$ rpki-client -vvf rpkica.twnic.tw/rpki/NARL/0/323030313a6531303a3a2f33322d3634203d3e2037353339.roa File: 323030313a6531303a3a2f33322d3634203d3e2037353339.roa (raw, json) Hash identifier: YSlCSDgV7ONwXR8qLUKp0gub/ohO6L6glqkIRmUnSSI= Subject key identifier: EE:64:02:E4:53:EA:66:C7:4C:34:99:80:75:F3:85:76:19:61:CA:99 Certificate issuer: /CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Certificate serial: 32DDA4F2377B6B34D5193DB03A08361C7F5D34 Authority key identifier: 9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NARL/0/323030313a6531303a3a2f33322d3634203d3e2037353339.roa Signing time: Fri 05 Jun 2026 09:24:18 +0000 ROA not before: Fri 05 Jun 2026 09:19:18 +0000 ROA not after: Fri 04 Jun 2027 09:24:18 +0000 asID: 7539 IP address blocks: 2001:e10::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 04:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:dd:a4:f2:37:7b:6b:34:d5:19:3d:b0:3a:08:36:1c:7f:5d:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Validity Not Before: Jun 5 09:19:18 2026 GMT Not After : Jun 4 09:24:18 2027 GMT Subject: CN=EE6402E453EA66C74C34998075F385761961CA99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d4:74:23:74:ca:5d:38:2b:af:5b:82:fc:48: 90:a1:64:c2:7d:ec:1b:4e:86:76:40:c1:93:59:82: 39:3f:4a:b2:e1:61:f3:9e:ba:aa:4a:d9:0a:af:28: 83:0f:4b:16:b6:c7:39:7b:8d:86:12:5a:db:72:64: 22:dc:8d:1c:ff:e4:7f:53:59:d5:42:d4:a4:3e:c6: aa:a2:8c:79:b9:6c:30:c7:34:0d:80:56:62:ed:e5: 05:11:0b:4d:f0:af:55:05:4c:f6:0e:81:ef:00:ff: e9:45:ff:2a:0c:90:10:53:35:39:20:bc:ba:6c:e8: ba:2b:7f:75:fa:e7:87:66:58:73:b9:ef:bd:8a:8b: fc:4f:bf:8f:c4:a4:18:33:93:e0:65:ab:49:1a:7c: b6:f1:40:65:43:c4:01:bf:98:8c:e1:7b:6e:4e:e3: 1b:5e:4d:7f:f4:04:3d:ab:26:c1:81:e6:e4:8f:d8: d6:da:7b:f4:c2:95:e2:85:18:f3:b0:5f:a5:eb:8d: 16:ff:84:ae:77:eb:b0:d2:c4:98:42:51:99:38:a2: 33:7f:e2:a7:de:40:d2:5e:64:ff:d6:cc:c1:e0:c6: 09:94:e3:03:fc:7b:c6:84:a4:15:7d:b0:61:ac:af: 73:52:35:e5:41:19:11:34:55:d1:d7:3d:a6:5a:26: 97:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:64:02:E4:53:EA:66:C7:4C:34:99:80:75:F3:85:76:19:61:CA:99 X509v3 Authority Key Identifier: keyid:9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NARL/0/323030313a6531303a3a2f33322d3634203d3e2037353339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:e10::/32 Signature Algorithm: sha256WithRSAEncryption db:43:fd:81:e1:95:4a:7c:f3:56:17:6d:61:9e:93:b5:e0:29: fa:2a:d8:61:f0:a3:6c:bf:dc:78:a0:18:c5:24:ee:fe:00:3b: 