$ rpki-client -vvf rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a3a2f33322d3438203d3e20323132393639.roa File: 323430323a343736303a3a2f33322d3438203d3e20323132393639.roa (raw, json) Hash identifier: C3SLp2cLKJEoSfOCrv1QENdxIJcJ56ZPXagR0nS+hok= Subject key identifier: 11:3A:FE:48:31:1C:53:64:3F:9B:7D:36:38:2B:D4:51:A4:3E:53:23 Certificate issuer: /CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Certificate serial: 112B0E9B087A5241C24C12BECE560A7E0ED3C8E8 Authority key identifier: 67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a3a2f33322d3438203d3e20323132393639.roa Signing time: Mon 11 May 2026 17:57:48 +0000 ROA not before: Mon 11 May 2026 17:52:48 +0000 ROA not after: Mon 10 May 2027 17:57:48 +0000 asID: 212969 IP address blocks: 2402:4760::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:2b:0e:9b:08:7a:52:41:c2:4c:12:be:ce:56:0a:7e:0e:d3:c8:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Validity Not Before: May 11 17:52:48 2026 GMT Not After : May 10 17:57:48 2027 GMT Subject: CN=113AFE48311C53643F9B7D36382BD451A43E5323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:46:c1:4f:4d:f1:be:fc:31:68:c6:bf:ba:d7: 1a:1d:e2:d1:32:c3:cd:13:ef:7a:b4:31:f9:b5:b1: 0e:8f:bb:53:ee:29:88:8a:dc:15:c8:a1:21:a6:98: 77:fe:a2:16:a2:7f:72:6d:7c:81:ec:1f:17:98:68: 2d:80:7a:5c:b6:35:99:1f:df:c5:ac:f8:a4:b9:bc: e2:10:a5:bd:ee:98:81:80:9c:a7:c0:e6:ea:59:a0: 9a:8c:7d:e3:40:04:10:d8:c0:a3:fa:6e:ed:17:2b: 77:fa:85:32:16:25:db:2e:bb:c0:85:6b:81:5c:da: 84:1e:43:c9:19:88:6f:fb:b9:76:be:c9:15:1c:3c: bc:b9:ca:a3:e3:48:68:36:2e:90:fc:4f:c8:c7:50: aa:57:66:33:f0:5d:3b:6e:ef:a6:f9:22:82:61:51: 87:d0:74:fd:d7:7f:81:10:ab:82:02:20:39:42:e7: 13:b1:6c:46:14:a7:6f:a8:ef:60:8b:88:e3:e8:b5: 9c:60:8f:28:51:63:b1:95:09:84:32:5f:ff:fa:53: 5b:82:ce:a3:c8:63:94:ab:d2:55:5b:c6:6b:5e:8b: 2b:3a:70:c3:7b:4c:6d:40:c7:f5:20:a7:f2:d3:b3: 19:94:ba:88:9c:7e:be:7b:08:35:81:03:18:27:c6: 1b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:3A:FE:48:31:1C:53:64:3F:9B:7D:36:38:2B:D4:51:A4:3E:53:23 X509v3 Authority Key Identifier: keyid:67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a3a2f33322d3438203d3e20323132393639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4760::/32 Signature Algorithm: sha256WithRSAEncryption 66:6a:ff:ec:01:40:a1:a0:b5:5d:1e:a2:d0:50:7d:76:df:e7: a2:79:9d:64:8e:33:d4:99:26:69:7c:1e:38:e0:eb:f8:27:6a: a8:71:93:46:e0:72:73:ab:0a:fb:a7:c3:b2:1c:ef:9d:49:cb: 45:6b:48:5d:7f:02:8f:51:23:18:03:91:f7:41:11:dc:2a:23: 98:0b:4e:5b:21:b8:a9:76:5a:e3:53:e5:84:67:fe:16:74:78: 11:ea:26:d0:08:b1:4e:60:54:c3:29:6f:d6:b0:3f:ab:53:bc: 75:e7:05:f6:5c:9f:42:fa:25:c0:84:a9:08:87:63:67:bf:8d: 2f:1d:41:50:09:e9:46:8e:1f:0e:1b:a2:da:de:2c:11:4c:3f: 0f:a1:1e:dc:5a:1a:44:6f:db:af:93:61:87:40:69:a4:18:a9: 6a:b4:0d:80:11:a1:d1:f4:0f:9c:ed:2b:8b:94:2c:af:33:27: df:65:21:b5:f8:2f:ac:0e:d7:d7:cb:df:2e:ac:81:50:a9:88: 86:6a:01:e7:ba:f3:dd:a3:1e:c7:cc:d5:41:8f:a7:87:ae:82: 00:c8:f0:8a:59:92:d6:9d:57:47:08:4b:29:ee:6a:e0:6f:a8: ea:d0:c0:fb:b1:10:7b:76:04:52:15:f0:79:ef:31:2b:9b:89: 1c:42:7e:ba -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUESsOmwh6UkHCTBK+zlYKfg7TyOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3Njc5 QUU1RTlGRDAeFw0yNjA1MTExNzUyNDhaFw0yNzA1MTAxNzU3NDhaMDMxMTAvBgNV BAMTKDExM0FGRTQ4MzExQzUzNjQzRjlCN0QzNjM4MkJENDUxQTQzRTUzMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSRsFPTfG+/DFoxr+61xod4tEy w80T73q0Mfm1sQ6Pu1PuKYiK3BXIoSGmmHf+ohaif3JtfIHsHxeYaC2Aely2NZkf 38Ws+KS5vOIQpb3umIGAnKfA5upZoJqMfeNABBDYwKP6bu0XK3f6hTIWJdsuu8CF a4Fc2oQeQ8kZiG/7uXa+yRUcPLy5yqPjSGg2LpD8T8jHUKpXZjPwXTtu76b5IoJh UYfQdP3Xf4EQq4ICIDlC5xOxbEYUp2+o72CLiOPotZxgjyhRY7GVCYQyX//6U1uC zqPIY5Sr0lVbxmteiys6cMN7TG1Ax/Ugp/LTsxmUuoicfr57CDWBAxgnxhtnAgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQUETr+SDEcU2Q/m302OCvUUaQ+UyMwHwYDVR0j BBgwFoAUZx2pX2fXA6jrwzMOeCcXZ5rl6f0wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkhJUy8w LzY3MURBOTVGNjdENzAzQThFQkMzMzMwRTc4MjcxNzY3OUFFNUU5RkQuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3 Njc5QUU1RTlGRC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0JISVMvMC8zMjM0MzAzMjNhMzQzNzM2 MzAzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzMjMxMzIzOTM2Mzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAkdgMA0GCSqGSIb3DQEBCwUAA4IBAQBmav/sAUChoLVdHqLQUH123+eieZ1k jjPUmSZpfB444Ov4J2qocZNG4HJzqwr7p8OyHO+dSctFa0hdfwKPUSMYA5H3QRHc KiOYC05bIbipdlrjU+WEZ/4WdHgR6ibQCLFOYFTDKW/WsD+rU7x15wX2XJ9C+iXA hKkIh2Nnv40vHUFQCelGjh8OG6La3iwRTD8PoR7cWhpEb9uvk2GHQGmkGKlqtA2A EaHR9A+c7SuLlCyvMyffZSG1+C+sDtfXy98urIFQqYiGagHnuvPdox7HzNVBj6eH roIAyPCKWZLWnVdHCEsp7mrgb6jq0MD7sRB7dgRSFfB57zErm4kcQn66 -----END CERTIFICATE-----Generated at Wed May 13 21:09:21 2026 by rpki-client