$ rpki-client -vvf rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a39633a3a2f34382d3438203d3e20333936393832.roa File: 323430323a343736303a39633a3a2f34382d3438203d3e20333936393832.roa (raw, json) Hash identifier: W+cJcGEBHA5nMvetfbU/MxRKQJYX8lMgJjfV6ST7azg= Subject key identifier: 75:67:C4:E5:BA:6D:21:91:A2:B9:5F:3C:35:F3:77:A9:BD:18:20:83 Certificate issuer: /CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Certificate serial: 3D5C37E6668DC8F818C997A91D6EFAEE5DFCE357 Authority key identifier: 67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a39633a3a2f34382d3438203d3e20333936393832.roa Signing time: Wed 24 Jun 2026 08:43:49 +0000 ROA not before: Wed 24 Jun 2026 08:38:49 +0000 ROA not after: Wed 23 Jun 2027 08:43:49 +0000 asID: 396982 IP address blocks: 2402:4760:9c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 12:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:5c:37:e6:66:8d:c8:f8:18:c9:97:a9:1d:6e:fa:ee:5d:fc:e3:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Validity Not Before: Jun 24 08:38:49 2026 GMT Not After : Jun 23 08:43:49 2027 GMT Subject: CN=7567C4E5BA6D2191A2B95F3C35F377A9BD182083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:80:9a:d1:d3:fb:89:fd:dc:56:9e:4b:f8:95: 9a:89:a2:b9:a4:62:b2:00:28:f7:b4:95:15:cf:f3: 6c:2f:13:96:fe:fe:d7:09:c7:a7:8f:f7:cd:de:b7: a9:3b:cf:2b:f4:ad:90:15:cc:fa:00:3a:eb:5b:85: e3:9d:93:5c:28:55:d8:4f:7a:b7:68:91:9f:f9:3f: a3:24:97:30:b9:e6:a1:1b:9f:2a:a1:06:d1:1d:56: de:74:43:82:50:fb:78:ad:0f:d5:63:eb:04:b3:06: 1f:fb:f5:02:3f:b5:1f:58:9f:0e:a4:28:97:4d:45: ce:9d:67:e4:26:56:78:79:d9:7b:55:46:bd:4a:96: 7d:61:9a:2a:8c:d9:1c:1f:53:d7:73:b9:bc:20:4a: 79:7c:59:98:e4:e2:bd:ed:51:6c:cd:c5:17:90:8a: ce:a5:76:d6:ca:6b:66:21:c7:c3:85:27:6f:72:36: 22:2b:2a:05:27:91:60:11:05:e5:f4:1c:f6:7a:51: ef:7b:71:98:26:6f:81:48:3a:9a:ae:dd:20:2a:15: 20:15:97:3e:72:84:1e:5d:90:50:35:3f:6f:b4:c3: 80:9d:01:50:2a:74:84:5c:cb:2e:f0:10:5c:36:a5: b4:d2:1f:90:b9:4f:a5:fd:e0:33:e8:14:45:81:6b: df:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:67:C4:E5:BA:6D:21:91:A2:B9:5F:3C:35:F3:77:A9:BD:18:20:83 X509v3 Authority Key Identifier: keyid:67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a39633a3a2f34382d3438203d3e20333936393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4760:9c::/48 Signature Algorithm: sha256WithRSAEncryption 1d:62:88:9a:d6:54:23:43:00:78:02:55:0f:4e:31:50:16:6d: 13:68:cf:b8:17:bf:b0:e3:33:99:8b:27:af:8d:6f:49:7f:3e: 31:2e:6d:6b:5a:b2:84:70:aa:d8:2f:8d:1b:06:ae:a6:14:53: b3:d8:e4:77:a5:af:4e:5f:84:0f:fa:38:7f:90:c7:59:68:1b: 66:d0:35:bd:6f:2f:38:fe:72:93:13:ab:f9:82:a9:de:b2:66: 6f:26:45:98:ef:66:aa:eb:95:c3:1e:f4:ab:17:cf:f4:0b:76: fb:07:16:5f:2f:6e:34:cb:08:e8:af:7e:d1:5a:9e:2c:f0:1e: c8:b4:88:cc:dc:08:3a:10:a1:b4:f3:a2:a9:ae:19:dc:e7:d0: eb:80:da:7a:74:e5:4e:ba:f0:78:27:79:67:d2:cc:ed:8d:b6: 14:f6:2f:f5:27:79:8f:d2:82:61:95:53:12:09:f9:c3:16:9a: ab:ab:ee:bb:31:19:28:86:e3:f5:a7:3e:bd:7e:6d:30:92:f8: 3a:2b:de:45:1a:45:e7:71:b2:4b:2a:26:ea:51:46:37:fd:ae: 8b:97:34:66:2c:df:45:52:c4:e0:ee:13:a0:c4:f3:d5:ff:a2: 93:48:93:c6:e3:59:27:c5:92:0a:8b:8f:c9:c9:72:6f:ad:9b: 9e:3e:68:0e -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUPVw35maNyPgYyZepHW767l3841cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3Njc5 QUU1RTlGRDAeFw0yNjA2MjQwODM4NDlaFw0yNzA2MjMwODQzNDlaMDMxMTAvBgNV BAMTKDc1NjdDNEU1QkE2RDIxOTFBMkI5NUYzQzM1RjM3N0E5QkQxODIwODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0gJrR0/uJ/dxWnkv4lZqJormk YrIAKPe0lRXP82wvE5b+/tcJx6eP983et6k7zyv0rZAVzPoAOutbheOdk1woVdhP erdokZ/5P6MklzC55qEbnyqhBtEdVt50Q4JQ+3itD9Vj6wSzBh/79QI/tR9Ynw6k KJdNRc6dZ+QmVnh52XtVRr1Kln1hmiqM2RwfU9dzubwgSnl8WZjk4r3tUWzNxReQ is6ldtbKa2Yhx8OFJ29yNiIrKgUnkWARBeX0HPZ6Ue97cZgmb4FIOpqu3SAqFSAV lz5yhB5dkFA1P2+0w4CdAVAqdIRcyy7wEFw2pbTSH5C5T6X94DPoFEWBa98TAgMB AAGjggHpMIIB5TAdBgNVHQ4EFgQUdWfE5bptIZGiuV88NfN3qb0YIIMwHwYDVR0j BBgwFoAUZx2pX2fXA6jrwzMOeCcXZ5rl6f0wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkhJUy8w LzY3MURBOTVGNjdENzAzQThFQkMzMzMwRTc4MjcxNzY3OUFFNUU5RkQuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3 Njc5QUU1RTlGRC5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9CSElTLzAvMzIzNDMwMzIzYTM0Mzcz NjMwM2EzOTYzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzODMyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAJHYACcMA0GCSqGSIb3DQEBCwUAA4IBAQAdYoia1lQjQwB4AlUP TjFQFm0TaM+4F7+w4zOZiyevjW9Jfz4xLm1rWrKEcKrYL40bBq6mFFOz2OR3pa9O X4QP+jh/kMdZaBtm0DW9by84/nKTE6v5gqnesmZvJkWY72aq65XDHvSrF8/0C3b7 BxZfL240ywjor37RWp4s8B7ItIjM3Ag6EKG086Kprhnc59DrgNp6dOVOuvB4J3ln 0sztjbYU9i/1J3mP0oJhlVMSCfnDFpqrq+67MRkohuP1pz69fm0wkvg6K95FGkXn cbJLKibqUUY3/a6LlzRmLN9FUsTg7hOgxPPV/6KTSJPG41knxZIKi4/JyXJvrZue PmgO -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:13 2026 by rpki-client