63:8f:23:bf:b4:7a:65:33:f3:fe:74:08:39:e2:84:c2:6b:30: 8d:71:8b:dc:5a:e1:39:02:21:3e:55:0c:3d:33:93:90:2a:a2: 58:51:d2:23:cd:ae:82:2e:7c:ea:df:51:bb:43:dd:51:33:d5: fd:81:92:a8:8a:7c:3d:10:a3:ab:e1:7e:2f:86:d9:3f:13:b5: ad:83:ad:76:f6:7a:f9:40:15:dd:36:d3:e3:c1:99:19:89:31: 88:e0:c6:ad:b4:2e:4d:eb:c9:6e:b9:4a:e8:db:9f:f4:e6:30: 59:15:98:ad:35:fc:38:83:7e:d2:a4:8b:88:5e:98:6b:33:8c: d4:f2:bb:bb:4b:aa:4a:64:d0:a9:57:af:1e:2d:de:17:2c:93: 78:ba:cc:42:a5:57:be:7b:34:21:07:56:3b:70:62:3e:47:75: 04:4a:64:57:19:a0:29:19:ab:bf:2f:ed:86:2f:7b:8e:1b:d4: 5b:e2:41:79:57:67:87:9e:a8:e4:a9:5a:9d:e0:6b:93:46:c3: 42:b6:58:59:a0:75:8d:c3:c9:0a:4e:a3:d4:08:db:e4:1c:cd: 4e:d3:a4:26 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgITMt2k8jd7azTVGT2wOgg2HH9dNDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg5RDg1QkI4RDkzMDA2RDM1ODZFMjhEMEQ2NjEyQ0FGQUND OEVBNkMxMB4XDTI2MDYwNTA5MTkxOFoXDTI3MDYwNDA5MjQxOFowMzExMC8GA1UE AxMoRUU2NDAyRTQ1M0VBNjZDNzRDMzQ5OTgwNzVGMzg1NzYxOTYxQ0E5OTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALLUdCN0yl04K69bgvxIkKFkwn3s G06GdkDBk1mCOT9KsuFh8566qkrZCq8ogw9LFrbHOXuNhhJa23JkItyNHP/kf1NZ 1ULUpD7GqqKMeblsMMc0DYBWYu3lBRELTfCvVQVM9g6B7wD/6UX/KgyQEFM1OSC8 umzouit/dfrnh2ZYc7nvvYqL/E+/j8SkGDOT4GWrSRp8tvFAZUPEAb+YjOF7bk7j G15Nf/QEPasmwYHm5I/Y1tp79MKV4oUY87BfpeuNFv+ErnfrsNLEmEJRmTiiM3/i p95A0l5k/9bMweDGCZTjA/x7xoSkFX2wYayvc1I15UEZETRV0dc9ploml78CAwEA AaOCAdowggHWMB0GA1UdDgQWBBTuZALkU+pmx0w0mYB184V2GWHKmTAfBgNVHSME GDAWgBSdhbuNkwBtNYbijQ1mEsr6zI6mwTAOBgNVHQ8BAf8EBAMCB4AwYQYDVR0f BFowWDBWoFSgUoZQcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9OQVJMLzAv OUQ4NUJCOEQ5MzAwNkQzNTg2RTI4RDBENjYxMkNBRkFDQzhFQTZDMS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85RDg1QkI4RDkzMDA2RDM1ODZFMjhEMEQ2NjEyQ0FG QUNDOEVBNkMxLmNlcjB0BggrBgEFBQcBCwRoMGYwZAYIKwYBBQUHMAuGWHJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkFSTC8wLzMyMzAzMDMxM2E2NTMxMzAz YTNhMmYzMzMyMmQzNjM0MjAzZDNlMjAzNzM1MzMzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACABDhAw DQYJKoZIhvcNAQELBQADggEBANtD/YHhlUp881YXbWGek7XgKfoq2GHwo2y/3Hig GMUk7v4AO2OPI7+0emUz8/50CDnihMJrMI1xi9xa4TkCIT5VDD0zk5AqolhR0iPN roIufOrfUbtD3VEz1f2BkqiKfD0Qo6vhfi+G2T8Tta2DrXb2evlAFd020+PBmRmJ MYjgxq20Lk3ryW65Sujbn/TmMFkVmK01/DiDftKki4hemGszjNTyu7tLqkpk0KlX rx4t3hcsk3i6zEKlV757NCEHVjtwYj5HdQRKZFcZoCkZq78v7YYve44b1FviQXlX Z4eeqOSpWp3ga5NGw0K2WFmgdY3DyQpOo9QI2+QczU7TpCY= -----END CERTIFICATE-----Generated at Sat Jun 6 21:41:56 2026 by rpki-client