$ rpki-client -vvf rpkica.twnic.tw/rpki/CHINATEL/0/323430303a363161303a3a2f33322d3438203d3e203338303437.roa File: 323430303a363161303a3a2f33322d3438203d3e203338303437.roa (raw, json) Hash identifier: J5FZ9S8B0pYlsVGJstyO6n1c/aCGZycW6XgKo4yhN08= Subject key identifier: 7D:42:EE:25:C9:6E:13:14:F6:D5:26:9A:63:6F:0A:6D:59:87:3F:09 Certificate issuer: /CN=F2A554CF6D98A4AEE7BB399932B463B72F3F4B45 Certificate serial: 6D86828C0083EB468DCD5558779C6C3777D0DF43 Authority key identifier: F2:A5:54:CF:6D:98:A4:AE:E7:BB:39:99:32:B4:63:B7:2F:3F:4B:45 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHINATEL/0/323430303a363161303a3a2f33322d3438203d3e203338303437.roa Signing time: Mon 11 May 2026 17:15:33 +0000 ROA not before: Mon 11 May 2026 17:10:33 +0000 ROA not after: Mon 10 May 2027 17:15:33 +0000 asID: 38047 IP address blocks: 2400:61a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHINATEL/0/F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.crl rsync://rpkica.twnic.tw/rpki/CHINATEL/0/F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:86:82:8c:00:83:eb:46:8d:cd:55:58:77:9c:6c:37:77:d0:df:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2A554CF6D98A4AEE7BB399932B463B72F3F4B45 Validity Not Before: May 11 17:10:33 2026 GMT Not After : May 10 17:15:33 2027 GMT Subject: CN=7D42EE25C96E1314F6D5269A636F0A6D59873F09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:02:83:7b:8c:46:6f:7d:0a:3c:c6:4c:78:f4: 0a:a5:6d:55:16:d7:e5:cc:34:c6:40:cb:bc:58:a4: cd:30:ee:90:7c:db:bb:ea:6b:72:c2:77:43:71:ae: 40:ac:05:61:e4:7b:1f:21:be:31:f8:bd:2c:c8:8d: 84:44:a0:93:04:70:c5:33:7f:bd:91:be:9e:c4:10: 43:9e:4c:b2:ed:32:f2:e5:94:44:ab:ef:7a:5c:28: 93:38:1e:73:3b:48:95:f9:16:7c:c7:20:de:53:60: cd:c8:9d:74:db:83:5c:5f:2c:6d:41:ce:2c:d3:01: ef:36:44:2b:c5:ce:f9:8f:e3:a4:5e:14:e4:0b:4e: bf:1b:1f:3d:cd:77:e2:c4:1f:10:81:0f:24:a0:5d: 1f:15:9c:3d:6e:78:62:01:79:fe:e9:93:2e:13:6d: ed:d4:af:92:c5:8c:1e:32:72:e0:1f:2c:45:c9:fb: 87:62:7c:15:81:34:ae:9f:56:81:1c:fa:1c:db:42: 41:b8:0e:50:82:52:04:37:2d:61:96:de:e9:30:93: a5:fa:58:5e:4b:8c:a5:ea:48:a9:bd:2e:43:d7:7e: 22:58:4d:08:2f:11:0a:25:e4:bb:13:46:59:2b:f5: 08:51:ae:d1:70:0b:7e:02:3f:8a:ff:5d:e9:bc:ab: fe:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:42:EE:25:C9:6E:13:14:F6:D5:26:9A:63:6F:0A:6D:59:87:3F:09 X509v3 Authority Key Identifier: keyid:F2:A5:54:CF:6D:98:A4:AE:E7:BB:39:99:32:B4:63:B7:2F:3F:4B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHINATEL/0/F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F2A554CF6D98A4AEE7BB399932B463B72F3F4B45.