$ rpki-client -vvf rpkica.twnic.tw/rpki/DENPAIO/0/323430333a613263303a3a2f33322d3438203d3e203230343733.roa File: 323430333a613263303a3a2f33322d3438203d3e203230343733.roa (raw, json) Hash identifier: m4c1iJtK8aN6J3lEQoStd8FFVOYzM3grbyfplvzUybo= Subject key identifier: CD:90:7B:06:AF:6B:D7:13:3D:B9:A6:43:48:B6:8D:F4:59:6C:A6:FB Certificate issuer: /CN=059E0652FCBAC895061A57FE0566CF353F3E43CA Certificate serial: 6C6CE4C3A6405FF437FF6B9C9AE456DBBE39000F Authority key identifier: 05:9E:06:52:FC:BA:C8:95:06:1A:57:FE:05:66:CF:35:3F:3E:43:CA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/059E0652FCBAC895061A57FE0566CF353F3E43CA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DENPAIO/0/323430333a613263303a3a2f33322d3438203d3e203230343733.roa Signing time: Mon 11 May 2026 16:41:42 +0000 ROA not before: Mon 11 May 2026 16:36:42 +0000 ROA not after: Mon 10 May 2027 16:41:42 +0000 asID: 20473 IP address blocks: 2403:a2c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DENPAIO/0/059E0652FCBAC895061A57FE0566CF353F3E43CA.crl rsync://rpkica.twnic.tw/rpki/DENPAIO/0/059E0652FCBAC895061A57FE0566CF353F3E43CA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/059E0652FCBAC895061A57FE0566CF353F3E43CA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:6c:e4:c3:a6:40:5f:f4:37:ff:6b:9c:9a:e4:56:db:be:39:00:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=059E0652FCBAC895061A57FE0566CF353F3E43CA Validity Not Before: May 11 16:36:42 2026 GMT Not After : May 10 16:41:42 2027 GMT Subject: CN=CD907B06AF6BD7133DB9A64348B68DF4596CA6FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:66:3b:5a:6c:d9:13:67:28:5e:51:88:a1:00: aa:58:d2:e4:e3:f4:b9:5a:7f:90:f7:75:7d:02:ea: f7:1e:6c:83:bd:cf:18:db:e3:ad:ad:b5:97:84:d4: c8:a3:2f:c4:36:99:c9:f4:5f:b5:fb:02:eb:39:ea: 50:45:a9:b6:90:4f:6e:c6:d9:c4:8e:e7:ff:9f:ac: e7:30:f8:ca:af:c8:55:6a:b2:6d:aa:16:43:c4:bb: d6:47:78:3b:14:34:62:17:06:33:16:dd:53:28:8b: 2f:23:3d:61:3a:72:59:a0:41:b7:a0:ba:23:e4:14: bd:36:17:63:40:b7:a9:f8:c8:17:f3:dc:89:55:15: fa:b7:9e:db:a1:22:59:9d:86:6a:9e:52:34:b8:be: e5:ac:cc:54:14:ec:ae:f7:69:79:ca:be:4a:3d:ec: b3:5f:32:a0:97:41:ce:67:ab:7f:00:34:74:28:35: 6b:f8:4a:55:9c:f3:c0:ba:c9:c1:45:4f:80:cd:3d: 5d:ba:a0:6f:19:98:e7:7d:95:22:17:c7:01:09:b1: 70:9d:37:16:f1:7c:25:f1:21:f6:f2:78:5c:c9:30: f1:5c:f3:4f:36:8e:f1:f7:5f:c6:50:43:f2:c8:37: 2c:95:50:e8:f3:3e:52:1e:7a:bc:41:90:11:7c:12: 97:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:90:7B:06:AF:6B:D7:13:3D:B9:A6:43:48:B6:8D:F4:59:6C:A6:FB X509v3 Authority Key Identifier: keyid:05:9E:06:52:FC:BA:C8:95:06:1A:57:FE:05:66:CF:35:3F:3E:43:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DENPAIO/0/059E0652FCBAC895061A57FE0566CF353F3E43CA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/059E0652FCBAC895061A57FE0566CF353F3E43CA.