$ rpki-client -vvf rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a31303a3a2f34342d3438203d3e20313532363132.roa File: 323430323a343365303a31303a3a2f34342d3438203d3e20313532363132.roa (raw, json) Hash identifier: p7t7q5v8s8Z1DS3+G2q2YpsSjGO/X/2pPMzddgQKZBM= Subject key identifier: 7D:16:23:A2:97:8D:58:D1:51:55:F4:E2:1C:80:F0:94:17:F0:BB:45 Certificate issuer: /CN=0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78 Certificate serial: 20AD2943779E9884A99F153F6838BA593C854BDC Authority key identifier: 0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer Subject info access: rsync://rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a31303a3a2f34342d3438203d3e20313532363132.roa Signing time: Mon 11 May 2026 17:58:45 +0000 ROA not before: Mon 11 May 2026 17:53:45 +0000 ROA not after: Mon 10 May 2027 17:58:45 +0000 asID: 152612 IP address blocks: 2402:43e0:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.crl rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ad:29:43:77:9e:98:84:a9:9f:15:3f:68:38:ba:59:3c:85:4b:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78 Validity Not Before: May 11 17:53:45 2026 GMT Not After : May 10 17:58:45 2027 GMT Subject: CN=7D1623A2978D58D15155F4E21C80F09417F0BB45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:43:a6:15:4d:cf:12:a2:cc:76:cd:63:35:9f: f0:92:55:07:f6:8d:72:92:70:eb:95:7a:48:91:48: 1c:32:7f:ca:5c:1b:19:01:2f:ab:43:ed:65:bb:8e: a2:6f:63:f2:3c:d8:de:83:b2:31:93:70:32:2b:6e: ca:9f:08:02:6f:5c:e3:e7:9b:2c:3d:41:9a:18:82: 1d:b3:55:5c:7e:79:2c:27:be:80:a1:bf:d9:fd:e2: a8:af:03:f9:bb:1a:31:a0:40:4d:df:36:91:b2:52: e2:06:25:fa:34:03:84:33:ea:5d:bc:f2:94:c0:eb: c3:86:2a:b6:83:3d:b9:2e:cf:0a:4b:24:d4:28:41: 0d:00:57:04:d3:45:48:10:c1:1a:fe:cf:cd:f3:40: 9f:34:4b:9f:dd:7f:28:5e:ce:57:6e:c5:48:de:8e: 16:61:3e:21:9e:1c:f2:a6:c8:a0:f8:62:95:03:f6: a0:a1:1b:ae:fc:eb:e5:97:fd:14:b6:45:ef:72:0d: 6e:dc:16:60:59:dd:45:32:a9:6b:70:33:5e:d4:2e: 28:84:62:b2:78:3a:8d:86:97:64:7e:c0:fc:bd:ea: be:a2:33:c1:75:7c:de:21:2f:77:e6:b0:33:0e:15: 61:19:f9:40:9f:bb:0c:d6:b7:df:3c:61:60:0d:48: b6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:16:23:A2:97:8D:58:D1:51:55:F4:E2:1C:80:F0:94:17:F0:BB:45 X509v3 Authority Key Identifier: keyid:0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a31303a3a2f34342d3438203d3e20313532363132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:43e0:10::/44 Signature Algorithm: sha256WithRSAEncryption 83:0f:a2:3c:b5:74:7c:f3:9b:c4:40:00:3d:f9:67:72:34:75: