$ rpki-client -vvf rpkica.twnic.tw/rpki/KKH/0/323430313a653736303a3a2f33322d3438203d3e20313331363435.roa File: 323430313a653736303a3a2f33322d3438203d3e20313331363435.roa (raw, json) Hash identifier: 8YC3WhfA/JwpTpT4EA1dLfSVRzAraHz3m65LBo1nSas= Subject key identifier: 5B:1E:DE:57:CF:21:5E:A1:97:0F:CE:7E:88:C0:43:2B:54:B9:3A:CF Certificate issuer: /CN=FB752D6E1A89A824BE6E04852D1F505F01ED185B Certificate serial: 77C6A7A68B4A953B6A19C3CF44BA1922E8D00E4B Authority key identifier: FB:75:2D:6E:1A:89:A8:24:BE:6E:04:85:2D:1F:50:5F:01:ED:18:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/FB752D6E1A89A824BE6E04852D1F505F01ED185B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KKH/0/323430313a653736303a3a2f33322d3438203d3e20313331363435.roa Signing time: Mon 11 May 2026 17:39:31 +0000 ROA not before: Mon 11 May 2026 17:34:31 +0000 ROA not after: Mon 10 May 2027 17:39:31 +0000 asID: 131645 IP address blocks: 2401:e760::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KKH/0/FB752D6E1A89A824BE6E04852D1F505F01ED185B.crl rsync://rpkica.twnic.tw/rpki/KKH/0/FB752D6E1A89A824BE6E04852D1F505F01ED185B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/FB752D6E1A89A824BE6E04852D1F505F01ED185B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:c6:a7:a6:8b:4a:95:3b:6a:19:c3:cf:44:ba:19:22:e8:d0:0e:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB752D6E1A89A824BE6E04852D1F505F01ED185B Validity Not Before: May 11 17:34:31 2026 GMT Not After : May 10 17:39:31 2027 GMT Subject: CN=5B1EDE57CF215EA1970FCE7E88C0432B54B93ACF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:84:3d:ed:48:54:dd:bc:e0:de:4b:50:1a:95: 48:15:b3:55:4c:f0:8b:9a:02:1b:85:48:a4:30:36: 4c:14:19:8d:a2:6b:6b:72:a7:5c:e7:00:8b:2e:f8: b9:bb:19:7f:9e:dd:cd:22:40:36:52:48:da:a8:0a: a0:9c:bd:1b:fa:0c:47:89:64:c5:9a:9a:b8:59:b8: 01:a0:f9:7b:5a:a8:11:ee:26:23:d7:e0:df:8a:ce: af:50:97:1a:f9:73:90:35:e5:29:d4:7e:a2:25:3c: b2:bf:00:4c:c7:de:3a:c2:0c:8f:8b:1a:51:17:8f: f9:60:df:cd:06:1c:6a:b9:4c:bb:82:47:26:07:ab: 97:a0:45:b3:70:18:2d:98:4f:a5:8c:38:74:1f:d2: d6:1d:d7:5e:65:0d:a2:35:db:f3:27:6f:d4:dd:f4: 96:90:61:eb:13:11:87:33:d9:70:ce:eb:6d:83:25: 50:67:1c:53:37:2e:38:fb:04:f6:42:c6:e9:a9:08: 76:eb:35:0b:f8:6e:1f:f3:39:0f:f7:be:4f:f9:09: 2e:a1:8f:5f:d0:16:80:6c:99:c1:40:04:bb:76:14: b1:c7:33:04:b9:17:63:22:f1:dc:6c:c1:94:19:3e: 24:56:b6:f0:aa:5d:aa:ad:dc:70:40:81:9b:4c:29: 03:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:1E:DE:57:CF:21:5E:A1:97:0F:CE:7E:88:C0:43:2B:54:B9:3A:CF X509v3 Authority Key Identifier: keyid:FB:75:2D:6E:1A:89:A8:24:BE:6E:04:85:2D:1F:50:5F:01:ED:18:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KKH/0/FB752D6E1A89A824BE6E04852D1F505F01ED185B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/FB752D6E1A89A824BE6E04852D1F505F01ED185B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KKH/0/323430313a653736303a3a2f33322d3438203d3e20313331363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:e760::/32 