$ rpki-client -vvf rpkica.twnic.tw/rpki/NCHC/0/323030313a6335383a3a2f33322d3634203d3e2037353339.roa File: 323030313a6335383a3a2f33322d3634203d3e2037353339.roa (raw, json) Hash identifier: tZHG0Au5Q1nz1VhZ3LSf/Lf7/6+XPnsXCo+GlAyJark= Subject key identifier: 64:4D:2D:55:18:1B:CD:EF:42:E6:EE:2F:94:14:4A:BE:79:19:99:5F Certificate issuer: /CN=2C4838ED872E38E97456B74C33E4178C4E1253A2 Certificate serial: 03A18A0CB91495AC99E5B7E58F36D9A259F638F7 Authority key identifier: 2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCHC/0/323030313a6335383a3a2f33322d3634203d3e2037353339.roa Signing time: Mon 11 May 2026 17:15:52 +0000 ROA not before: Mon 11 May 2026 17:10:52 +0000 ROA not after: Mon 10 May 2027 17:15:52 +0000 asID: 7539 IP address blocks: 2001:c58::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.crl rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a1:8a:0c:b9:14:95:ac:99:e5:b7:e5:8f:36:d9:a2:59:f6:38:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C4838ED872E38E97456B74C33E4178C4E1253A2 Validity Not Before: May 11 17:10:52 2026 GMT Not After : May 10 17:15:52 2027 GMT Subject: CN=644D2D55181BCDEF42E6EE2F94144ABE7919995F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6e:c9:bc:42:40:dd:17:69:25:a3:d8:7f:ba: a6:2b:a6:50:f6:d2:97:f9:a2:56:1f:b1:01:c0:88: 70:f1:2b:5c:1c:a4:5d:63:47:99:94:a3:cc:99:d7: 62:ac:db:f1:9c:63:38:71:ac:ef:08:8a:42:f9:bb: e0:bb:03:cd:48:a2:3f:11:4b:fc:92:83:75:52:f0: a4:1e:3c:36:07:a4:9a:6c:16:0f:7a:d1:04:e6:ef: 55:d6:8b:8a:91:2c:67:88:4d:e5:9b:d1:6b:28:f3: e0:1f:26:cf:ee:cc:be:d3:f6:9a:94:fe:02:98:c9: 1b:7a:11:18:7a:a2:5e:ba:71:8e:2d:2d:a4:76:db: 10:d3:b1:5b:8a:61:20:36:40:af:75:5b:e8:f0:a9: 29:66:1e:a0:6d:51:ee:99:49:39:3b:9f:ce:cb:55: da:aa:d8:ca:36:06:67:41:5c:ad:b6:cd:4b:8e:35: 85:14:ff:f3:28:38:26:36:c7:6f:8d:4a:c4:e6:93: 73:8b:1e:97:c0:0e:69:74:77:13:a7:29:db:bc:79: 40:fc:15:05:bc:3f:65:25:9c:bf:33:81:fd:b2:cd: 68:4d:3e:e3:89:6f:74:8e:1b:f7:15:9b:c1:35:f1: b3:79:4d:91:85:e3:2e:5f:90:cd:b6:7f:8f:6e:dd: 86:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4D:2D:55:18:1B:CD:EF:42:E6:EE:2F:94:14:4A:BE:79:19:99:5F X509v3 Authority Key Identifier: keyid:2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/323030313a6335383a3a2f33322d3634203d3e2037353339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:c58::/32 Signature Algorithm: sha256WithRSAEncryption 81:10:14:ff:23:c3:a7:e2:0c:8f:be:30:c7:d4:73:8c:25:2b: 