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DENPAIO/0/323430333a613263303a3a2f33322d3438203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:a2c0::/32 Signature Algorithm: sha256WithRSAEncryption 9a:2e:48:0b:8a:e9:c1:43:a0:cc:3a:78:45:70:0b:a2:da:6b: 0a:9c:19:80:6f:a3:ef:27:c4:b6:7b:d7:e5:40:aa:27:d0:95: bc:56:e8:a8:0b:cd:5c:49:0c:b9:0e:83:0e:26:31:6a:ec:ca: 9f:6d:ca:c3:a5:0f:04:8e:87:c4:06:85:cf:44:d6:48:65:a0: fd:72:66:95:dc:85:9b:cd:7f:ba:30:d9:a6:fc:76:ae:fb:2a: 60:f6:7f:e4:72:88:2f:3b:e9:23:94:c5:c3:1f:f7:06:3d:67: 5c:7f:69:e7:ad:9a:2a:50:fb:b7:96:a8:fd:bc:f7:de:5f:3d: 80:a1:d9:c2:9d:c2:50:82:71:44:a1:8a:10:68:62:c5:db:9c: 38:d0:ae:0d:54:a6:fc:99:06:ab:6d:d6:f4:f9:b3:d4:ae:8c: a0:6a:4c:10:b3:d7:d1:70:12:c2:d5:d4:c7:79:0e:ea:0a:37: c6:ac:31:e0:ce:98:b3:23:33:17:a8:a3:e3:69:ec:c6:d5:ae: 1b:1c:fc:36:b9:2c:0e:ad:08:39:16:12:cd:31:e0:bb:bf:0e: 17:35:6e:a2:71:31:5b:5f:d6:89:a7:9f:09:24:c1:50:23:ce: 49:ae:e8:26:7f:4e:90:71:f9:34:82:84:71:10:63:57:9e:a6: 2d:95:e7:73 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUbGzkw6ZAX/Q3/2ucmuRW2745AA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDU5RTA2NTJGQ0JBQzg5NTA2MUE1N0ZFMDU2NkNGMzUz RjNFNDNDQTAeFw0yNjA1MTExNjM2NDJaFw0yNzA1MTAxNjQxNDJaMDMxMTAvBgNV BAMTKENEOTA3QjA2QUY2QkQ3MTMzREI5QTY0MzQ4QjY4REY0NTk2Q0E2RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ZjtabNkTZyheUYihAKpY0uTj 9Llaf5D3dX0C6vcebIO9zxjb462ttZeE1MijL8Q2mcn0X7X7Aus56lBFqbaQT27G 2cSO5/+frOcw+MqvyFVqsm2qFkPEu9ZHeDsUNGIXBjMW3VMoiy8jPWE6clmgQbeg uiPkFL02F2NAt6n4yBfz3IlVFfq3ntuhIlmdhmqeUjS4vuWszFQU7K73aXnKvko9 7LNfMqCXQc5nq38ANHQoNWv4SlWc88C6ycFFT4DNPV26oG8ZmOd9lSIXxwEJsXCd NxbxfCXxIfbyeFzJMPFc8082jvH3X8ZQQ/LINyyVUOjzPlIeerxBkBF8Epf3AgMB AAGjggHkMIIB4DAdBgNVHQ4EFgQUzZB7Bq9r1xM9uaZDSLaN9FlspvswHwYDVR0j BBgwFoAUBZ4GUvy6yJUGGlf+BWbPNT8+Q8owDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvREVOUEFJ Ty8wLzA1OUUwNjUyRkNCQUM4OTUwNjFBNTdGRTA1NjZDRjM1M0YzRTQzQ0EuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvMDU5RTA2NTJGQ0JBQzg5NTA2MUE1N0ZFMDU2 NkNGMzUzRjNFNDNDQS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9y c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RFTlBBSU8vMC8zMjM0MzAzMzNh NjEzMjYzMzAzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzMjMwMzQzNzMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAOiwDANBgkqhkiG9w0BAQsFAAOCAQEAmi5IC4rpwUOgzDp4RXALotpr CpwZgG+j7yfEtnvX5UCqJ9CVvFboqAvNXEkMuQ6DDiYxauzKn23Kw6UPBI6HxAaF z0TWSGWg/XJmldyFm81/ujDZpvx2rvsqYPZ/5HKILzvpI5TFwx/3Bj1nXH9p562a KlD7t5ao/bz33l89gKHZwp3CUIJxRKGKEGhixducONCuDVSm/JkGq23W9Pmz1K6M oGpMELPX0XASwtXUx3kO6go3xqwx4M6YsyMzF6ij42nsxtWuGxz8NrksDq0IORYS zTHgu78OFzVuonExW1/WiaefCSTBUCPOSa7oJn9OkHH5NIKEcRBjV56mLZXncw== -----END CERTIFICATE-----Generated at Wed May 13 21:11:22 2026 by rpki-client