da:08:f0:18:4d:fc:3b:7e:2b:7b:4b:de:8b:6f:9a:6e:c3:fb: f7:ac:6a:8e:a4:a3:72:1f:2b:f0:48:24:73:88:a2:6d:5d:66: 66:14:81:9d:39:94:cc:d1:ea:dc:e5:f1:b7:b5:ae:6e:3a:c0: f4:0a:b7:83:95:53:f5:5b:7f:eb:8c:dd:e0:e7:ee:9a:8f:4b: a2:82:99:ae:7f:e6:99:ca:b4:2e:29:bc:98:8c:5d:78:17:43: df:f2:3c:b4:b6:cc:e3:3a:36:4c:bb:63:32:de:5a:7b:f9:3c: 59:45:cb:4f:d5:40:2a:b5:cf:18:57:b3:01:cf:9c:5c:6c:fb: f0:60:b5:1d:36:8c:e6:81:29:b1:79:5e:45:69:4a:e8:24:0c: 43:29:80:3f:76:50:a5:a0:12:5b:ca:c9:90:8a:a6:4d:06:99: f1:ed:dd:09:25:3a:0e:bb:b8:85:7a:41:73:a5:40:2c:7f:7b: f5:7a:5f:a6:ef:75:07:07:c6:f7:eb:d5:ac:ba:1b:12:69:a7: f6:32:17:5e:c8:fa:7d:04:0c:fa:d4:d2:40:cd:14:dc:e1:d7: c9:6a:ac:56:82:00:46:3f:45:33:40:7c:4e:b6:4c:fe:d9:2c: 75:48:ea:8b -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgIUIK0pQ3eemISpnxU/aDi6WTyFS9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEY2QjM0MjdDRDQwM0RFNzBEOTdDRERDQUZBMEJEQkMx NjZDM0U3ODAeFw0yNjA1MTExNzUzNDVaFw0yNzA1MTAxNzU4NDVaMDMxMTAvBgNV BAMTKDdEMTYyM0EyOTc4RDU4RDE1MTU1RjRFMjFDODBGMDk0MTdGMEJCNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYQ6YVTc8Sosx2zWM1n/CSVQf2 jXKScOuVekiRSBwyf8pcGxkBL6tD7WW7jqJvY/I82N6DsjGTcDIrbsqfCAJvXOPn myw9QZoYgh2zVVx+eSwnvoChv9n94qivA/m7GjGgQE3fNpGyUuIGJfo0A4Qz6l28 8pTA68OGKraDPbkuzwpLJNQoQQ0AVwTTRUgQwRr+z83zQJ80S5/dfyhezlduxUje jhZhPiGeHPKmyKD4YpUD9qChG6786+WX/RS2Re9yDW7cFmBZ3UUyqWtwM17ULiiE YrJ4Oo2Gl2R+wPy96r6iM8F1fN4hL3fmsDMOFWEZ+UCfuwzWt988YWANSLZDAgMB AAGjggHxMIIB7TAdBgNVHQ4EFgQUfRYjopeNWNFRVfTiHIDwlBfwu0UwHwYDVR0j BBgwFoAUD2s0J81APecNl83cr6C9vBZsPngwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQU9URVJO RVQvMC8wRjZCMzQyN0NENDAzREU3MEQ5N0NERENBRkEwQkRCQzE2NkMzRTc4LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzBGNkIzNDI3Q0Q0MDNERTcwRDk3Q0REQ0FG QTBCREJDMTY2QzNFNzguY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuG aHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQU9URVJORVQvMC8zMjM0MzAz MjNhMzQzMzY1MzAzYTMxMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMTM1MzIz NjMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwQkAkPgABAwDQYJKoZIhvcNAQELBQADggEBAIMPojy1 dHzzm8RAAD35Z3I0ddoI8BhN/Dt+K3tL3otvmm7D+/esao6ko3IfK/BIJHOIom1d ZmYUgZ05lMzR6tzl8be1rm46wPQKt4OVU/Vbf+uM3eDn7pqPS6KCma5/5pnKtC4p vJiMXXgXQ9/yPLS2zOM6Nky7YzLeWnv5PFlFy0/VQCq1zxhXswHPnFxs+/BgtR02 jOaBKbF5XkVpSugkDEMpgD92UKWgElvKyZCKpk0GmfHt3QklOg67uIV6QXOlQCx/ e/V6X6bvdQcHxvfr1ay6GxJpp/YyF17I+n0EDPrU0kDNFNzh18lqrFaCAEY/RTNA fE62TP7ZLHVI6os= -----END CERTIFICATE-----Generated at Wed May 13 21:51:59 2026 by rpki-client