$ rpki-client -vvf rpkica.twnic.tw/rpki/GRONEXT/0/323430353a613034303a3a2f33322d3336203d3e20313331363637.roa File: 323430353a613034303a3a2f33322d3336203d3e20313331363637.roa (raw, json) Hash identifier: w3hpJj+HoeJno1FTJaaLoGf0DFxePbcn5GPTViDGefQ= Subject key identifier: EA:01:15:26:F4:B8:CC:AF:BE:82:3B:44:C4:D1:99:3B:3B:7F:3B:79 Certificate issuer: /CN=2164D19A626FF5A4327CAFC8B83F9397B8A1487E Certificate serial: 7106CE596ED12C1AF00A259DE03337CB0225B88F Authority key identifier: 21:64:D1:9A:62:6F:F5:A4:32:7C:AF:C8:B8:3F:93:97:B8:A1:48:7E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GRONEXT/0/323430353a613034303a3a2f33322d3336203d3e20313331363637.roa Signing time: Mon 11 May 2026 17:09:24 +0000 ROA not before: Mon 11 May 2026 17:04:24 +0000 ROA not after: Mon 10 May 2027 17:09:24 +0000 asID: 131667 IP address blocks: 2405:a040::/32 maxlen: 36 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GRONEXT/0/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.crl rsync://rpkica.twnic.tw/rpki/GRONEXT/0/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:06:ce:59:6e:d1:2c:1a:f0:0a:25:9d:e0:33:37:cb:02:25:b8:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2164D19A626FF5A4327CAFC8B83F9397B8A1487E Validity Not Before: May 11 17:04:24 2026 GMT Not After : May 10 17:09:24 2027 GMT Subject: CN=EA011526F4B8CCAFBE823B44C4D1993B3B7F3B79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:44:c4:bc:52:f8:8c:ca:76:12:8e:8e:98: 6d:ce:54:9e:9e:7b:71:eb:1f:91:29:28:9f:46:2e: c2:99:d5:ae:58:28:8f:71:8d:4a:23:48:18:bd:2c: 29:4d:db:90:08:ff:09:a1:5d:3f:7b:93:64:5a:ce: 67:86:c5:78:62:5f:d1:ea:f7:a3:32:da:46:62:67: 47:e5:39:4f:da:92:bd:45:e7:7e:9e:87:64:bd:7d: 28:ac:7a:62:9b:7d:26:e1:1f:a0:06:48:1e:3b:04: 3c:16:84:90:6f:fb:1e:50:40:44:fa:fe:64:54:c3: 87:c8:a8:ad:a0:fb:d7:03:34:5d:5f:9a:97:23:12: 44:51:03:26:8f:c1:96:f4:ec:5e:87:86:df:95:79: e7:7b:3d:98:ee:4c:5f:7c:5f:87:7c:0d:08:d9:65: 77:15:36:b9:c9:a8:a7:8a:93:f7:1e:b0:3e:57:5a: 4a:7c:d5:d4:d7:ce:c9:ce:74:27:0d:0f:c3:a9:6a: 41:5c:94:56:71:50:c1:da:7f:ab:06:e5:44:a3:39: aa:4d:65:ae:9a:64:f2:09:b7:7f:74:e2:57:4e:5e: 72:15:3d:e9:1a:03:6d:4e:44:f0:8b:5d:e8:ca:f8: b6:93:8b:e9:dd:9e:f3:af:26:78:c0:9a:b4:53:7a: 39:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:01:15:26:F4:B8:CC:AF:BE:82:3B:44:C4:D1:99:3B:3B:7F:3B:79 X509v3 Authority Key Identifier: keyid:21:64:D1:9A:62:6F:F5:A4:32:7C:AF:C8:B8:3F:93:97:B8:A1:48:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GRONEXT/0/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GRONEXT/0/323430353a613034303a3a2f33322d3336203d3e20313331363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a040::/32 