Signature Algorithm: sha256WithRSAEncryption ab:d7:3d:97:b9:a9:66:9f:ce:ff:43:f3:cc:88:1e:1a:f5:0e: 25:74:96:bc:6e:6a:c0:08:45:39:b4:70:5b:31:e1:e5:df:7a: 6c:ad:09:3d:5d:93:f3:cf:f4:59:ad:0f:94:b2:88:32:cb:e4: 3a:92:ba:31:bf:aa:ed:68:db:5a:26:8e:9c:cd:ce:ed:49:7b: 13:f5:cc:20:d6:3f:99:41:28:2b:d2:7c:8d:99:e9:6d:08:b6: 06:c2:18:94:0b:de:38:d6:b3:0c:bf:6d:ce:93:51:60:ae:6f: 6c:dd:d8:2a:83:b4:0c:51:2b:ad:67:89:e8:c9:c2:1c:4c:ec: 28:c8:e9:0a:43:39:6c:eb:87:26:27:44:08:19:da:fc:ae:f5: 22:59:6e:ff:33:02:81:13:bc:12:0b:91:64:f4:03:c1:15:28: fb:e3:1c:85:f8:db:70:a1:2a:a2:77:dc:0f:28:4a:b0:00:99: d2:48:9a:74:70:1b:f0:d8:bf:b9:6a:e4:b9:cc:fb:9c:03:c5: 2f:db:cc:06:ce:97:3e:71:47:50:90:36:01:a3:2e:e5:f9:51: 3f:44:a4:73:a6:6c:95:b1:4e:d5:e0:1a:8a:64:75:49:fb:3b: 8a:0d:82:56:f3:73:4a:e4:d1:67:66:51:ce:73:92:4d:43:70: 04:b6:b6:e3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUd8anpotKlTtqGcPPRLoZIujQDkswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkI3NTJENkUxQTg5QTgyNEJFNkUwNDg1MkQxRjUwNUYw MUVEMTg1QjAeFw0yNjA1MTExNzM0MzFaFw0yNzA1MTAxNzM5MzFaMDMxMTAvBgNV BAMTKDVCMUVERTU3Q0YyMTVFQTE5NzBGQ0U3RTg4QzA0MzJCNTRCOTNBQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqhD3tSFTdvODeS1AalUgVs1VM 8IuaAhuFSKQwNkwUGY2ia2typ1znAIsu+Lm7GX+e3c0iQDZSSNqoCqCcvRv6DEeJ ZMWamrhZuAGg+XtaqBHuJiPX4N+Kzq9Qlxr5c5A15SnUfqIlPLK/AEzH3jrCDI+L GlEXj/lg380GHGq5TLuCRyYHq5egRbNwGC2YT6WMOHQf0tYd115lDaI12/Mnb9Td 9JaQYesTEYcz2XDO622DJVBnHFM3Ljj7BPZCxumpCHbrNQv4bh/zOQ/3vk/5CS6h j1/QFoBsmcFABLt2FLHHMwS5F2Mi8dxswZQZPiRWtvCqXaqt3HBAgZtMKQORAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUWx7eV88hXqGXD85+iMBDK1S5Os8wHwYDVR0j BBgwFoAU+3UtbhqJqCS+bgSFLR9QXwHtGFswDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0tILzAv RkI3NTJENkUxQTg5QTgyNEJFNkUwNDg1MkQxRjUwNUYwMUVEMTg1Qi5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS9GQjc1MkQ2RTFBODlBODI0QkU2RTA0ODUyRDFGNTA1 RjAxRUQxODVCLmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0tILzAvMzIzNDMwMzEzYTY1MzczNjMw M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzEzMzMxMzYzNDM1LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JAHnYDANBgkqhkiG9w0BAQsFAAOCAQEAq9c9l7mpZp/O/0PzzIgeGvUOJXSWvG5q wAhFObRwWzHh5d96bK0JPV2T88/0Wa0PlLKIMsvkOpK6Mb+q7WjbWiaOnM3O7Ul7 E/XMINY/mUEoK9J8jZnpbQi2BsIYlAveONazDL9tzpNRYK5vbN3YKoO0DFErrWeJ 6MnCHEzsKMjpCkM5bOuHJidECBna/K71Illu/zMCgRO8EguRZPQDwRUo++Mchfjb cKEqonfcDyhKsACZ0kiadHAb8Ni/uWrkucz7nAPFL9vMBs6XPnFHUJA2AaMu5flR P0Skc6ZslbFO1eAaimR1Sfs7ig2CVvNzSuTRZ2ZRznOSTUNwBLa24w== -----END CERTIFICATE-----Generated at Wed May 13 21:12:12 2026 by rpki-client