$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/323430303a646634303a3a2f33322d3536203d3e203138303432.roa File: 323430303a646634303a3a2f33322d3536203d3e203138303432.roa (raw, json) Hash identifier: YiEwuYuhFx8r0w/P+IOD7Vs6XMMiZxdi3n1wKb5dRFI= Subject key identifier: A1:CF:BF:0B:46:9F:E9:D0:ED:6A:EE:25:9F:A3:4F:FC:F1:C5:91:D5 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 43E3A6E8387ECAE0031AC6BA377D9D9265FE3070 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/323430303a646634303a3a2f33322d3536203d3e203138303432.roa Signing time: Mon 11 May 2026 16:45:43 +0000 ROA not before: Mon 11 May 2026 16:40:43 +0000 ROA not after: Mon 10 May 2027 16:45:43 +0000 asID: 18042 IP address blocks: 2400:df40::/32 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 15:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e3:a6:e8:38:7e:ca:e0:03:1a:c6:ba:37:7d:9d:92:65:fe:30:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: May 11 16:40:43 2026 GMT Not After : May 10 16:45:43 2027 GMT Subject: CN=A1CFBF0B469FE9D0ED6AEE259FA34FFCF1C591D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c1:b3:5d:42:80:33:0f:0a:7a:1b:2a:30:d8: c0:c2:88:f1:a5:5c:1a:a5:b6:01:80:ba:12:2a:34: 77:c9:7e:6e:84:da:71:80:a1:df:d8:33:51:46:87: 1d:04:c4:6b:ff:69:b8:c3:17:1c:e0:55:9f:69:1f: aa:bf:a3:d4:9e:86:45:e3:73:e4:a8:5b:ed:3c:20: b0:24:9e:f0:8c:12:b3:4d:4e:47:56:63:0b:01:73: c9:14:97:1e:0f:5a:7b:d2:bb:86:bb:42:eb:83:17: 62:19:22:6f:18:51:2d:96:02:67:df:12:7e:a4:6e: 51:23:73:4e:b9:79:f2:7b:05:16:f3:76:1f:68:03: 22:b6:c1:5f:ff:a7:b1:a8:b4:09:9b:83:73:62:ac: 20:73:fd:a2:59:28:ee:20:a0:1d:cc:40:cd:da:60: 8c:31:d7:22:ef:10:29:a0:67:f3:37:d4:c3:4c:69: 8d:bd:37:62:a5:3a:cb:cd:ce:50:75:71:da:44:13: d8:ca:0e:bb:b4:e1:5a:cc:46:97:aa:a8:7a:75:31: 23:11:ae:08:e9:dc:c1:9d:0c:1e:50:0f:a6:83:b6: 34:5b:ee:94:9f:2e:48:a8:e7:15:a8:c0:39:ba:e4: 11:f3:62:14:17:4a:aa:13:ce:aa:bf:69:91:48:3e: f4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:CF:BF:0B:46:9F:E9:D0:ED:6A:EE:25:9F:A3:4F:FC:F1:C5:91:D5 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/323430303a646634303a3a2f33322d3536203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:df40::/32 Signature Algorithm: sha256WithRSAEncryption 00:fc:88:2d:55:20:2f:b7:b7:6a:e2:02:91:73:7e:1b:b6:ac: b6:4e:d4:a9:ea:1b:6c:1f:c9:32:b7:07:2e:a2:5b:7c:56:77: 47:77:3d:ee:31:66:d1:6f:ed:8c:fc:d5:ba:a6:68:08:21:bd: b3:79:00:53:86:89:b3:f5:35:30:9c:00:6d:c5:75:77:4b:81: 16:c8:5e:d0:ee:13:22:df:24:84:e6:c9:98:97:34:39:0c:e8: a3:55:3b:0c:e5:73:1a:00:b8:59:95:44:17:95:c1:a6:86:04: 88:d1:d8:b9:28:65:84:96:0e:d6:68:16:1b:27:ad:7f:eb:18: da:05:ff:f9:7e:63:1b:23:1b:18:38:e4:50:2a:72:90:6d:1d: e1:d6:6e:36:ca:98:31:d2:74:fb:bf:2d:2b:fc:ad:96:2e:83: 99:08:67:c1:b0:bc:56:9a:82:5d:b3:96:e5:36:d5:5c:69:23: 69:40:aa:da:2e:7c:49:1f:44:7a:6d:ed:b7:7d:36:a7:1a:26: 32:7f:da:91:d5:1a:d9:36:e2:ed:13:49:94:fb:2e:04:05:08: 27:3e:55:67:38:cb:0c:50:ea:db:07:8c:cc:c8:c1:48:7a:bb: e5:85:8c:71:9e:80:bb:16:c3:f0:46:26:7a:6e:9e:c3:3d:cf: fc:72:f8:30 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQ+Om6Dh+yuADGsa6N32dkmX+MHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA1MTExNjQwNDNaFw0yNzA1MTAxNjQ1NDNaMDMxMTAvBgNV BAMTKEExQ0ZCRjBCNDY5RkU5RDBFRDZBRUUyNTlGQTM0RkZDRjFDNTkxRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxwbNdQoAzDwp6Gyow2MDCiPGl XBqltgGAuhIqNHfJfm6E2nGAod/YM1FGhx0ExGv/abjDFxzgVZ9pH6q/o9SehkXj c+SoW+08ILAknvCMErNNTkdWYwsBc8kUlx4PWnvSu4a7QuuDF2IZIm8YUS2WAmff En6kblEjc065efJ7BRbzdh9oAyK2wV//p7GotAmbg3NirCBz/aJZKO4goB3MQM3a YIwx1yLvECmgZ/M31MNMaY29N2KlOsvNzlB1cdpEE9jKDru04VrMRpeqqHp1MSMR rgjp3MGdDB5QD6aDtjRb7pSfLkio5xWowDm65BHzYhQXSqoTzqq/aZFIPvTJAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQUoc+/C0af6dDtau4ln6NP/PHFkdUwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzIzNDMwMzAzYTY0NjYzNDMw M2EzYTJmMzMzMjJkMzUzNjIwM2QzZTIwMzEzODMwMzQzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQA 30AwDQYJKoZIhvcNAQELBQADggEBAAD8iC1VIC+3t2riApFzfhu2rLZO1KnqG2wf yTK3By6iW3xWd0d3Pe4xZtFv7Yz81bqmaAghvbN5AFOGibP1NTCcAG3FdXdLgRbI XtDuEyLfJITmyZiXNDkM6KNVOwzlcxoAuFmVRBeVwaaGBIjR2LkoZYSWDtZoFhsn rX/rGNoF//l+YxsjGxg45FAqcpBtHeHWbjbKmDHSdPu/LSv8rZYug5kIZ8GwvFaa gl2zluU21VxpI2lAqtoufEkfRHpt7bd9NqcaJjJ/2pHVGtk24u0TSZT7LgQFCCc+ VWc4ywxQ6tsHjMzIwUh6u+WFjHGegLsWw/BGJnpunsM9z/xy+DA= -----END CERTIFICATE-----Generated at Wed May 13 21:09:58 2026 by rpki-client