$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/323030313a6435383a393431363a3a2f36342d3634203d3e2039343136.roa File: 323030313a6435383a393431363a3a2f36342d3634203d3e2039343136.roa (raw, json) Hash identifier: gaatWjrkvZZ6v74rHemdipTGqhCbFLqKVsbBXCMoJXE= Subject key identifier: 3D:47:AC:26:94:ED:DC:3B:C5:C7:03:95:62:0B:FA:FA:10:3F:BB:97 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 78C60F3B2127160859D36170EC7EA8A8B53E95CB Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/323030313a6435383a393431363a3a2f36342d3634203d3e2039343136.roa Signing time: Fri 26 Jun 2026 03:43:49 +0000 ROA not before: Fri 26 Jun 2026 03:38:49 +0000 ROA not after: Fri 25 Jun 2027 03:43:49 +0000 asID: 9416 IP address blocks: 2001:d58:9416::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c6:0f:3b:21:27:16:08:59:d3:61:70:ec:7e:a8:a8:b5:3e:95:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 26 03:38:49 2026 GMT Not After : Jun 25 03:43:49 2027 GMT Subject: CN=3D47AC2694EDDC3BC5C70395620BFAFA103FBB97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:94:68:d0:d7:69:85:23:c0:43:f2:72:38:72: 15:a3:60:eb:06:13:09:18:61:ed:fa:df:01:57:d9: 94:e6:ea:3d:9d:1a:09:5a:05:cf:b4:0e:67:20:35: cf:8d:c7:5a:30:dd:3b:c9:06:ba:7d:f6:79:cf:7e: 84:43:53:73:62:3a:d0:64:62:70:c9:da:64:37:25: d5:6f:81:4d:b1:19:ca:59:b2:70:14:88:53:20:98: 68:1c:e6:45:a5:e7:96:9d:9e:f9:0d:83:c5:14:bd: d5:48:b8:54:56:76:bc:93:dd:dc:66:8a:43:be:f4: f1:e6:57:0b:e6:32:5b:a1:0b:84:70:f5:5c:be:ea: e2:a1:b3:5d:ae:5e:8f:47:a1:3d:78:ef:b8:2f:a1: d8:07:37:d4:68:7f:8b:64:08:bf:ba:65:2f:cb:6e: 36:e5:3d:a6:97:be:7a:41:cd:a7:11:51:5b:14:9e: a0:b7:a2:e9:b9:7c:00:28:7b:e6:48:03:77:7c:10: 0d:ad:02:75:36:1f:a7:2c:7f:5b:cd:a6:56:4e:91: 8b:ef:c4:07:46:2b:33:f2:a7:be:cf:b7:e1:27:ac: 81:7a:eb:90:a6:ac:08:b5:04:e0:1e:a3:66:77:34: 95:b8:cb:13:08:5b:9e:4e:f0:b7:0b:79:50:de:77: 62:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:47:AC:26:94:ED:DC:3B:C5:C7:03:95:62:0B:FA:FA:10:3F:BB:97 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/323030313a6435383a393431363a3a2f36342d3634203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d58:9416::/64 Signature Algorithm: sha256WithRSAEncryption 1a:c8:64:07:b7:d5:62:0b:62:02:a8:e8:0d:23:c0:ca:83:b7: a1:60:5d:71:8a:51:80:f5:c1:a7:d8:00:9e:73:cb:21:e4:9a: a2:1c:06:09:44:95:21:24:0a:f8:85:b1:a6:28:76:ac:6a:97: 9f:78:e5:1f:cb:6d:a8:c1:24:70:b9:3c:d8:30:d0:8d:40:22: 75:44:88:0f:49:01:81:8f:f9:58:78:af:79:72:9d:ac:ba:df: 11:f9:79:de:f6:0c:29:80:cc:54:b9:24:a5:a4:98:ff:54:7e: 6e:7f:e2:f3:e5:45:2a:98:7e:a7:6d:a6:c9:f0:27:fc:cd:6a: 84:1d:93:30:56:52:f4:50:d4:70:d6:ac:19:3d:91:07:1f:1f: 21:55:72:80:a3:4d:a9:d4:7a:05:8c:a9:5e:84:17:c0:45:02: 03:5a:7d:2b:af:4c:05:aa:92:d1:c7:e0:85:4e:ca:ec:87:ee: 0a:51:41:c2:be:fd:36:f1:64:4a:41:e2:28:5d:a6:15:f4:2e: 9d:e7:98:3d:96:3f:5d:5b:84:38:a7:eb:a9:c1:c4:6a:9d:04: 75:4e:b6:72:9a:c7:e0:37:4f:cf:1a:1f:a7:60:c9:89:07:97: be:a5:3e:41:94:cd:89:8e:2f:2e:07:e2:d7:64:57:b9:be:a6: 50:67:6c:5a -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUeMYPOyEnFghZ02Fw7H6oqLU+lcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjYwMzM4NDlaFw0yNzA2MjUwMzQzNDlaMDMxMTAvBgNV BAMTKDNENDdBQzI2OTRFRERDM0JDNUM3MDM5NTYyMEJGQUZBMTAzRkJCOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQlGjQ12mFI8BD8nI4chWjYOsG EwkYYe363wFX2ZTm6j2dGglaBc+0DmcgNc+Nx1ow3TvJBrp99nnPfoRDU3NiOtBk YnDJ2mQ3JdVvgU2xGcpZsnAUiFMgmGgc5kWl55adnvkNg8UUvdVIuFRWdryT3dxm ikO+9PHmVwvmMluhC4Rw9Vy+6uKhs12uXo9HoT1477gvodgHN9Rof4tkCL+6ZS/L bjblPaaXvnpBzacRUVsUnqC3oum5fAAoe+ZIA3d8EA2tAnU2H6csf1vNplZOkYvv xAdGKzPyp77Pt+EnrIF665CmrAi1BOAeo2Z3NJW4yxMIW55O8LcLeVDed2KNAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUPUesJpTt3DvFxwOVYgv6+hA/u5cwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB9BggrBgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuGYXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMwMzEzYTY0MzUzODNh MzkzNDMxMzYzYTNhMmYzNjM0MmQzNjM0MjAzZDNlMjAzOTM0MzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAkBggrBgEFBQcBBwEB/wQVMBMwEQQCAAIw CwMJACABDViUFgAAMA0GCSqGSIb3DQEBCwUAA4IBAQAayGQHt9ViC2ICqOgNI8DK g7ehYF1xilGA9cGn2ACec8sh5JqiHAYJRJUhJAr4hbGmKHasapefeOUfy22owSRw uTzYMNCNQCJ1RIgPSQGBj/lYeK95cp2sut8R+Xne9gwpgMxUuSSlpJj/VH5uf+Lz 5UUqmH6nbabJ8Cf8zWqEHZMwVlL0UNRw1qwZPZEHHx8hVXKAo02p1HoFjKlehBfA RQIDWn0rr0wFqpLRx+CFTsrsh+4KUUHCvv028WRKQeIoXaYV9C6d55g9lj9dW4Q4 p+upwcRqnQR1TrZymsfgN0/PGh+nYMmJB5e+pT5BlM2Jji8uB+LXZFe5vqZQZ2xa -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:14 2026 by rpki-client