$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/323030313a6435383a3a2f33322d3536203d3e2039343136.roa File: 323030313a6435383a3a2f33322d3536203d3e2039343136.roa (raw, json) Hash identifier: N7/YDbeCmYt8W0bMQHAWg1SmLL2Nta4LZhahKsQHFm0= Subject key identifier: 61:3A:AF:A9:CF:B0:A8:B7:A2:6A:ED:7A:7D:29:DA:19:7D:85:29:88 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6310A78D47B125B273AC71DDD4E4CD63F35E43F6 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/323030313a6435383a3a2f33322d3536203d3e2039343136.roa Signing time: Mon 22 Jun 2026 02:43:49 +0000 ROA not before: Mon 22 Jun 2026 02:38:49 +0000 ROA not after: Mon 21 Jun 2027 02:43:49 +0000 asID: 9416 IP address blocks: 2001:d58::/32 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:10:a7:8d:47:b1:25:b2:73:ac:71:dd:d4:e4:cd:63:f3:5e:43:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 02:38:49 2026 GMT Not After : Jun 21 02:43:49 2027 GMT Subject: CN=613AAFA9CFB0A8B7A26AED7A7D29DA197D852988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5f:3a:91:81:8a:38:55:34:39:2b:ac:6e:bf: 26:0f:2c:30:4b:d1:e7:1b:e6:a2:f7:bd:cd:26:a2: 11:1d:8d:0a:50:ab:b3:24:5f:55:5e:df:9d:43:13: 02:38:74:b9:ff:84:0f:ed:66:f1:6f:f5:34:2f:3d: d5:1f:cf:d9:6d:ea:37:84:89:f1:65:b9:d3:c0:a0: 5b:24:a7:9b:e8:99:a6:35:7f:2c:23:cd:22:e9:46: 53:0f:eb:87:0c:80:08:c2:9f:51:85:4d:40:67:f9: 04:13:9d:cd:54:35:2d:dc:d1:4d:80:67:68:98:de: 57:fe:b5:78:66:64:04:da:8b:2b:07:e4:b4:79:62: 4a:18:99:0b:44:14:10:38:77:7b:20:4a:84:30:bc: b3:36:2e:68:49:98:19:e1:20:16:03:4d:89:81:12: db:9c:2e:2e:b2:50:7e:9f:d4:3e:b9:60:ff:71:91: 6e:60:5c:47:d6:bc:bf:2a:78:45:87:43:ac:af:fc: 2f:6c:11:55:bf:99:31:bb:34:14:23:c3:75:fd:0c: 9f:b9:13:c1:56:6c:55:d8:f9:e5:2e:56:52:de:90: 40:4a:dc:bd:52:64:64:54:a6:7d:e7:1d:68:78:ea: d7:ce:d1:45:6d:8d:1b:7e:58:2d:52:1c:a4:3a:dc: ba:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:3A:AF:A9:CF:B0:A8:B7:A2:6A:ED:7A:7D:29:DA:19:7D:85:29:88 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/323030313a6435383a3a2f33322d3536203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d58::/32 Signature Algorithm: sha256WithRSAEncryption b1:5e:c1:a6:59:f8:f5:d6:a5:f4:20:37:a5:f9:cf:0e:1b:31: 29:66:3a:84:44:b8:12:92:fa:91:ce:62:cb:8a:b3:bf:f1:5d: 03:ac:aa:65:20:0f:5f:f2:af:fb:6a:d4:9d:02:41:9f:48:c0: 90:8a:cf:02:70:d4:42:2c:e5:9a:50:2e:f5:66:ed:f3:45:e7: 27:48:67:1b:df:4e:aa:ce:bc:98:c5:81:fc:90:32:89:0f:d4: ea:19:b3:2c:63:80:40:e1:fc:41:15:6e:74:17:fc:0c:89:31: c0:af:67:cd:ad:25:c5:bc:8f:5a:12:f4:d5:7c:28:3d:15:96: 88:1e:05:15:8c:a2:13:7a:76:53:24:93:e9:04:ae:c7:45:46: 24:ec:66:7c:62:34:4d:59:6b:f7:42:e9:f8:79:e0:31:e5:4c: cb:5f:ae:ec:fc:6c:88:45:91:7f:58:fd:5a:91:04:d5:da:c0: 8e:6c:dd:2b:ab:cd:d9:f3:34:07:8b:89:c7:82:86:96:5e:81: 90:19:00:28:da:88:8d:7d:3b:7b:86:fc:23:13:ed:91:aa:1c: d3:15:fe:cd:33:80:b7:3c:24:d5:4b:01:d2:fb:dd:de:42:99: 6e:b6:a2:bb:5e:d0:ea:57:e9:41:5d:82:28:00:cd:4d:f3:2e: 1b:f1:e8:75 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgIUYxCnjUexJbJzrHHd1OTNY/NeQ/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMjM4NDlaFw0yNzA2MjEwMjQzNDlaMDMxMTAvBgNV BAMTKDYxM0FBRkE5Q0ZCMEE4QjdBMjZBRUQ3QTdEMjlEQTE5N0Q4NTI5ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQXzqRgYo4VTQ5K6xuvyYPLDBL 0ecb5qL3vc0mohEdjQpQq7MkX1Ve351DEwI4dLn/hA/tZvFv9TQvPdUfz9lt6jeE ifFludPAoFskp5vomaY1fywjzSLpRlMP64cMgAjCn1GFTUBn+QQTnc1UNS3c0U2A Z2iY3lf+tXhmZATaiysH5LR5YkoYmQtEFBA4d3sgSoQwvLM2LmhJmBnhIBYDTYmB EtucLi6yUH6f1D65YP9xkW5gXEfWvL8qeEWHQ6yv/C9sEVW/mTG7NBQjw3X9DJ+5 E8FWbFXY+eUuVlLekEBK3L1SZGRUpn3nHWh46tfO0UVtjRt+WC1SHKQ63LqJAgMB AAGjggHYMIIB1DAdBgNVHQ4EFgQUYTqvqc+wqLeiau16fSnaGX2FKYgwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzMDMwMzEzYTY0MzUzODNh M2EyZjMzMzIyZDM1MzYyMDNkM2UyMDM5MzQzMTM2LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAENWDAN BgkqhkiG9w0BAQsFAAOCAQEAsV7Bpln49dal9CA3pfnPDhsxKWY6hES4EpL6kc5i y4qzv/FdA6yqZSAPX/Kv+2rUnQJBn0jAkIrPAnDUQizlmlAu9Wbt80XnJ0hnG99O qs68mMWB/JAyiQ/U6hmzLGOAQOH8QRVudBf8DIkxwK9nza0lxbyPWhL01XwoPRWW iB4FFYyiE3p2UyST6QSux0VGJOxmfGI0TVlr90Lp+HngMeVMy1+u7PxsiEWRf1j9 WpEE1drAjmzdK6vN2fM0B4uJx4KGll6BkBkAKNqIjX07e4b8IxPtkaoc0xX+zTOA tzwk1UsB0vvd3kKZbraiu17Q6lfpQV2CKADNTfMuG/HodQ== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:58 2026 by rpki-client