$ rpki-client -vvf rpkica.twnic.tw/rpki/KANRAYS/0/323430323a343932303a3a2f33322d3438203d3e203138303434.roa File: 323430323a343932303a3a2f33322d3438203d3e203138303434.roa (raw, json) Hash identifier: w+sTaFe8OsYZPZPjwuyvLTqcXmP0CcIo8Vy8833aYz8= Subject key identifier: F3:B7:2C:52:9C:5A:1B:42:35:95:2D:9A:0E:51:D7:65:5C:2F:B9:AD Certificate issuer: /CN=56C0B74262A19F328983C278635DE9570AFEB948 Certificate serial: 2755B143E1A59AF2A5DAAA8D3A80C840B9EDA7F9 Authority key identifier: 56:C0:B7:42:62:A1:9F:32:89:83:C2:78:63:5D:E9:57:0A:FE:B9:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56C0B74262A19F328983C278635DE9570AFEB948.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KANRAYS/0/323430323a343932303a3a2f33322d3438203d3e203138303434.roa Signing time: Mon 11 May 2026 17:57:52 +0000 ROA not before: Mon 11 May 2026 17:52:52 +0000 ROA not after: Mon 10 May 2027 17:57:52 +0000 asID: 18044 IP address blocks: 2402:4920::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KANRAYS/0/56C0B74262A19F328983C278635DE9570AFEB948.crl rsync://rpkica.twnic.tw/rpki/KANRAYS/0/56C0B74262A19F328983C278635DE9570AFEB948.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56C0B74262A19F328983C278635DE9570AFEB948.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:40:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:55:b1:43:e1:a5:9a:f2:a5:da:aa:8d:3a:80:c8:40:b9:ed:a7:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56C0B74262A19F328983C278635DE9570AFEB948 Validity Not Before: May 11 17:52:52 2026 GMT Not After : May 10 17:57:52 2027 GMT Subject: CN=F3B72C529C5A1B4235952D9A0E51D7655C2FB9AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:60:82:14:22:73:a6:59:44:95:be:91:bf:98: 2b:1e:c9:06:5e:61:9d:18:36:fd:3a:02:83:00:3f: 3e:9d:f8:d1:51:16:e3:46:f4:72:02:9b:b3:ca:c6: d8:52:c9:96:bd:f4:b6:30:ce:a2:5b:5e:09:b0:99: 38:bd:a1:dc:e0:07:88:5c:1f:6e:b8:25:a2:18:86: 26:c6:36:00:d7:91:7d:4e:fd:cb:ff:50:ee:19:2a: 8b:e4:cf:95:7e:c8:f1:e5:9e:f2:0a:b7:3e:39:85: 32:22:36:4c:43:63:84:30:01:7b:a0:95:f5:e7:bc: 66:58:71:33:36:02:b6:d6:eb:f6:78:44:81:b9:7c: f1:5a:1f:3d:6a:e5:92:85:2b:04:c3:a7:f0:76:28: b7:00:bb:6e:ad:fc:d9:f4:e4:6a:1d:6b:4b:86:d6: 8a:b8:ad:da:d3:cb:ab:52:ac:a1:6c:f8:b5:84:b7: 87:20:d6:d2:06:f2:a3:a9:56:e6:e1:44:50:2d:f6: ec:e0:0c:da:1c:63:f3:34:11:be:5c:26:69:a4:7a: 1b:a1:cf:b7:12:86:72:6e:b2:57:0a:3d:c2:96:2c: 58:ee:6f:2f:83:a8:92:48:3c:45:d2:09:65:cc:1d: ca:bd:b9:d5:83:4f:5d:e5:c6:77:44:1e:51:c4:fe: c4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B7:2C:52:9C:5A:1B:42:35:95:2D:9A:0E:51:D7:65:5C:2F:B9:AD X509v3 Authority Key Identifier: keyid:56:C0:B7:42:62:A1:9F:32:89:83:C2:78:63:5D:E9:57:0A:FE:B9:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KANRAYS/0/56C0B74262A19F328983C278635DE9570AFEB948.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56C0B74262A19F328983C278635DE9570AFEB948.