$ rpki-client -vvf rpkica.twnic.tw/rpki/DONGFONG/0/323430313a313738303a3a2f33322d3438203d3e203138303436.roa File: 323430313a313738303a3a2f33322d3438203d3e203138303436.roa (raw, json) Hash identifier: 0EFkqKD7ENQj+JBIgZG7N70LecdiL6GqV21vyg7+bY4= Subject key identifier: 2F:32:AC:6C:82:07:69:12:0D:4C:AD:A0:41:66:57:C5:54:0A:21:75 Certificate issuer: /CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D Certificate serial: 1AC2054D59EE353D7C550F0A9FB576D7E8478D32 Authority key identifier: B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DONGFONG/0/323430313a313738303a3a2f33322d3438203d3e203138303436.roa Signing time: Mon 11 May 2026 17:38:43 +0000 ROA not before: Mon 11 May 2026 17:33:43 +0000 ROA not after: Mon 10 May 2027 17:38:43 +0000 asID: 18046 IP address blocks: 2401:1780::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DONGFONG/0/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.crl rsync://rpkica.twnic.tw/rpki/DONGFONG/0/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c2:05:4d:59:ee:35:3d:7c:55:0f:0a:9f:b5:76:d7:e8:47:8d:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D Validity Not Before: May 11 17:33:43 2026 GMT Not After : May 10 17:38:43 2027 GMT Subject: CN=2F32AC6C820769120D4CADA0416657C5540A2175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:73:bc:6d:34:86:aa:1e:57:2f:97:9e:54:d3: 52:3b:ec:66:a3:89:47:51:11:84:4b:50:ae:dd:36: e5:c7:1e:57:cc:1c:48:60:78:09:f7:25:80:98:64: 17:dc:a4:6a:1a:fe:72:27:53:c4:54:27:f2:47:01: 46:95:ed:f9:2c:49:d3:d5:84:85:07:29:53:05:d8: aa:54:cf:ca:5b:f1:a4:95:3b:90:2a:b2:98:84:dc: a1:8a:3b:d3:07:c2:ea:34:a5:5d:b8:b7:00:11:0a: 62:f8:f8:60:5e:d8:03:fa:cb:c6:7e:5c:51:70:25: 7c:93:84:4f:90:7b:76:c6:98:4c:9f:5b:1d:7b:1b: e5:50:4e:d0:b8:11:c2:30:c5:3e:ed:a9:33:9f:2c: 82:12:82:c8:9d:93:12:59:25:62:a2:83:5d:8f:2d: 63:a6:71:43:be:d7:3a:6f:0a:1d:d6:bb:68:50:25: 49:ba:46:b8:1d:52:f7:d4:bf:e6:2d:36:70:4d:b4: 46:ac:98:a2:8a:9a:e1:16:ba:0d:b0:c9:cd:8b:65: a1:e0:d5:b4:8b:59:8c:3d:b1:6d:03:57:0f:8e:4b: bf:37:90:26:c9:ad:d9:df:56:42:fc:ce:48:c5:3f: 71:37:c4:49:7e:34:4b:fb:b5:c1:1e:19:91:da:69: 74:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:32:AC:6C:82:07:69:12:0D:4C:AD:A0:41:66:57:C5:54:0A:21:75 X509v3 Authority Key Identifier: keyid:B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/323430313a313738303a3a2f33322d3438203d3e203138303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1780::/32 Signature Algorithm: sha256WithRSAEncryption 5c:4d:be:e3:68:a8:ad:95:e1:78:8f:b7:1e:78:2b:e0:e5:41: c2:b4:24:10:d4:07:c3:62:fa:56:4f:c3:ca:30:9b:c8:3f:fa: 99:17:75:6f:ba:88:78:1d:59:13:53:28:d0:6f:ba:7e:0a:e8: 54:c3:e7:ff:45:c9:d7:19:ea:b7:24:3b:56:3d:d0:13:aa:6c: e9:82:8f:25:08:bc:c4:b9:a4:b5:ad:28:00:a0:bf:69:3c:78: 7b:00:41:94:17:a1:d7:1f:ba:1a:3d:ed:4d:e1:f7:f2:8d:92: 1b:80:df:82:f5:51:a8:2a:5f:b1:6f:c8:91:3f:0e:8d:65:de: 2e:e9:d0:fc:4d:c2:44:98:67:d0:0e:a2:69:6b:d0:df:9c:90: a3:42:e5:78:a8:ae:ce:bb:cf:20:bb:b1:cb:ad:91:35:e3:e2: 3d:ae:1d:5e:0b:8a:96:7a:e7:31:d9:68:89:60:e9:62:52:74: 67:eb:4e:db:ca:52:81:32:65:8f:d5:9d:00:08:78:16:d7:8b: 84:da:68:08:79:0b:79:66:61:00:c9:50:3b:82:47:e8:5f:09: 34:f7:16:2b:50:0a:a3:b2:a3:92:5e:e8:0d:d7:f1:b6:e0:29: f3:6c:cb:18:03:35:97:7a:b5:4c:38:4e:5b:92:74:a9:fe:f0: d0:65:0e:2b -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUGsIFTVnuNT18VQ8Kn7V21+hHjTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQwN0M4QjhGQUIyQUY3ODVFNDQ5RjY5NTlBMzQzQzEx RjNDMkY3RDAeFw0yNjA1MTExNzMzNDNaFw0yNzA1MTAxNzM4NDNaMDMxMTAvBgNV BAMTKDJGMzJBQzZDODIwNzY5MTIwRDRDQURBMDQxNjY1N0M1NTQwQTIxNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRc7xtNIaqHlcvl55U01I77Gaj iUdREYRLUK7dNuXHHlfMHEhgeAn3JYCYZBfcpGoa/nInU8RUJ/JHAUaV7fksSdPV hIUHKVMF2KpUz8pb8aSVO5AqspiE3KGKO9MHwuo0pV24twARCmL4+GBe2AP6y8Z+ XFFwJXyThE+Qe3bGmEyfWx17G+VQTtC4EcIwxT7tqTOfLIISgsidkxJZJWKig12P LWOmcUO+1zpvCh3Wu2hQJUm6RrgdUvfUv+YtNnBNtEasmKKKmuEWug2wyc2LZaHg 1bSLWYw9sW0DVw+OS783kCbJrdnfVkL8zkjFP3E3xEl+NEv7tcEeGZHaaXQlAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQULzKsbIIHaRINTK2gQWZXxVQKIXUwHwYDVR0j BBgwFoAUtAfIuPqyr3heRJ9pWaNDwR88L30wDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9OR0ZP TkcvMC9CNDA3QzhCOEZBQjJBRjc4NUU0NDlGNjk1OUEzNDNDMTFGM0MyRjdELmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xL0I0MDdDOEI4RkFCMkFGNzg1RTQ0OUY2OTU5 QTM0M0MxMUYzQzJGN0QuY2VyMHwGCCsGAQUFBwELBHAwbjBsBggrBgEFBQcwC4Zg cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ET05HRk9ORy8wLzMyMzQzMDMx M2EzMTM3MzgzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMxMzgzMDM0MzYucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAReAMA0GCSqGSIb3DQEBCwUAA4IBAQBcTb7jaKitleF4j7ceeCvg 5UHCtCQQ1AfDYvpWT8PKMJvIP/qZF3Vvuoh4HVkTUyjQb7p+CuhUw+f/RcnXGeq3 JDtWPdATqmzpgo8lCLzEuaS1rSgAoL9pPHh7AEGUF6HXH7oaPe1N4ffyjZIbgN+C 9VGoKl+xb8iRPw6NZd4u6dD8TcJEmGfQDqJpa9DfnJCjQuV4qK7Ou88gu7HLrZE1 4+I9rh1eC4qWeucx2WiJYOliUnRn607bylKBMmWP1Z0ACHgW14uE2mgIeQt5ZmEA yVA7gkfoXwk09xYrUAqjsqOSXugN1/G24CnzbMsYAzWXerVMOE5bknSp/vDQZQ4r -----END CERTIFICATE-----Generated at Wed May 13 21:09:27 2026 by rpki-client