$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNTT/0/323030313a6434303a3a2f33322d3332203d3e2032393134.roa File: 323030313a6434303a3a2f33322d3332203d3e2032393134.roa (raw, json) Hash identifier: 95cinPFxr6M1UrLSOID8fzCFDcqIv0aWY/wubzGwKoY= Subject key identifier: E6:2B:B7:59:7A:34:50:99:A4:AD:DA:5D:6A:36:BA:EE:5F:FE:C1:DF Certificate issuer: /CN=866155EC56EF0A61BC489259EA6B444F2596FF9E Certificate serial: 2CFAF899F51802BAA402AE6EBACF2C54CC665026 Authority key identifier: 86:61:55:EC:56:EF:0A:61:BC:48:92:59:EA:6B:44:4F:25:96:FF:9E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNTT/0/323030313a6434303a3a2f33322d3332203d3e2032393134.roa Signing time: Mon 11 May 2026 17:36:44 +0000 ROA not before: Mon 11 May 2026 17:31:44 +0000 ROA not after: Mon 10 May 2027 17:36:44 +0000 asID: 2914 IP address blocks: 2001:d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.crl rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:12:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:fa:f8:99:f5:18:02:ba:a4:02:ae:6e:ba:cf:2c:54:cc:66:50:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=866155EC56EF0A61BC489259EA6B444F2596FF9E Validity Not Before: May 11 17:31:44 2026 GMT Not After : May 10 17:36:44 2027 GMT Subject: CN=E62BB7597A345099A4ADDA5D6A36BAEE5FFEC1DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:23:dd:4d:46:e5:a7:dc:80:11:a6:de:df:f6: 96:5e:fa:06:0b:0c:0d:6d:13:31:06:46:15:cb:a3: f0:7c:d5:e7:5b:30:5e:a4:dd:65:37:fc:e7:d7:ea: 6f:52:fa:e9:d3:c8:5d:35:bb:97:9f:36:23:ec:1b: 5e:fb:e3:79:0d:91:35:7a:d0:79:dd:f9:7a:6e:e3: 5a:41:a1:b3:0f:a9:61:7b:61:a6:69:83:56:3c:66: 78:d9:8e:f1:6f:e7:d1:27:35:3d:19:e6:f2:d2:a5: fc:b3:ee:0c:0f:29:95:38:c0:6b:f9:86:71:0d:d7: 69:56:da:c9:0a:01:84:de:fa:55:fa:6e:9a:de:ff: 27:7e:6e:cb:79:06:8a:5f:99:bf:96:45:ad:74:5b: e8:5f:f7:32:78:7f:8c:40:a6:69:77:1b:91:86:a1: a4:22:f6:5d:49:ad:19:51:c4:7f:f2:b2:aa:09:7c: ec:e6:90:e2:af:ec:95:54:cc:dd:f0:b6:00:1c:ab: 38:6c:cc:5c:60:bb:2f:74:62:db:01:1b:b7:08:62: f8:00:85:23:40:61:d0:c2:e6:27:5c:6d:9f:ea:8c: 27:97:de:9f:49:33:1c:45:15:a9:c3:79:b3:47:ae: ce:e7:19:d8:14:56:d0:69:c4:a7:9e:08:ba:65:b0: ba:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:2B:B7:59:7A:34:50:99:A4:AD:DA:5D:6A:36:BA:EE:5F:FE:C1:DF X509v3 Authority Key Identifier: keyid:86:61:55:EC:56:EF:0A:61:BC:48:92:59:EA:6B:44:4F:25:96:FF:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNTT/0/323030313a6434303a3a2f33322d3332203d3e2032393134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d40::/32 Signature Algorithm: sha256WithRSAEncryption 