$ rpki-client -vvf rpkica.twnic.tw/rpki/JDA/0/323430313a353565303a3a2f33322d3332203d3e203138303431.roa File: 323430313a353565303a3a2f33322d3332203d3e203138303431.roa (raw, json) Hash identifier: qBti13dNoJJvS8VN2rEdP5+tGcjEGWujArPyCZdW53g= Subject key identifier: E1:31:24:DA:3E:6A:C1:27:18:18:C1:17:B5:7B:F8:2F:6E:8A:47:5B Certificate issuer: /CN=3E0842CB09173FD62797099AF95D837AFF05C8C1 Certificate serial: 29155954AE2F6F3F76191B4B33B8D0E71290808F Authority key identifier: 3E:08:42:CB:09:17:3F:D6:27:97:09:9A:F9:5D:83:7A:FF:05:C8:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0842CB09173FD62797099AF95D837AFF05C8C1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/JDA/0/323430313a353565303a3a2f33322d3332203d3e203138303431.roa Signing time: Mon 11 May 2026 17:32:45 +0000 ROA not before: Mon 11 May 2026 17:27:45 +0000 ROA not after: Mon 10 May 2027 17:32:45 +0000 asID: 18041 IP address blocks: 2401:55e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.crl rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0842CB09173FD62797099AF95D837AFF05C8C1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:15:59:54:ae:2f:6f:3f:76:19:1b:4b:33:b8:d0:e7:12:90:80:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0842CB09173FD62797099AF95D837AFF05C8C1 Validity Not Before: May 11 17:27:45 2026 GMT Not After : May 10 17:32:45 2027 GMT Subject: CN=E13124DA3E6AC1271818C117B57BF82F6E8A475B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:d2:74:44:35:2d:7f:06:9b:1c:42:1c:58:ac: 06:0a:33:62:05:bf:7b:a4:3c:21:8f:ad:fb:cd:f4: 27:fc:d2:6c:fe:98:78:18:4d:2d:1f:9c:65:eb:cc: 5f:d1:71:fe:90:2f:14:6b:b6:88:12:7a:7b:68:88: 15:09:df:8d:0d:fa:50:89:76:ec:6d:7c:5d:b9:05: fa:f4:7e:34:1b:c3:58:4f:aa:87:d2:aa:7c:e3:a5: 23:b3:3f:cb:d4:f3:ed:87:7e:9f:d3:7f:38:98:a1: b4:bd:0c:d4:06:ed:e9:44:e0:ce:22:03:b5:5f:a3: 1a:35:89:bf:4f:f3:e5:d4:4f:4b:cf:31:df:4a:aa: 9f:3f:1c:f5:c5:c2:be:1f:67:c0:46:63:d8:29:29: e5:20:b4:47:48:9e:33:41:3f:16:f6:dd:6c:00:40: 05:25:50:4e:7c:83:6e:90:75:01:91:20:f3:ca:e3: d1:e8:ea:60:7d:08:58:49:17:de:1b:58:c5:20:5e: 60:37:e1:cc:9b:22:fb:03:71:b1:16:d7:ad:72:8f: 73:d3:29:7a:5d:78:f9:78:72:46:4d:66:d6:25:7e: be:23:a6:c1:fc:0b:86:de:8e:e8:ba:58:4b:ed:b6: d3:2c:66:47:84:ea:4a:95:01:17:7f:5d:7a:db:0b: 6a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:31:24:DA:3E:6A:C1:27:18:18:C1:17:B5:7B:F8:2F:6E:8A:47:5B X509v3 Authority Key Identifier: keyid:3E:08:42:CB:09:17:3F:D6:27:97:09:9A:F9:5D:83:7A:FF:05:C8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0842CB09173FD62797099AF95D837AFF05C8C1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/JDA/0/323430313a353565303a3a2f33322d3332203d3e203138303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:55e0::/32 