$ rpki-client -vvf rpkica.twnic.tw/rpki/ZAT/0/323430313a353561303a3a2f33322d3332203d3e203138303431.roa File: 323430313a353561303a3a2f33322d3332203d3e203138303431.roa (raw, json) Hash identifier: CrzulhqYuNBjNzDQRC8BOsQxP+QuAw4ZbCFe65kH3fw= Subject key identifier: 74:B7:CD:36:DE:49:BE:52:D5:60:87:84:45:B3:68:AD:E2:54:7B:40 Certificate issuer: /CN=0291B733B1EED1AF7E817D958CE6F13A585F0695 Certificate serial: 0F94850F8844FC81080E6DDBFC046C425C4267D1 Authority key identifier: 02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ZAT/0/323430313a353561303a3a2f33322d3332203d3e203138303431.roa Signing time: Mon 11 May 2026 17:32:46 +0000 ROA not before: Mon 11 May 2026 17:27:46 +0000 ROA not after: Mon 10 May 2027 17:32:46 +0000 asID: 18041 IP address blocks: 2401:55a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.crl rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:94:85:0f:88:44:fc:81:08:0e:6d:db:fc:04:6c:42:5c:42:67:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0291B733B1EED1AF7E817D958CE6F13A585F0695 Validity Not Before: May 11 17:27:46 2026 GMT Not After : May 10 17:32:46 2027 GMT Subject: CN=74B7CD36DE49BE52D560878445B368ADE2547B40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:40:84:21:a6:80:8f:38:25:4d:e1:ae:9c:48: 95:97:a0:dd:b1:d9:bd:40:79:35:68:da:d1:59:de: c9:21:a3:bf:a6:38:e3:fd:77:11:d4:25:50:7b:12: 08:fc:5a:66:6e:45:cc:74:d5:c7:17:f5:94:59:e7: 4d:a2:6e:5b:c9:d7:83:87:84:f5:ed:5f:79:57:09: ac:67:4d:88:e7:a2:a6:6d:92:15:9d:25:55:8c:9b: 93:d2:b3:32:d5:11:21:b5:99:4e:10:3d:76:ce:bc: 94:99:81:fb:68:37:7e:f9:0b:ef:0d:b4:27:81:a2: d3:cf:76:ea:f9:ba:bf:85:27:d4:53:58:48:5c:15: 00:42:6f:e3:28:a2:e4:c0:04:53:5a:2d:f3:e5:ef: 05:b7:74:a4:07:73:45:c7:b4:42:5f:f1:76:f2:92: 80:a6:4d:39:34:0f:a3:65:ab:23:82:e6:18:1b:e5: 88:68:7e:83:51:0d:16:f3:9f:e8:b8:a3:37:9b:9f: 3b:f6:29:8d:18:39:5d:7e:46:65:c2:1a:f6:e2:5a: 73:cf:03:85:2e:12:2f:76:90:4e:98:0e:ed:32:0f: 86:d2:a3:18:8b:f7:a5:ad:d7:1f:e1:88:dc:09:c2: a6:67:44:61:a1:54:8d:ad:ed:e4:75:64:07:03:84: cb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B7:CD:36:DE:49:BE:52:D5:60:87:84:45:B3:68:AD:E2:54:7B:40 X509v3 Authority Key Identifier: keyid:02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/323430313a353561303a3a2f33322d3332203d3e203138303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:55a0::/32 Signature Algorithm: sha256WithRSAEncryption 68:49:87:a9:57:e7:38:78:88:a3:11:d2:22:cb:aa:84:65:c1: c4:d0:b7:b5:d2:f4:47:4f:e7:9a:a7:8e:50:46:3d:74:96:b5: d9:92:77:4b:e8:8d:30:ea:91:cc:9a:df:d9:3e:0c:ab:26:29: df:a3:e4:02:74:8b:11:46:d7:16:bc:50:53:e1:87:73:77:5e: 47:6e:0c:aa:c3:67:65:c8:4f:11:47:64:7c:18:6f:4e:87:31: b7:ff:59:9d:95:f1:2b:fc:17:16:3e:f4:fe:93:0e:72:13:62: 95:7d:e0:89:45:ac:df:2f:43:df:1b:d6:72:b1:11:b7:f9:5b: 26:50:a8:91:c4:0a:e0:e9:14:70:11:1e:b1:b2:fa:f0:90:3c: 76:6f:73:7f:51:36:ca:df:66:9a:d2:eb:b6:e3:2e:63:44:4f: 93:d5:6e:a1:b0:51:5a:9d:26:89:77:48:92:4e:82:fb:68:04: 71:ee:21:84:63:07:4d:01:aa:5c:8d:62:4d:70:45:7c:a4:f2: 8b:38:e2:d8:17:d9:a8:d8:12:44:7c:89:36:07:b6:d8:76:9f: 38:fe:f9:41:d1:b4:45:fe:69:eb:b0:25:dd:4d:24:1e:98:09: 3a:ed:14:a5:fa:61:c4:3c:bc:e7:02:a1:21:ae:ce:a4:c4:eb: 22:8b:dc:d2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUD5SFD4hE/IEIDm3b/ARsQlxCZ9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI5MUI3MzNCMUVFRDFBRjdFODE3RDk1OENFNkYxM0E1 ODVGMDY5NTAeFw0yNjA1MTExNzI3NDZaFw0yNzA1MTAxNzMyNDZaMDMxMTAvBgNV BAMTKDc0QjdDRDM2REU0OUJFNTJENTYwODc4NDQ1QjM2OEFERTI1NDdCNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZQIQhpoCPOCVN4a6cSJWXoN2x 2b1AeTVo2tFZ3skho7+mOOP9dxHUJVB7Egj8WmZuRcx01ccX9ZRZ502iblvJ14OH hPXtX3lXCaxnTYjnoqZtkhWdJVWMm5PSszLVESG1mU4QPXbOvJSZgftoN375C+8N tCeBotPPdur5ur+FJ9RTWEhcFQBCb+MoouTABFNaLfPl7wW3dKQHc0XHtEJf8Xby koCmTTk0D6NlqyOC5hgb5YhofoNRDRbzn+i4ozebnzv2KY0YOV1+RmXCGvbiWnPP A4UuEi92kE6YDu0yD4bSoxiL96Wt1x/hiNwJwqZnRGGhVI2t7eR1ZAcDhMupAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQUdLfNNt5JvlLVYIeERbNoreJUe0AwHwYDVR0j BBgwFoAUApG3M7Hu0a9+gX2VjObxOlhfBpUwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWkFULzAv MDI5MUI3MzNCMUVFRDFBRjdFODE3RDk1OENFNkYxM0E1ODVGMDY5NS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8wMjkxQjczM0IxRUVEMUFGN0U4MTdEOTU4Q0U2RjEz QTU4NUYwNjk1LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWkFULzAvMzIzNDMwMzEzYTM1MzU2MTMw M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzEzODMwMzQzMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQB VaAwDQYJKoZIhvcNAQELBQADggEBAGhJh6lX5zh4iKMR0iLLqoRlwcTQt7XS9EdP 55qnjlBGPXSWtdmSd0vojTDqkcya39k+DKsmKd+j5AJ0ixFG1xa8UFPhh3N3Xkdu DKrDZ2XITxFHZHwYb06HMbf/WZ2V8Sv8FxY+9P6TDnITYpV94IlFrN8vQ98b1nKx Ebf5WyZQqJHECuDpFHARHrGy+vCQPHZvc39RNsrfZprS67bjLmNET5PVbqGwUVqd Jol3SJJOgvtoBHHuIYRjB00BqlyNYk1wRXyk8os44tgX2ajYEkR8iTYHtth2nzj+ +UHRtEX+aeuwJd1NJB6YCTrtFKX6YcQ8vOcCoSGuzqTE6yKL3NI= -----END CERTIFICATE-----Generated at Wed May 13 07:45:45 2026 by rpki-client