$ rpki-client -vvf rpkica.twnic.tw/rpki/GIGABYTE/0/323430333a623763303a3a2f33322d3332203d3e20313331363633.roa File: 323430333a623763303a3a2f33322d3332203d3e20313331363633.roa (raw, json) Hash identifier: Mt8YVfAFEz60eNMhlP46Ju7thmG6SaKiJ1M/RQIpa58= Subject key identifier: BA:13:19:81:01:E9:80:8C:16:90:3C:25:8E:74:7D:4F:7E:3E:3F:E0 Certificate issuer: /CN=208C9AF2E59EAA30DB13E50969BD866B673DAB68 Certificate serial: 11547A04D60256DDDF53533231F1CE72CC08FBE7 Authority key identifier: 20:8C:9A:F2:E5:9E:AA:30:DB:13:E5:09:69:BD:86:6B:67:3D:AB:68 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/208C9AF2E59EAA30DB13E50969BD866B673DAB68.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GIGABYTE/0/323430333a623763303a3a2f33322d3332203d3e20313331363633.roa Signing time: Mon 11 May 2026 17:09:21 +0000 ROA not before: Mon 11 May 2026 17:04:21 +0000 ROA not after: Mon 10 May 2027 17:09:21 +0000 asID: 131663 IP address blocks: 2403:b7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GIGABYTE/0/208C9AF2E59EAA30DB13E50969BD866B673DAB68.crl rsync://rpkica.twnic.tw/rpki/GIGABYTE/0/208C9AF2E59EAA30DB13E50969BD866B673DAB68.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/208C9AF2E59EAA30DB13E50969BD866B673DAB68.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:54:7a:04:d6:02:56:dd:df:53:53:32:31:f1:ce:72:cc:08:fb:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=208C9AF2E59EAA30DB13E50969BD866B673DAB68 Validity Not Before: May 11 17:04:21 2026 GMT Not After : May 10 17:09:21 2027 GMT Subject: CN=BA13198101E9808C16903C258E747D4F7E3E3FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a5:59:0f:cf:6a:06:98:98:cf:7c:7c:1a:2e: 12:ed:b7:de:44:4a:eb:1f:81:57:2b:41:f4:05:0e: 6b:0a:ef:ee:ef:ee:d9:3b:bb:12:a9:d8:29:1a:8c: b2:bb:c8:0c:6f:d8:96:41:50:bd:8c:b8:34:7b:a6: 0e:e7:52:ac:1a:a4:46:fc:be:f8:1c:45:c9:f1:52: c1:37:d9:15:b6:f6:79:d7:e3:3e:24:7f:a0:01:f2: 1c:77:cd:c4:06:1d:ac:9c:fe:f3:df:1f:f9:1a:cd: 1e:a8:1c:0f:3a:dd:42:c4:38:45:99:1e:a0:1e:20: 1f:79:b5:43:93:78:30:83:76:c5:63:dc:f2:3b:73: 1a:da:d1:c0:05:36:47:33:93:c1:59:d9:8e:e8:04: 0c:85:4a:21:dd:ea:dc:1c:63:33:ce:e1:bd:7f:d0: 17:76:70:64:37:d5:5c:be:04:e1:1e:a4:b9:41:ac: ef:64:8b:7d:35:ce:16:ba:57:b4:9f:e1:44:8e:dc: e9:d7:dd:0e:a3:4c:0c:3b:b3:8a:4a:75:cd:55:58: 00:02:f1:05:24:b6:c2:59:88:5d:fd:0e:10:df:c4: 2a:5b:ae:82:31:64:68:5f:a8:87:6a:38:98:68:34: 95:63:0a:16:79:6c:cf:48:38:ce:67:fa:7a:11:04: dc:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:13:19:81:01:E9:80:8C:16:90:3C:25:8E:74:7D:4F:7E:3E:3F:E0 X509v3 Authority Key Identifier: keyid:20:8C:9A:F2:E5:9E:AA:30:DB:13:E5:09:69:BD:86:6B:67:3D:AB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GIGABYTE/0/208C9AF2E59EAA30DB13E50969BD866B673DAB68.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/208C9AF2E59EAA30DB13E50969BD866B673DAB68.