$ rpki-client -vvf rpkica.twnic.tw/rpki/DENPAIO/0/323430333a613263303a3a2f33322d3438203d3e20313331363632.roa File: 323430333a613263303a3a2f33322d3438203d3e20313331363632.roa (raw, json) Hash identifier: 7bh7DLlqJphbWWAVyIde+HRB1Ap1WWUebp+RFOyy+Ms= Subject key identifier: 1D:C9:5A:1B:85:D0:C3:8C:89:48:B5:67:BD:3F:3A:FB:BC:5B:82:C1 Certificate issuer: /CN=059E0652FCBAC895061A57FE0566CF353F3E43CA Certificate serial: 7FC6A21987645D36C105B4F48A682EB420F445C8 Authority key identifier: 05:9E:06:52:FC:BA:C8:95:06:1A:57:FE:05:66:CF:35:3F:3E:43:CA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/059E0652FCBAC895061A57FE0566CF353F3E43CA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DENPAIO/0/323430333a613263303a3a2f33322d3438203d3e20313331363632.roa Signing time: Mon 11 May 2026 17:04:02 +0000 ROA not before: Mon 11 May 2026 16:59:02 +0000 ROA not after: Mon 10 May 2027 17:04:02 +0000 asID: 131662 IP address blocks: 2403:a2c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DENPAIO/0/059E0652FCBAC895061A57FE0566CF353F3E43CA.crl rsync://rpkica.twnic.tw/rpki/DENPAIO/0/059E0652FCBAC895061A57FE0566CF353F3E43CA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/059E0652FCBAC895061A57FE0566CF353F3E43CA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c6:a2:19:87:64:5d:36:c1:05:b4:f4:8a:68:2e:b4:20:f4:45:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=059E0652FCBAC895061A57FE0566CF353F3E43CA Validity Not Before: May 11 16:59:02 2026 GMT Not After : May 10 17:04:02 2027 GMT Subject: CN=1DC95A1B85D0C38C8948B567BD3F3AFBBC5B82C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9b:8c:85:9d:fd:a9:c0:68:3a:c8:22:b1:97: 66:9f:a7:44:68:b0:c8:34:4e:a7:9c:15:08:65:ed: 22:af:cb:bb:fd:08:00:71:7f:27:95:ec:25:eb:23: 51:f5:f6:61:7f:b6:d3:c6:51:28:83:e8:6d:b5:6b: 48:6a:2f:2b:91:cf:ba:bc:ce:0a:b5:32:af:55:f4: 8f:98:17:68:de:c9:ab:c0:04:e0:ae:2b:86:35:ab: 36:aa:5e:b1:85:de:e1:fd:85:0d:b6:35:b0:36:15: 89:34:f0:6d:f5:1b:b0:39:bd:c6:7e:8c:35:9e:ad: 1c:0a:41:b6:c1:d5:f7:a6:6f:37:1c:74:1c:99:ea: 0f:60:82:06:9e:10:1d:f9:cc:de:a5:2c:f4:e1:24: 83:ab:bb:16:c1:89:30:24:1e:a3:6d:26:a3:58:eb: ce:bd:65:6b:44:a4:33:ce:5c:6c:c8:58:12:d7:f7: f1:b9:f4:1e:2f:42:b9:aa:15:86:0f:65:27:a8:e3: 32:06:b5:ad:8a:06:bd:3d:04:99:62:aa:a4:a1:1c: f8:0a:c1:a1:75:fa:f5:cf:65:8d:2c:79:75:26:aa: 67:06:b4:51:f5:48:88:e5:d4:0b:9c:2b:d8:e8:63: 19:97:71:22:19:1d:c7:d3:2b:46:93:43:1a:63:9f: 8e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C9:5A:1B:85:D0:C3:8C:89:48:B5:67:BD:3F:3A:FB:BC:5B:82:C1 X509v3 Authority Key Identifier: keyid:05:9E:06:52:FC:BA:C8:95:06:1A:57:FE:05:66:CF:35:3F:3E:43:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DENPAIO/0/059E0652FCBAC895061A57FE0566CF353F3E43CA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/059E0652FCBAC895061A57FE0566CF353F3E43CA.