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHINATEL/0/323430303a363161303a3a2f33322d3438203d3e203338303437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:61a0::/32 Signature Algorithm: sha256WithRSAEncryption 83:2b:31:6c:50:68:45:3c:12:9e:64:a7:7f:c6:e5:bb:b0:51: b3:d6:d2:75:d0:06:84:54:d6:3d:f6:e8:08:2c:04:58:d6:7c: 49:07:85:34:c8:d2:ec:fb:13:00:ed:2e:64:d7:04:fb:49:53: be:5a:31:02:59:8a:b9:e7:48:25:de:53:3e:80:ef:01:7e:19: 85:0f:eb:59:6e:41:2a:96:36:32:7c:e5:58:c5:fe:6e:4b:b7: c5:03:0d:9d:38:e9:f0:26:c8:b2:f6:e6:95:4e:b7:32:dc:0b: 8f:af:86:51:c3:93:3f:79:6b:6c:49:5d:99:ac:9b:df:59:45: df:35:03:4b:63:63:ca:2b:e4:94:44:02:b4:99:9f:f4:ab:81: bf:97:77:b3:d8:8e:29:52:d0:a1:94:e1:fe:79:25:b7:15:b4: 33:aa:66:07:66:5c:9b:09:2c:fd:23:35:15:cd:02:70:42:ce: cb:99:d6:ed:3f:b4:31:d3:2b:a0:ff:57:0f:c3:45:a2:3b:48: b5:84:08:e0:b9:16:ff:4b:83:22:8b:d8:a7:26:14:8b:db:78: be:25:91:27:0e:7c:1d:b8:a7:3a:61:2e:f0:66:84:bf:c3:43: a0:27:07:f5:a1:d1:cb:18:66:cd:6a:5b:14:b7:ea:3d:86:10: 04:d4:5f:2b -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUbYaCjACD60aNzVVYd5xsN3fQ30MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJBNTU0Q0Y2RDk4QTRBRUU3QkIzOTk5MzJCNDYzQjcy RjNGNEI0NTAeFw0yNjA1MTExNzEwMzNaFw0yNzA1MTAxNzE1MzNaMDMxMTAvBgNV BAMTKDdENDJFRTI1Qzk2RTEzMTRGNkQ1MjY5QTYzNkYwQTZENTk4NzNGMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxAoN7jEZvfQo8xkx49AqlbVUW 1+XMNMZAy7xYpM0w7pB827vqa3LCd0NxrkCsBWHkex8hvjH4vSzIjYREoJMEcMUz f72Rvp7EEEOeTLLtMvLllESr73pcKJM4HnM7SJX5FnzHIN5TYM3InXTbg1xfLG1B zizTAe82RCvFzvmP46ReFOQLTr8bHz3Nd+LEHxCBDySgXR8VnD1ueGIBef7pky4T be3Ur5LFjB4ycuAfLEXJ+4difBWBNK6fVoEc+hzbQkG4DlCCUgQ3LWGW3ukwk6X6 WF5LjKXqSKm9LkPXfiJYTQgvEQol5LsTRlkr9QhRrtFwC34CP4r/Xem8q/4rAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUfULuJcluExT21SaaY28KbVmHPwkwHwYDVR0j BBgwFoAU8qVUz22YpK7nuzmZMrRjty8/S0UwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFU RUwvMC9GMkE1NTRDRjZEOThBNEFFRTdCQjM5OTkzMkI0NjNCNzJGM0Y0QjQ1LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xL0YyQTU1NENGNkQ5OEE0QUVFN0JCMzk5OTMy QjQ2M0I3MkYzRjRCNDUuY2VyMHwGCCsGAQUFBwELBHAwbjBsBggrBgEFBQcwC4Zg cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElOQVRFTC8wLzMyMzQzMDMw M2EzNjMxNjEzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMzMzgzMDM0Mzcucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAGGgMA0GCSqGSIb3DQEBCwUAA4IBAQCDKzFsUGhFPBKeZKd/xuW7 sFGz1tJ10AaEVNY99ugILARY1nxJB4U0yNLs+xMA7S5k1wT7SVO+WjECWYq550gl 3lM+gO8BfhmFD+tZbkEqljYyfOVYxf5uS7fFAw2dOOnwJsiy9uaVTrcy3AuPr4ZR w5M/eWtsSV2ZrJvfWUXfNQNLY2PKK+SURAK0mZ/0q4G/l3ez2I4pUtChlOH+eSW3 FbQzqmYHZlybCSz9IzUVzQJwQs7LmdbtP7Qx0yug/1cPw0WiO0i1hAjguRb/S4Mi i9inJhSL23i+JZEnDnwduKc6YS7wZoS/w0OgJwf1odHLGGbNalsUt+o9hhAE1F8r -----END CERTIFICATE-----Generated at Wed May 13 21:12:00 2026 by rpki-client