0b:a3:92:fb:6b:cf:30:e0:ae:ed:2d:f6:19:a5:56:04:47:9e: 5a:80:e3:08:e7:8f:20:ed:e2:1e:d8:66:3d:37:d3:85:a6:d5: 75:5d:ab:15:4d:93:2f:a3:64:ef:fa:dd:3f:32:63:87:50:d1: 6e:0e:57:1d:5c:45:47:ba:01:de:fb:eb:30:84:70:0d:42:51: de:34:f7:8e:e5:4b:6e:41:ef:2b:1b:b5:70:50:1c:a8:49:c1: 8e:d4:e6:20:28:18:f3:b8:55:36:cd:0b:58:49:11:38:de:79: d8:18:05:78:1d:aa:9d:0a:51:2a:dc:0a:50:c9:8f:d0:d3:6f: bf:4a:59:e1:11:76:1c:15:9e:fe:52:d4:64:fc:bc:0a:17:d2: 1d:e9:b0:0b:0c:1f:49:6d:79:ee:02:b1:24:63:3e:13:93:f6: 06:db:e4:95:c5:ba:ed:62:a6:06:90:e7:82:50:32:75:cf:50: 0e:dd:03:d4:c7:b3:1a:30:8b:e1:d5:37:78:4b:42:12:b1:99: 86:0f:67:c4:91:5a:eb:2a:8c:2b:d7:97:a8:d3:a1:5e:08:fb: 52:76:f6:0a:37:31:71:3b:90:e1:56:1e:b4:ab:6e:d4:9d:0a: f2:01:31:f7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIUA6GKDLkUlayZ5bfljzbZoln2OPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkM0ODM4RUQ4NzJFMzhFOTc0NTZCNzRDMzNFNDE3OEM0 RTEyNTNBMjAeFw0yNjA1MTExNzEwNTJaFw0yNzA1MTAxNzE1NTJaMDMxMTAvBgNV BAMTKDY0NEQyRDU1MTgxQkNERUY0MkU2RUUyRjk0MTQ0QUJFNzkxOTk5NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCbsm8QkDdF2klo9h/uqYrplD2 0pf5olYfsQHAiHDxK1wcpF1jR5mUo8yZ12Ks2/GcYzhxrO8IikL5u+C7A81Ioj8R S/ySg3VS8KQePDYHpJpsFg960QTm71XWi4qRLGeITeWb0Wso8+AfJs/uzL7T9pqU /gKYyRt6ERh6ol66cY4tLaR22xDTsVuKYSA2QK91W+jwqSlmHqBtUe6ZSTk7n87L Vdqq2Mo2BmdBXK22zUuONYUU//MoOCY2x2+NSsTmk3OLHpfADml0dxOnKdu8eUD8 FQW8P2UlnL8zgf2yzWhNPuOJb3SOG/cVm8E18bN5TZGF4y5fkM22f49u3YZfAgMB AAGjggHaMIIB1jAdBgNVHQ4EFgQUZE0tVRgbze9C5u4vlBRKvnkZmV8wHwYDVR0j BBgwFoAULEg47YcuOOl0VrdMM+QXjE4SU6IwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNIQy8w LzJDNDgzOEVEODcyRTM4RTk3NDU2Qjc0QzMzRTQxNzhDNEUxMjUzQTIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMkM0ODM4RUQ4NzJFMzhFOTc0NTZCNzRDMzNFNDE3 OEM0RTEyNTNBMi5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSEMvMC8zMjMwMzAzMTNhNjMzNTM4 M2EzYTJmMzMzMjJkMzYzNDIwM2QzZTIwMzczNTMzMzkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAQxY MA0GCSqGSIb3DQEBCwUAA4IBAQCBEBT/I8On4gyPvjDH1HOMJSsLo5L7a88w4K7t LfYZpVYER55agOMI548g7eIe2GY9N9OFptV1XasVTZMvo2Tv+t0/MmOHUNFuDlcd XEVHugHe++swhHANQlHeNPeO5UtuQe8rG7VwUByoScGO1OYgKBjzuFU2zQtYSRE4 3nnYGAV4HaqdClEq3ApQyY/Q02+/SlnhEXYcFZ7+UtRk/LwKF9Id6bALDB9JbXnu ArEkYz4Tk/YG2+SVxbrtYqYGkOeCUDJ1z1AO3QPUx7MaMIvh1Td4S0ISsZmGD2fE kVrrKowr15eo06FeCPtSdvYKNzFxO5DhVh60q27UnQryATH3 -----END CERTIFICATE-----Generated at Wed May 13 21:13:35 2026 by rpki-client