21:19:3a:f1:c5:76:3a:f1:96:42:d6:e1:82:b9:0b:fd:50:ce: f0:a0:21:d0:d1:5f:60:8b:00:e6:3e:e9:d8:c3:17:1c:96:9a: c0:b5:56:63:db:da:de:b0:4c:5d:92:eb:07:7c:74:7d:df:52: 2f:03:51:4a:c6:21:b6:f0:6e:1a:44:51:17:3f:74:0f:4c:55: d9:55:1a:60:33:6b:a5:36:ba:36:a4:cd:8b:02:ed:95:fc:b5: 79:38:b3:ce:c3:d0:08:c1:e0:ad:bb:4c:e0:f8:57:72:cb:d2: ea:9e:3f:e4:13:05:ac:79:5d:f7:36:f9:42:1f:16:aa:e3:ff: c5:3f:b7:ad:7b:7d:9c:b8:35:c6:2f:5e:f8:eb:1d:68:ac:8a: 15:67:c1:76:93:9e:43:55:93:1c:30:61:30:dc:65:93:e7:2e: 13:4d:3b:a4:36:18:6c:fc:0f:28:c5:2e:e6:69:57:9f:c3:78: 69:50:52:75:19:b3:50:7f:86:9b:0b:d4:20:81:66:81:fd:98: 7e:90:94:91:7a:3d:ce:35:69:21:d3:23:7b:69:2f:e0:26:1a: ce:ee:0a:b7:35:d9:b3:5d:89:9c:f3:5d:56:34:6f:40:19:7d: e9:7d:80:f6:15:54:9e:07:d9:e4:74:74:e3:2e:c8:91:b8:dc: bf:96:2a:fc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULPr4mfUYArqkAq5uus8sVMxmUCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY2MTU1RUM1NkVGMEE2MUJDNDg5MjU5RUE2QjQ0NEYy NTk2RkY5RTAeFw0yNjA1MTExNzMxNDRaFw0yNzA1MTAxNzM2NDRaMDMxMTAvBgNV BAMTKEU2MkJCNzU5N0EzNDUwOTlBNEFEREE1RDZBMzZCQUVFNUZGRUMxREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjI91NRuWn3IARpt7f9pZe+gYL DA1tEzEGRhXLo/B81edbMF6k3WU3/OfX6m9S+unTyF01u5efNiPsG17743kNkTV6 0Hnd+Xpu41pBobMPqWF7YaZpg1Y8ZnjZjvFv59EnNT0Z5vLSpfyz7gwPKZU4wGv5 hnEN12lW2skKAYTe+lX6bpre/yd+bst5Bopfmb+WRa10W+hf9zJ4f4xApml3G5GG oaQi9l1JrRlRxH/ysqoJfOzmkOKv7JVUzN3wtgAcqzhszFxguy90YtsBG7cIYvgA hSNAYdDC5idcbZ/qjCeX3p9JMxxFFanDebNHrs7nGdgUVtBpxKeeCLplsLrnAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQU5iu3WXo0UJmkrdpdaja67l/+wd8wHwYDVR0j BBgwFoAUhmFV7FbvCmG8SJJZ6mtETyWW/54wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOVFQv MC84NjYxNTVFQzU2RUYwQTYxQkM0ODkyNTlFQTZCNDQ0RjI1OTZGRjlFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzg2NjE1NUVDNTZFRjBBNjFCQzQ4OTI1OUVBNkI0 NDRGMjU5NkZGOUUuY2VyMHUGCCsGAQUFBwELBGkwZzBlBggrBgEFBQcwC4ZZcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05UVC8wLzMyMzAzMDMxM2E2NDM0 MzAzYTNhMmYzMzMyMmQzMzMyMjAzZDNlMjAzMjM5MzEzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACAB DUAwDQYJKoZIhvcNAQELBQADggEBACEZOvHFdjrxlkLW4YK5C/1QzvCgIdDRX2CL AOY+6djDFxyWmsC1VmPb2t6wTF2S6wd8dH3fUi8DUUrGIbbwbhpEURc/dA9MVdlV GmAza6U2ujakzYsC7ZX8tXk4s87D0AjB4K27TOD4V3LL0uqeP+QTBax5Xfc2+UIf Fqrj/8U/t617fZy4NcYvXvjrHWisihVnwXaTnkNVkxwwYTDcZZPnLhNNO6Q2GGz8 DyjFLuZpV5/DeGlQUnUZs1B/hpsL1CCBZoH9mH6QlJF6Pc41aSHTI3tpL+AmGs7u Crc12bNdiZzzXVY0b0AZfel9gPYVVJ4H2eR0dOMuyJG43L+WKvw= -----END CERTIFICATE-----Generated at Wed May 13 06:12:06 2026 by rpki-client