$ rpki-client -vvf rpkica.twnic.tw/rpki/NARL/0/323030313a6335383a3a2f33322d3634203d3e2037353339.roa File: 323030313a6335383a3a2f33322d3634203d3e2037353339.roa (raw, json) Hash identifier: KHGZSCyTjAFf8gkceCez8q0dI7RMF2GjBnOSsXKo2tY= Subject key identifier: 7A:8D:82:F3:84:83:9B:35:B5:C8:E7:3C:C4:15:4E:7E:BE:19:18:59 Certificate issuer: /CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Certificate serial: 33979C397A5082E93E0F94D4C4FADA4D9E6B24AC Authority key identifier: 9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NARL/0/323030313a6335383a3a2f33322d3634203d3e2037353339.roa Signing time: Fri 05 Jun 2026 09:24:20 +0000 ROA not before: Fri 05 Jun 2026 09:19:20 +0000 ROA not after: Fri 04 Jun 2027 09:24:20 +0000 asID: 7539 IP address blocks: 2001:c58::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 04:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:97:9c:39:7a:50:82:e9:3e:0f:94:d4:c4:fa:da:4d:9e:6b:24:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Validity Not Before: Jun 5 09:19:20 2026 GMT Not After : Jun 4 09:24:20 2027 GMT Subject: CN=7A8D82F384839B35B5C8E73CC4154E7EBE191859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d9:e3:bb:ef:10:b0:24:aa:2a:ab:4d:88:e2: 5c:0f:95:fa:01:c9:2f:04:a3:e2:60:95:de:ec:60: b5:5a:b4:01:7a:06:19:22:2f:75:c6:b7:f6:16:ec: 4d:ce:0c:62:f5:b7:9b:2f:20:42:34:62:00:8a:3b: 0d:76:f0:3d:a8:98:8b:d5:e6:d4:58:d1:55:11:0e: 9b:37:2f:af:26:7b:38:2d:82:15:07:21:4b:68:f6: 7a:43:f5:54:fc:3c:40:c3:39:6e:fc:ac:ff:a3:4e: 73:71:e6:b2:b7:56:c7:3c:1f:ed:0f:55:48:33:b0: 64:40:24:f7:46:6c:48:15:60:41:82:30:7d:3f:77: 02:58:3d:67:10:a7:7d:db:4d:29:21:d6:ef:38:ea: 81:6d:33:50:53:53:16:8c:56:14:e1:4b:e8:9f:4c: a2:84:52:e1:22:e4:64:12:c1:14:27:60:e5:2a:59: 91:0b:c6:01:e5:4d:1a:32:57:5d:c3:b1:8f:0b:e8: e9:8c:83:52:3b:f2:de:d6:46:8e:17:4c:25:6e:52: b0:4a:c0:59:46:c3:26:2b:81:46:f6:57:73:f4:85: e6:03:e7:6b:62:e9:3c:b6:ec:4f:b0:4d:9b:83:99: 99:ba:40:30:46:9f:e4:26:69:e6:19:4c:d6:0b:8e: e3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8D:82:F3:84:83:9B:35:B5:C8:E7:3C:C4:15:4E:7E:BE:19:18:59 X509v3 Authority Key Identifier: keyid:9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NARL/0/323030313a6335383a3a2f33322d3634203d3e2037353339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:c58::/32 Signature Algorithm: sha256WithRSAEncryption 29:72:d0:73:13:70:8e:4c:98:53:74:cf:7f:30:57:e5:25:b2: cf:7d:bb:dc:74:37:ce:cd:92:dc:63:05:52:d8:bd:bf:b5:a9: 10:6c:c6:ba:7c:9d:d9:d5:1a:14:80:82:f9:28:09:c5:b3:94: 2b:11:d6:b9:83:ff:37:9f:59:c3:39:28:38:d4:a6:e0:f0:9a: 3b:12:5f:c3:8b:90:70:f4:9b:be:c9:30:c4:0f:89:f6:0e:22: 1d:db:13:37:ca:98:d8:94:0e:93:b5:5a:4c:67:65:12:db:51: 1b:c4:43:85:b8:75:ef:48:21:b1:71:dd:e9:08:84:b0:de:37: 42:d9:7c:39:ee:b2:6c:b5:f7:1f:16:ea:ec:6c:ce:23:9f:0a: 71:33:35:d0:63:ce:0c:0e:ec:5e:6d:a8:29:b8:9f:31:d8:ae: fa:18:e4:e7:0a:30:3c:49:2e:30:31:e1:0b:b9:74:18:bc:00: f4:9c:f3:ec:4b:cd:97:d2:c6:c4:20:4f:00:dc:a4:20:0e:33: 44:6f:47:39:1f:da:35:8a:da:05:dd:64:43:f9:7e:2b:b0:51: ee:3e:63:99:35:60:8c:9c:a3:3b:03:8a:cd:7c:92:7e:98:fb: 6d:e6:ec:9d:8d:0a:99:84:3d:22:4a:b2:6c:da:45:0a:79:3c: 24:bc:1b:45 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIUM5ecOXpQguk+D5TUxPraTZ5rJKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ4NUJCOEQ5MzAwNkQzNTg2RTI4RDBENjYxMkNBRkFD QzhFQTZDMTAeFw0yNjA2MDUwOTE5MjBaFw0yNzA2MDQwOTI0MjBaMDMxMTAvBgNV BAMTKDdBOEQ4MkYzODQ4MzlCMzVCNUM4RTczQ0M0MTU0RTdFQkUxOTE4NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn2eO77xCwJKoqq02I4lwPlfoB yS8Eo+Jgld7sYLVatAF6BhkiL3XGt/YW7E3ODGL1t5svIEI0YgCKOw128D2omIvV 5tRY0VURDps3L68mezgtghUHIUto9npD9VT8PEDDOW78rP+jTnNx5rK3Vsc8H+0P VUgzsGRAJPdGbEgVYEGCMH0/dwJYPWcQp33bTSkh1u846oFtM1BTUxaMVhThS+if TKKEUuEi5GQSwRQnYOUqWZELxgHlTRoyV13DsY8L6OmMg1I78t7WRo4XTCVuUrBK wFlGwyYrgUb2V3P0heYD52ti6Ty27E+wTZuDmZm6QDBGn+QmaeYZTNYLjuOLAgMB AAGjggHaMIIB1jAdBgNVHQ4EFgQUeo2C84SDmzW1yOc8xBVOfr4ZGFkwHwYDVR0j BBgwFoAUnYW7jZMAbTWG4o0NZhLK+syOpsEwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkFSTC8w LzlEODVCQjhEOTMwMDZEMzU4NkUyOEQwRDY2MTJDQUZBQ0M4RUE2QzEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvOUQ4NUJCOEQ5MzAwNkQzNTg2RTI4RDBENjYxMkNB RkFDQzhFQTZDMS5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05BUkwvMC8zMjMwMzAzMTNhNjMzNTM4 M2EzYTJmMzMzMjJkMzYzNDIwM2QzZTIwMzczNTMzMzkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAQxY MA0GCSqGSIb3DQEBCwUAA4IBAQApctBzE3COTJhTdM9/MFflJbLPfbvcdDfOzZLc YwVS2L2/takQbMa6fJ3Z1RoUgIL5KAnFs5QrEda5g/83n1nDOSg41Kbg8Jo7El/D i5Bw9Ju+yTDED4n2DiId2xM3ypjYlA6TtVpMZ2US21EbxEOFuHXvSCGxcd3pCISw 3jdC2Xw57rJstfcfFursbM4jnwpxMzXQY84MDuxebagpuJ8x2K76GOTnCjA8SS4w MeELuXQYvAD0nPPsS82X0sbEIE8A3KQgDjNEb0c5H9o1itoF3WRD+X4rsFHuPmOZ NWCMnKM7A4rNfJJ+mPtt5uydjQqZhD0iSrJs2kUKeTwkvBtF -----END CERTIFICATE-----Generated at Sat Jun 6 21:42:43 2026 by rpki-client