$ rpki-client -vvf rpkica.twnic.tw/rpki/DYXNET/0/323430333a656530303a3a2f33322d3536203d3e2039323434.roa File: 323430333a656530303a3a2f33322d3536203d3e2039323434.roa (raw, json) Hash identifier: 3xt+0tfS9ZpseLYoRn7kbI8U4wMAyjKAyApcX78rnyU= Subject key identifier: 49:BB:E8:E0:C8:7C:EC:08:BB:AB:18:1B:DA:1C:46:FC:F5:B5:9F:1E Certificate issuer: /CN=157D536924EE6C5A7711625C6906CB5139BE6605 Certificate serial: 09C13ABAD98EC8FC2B873690B84BF286800EB2D7 Authority key identifier: 15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DYXNET/0/323430333a656530303a3a2f33322d3536203d3e2039323434.roa Signing time: Mon 11 May 2026 17:57:31 +0000 ROA not before: Mon 11 May 2026 17:52:31 +0000 ROA not after: Mon 10 May 2027 17:57:31 +0000 asID: 9244 IP address blocks: 2403:ee00::/32 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:c1:3a:ba:d9:8e:c8:fc:2b:87:36:90:b8:4b:f2:86:80:0e:b2:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157D536924EE6C5A7711625C6906CB5139BE6605 Validity Not Before: May 11 17:52:31 2026 GMT Not After : May 10 17:57:31 2027 GMT Subject: CN=49BBE8E0C87CEC08BBAB181BDA1C46FCF5B59F1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8a:91:64:61:d9:ae:ad:e6:84:c6:ec:b9:81: be:cc:42:af:b2:84:73:e2:eb:ae:c7:e8:0c:90:c4: 56:2d:06:61:22:d1:08:e0:f4:4f:0d:f5:57:10:d0: 49:0e:fa:fe:38:4a:d8:27:04:4e:c6:c6:80:96:4a: 6a:aa:d4:11:79:21:c6:6d:0a:f8:79:4d:93:c3:3c: 6c:41:88:89:ae:09:11:5c:b0:91:f4:39:45:3c:af: 4d:66:2d:74:e2:02:17:13:68:4d:16:1f:3d:41:bb: d4:18:3e:61:e6:e2:1f:63:5d:29:2d:fb:28:72:47: dd:4a:ce:6c:44:49:1c:38:8b:08:0e:17:5a:8f:0c: 73:2e:4f:64:11:b2:f4:7c:c6:5e:60:6b:2b:be:f7: 7d:1d:ec:4c:c8:6c:8c:a3:a6:be:7d:f2:c7:82:e3: 3c:6c:99:79:6d:9a:29:31:2b:85:79:44:78:33:50: 27:bb:34:10:09:b7:9e:cb:3c:71:db:78:45:97:6b: 38:98:4c:f6:8a:8b:84:ec:f0:31:d4:fa:3d:e9:00: 13:81:5d:30:55:c8:a5:02:08:9a:7f:4e:5c:20:94: 2e:f9:fb:31:7c:ff:37:24:c1:28:30:9e:e1:f8:22: fc:f5:c6:54:35:7b:3c:34:8a:13:44:95:75:47:f6: e6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:BB:E8:E0:C8:7C:EC:08:BB:AB:18:1B:DA:1C:46:FC:F5:B5:9F:1E X509v3 Authority Key Identifier: keyid:15:7D:53:69:24:EE:6C:5A:77:11:62:5C:69:06:CB:51:39:BE:66:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/157D536924EE6C5A7711625C6906CB5139BE6605.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/157D536924EE6C5A7711625C6906CB5139BE6605.