$ rpki-client -vvf rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a3a2f34382d3438203d3e20333936393832.roa File: 323430323a343736303a3a2f34382d3438203d3e20333936393832.roa (raw, json) Hash identifier: xNniVHF2D5n4PRBYJLC1H1m4ixoVY/+fUm+4DZvFSao= Subject key identifier: 23:AA:1B:7D:35:4B:13:A1:D3:F2:07:CC:39:51:4A:C1:85:F3:EE:66 Certificate issuer: /CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Certificate serial: 690EB03099F4CD1A5BDD28EFCDE041B38D9E7525 Authority key identifier: 67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a3a2f34382d3438203d3e20333936393832.roa Signing time: Wed 24 Jun 2026 08:23:50 +0000 ROA not before: Wed 24 Jun 2026 08:18:50 +0000 ROA not after: Wed 23 Jun 2027 08:23:50 +0000 asID: 396982 IP address blocks: 2402:4760::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 12:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0e:b0:30:99:f4:cd:1a:5b:dd:28:ef:cd:e0:41:b3:8d:9e:75:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Validity Not Before: Jun 24 08:18:50 2026 GMT Not After : Jun 23 08:23:50 2027 GMT Subject: CN=23AA1B7D354B13A1D3F207CC39514AC185F3EE66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e0:05:13:94:06:a2:d3:0a:e3:f4:81:d3:c8: 92:23:35:47:d3:95:6e:d6:e4:fd:62:59:f0:b5:36: 38:11:20:1d:d7:70:7b:7e:e5:fa:57:e6:fb:94:6b: 50:ca:91:83:76:9c:98:4a:54:72:1f:d9:da:62:9b: c8:2d:e6:74:14:3a:35:10:8e:15:e1:fd:33:de:47: aa:87:5d:54:86:34:e1:8b:e6:06:3f:57:5a:45:e4: bb:66:49:28:d7:b4:32:6d:77:d4:18:7a:70:b3:92: 58:66:59:64:f3:5e:53:0a:6f:91:8f:5b:43:9f:72: 8c:95:6d:88:01:32:0d:d2:81:0a:5b:81:a8:cb:d2: 18:07:27:2d:bd:cd:29:29:33:6c:ac:ee:7a:fd:23: c0:d4:4d:4e:19:e0:62:ce:64:3d:61:41:31:66:af: c5:8e:ff:89:c9:a3:5d:9b:c7:d9:26:10:aa:28:82: 83:32:a4:11:7f:67:3b:ac:d4:3f:4f:39:24:a6:d1: f5:b6:55:41:81:dc:1c:9d:c9:1f:86:68:00:4c:3d: 24:fb:bd:c1:ee:e1:42:4a:74:26:fb:0e:d4:ed:55: a1:91:e3:51:75:5f:a1:9a:31:58:d2:0d:01:9c:73: 3b:21:26:c6:59:fe:9e:a9:4d:d6:38:f0:37:d9:6b: dd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AA:1B:7D:35:4B:13:A1:D3:F2:07:CC:39:51:4A:C1:85:F3:EE:66 X509v3 Authority Key Identifier: keyid:67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/323430323a343736303a3a2f34382d3438203d3e20333936393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4760::/48 Signature Algorithm: sha256WithRSAEncryption 26:71:a1:ef:ca:93:de:05:16:0d:9b:d6:74:f5:40:f0:b1:e2: 86:c3:82:10:63:c7:8b:46:c4:67:a9:2d:18:94:dd:d6:f0:72: a2:89:4d:02:42:35:48:c4:57:1b:e1:8b:23:ec:6a:21:b3:99: c8:47:cb:22:67:5c:07:04:76:e3:11:6a:e5:ca:ca:dd:7e:9a: 08:81:97:a2:46:85:f3:00:c3:be:e4:4e:ca:82:0d:b1:bb:8b: ae:67:db:9e:11:64:8c:4f:57:02:73:a8:ea:0f:40:6a:f2:76: e4:3c:ca:ee:84:38:d8:58:3a:18:90:07:3a:45:2c:7f:e9:aa: 56:3d:3c:58:db:b3:e0:29:9b:02:ea:90:0d:e2:de:4a:e4:15: 9d:3a:88:c3:77:7e:23:ed:13:4e:64:82:80:fd:4f:6c:07:0f: 22:c9:bc:ee:07:00:ec:9c:39:4d:75:96:36:c4:f2:02:9b:3f: ff:54:59:df:ff:8b:81:62:4e:b6:44:3d:49:78:b8:03:bb:21: 9e:3b:3a:99:92:cc:e6:c5:08:61:cf:15:a0:50:8e:c5:b9:6c: df:fe:78:b1:97:22:d9:f4:3a:dd:45:01:09:bf:3f:1f:51:bb: 1c:92:8f:d5:22:16:37:ad:f4:87:c5:12:f7:29:f6:a1:81:cb: 82:a0:b0:e9 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUaQ6wMJn0zRpb3SjvzeBBs42edSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3Njc5 QUU1RTlGRDAeFw0yNjA2MjQwODE4NTBaFw0yNzA2MjMwODIzNTBaMDMxMTAvBgNV BAMTKDIzQUExQjdEMzU0QjEzQTFEM0YyMDdDQzM5NTE0QUMxODVGM0VFNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi4AUTlAai0wrj9IHTyJIjNUfT lW7W5P1iWfC1NjgRIB3XcHt+5fpX5vuUa1DKkYN2nJhKVHIf2dpim8gt5nQUOjUQ jhXh/TPeR6qHXVSGNOGL5gY/V1pF5LtmSSjXtDJtd9QYenCzklhmWWTzXlMKb5GP W0OfcoyVbYgBMg3SgQpbgajL0hgHJy29zSkpM2ys7nr9I8DUTU4Z4GLOZD1hQTFm r8WO/4nJo12bx9kmEKoogoMypBF/Zzus1D9POSSm0fW2VUGB3BydyR+GaABMPST7 vcHu4UJKdCb7DtTtVaGR41F1X6GaMVjSDQGcczshJsZZ/p6pTdY48DfZa90tAgMB AAGjggHiMIIB3jAdBgNVHQ4EFgQUI6obfTVLE6HT8gfMOVFKwYXz7mYwHwYDVR0j BBgwFoAUZx2pX2fXA6jrwzMOeCcXZ5rl6f0wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkhJUy8w LzY3MURBOTVGNjdENzAzQThFQkMzMzMwRTc4MjcxNzY3OUFFNUU5RkQuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3 Njc5QUU1RTlGRC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0JISVMvMC8zMjM0MzAzMjNhMzQzNzM2 MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM5MzYzOTM4MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAkAkdgAAAwDQYJKoZIhvcNAQELBQADggEBACZxoe/Kk94FFg2b1nT1QPCx4obD ghBjx4tGxGepLRiU3dbwcqKJTQJCNUjEVxvhiyPsaiGzmchHyyJnXAcEduMRauXK yt1+mgiBl6JGhfMAw77kTsqCDbG7i65n254RZIxPVwJzqOoPQGryduQ8yu6EONhY OhiQBzpFLH/pqlY9PFjbs+ApmwLqkA3i3krkFZ06iMN3fiPtE05kgoD9T2wHDyLJ vO4HAOycOU11ljbE8gKbP/9UWd//i4FiTrZEPUl4uAO7IZ47OpmSzObFCGHPFaBQ jsW5bN/+eLGXItn0Ot1FAQm/Px9RuxySj9UiFjet9IfFEvcp9qGBy4KgsOk= -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:50 2026 by rpki-client