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GIGABYTE/0/323430333a623763303a3a2f33322d3332203d3e20313331363633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b7c0::/32 Signature Algorithm: sha256WithRSAEncryption 61:c7:b8:b3:03:1c:c0:b9:8c:c0:0e:fc:ad:45:a0:49:2a:4b: ff:94:b5:45:ce:3a:a2:22:5e:5d:51:28:41:fd:29:0f:d3:93: 27:56:5c:33:e3:b5:6d:0e:b4:aa:50:b3:9c:c9:c3:d6:b3:30: 50:41:f1:02:65:69:78:10:ce:35:34:de:32:1d:51:de:ae:3a: af:fd:84:dd:db:a5:b7:92:cf:e9:45:e4:33:0f:78:7d:e7:ce: ed:5f:81:2a:02:bf:75:89:d9:ca:f1:31:e6:db:73:4f:2e:09: e7:c6:76:24:d8:e2:41:30:b3:ee:f8:09:cc:20:28:e0:f5:76: 2a:de:57:c2:32:3b:b7:e3:4f:6d:64:20:91:5f:c5:9a:16:09: 7a:25:ac:d3:b1:93:d1:52:67:4c:c2:73:ef:f4:64:b8:2f:b7: e5:0f:79:76:d9:1b:47:ee:3d:60:9f:e5:b7:ab:8e:dc:33:2f: b4:b9:96:be:09:f2:69:3c:45:32:57:06:e9:21:76:35:75:b6: 81:f9:c1:ea:2a:c5:4e:2f:24:78:7b:1d:c6:1b:06:e2:ec:d7: 6a:a0:72:57:f7:7b:f4:88:ae:ab:6c:ae:2e:19:10:11:7e:10: 91:5b:84:8b:a0:71:cc:1e:77:49:5c:df:5b:24:e7:40:c3:ca: 9d:b2:9c:42 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUEVR6BNYCVt3fU1MyMfHOcswI++cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA4QzlBRjJFNTlFQUEzMERCMTNFNTA5NjlCRDg2NkI2 NzNEQUI2ODAeFw0yNjA1MTExNzA0MjFaFw0yNzA1MTAxNzA5MjFaMDMxMTAvBgNV BAMTKEJBMTMxOTgxMDFFOTgwOEMxNjkwM0MyNThFNzQ3RDRGN0UzRTNGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFpVkPz2oGmJjPfHwaLhLtt95E SusfgVcrQfQFDmsK7+7v7tk7uxKp2CkajLK7yAxv2JZBUL2MuDR7pg7nUqwapEb8 vvgcRcnxUsE32RW29nnX4z4kf6AB8hx3zcQGHayc/vPfH/kazR6oHA863ULEOEWZ HqAeIB95tUOTeDCDdsVj3PI7cxra0cAFNkczk8FZ2Y7oBAyFSiHd6twcYzPO4b1/ 0Bd2cGQ31Vy+BOEepLlBrO9ki301zha6V7Sf4USO3OnX3Q6jTAw7s4pKdc1VWAAC 8QUktsJZiF39DhDfxCpbroIxZGhfqIdqOJhoNJVjChZ5bM9IOM5n+noRBNzVAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUuhMZgQHpgIwWkDwljnR9T34+P+AwHwYDVR0j BBgwFoAUIIya8uWeqjDbE+UJab2Ga2c9q2gwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR0lHQUJZ VEUvMC8yMDhDOUFGMkU1OUVBQTMwREIxM0U1MDk2OUJEODY2QjY3M0RBQjY4LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzIwOEM5QUYyRTU5RUFBMzBEQjEzRTUwOTY5 QkQ4NjZCNjczREFCNjguY2VyMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcwC4Zi cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HSUdBQllURS8wLzMyMzQzMDMz M2E2MjM3NjMzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzMzMTM2MzYzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQDt8AwDQYJKoZIhvcNAQELBQADggEBAGHHuLMDHMC5jMAO/K1F oEkqS/+UtUXOOqIiXl1RKEH9KQ/TkydWXDPjtW0OtKpQs5zJw9azMFBB8QJlaXgQ zjU03jIdUd6uOq/9hN3bpbeSz+lF5DMPeH3nzu1fgSoCv3WJ2crxMebbc08uCefG diTY4kEws+74CcwgKOD1direV8IyO7fjT21kIJFfxZoWCXolrNOxk9FSZ0zCc+/0 ZLgvt+UPeXbZG0fuPWCf5berjtwzL7S5lr4J8mk8RTJXBukhdjV1toH5weoqxU4v JHh7HcYbBuLs12qgclf3e/SIrqtsri4ZEBF+EJFbhIugccwed0lc31sk50DDyp2y nEI= -----END CERTIFICATE-----Generated at Wed May 13 21:12:19 2026 by rpki-client