Signature Algorithm: sha256WithRSAEncryption 90:3d:c7:5e:14:50:08:f7:57:8d:13:87:f2:d4:db:02:a1:47: f6:a1:21:a2:94:cd:6b:36:79:65:c7:e7:e5:80:65:b7:89:71: 51:2a:34:bd:14:c6:c0:10:76:0b:63:24:b7:ac:39:2b:6e:90: b4:75:db:d8:69:11:a5:69:3c:92:7e:da:1b:b9:ff:7c:a0:31: 77:81:22:af:20:4d:41:ed:5f:71:ec:b2:c6:d3:7d:12:c0:a5: 60:b9:dd:37:bc:15:0f:98:f4:72:b7:8e:aa:ee:c8:da:26:10: 4c:14:20:86:11:5b:ea:f1:64:71:ed:22:37:35:96:c8:ca:32: 71:90:dd:ac:f2:96:8c:ec:d2:4b:0a:7b:84:a5:e5:de:71:84: 48:af:45:b8:c6:b8:a2:7c:b8:0b:1e:2a:33:cd:4d:b9:b3:b4: 8a:e4:67:fe:10:5d:2d:26:78:5c:9d:a6:b9:bd:55:fe:f8:4c: 3e:a2:6b:c1:75:e8:a6:eb:31:bd:0b:ab:7f:1f:57:8d:0e:f3: 70:76:34:2c:11:42:cf:b4:74:2c:77:5e:22:87:16:71:a8:6a: b9:27:2a:1d:4c:a4:6f:85:49:67:5c:cb:f2:f9:77:db:2c:0d: 8b:5e:bb:65:97:46:86:59:6f:22:ad:0c:a7:3e:02:90:2d:35: 74:52:a7:2e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKRVZVK4vbz92GRtLM7jQ5xKQgI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwODQyQ0IwOTE3M0ZENjI3OTcwOTlBRjk1RDgzN0FG RjA1QzhDMTAeFw0yNjA1MTExNzI3NDVaFw0yNzA1MTAxNzMyNDVaMDMxMTAvBgNV BAMTKEUxMzEyNERBM0U2QUMxMjcxODE4QzExN0I1N0JGODJGNkU4QTQ3NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCR0nRENS1/BpscQhxYrAYKM2IF v3ukPCGPrfvN9Cf80mz+mHgYTS0fnGXrzF/Rcf6QLxRrtogSentoiBUJ340N+lCJ duxtfF25Bfr0fjQbw1hPqofSqnzjpSOzP8vU8+2Hfp/TfziYobS9DNQG7elE4M4i A7Vfoxo1ib9P8+XUT0vPMd9Kqp8/HPXFwr4fZ8BGY9gpKeUgtEdInjNBPxb23WwA QAUlUE58g26QdQGRIPPK49Ho6mB9CFhJF94bWMUgXmA34cybIvsDcbEW161yj3PT KXpdePl4ckZNZtYlfr4jpsH8C4bejui6WEvtttMsZkeE6kqVARd/XXrbC2oBAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQU4TEk2j5qwScYGMEXtXv4L26KR1swHwYDVR0j BBgwFoAUPghCywkXP9Ynlwma+V2Dev8FyMEwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSkRBLzAv M0UwODQyQ0IwOTE3M0ZENjI3OTcwOTlBRjk1RDgzN0FGRjA1QzhDMS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8zRTA4NDJDQjA5MTczRkQ2Mjc5NzA5OUFGOTVEODM3 QUZGMDVDOEMxLmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSkRBLzAvMzIzNDMwMzEzYTM1MzU2NTMw M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzEzODMwMzQzMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQB VeAwDQYJKoZIhvcNAQELBQADggEBAJA9x14UUAj3V40Th/LU2wKhR/ahIaKUzWs2 eWXH5+WAZbeJcVEqNL0UxsAQdgtjJLesOStukLR129hpEaVpPJJ+2hu5/3ygMXeB Iq8gTUHtX3HsssbTfRLApWC53Te8FQ+Y9HK3jqruyNomEEwUIIYRW+rxZHHtIjc1 lsjKMnGQ3azylozs0ksKe4Sl5d5xhEivRbjGuKJ8uAseKjPNTbmztIrkZ/4QXS0m eFydprm9Vf74TD6ia8F16KbrMb0Lq38fV40O83B2NCwRQs+0dCx3XiKHFnGoarkn Kh1MpG+FSWdcy/L5d9ssDYteu2WXRoZZbyKtDKc+ApAtNXRSpy4= -----END CERTIFICATE-----Generated at Wed May 13 21:09:17 2026 by rpki-client