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KANRAYS/0/323430323a343932303a3a2f33322d3438203d3e203138303434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4920::/32 Signature Algorithm: sha256WithRSAEncryption 8f:70:73:ef:61:53:98:df:56:d6:36:50:e6:26:20:44:e9:2f: 83:e4:f3:c8:14:16:5c:a6:d7:c9:4a:88:98:10:fd:88:3b:e5: e1:0d:b4:13:0d:97:38:71:6c:c0:10:41:95:a5:a2:93:2a:e3: b1:e4:d1:13:58:51:05:66:53:09:70:a0:1f:d0:fe:8a:d6:54: 5e:e3:da:ca:e8:3e:ad:2d:1e:e0:18:5c:e7:fd:e2:67:8c:5d: 6a:b9:84:89:bc:74:e6:6c:e0:14:e3:0b:88:9e:90:c6:1c:4e: 3c:bf:95:77:31:65:e9:ed:35:17:88:5a:5f:1d:f4:31:dd:af: 95:27:5e:4a:e7:32:88:bd:89:04:1e:4c:4c:79:14:8e:5d:9c: 0f:ae:b1:d1:47:09:14:db:8e:ce:2c:8e:29:64:17:da:e8:f9: a1:ef:d6:d5:0b:c4:f9:af:cd:bb:45:96:a1:05:2f:8f:1f:83: 4f:ed:5b:20:da:9e:7a:02:8b:38:6c:d1:7b:b1:5d:89:ba:b4: 54:da:0c:df:59:e7:28:53:f7:45:ac:b8:72:26:d2:eb:37:b8: 99:38:6a:6e:4b:a2:98:f7:c1:09:c8:f4:48:83:6b:5c:50:ce: 8f:10:ff:81:53:68:e1:0b:ce:28:57:a5:19:fb:03:62:cb:eb: e4:54:ca:5e -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUJ1WxQ+GlmvKl2qqNOoDIQLntp/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTZDMEI3NDI2MkExOUYzMjg5ODNDMjc4NjM1REU5NTcw QUZFQjk0ODAeFw0yNjA1MTExNzUyNTJaFw0yNzA1MTAxNzU3NTJaMDMxMTAvBgNV BAMTKEYzQjcyQzUyOUM1QTFCNDIzNTk1MkQ5QTBFNTFENzY1NUMyRkI5QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJYIIUInOmWUSVvpG/mCseyQZe YZ0YNv06AoMAPz6d+NFRFuNG9HICm7PKxthSyZa99LYwzqJbXgmwmTi9odzgB4hc H264JaIYhibGNgDXkX1O/cv/UO4ZKovkz5V+yPHlnvIKtz45hTIiNkxDY4QwAXug lfXnvGZYcTM2ArbW6/Z4RIG5fPFaHz1q5ZKFKwTDp/B2KLcAu26t/Nn05Goda0uG 1oq4rdrTy6tSrKFs+LWEt4cg1tIG8qOpVubhRFAt9uzgDNocY/M0Eb5cJmmkehuh z7cShnJuslcKPcKWLFjuby+DqJJIPEXSCWXMHcq9udWDT13lxndEHlHE/sSVAgMB AAGjggHkMIIB4DAdBgNVHQ4EFgQU87csUpxaG0I1lS2aDlHXZVwvua0wHwYDVR0j BBgwFoAUVsC3QmKhnzKJg8J4Y13pVwr+uUgwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0FOUkFZ Uy8wLzU2QzBCNzQyNjJBMTlGMzI4OTgzQzI3ODYzNURFOTU3MEFGRUI5NDguY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvNTZDMEI3NDI2MkExOUYzMjg5ODNDMjc4NjM1 REU5NTcwQUZFQjk0OC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9y c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0tBTlJBWVMvMC8zMjM0MzAzMjNh MzQzOTMyMzAzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzMTM4MzAzNDM0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAJJIDANBgkqhkiG9w0BAQsFAAOCAQEAj3Bz72FTmN9W1jZQ5iYgROkv g+TzyBQWXKbXyUqImBD9iDvl4Q20Ew2XOHFswBBBlaWikyrjseTRE1hRBWZTCXCg H9D+itZUXuPayug+rS0e4Bhc5/3iZ4xdarmEibx05mzgFOMLiJ6QxhxOPL+VdzFl 6e01F4haXx30Md2vlSdeSucyiL2JBB5MTHkUjl2cD66x0UcJFNuOziyOKWQX2uj5 oe/W1QvE+a/Nu0WWoQUvjx+DT+1bINqeegKLOGzRe7Fdibq0VNoM31nnKFP3Ray4 cibS6ze4mThqbkuimPfBCcj0SINrXFDOjxD/gVNo4QvOKFelGfsDYsvr5FTKXg== -----END CERTIFICATE-----Generated at Wed May 13 21:12:21 2026 by rpki-client