Signature Algorithm: sha256WithRSAEncryption 90:02:0e:7c:3b:72:3b:a8:01:39:df:8c:0e:bd:af:27:9d:00: e0:c1:15:f1:0d:da:1e:d7:f1:63:18:91:55:34:e6:55:45:ee: 9b:9a:c6:ab:aa:82:f5:2f:39:5b:89:e7:ea:61:27:10:53:51: 29:55:88:01:5e:b1:05:99:b4:be:fb:33:da:c2:b4:07:82:70: 83:ca:4c:f9:b4:2c:21:0f:8c:41:85:52:47:4d:e6:cf:ba:8f: e5:d5:b5:2d:fe:2a:36:c0:e4:bf:4f:d7:06:80:a0:4e:e7:3d: 55:ac:ce:fa:9f:8e:5a:26:1b:29:d9:61:d2:3f:21:f5:c2:cd: 7c:ee:76:95:85:33:2d:0e:b1:97:1d:34:9f:27:fe:87:ac:df: b0:e5:a4:eb:c3:ca:b4:90:c7:35:07:95:47:43:55:3c:f0:29: b2:b2:ae:81:98:11:bf:58:78:8e:f7:f0:2d:d9:67:23:48:ba: 01:e6:fe:02:cd:36:87:44:e4:1e:0b:74:c5:6b:14:24:fe:88: b4:75:30:55:ec:1a:74:4a:72:cc:0b:46:d1:d5:e5:29:37:40: e2:42:40:b1:1c:90:47:38:ea:52:3d:dd:18:85:85:fc:6a:7b: d8:62:ae:1c:e6:e6:61:82:57:81:fc:d7:46:30:f6:f5:b1:65: f0:ef:8a:88 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUcQbOWW7RLBrwCiWd4DM3ywIluI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE2NEQxOUE2MjZGRjVBNDMyN0NBRkM4QjgzRjkzOTdC OEExNDg3RTAeFw0yNjA1MTExNzA0MjRaFw0yNzA1MTAxNzA5MjRaMDMxMTAvBgNV BAMTKEVBMDExNTI2RjRCOENDQUZCRTgyM0I0NEM0RDE5OTNCM0I3RjNCNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAN0TEvFL4jMp2Eo6OmG3OVJ6e e3HrH5EpKJ9GLsKZ1a5YKI9xjUojSBi9LClN25AI/wmhXT97k2RazmeGxXhiX9Hq 96My2kZiZ0flOU/akr1F536eh2S9fSisemKbfSbhH6AGSB47BDwWhJBv+x5QQET6 /mRUw4fIqK2g+9cDNF1fmpcjEkRRAyaPwZb07F6Hht+Veed7PZjuTF98X4d8DQjZ ZXcVNrnJqKeKk/cesD5XWkp81dTXzsnOdCcND8OpakFclFZxUMHaf6sG5USjOapN Za6aZPIJt3904ldOXnIVPekaA21ORPCLXejK+LaTi+ndnvOvJnjAmrRTejkzAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQU6gEVJvS4zK++gjtExNGZOzt/O3kwHwYDVR0j BBgwFoAUIWTRmmJv9aQyfK/IuD+Tl7ihSH4wDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1JPTkVY VC8wLzIxNjREMTlBNjI2RkY1QTQzMjdDQUZDOEI4M0Y5Mzk3QjhBMTQ4N0UuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvMjE2NEQxOUE2MjZGRjVBNDMyN0NBRkM4Qjgz RjkzOTdCOEExNDg3RS5jZXIwfQYIKwYBBQUHAQsEcTBvMG0GCCsGAQUFBzALhmFy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0dST05FWFQvMC8zMjM0MzAzNTNh NjEzMDM0MzAzYTNhMmYzMzMyMmQzMzM2MjAzZDNlMjAzMTMzMzEzNjM2Mzcucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkBaBAMA0GCSqGSIb3DQEBCwUAA4IBAQCQAg58O3I7qAE534wOva8n nQDgwRXxDdoe1/FjGJFVNOZVRe6bmsarqoL1LzlbiefqYScQU1EpVYgBXrEFmbS+ +zPawrQHgnCDykz5tCwhD4xBhVJHTebPuo/l1bUt/io2wOS/T9cGgKBO5z1VrM76 n45aJhsp2WHSPyH1ws187naVhTMtDrGXHTSfJ/6HrN+w5aTrw8q0kMc1B5VHQ1U8 8Cmysq6BmBG/WHiO9/At2WcjSLoB5v4CzTaHROQeC3TFaxQk/oi0dTBV7Bp0SnLM C0bR1eUpN0DiQkCxHJBHOOpSPd0YhYX8anvYYq4c5uZhgleB/NdGMPb1sWXw74qI -----END CERTIFICATE-----Generated at Wed May 13 21:48:38 2026 by rpki-client