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DENPAIO/0/323430333a613263303a3a2f33322d3438203d3e20313331363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:a2c0::/32 Signature Algorithm: sha256WithRSAEncryption 8c:70:39:1c:86:50:73:3b:27:ad:d6:4f:9e:f6:48:87:04:b8: 6b:6d:2b:2a:29:83:9f:87:bb:be:8f:7b:68:54:77:27:fc:ea: b8:28:ec:23:b0:55:e5:10:96:b2:94:40:fc:67:bc:37:68:75: aa:a3:78:99:4e:55:f8:e6:74:67:50:c3:c9:aa:99:a4:33:9d: 9d:fb:b4:c5:f3:ba:bb:22:38:5b:0a:b7:4f:af:4a:ac:32:8f: fe:04:28:fb:57:96:e1:a3:a3:07:6b:23:53:d6:9e:0c:68:73: 83:43:e7:af:92:07:42:07:6e:9c:8c:13:93:29:67:ad:03:d1: 64:70:f1:ec:0f:76:26:6f:16:6f:7a:f6:2c:35:6d:d1:76:62: a8:52:a7:a9:cc:41:ad:38:be:f2:51:68:6a:2c:37:79:76:f4: 90:a7:6d:5a:ac:27:64:51:8e:61:86:87:31:ab:30:12:71:0c: 56:c6:ca:bb:59:92:5a:1f:e9:c7:e9:98:fa:bd:0c:7b:7c:58: 71:42:2a:b1:fb:58:eb:1d:8c:71:f6:57:08:ef:f3:e4:bd:d8: 13:5a:1e:6b:d8:ac:7a:72:48:15:63:a7:2d:4a:d5:14:77:26: d9:d5:d6:b8:ef:26:ea:25:74:e1:a7:06:56:8c:bd:e4:16:d4: 2c:4d:80:a5 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUf8aiGYdkXTbBBbT0imgutCD0RcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDU5RTA2NTJGQ0JBQzg5NTA2MUE1N0ZFMDU2NkNGMzUz RjNFNDNDQTAeFw0yNjA1MTExNjU5MDJaFw0yNzA1MTAxNzA0MDJaMDMxMTAvBgNV BAMTKDFEQzk1QTFCODVEMEMzOEM4OTQ4QjU2N0JEM0YzQUZCQkM1QjgyQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvm4yFnf2pwGg6yCKxl2afp0Ro sMg0TqecFQhl7SKvy7v9CABxfyeV7CXrI1H19mF/ttPGUSiD6G21a0hqLyuRz7q8 zgq1Mq9V9I+YF2jeyavABOCuK4Y1qzaqXrGF3uH9hQ22NbA2FYk08G31G7A5vcZ+ jDWerRwKQbbB1fembzccdByZ6g9gggaeEB35zN6lLPThJIOruxbBiTAkHqNtJqNY 6869ZWtEpDPOXGzIWBLX9/G59B4vQrmqFYYPZSeo4zIGta2KBr09BJliqqShHPgK waF1+vXPZY0seXUmqmcGtFH1SIjl1AucK9joYxmXcSIZHcfTK0aTQxpjn44PAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUHclaG4XQw4yJSLVnvT86+7xbgsEwHwYDVR0j BBgwFoAUBZ4GUvy6yJUGGlf+BWbPNT8+Q8owDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvREVOUEFJ Ty8wLzA1OUUwNjUyRkNCQUM4OTUwNjFBNTdGRTA1NjZDRjM1M0YzRTQzQ0EuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvMDU5RTA2NTJGQ0JBQzg5NTA2MUE1N0ZFMDU2 NkNGMzUzRjNFNDNDQS5jZXIwfQYIKwYBBQUHAQsEcTBvMG0GCCsGAQUFBzALhmFy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RFTlBBSU8vMC8zMjM0MzAzMzNh NjEzMjYzMzAzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzMTMzMzEzNjM2MzIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkA6LAMA0GCSqGSIb3DQEBCwUAA4IBAQCMcDkchlBzOyet1k+e9kiH BLhrbSsqKYOfh7u+j3toVHcn/Oq4KOwjsFXlEJaylED8Z7w3aHWqo3iZTlX45nRn UMPJqpmkM52d+7TF87q7IjhbCrdPr0qsMo/+BCj7V5bho6MHayNT1p4MaHODQ+ev kgdCB26cjBOTKWetA9FkcPHsD3YmbxZvevYsNW3RdmKoUqepzEGtOL7yUWhqLDd5 dvSQp21arCdkUY5hhocxqzAScQxWxsq7WZJaH+nH6Zj6vQx7fFhxQiqx+1jrHYxx 9lcI7/PkvdgTWh5r2Kx6ckgVY6ctStUUdybZ1da47ybqJXThpwZWjL3kFtQsTYCl -----END CERTIFICATE-----Generated at Wed May 13 21:51:55 2026 by rpki-client