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DYXNET/0/323430333a656530303a3a2f33322d3536203d3e2039323434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ee00::/32 Signature Algorithm: sha256WithRSAEncryption 1d:ff:79:44:49:53:7c:96:b4:04:b7:33:28:a5:ad:a9:5c:8b: 86:37:3e:8b:b6:62:f3:d8:bc:3a:3f:97:42:2b:28:a6:6c:9b: 92:f9:64:ef:b9:f6:fc:86:65:e9:09:c6:d1:c6:69:4a:8e:38: 7d:90:47:3d:35:5d:7f:eb:1d:b5:8f:db:3e:3e:c7:68:14:f6: 0b:e8:c2:9d:67:dd:b1:4d:11:09:1e:a1:d2:37:2f:45:7a:1c: bb:8a:4b:2f:57:1e:30:e1:1d:d7:29:78:da:f1:1b:8e:90:62: 1b:ec:9d:ed:6b:23:3b:fc:ce:bf:4d:a2:42:c9:f8:6d:34:0f: ae:18:9c:5d:46:ff:ee:ce:59:4d:ae:9d:2d:3f:b8:37:97:3d: ac:ce:fe:d4:87:50:66:18:a1:bd:c8:81:d9:44:8e:27:c2:80: fb:b7:c4:9d:ed:aa:57:8c:39:24:15:a7:6a:3a:97:01:22:05: da:d2:ac:9f:16:02:cd:cc:ad:90:f5:a2:f1:d2:30:8d:03:28: 19:7f:15:d3:c3:42:73:86:b1:1b:7d:c1:6f:18:1b:14:70:e0: f3:d3:c2:5f:89:75:e0:2c:55:50:cc:e7:63:63:6f:51:c8:cc: a4:6d:00:20:1b:3d:9b:13:83:b0:11:c5:87:15:b8:f0:77:60: 4d:28:26:20 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUCcE6utmOyPwrhzaQuEvyhoAOstcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEz OUJFNjYwNTAeFw0yNjA1MTExNzUyMzFaFw0yNzA1MTAxNzU3MzFaMDMxMTAvBgNV BAMTKDQ5QkJFOEUwQzg3Q0VDMDhCQkFCMTgxQkRBMUM0NkZDRjVCNTlGMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLipFkYdmureaExuy5gb7MQq+y hHPi667H6AyQxFYtBmEi0Qjg9E8N9VcQ0EkO+v44StgnBE7GxoCWSmqq1BF5IcZt Cvh5TZPDPGxBiImuCRFcsJH0OUU8r01mLXTiAhcTaE0WHz1Bu9QYPmHm4h9jXSkt +yhyR91KzmxESRw4iwgOF1qPDHMuT2QRsvR8xl5gayu+930d7EzIbIyjpr598seC 4zxsmXltmikxK4V5RHgzUCe7NBAJt57LPHHbeEWXaziYTPaKi4Ts8DHU+j3pABOB XTBVyKUCCJp/TlwglC75+zF8/zckwSgwnuH4Ivz1xlQ1ezw0ihNElXVH9uZZAgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQUSbvo4Mh87Ai7qxgb2hxG/PW1nx4wHwYDVR0j BBgwFoAUFX1TaSTubFp3EWJcaQbLUTm+ZgUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVU LzAvMTU3RDUzNjkyNEVFNkM1QTc3MTE2MjVDNjkwNkNCNTEzOUJFNjYwNS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8xNTdENTM2OTI0RUU2QzVBNzcxMTYyNUM2OTA2 Q0I1MTM5QkU2NjA1LmNlcjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFlYTkVULzAvMzIzNDMwMzMzYTY1 NjUzMDMwM2EzYTJmMzMzMjJkMzUzNjIwM2QzZTIwMzkzMjM0MzQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkA+4AMA0GCSqGSIb3DQEBCwUAA4IBAQAd/3lESVN8lrQEtzMopa2pXIuGNz6L tmLz2Lw6P5dCKyimbJuS+WTvufb8hmXpCcbRxmlKjjh9kEc9NV1/6x21j9s+Psdo FPYL6MKdZ92xTREJHqHSNy9Fehy7iksvVx4w4R3XKXja8RuOkGIb7J3tayM7/M6/ TaJCyfhtNA+uGJxdRv/uzllNrp0tP7g3lz2szv7Uh1BmGKG9yIHZRI4nwoD7t8Sd 7apXjDkkFadqOpcBIgXa0qyfFgLNzK2Q9aLx0jCNAygZfxXTw0JzhrEbfcFvGBsU cODz08JfiXXgLFVQzOdjY29RyMykbQAgGz2bE4OwEcWHFbjwd2BNKCYg -----END CERTIFICATE-----Generated at Wed May 13 21:10:46 2026 by rpki-client