKvQdCFKt2vuEDClyylwA8Wh7Aymeh8HVtk= Subject key identifier: B6:91:F6:EF:5A:78:E2:D1:71:22:8A:28:4B:C6:3A:25:B0:95:B0:2E Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Certificate serial: 020B Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/tpH271p44tFxIoooS8Y6JbCVsC4.roa Signing time: Wed 25 Mar 2026 08:17:36 +0000 ROA not before: Wed 25 Mar 2026 08:17:36 +0000 ROA not after: Wed 30 Dec 2026 15:30:20 +0000 asID: 152612 IP address blocks: 2402:43e0:10::/44 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 06:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Validity Not Before: Mar 25 08:17:36 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=B691F6EF5A78E2D171228A284BC63A25B095B02E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d3:85:9c:6f:65:59:0b:59:2e:35:b9:c4:80: a1:97:f3:01:88:fa:f1:85:6e:16:42:57:df:f4:8c: fa:ca:68:48:30:d8:90:72:36:83:93:d6:5c:8a:21: 34:25:83:eb:7a:7f:a5:96:fe:15:f1:0b:0e:f0:9a: 8f:80:31:66:0c:ae:de:af:1d:a2:6f:52:fa:00:f7: 96:49:c0:2f:d7:48:88:be:98:1f:17:e6:c3:e6:90: c5:d6:b7:12:cb:0d:82:55:24:43:3f:9a:79:af:6b: 85:48:8c:6e:0e:e2:c4:7f:dc:50:40:f8:26:8d:d3: 70:90:68:01:cf:8b:08:37:32:8b:75:1c:84:72:11: e0:7a:98:a2:d3:cc:1a:bf:00:b4:cf:43:37:47:5e: 43:34:fb:e5:68:b8:4f:31:7a:23:6b:fc:d4:00:59: 5b:93:7c:bf:5a:0c:b3:3c:70:83:52:d6:fe:ad:aa: 44:8c:74:60:65:11:c2:ac:c7:ab:86:97:0e:6b:f7: db:e1:b9:c9:68:f8:3e:37:5b:05:35:c2:8f:ff:3a: 2d:6e:79:da:3a:07:18:ce:9e:76:eb:09:1f:76:bc: 35:43:e3:cf:e6:34:5d:8d:3e:41:7b:5b:49:a3:7d: 3c:a1:7e:3e:98:b9:c3:dc:3a:9e:c6:9e:76:1c:c6: d9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:91:F6:EF:5A:78:E2:D1:71:22:8A:28:4B:C6:3A:25:B0:95:B0:2E X509v3 Authority Key Identifier: keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/tpH271p44tFxIoooS8Y6JbCVsC4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:43e0:10::/44 Signature Algorithm: sha256WithRSAEncryption 56:18:8c:50:fa:10:1f:f1:77:ef:6c:63:f7:f5:4e:b5:98:2a: e2:e7:2a:fa:68:ab:30:2f:64:d0:37:1d:d8:a6:b7:4a:79:46: ec:cd:40:ba:8c:21:45:de:31:16:98:a0:e8:a5:ef:f5:d2:9e: 3a:21:a7:d7:a4:4f:ca:02:52:aa:76:5d:05:52:69:c0:05:2d: a0:08:ff:f2:f6:14:44:d6:12:e1:6e:ce:15:af:5d:68:c9:08: 30:57:c7:8f:70:03:3e:ac:4e:84:80:cf:c2:fb:d4:06:f1:5f: b6:52:af:cf:6a:95:eb:4d:65:b7:44:16:c2:f1:dd:24:ef:44: 27:43:32:e1:15:e0:60:0f:86:b5:71:c0:72:f4:59:54:5b:d7: 5f:3b:fb:6a:a4:53:59:4b:61:8f:53:54:17:7d:9a:e6:48:96: 9a:f4:92:e0:72:f4:78:3c:f0:15:f2:df:6a:db:5a:fc:b4:94: 01:d5:5a:68:7d:57:76:e5:66:b7:f6:e0:97:7a:2c:e0:ba:cf: 41:46:1b:b2:6d:88:3f:95:1f:6d:e3:33:e5:a1:64:3f:76:8b: 2b:55:18:c9:68:f8:ca:a8:f0:52:2f:8b:22:c9:83:0a:b2:b2: dd:eb:24:0c:92:45:fd:6f:b0:fb:77:9c:1b:74:ea:af:66:5b: 4e:f4:73:8b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAgswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkM3 NTJDQTU5RUI4RUFFRjIzRDIyNURDNjdBQTA4NTIwMUYxRjc5QzAeFw0yNjAzMjUw ODE3MzZaFw0yNjEyMzAxNTMwMjBaMDMxMTAvBgNVBAMTKEI2OTFGNkVGNUE3OEUy RDE3MTIyOEEyODRCQzYzQTI1QjA5NUIwMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCe04Wcb2VZC1kuNbnEgKGX8wGI+vGFbhZCV9/0jPrKaEgw2JBy NoOT1lyKITQlg+t6f6WW/hXxCw7wmo+AMWYMrt6vHaJvUvoA95ZJwC/XSIi+mB8X 5sPmkMXWtxLLDYJVJEM/mnmva4VIjG4O4sR/3FBA+CaN03CQaAHPiwg3Mot1HIRy EeB6mKLTzBq/ALTPQzdHXkM0++VouE8xeiNr/NQAWVuTfL9aDLM8cINS1v6tqkSM dGBlEcKsx6uGlw5r99vhuclo+D43WwU1wo//Oi1uedo6BxjOnnbrCR92vDVD48/m NF2NPkF7W0mjfTyhfj6YucPcOp7GnnYcxtnNAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUtpH271p44tFxIoooS8Y6JbCVsC4wHwYDVR0jBBgwFoAU/HUspZ646u8j0iXc Z6oIUgHx95wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJO RVQvX0hVc3BaNjQ2dThqMGlYY1o2b0lVZ0h4OTV3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9fSFVzcFo2NDZ1OGowaVhjWjZvSVVnSHg5NXcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5FVC90cEgyNzFwNDR0RnhJ b29vUzhZNkpiQ1ZzQzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcEJAJD4AAQMA0GCSqGSIb3DQEBCwUAA4IBAQBWGIxQ+hAf8XfvbGP39U61mCri 5yr6aKswL2TQNx3YprdKeUbszUC6jCFF3jEWmKDope/10p46IafXpE/KAlKqdl0F UmnABS2gCP/y9hRE1hLhbs4Vr11oyQgwV8ePcAM+rE6EgM/C+9QG8V+2Uq/PapXr TWW3RBbC8d0k70QnQzLhFeBgD4a1ccBy9FlUW9dfO/tqpFNZS2GPU1QXfZrmSJaa 9JLgcvR4PPAV8t9q21r8tJQB1VpofVd25Wa39uCXeizgus9BRhuybYg/lR9t4zPl oWQ/dosrVRjJaPjKqPBSL4siyYMKsrLd6yQMkkX9b7D7d5wbdOqvZltO9HOL -----END CERTIFICATE-----Generated at Fri Mar 27 05:17:29 2026 by rpki-client