$ rpki-client -vvf rpkica.twnic.tw/rpki/NCREE/0/323430303a383561303a3a2f33322d3332203d3e203138313833.roa File: 323430303a383561303a3a2f33322d3332203d3e203138313833.roa (raw, json) Hash identifier: C6OKHDxWyKxWvrSfW3hF42Kke8nwN95k72tbWDAEl2M= Subject key identifier: E7:F3:24:C7:89:BE:34:7E:07:48:87:1E:3E:49:68:17:34:A0:23:02 Certificate issuer: /CN=97D4884F986D543782ED0796247DD5237461E32E Certificate serial: 6C9C65E3AEBC81C4F5E62F5584094ED935BB0F5E Authority key identifier: 97:D4:88:4F:98:6D:54:37:82:ED:07:96:24:7D:D5:23:74:61:E3:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/97D4884F986D543782ED0796247DD5237461E32E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCREE/0/323430303a383561303a3a2f33322d3332203d3e203138313833.roa Signing time: Mon 11 May 2026 17:38:40 +0000 ROA not before: Mon 11 May 2026 17:33:40 +0000 ROA not after: Mon 10 May 2027 17:38:40 +0000 asID: 18183 IP address blocks: 2400:85a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCREE/0/97D4884F986D543782ED0796247DD5237461E32E.crl rsync://rpkica.twnic.tw/rpki/NCREE/0/97D4884F986D543782ED0796247DD5237461E32E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/97D4884F986D543782ED0796247DD5237461E32E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:9c:65:e3:ae:bc:81:c4:f5:e6:2f:55:84:09:4e:d9:35:bb:0f:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97D4884F986D543782ED0796247DD5237461E32E Validity Not Before: May 11 17:33:40 2026 GMT Not After : May 10 17:38:40 2027 GMT Subject: CN=E7F324C789BE347E0748871E3E49681734A02302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:97:3f:1f:ab:14:e0:e0:c4:06:5e:bd:98:d0: ec:2c:07:43:ab:d5:f7:c5:2f:d6:da:f9:4f:7f:8c: ad:d8:fa:5b:43:3a:10:64:09:9d:eb:f8:79:96:bc: 2d:92:87:76:10:cc:2d:cb:6d:ee:99:ff:a1:56:84: 2b:c9:77:87:19:bb:8e:6f:23:ab:95:11:fd:09:f1: c7:d2:13:df:6a:40:27:25:71:d7:a2:7f:d4:4d:0d: 02:76:36:d5:6a:63:ca:76:9e:5e:a3:de:03:39:76: c2:ae:ff:48:35:b8:30:80:31:15:03:6e:0b:42:ff: 19:68:70:a4:61:0e:9b:a2:74:90:30:34:23:44:7c: c4:a7:c2:d8:b5:04:30:98:c4:9e:e4:87:28:81:40: 7e:a1:56:8a:69:a3:42:7c:40:4c:a2:92:e1:f8:9a: c2:0a:24:45:95:e8:49:d6:cb:29:33:1e:e4:61:89: 57:14:e5:c1:cb:8c:e3:21:15:d7:e3:81:e2:11:48: b6:7e:71:50:fd:31:52:68:12:15:31:39:6b:c8:ce: 43:23:37:73:94:da:cb:18:db:50:b1:5e:f0:ca:c8: 0d:d0:a0:bf:73:03:94:7e:bc:88:18:25:a6:6f:ef: a3:13:30:24:9a:b2:0a:0a:e6:b2:08:5f:c9:80:42: e5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:F3:24:C7:89:BE:34:7E:07:48:87:1E:3E:49:68:17:34:A0:23:02 X509v3 Authority Key Identifier: keyid:97:D4:88:4F:98:6D:54:37:82:ED:07:96:24:7D:D5:23:74:61:E3:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCREE/0/97D4884F986D543782ED0796247DD5237461E32E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/97D4884F986D543782ED0796247DD5237461E32E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCREE/0/323430303a383561303a3a2f33322d3332203d3e203138313833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:85a0::/32 Signature Algorithm: sha256WithRSAEncryption 30:a1:79:ac:5e:89:53:a4:a2:f8:ca:05:74:b0:b2:3c:e8:18: a3:2c:19:0a:d2:d1:f0:c8:cb:39:66:07:34:cf:c0:0d:13:62: 2f:20:98:10:5c:05:74:7a:b0:f5:f7:95:5e:f1:5e:86:41:98: 9c:bd:e9:61:06:13:57:53:3e:54:a4:5e:67:75:42:c4:1a:ad: fe:a7:ca:36:e6:61:7e:53:7a:60:bc:5d:40:7e:95:2d:c2:a8: bb:e4:a9:83:28:cb:22:b8:8f:28:72:e4:0b:18:d9:f6:9d:78: 96:b9:cb:61:a9:d8:d0:d6:8e:ce:b0:47:65:3e:d6:5f:2c:33: ef:02:52:2a:7d:c8:e7:40:97:56:c6:23:29:1a:77:c0:0c:65: 26:4e:db:ce:1f:15:4d:6f:ad:19:ec:8d:fa:db:ba:b1:9b:82: 3a:ea:96:5a:55:bb:6a:7a:34:39:2f:76:96:ea:c4:b6:fc:89: dc:61:1e:e9:48:7d:34:79:96:37:77:26:01:86:6b:6c:d7:c3: 2d:7d:07:b1:ca:9f:36:1a:83:a5:ab:4e:b8:91:5f:ed:53:df: 57:63:21:72:31:52:ba:c7:cd:7c:b9:3e:73:7a:7b:56:03:c0: 6d:89:88:c4:c1:b3:1c:f8:82:d6:c0:f0:ba:11:78:47:a4:d0: b4:04:c3:ee -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUbJxl4668gcT15i9VhAlO2TW7D14wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTdENDg4NEY5ODZENTQzNzgyRUQwNzk2MjQ3REQ1MjM3 NDYxRTMyRTAeFw0yNjA1MTExNzMzNDBaFw0yNzA1MTAxNzM4NDBaMDMxMTAvBgNV BAMTKEU3RjMyNEM3ODlCRTM0N0UwNzQ4ODcxRTNFNDk2ODE3MzRBMDIzMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6lz8fqxTg4MQGXr2Y0OwsB0Or 1ffFL9ba+U9/jK3Y+ltDOhBkCZ3r+HmWvC2Sh3YQzC3Lbe6Z/6FWhCvJd4cZu45v I6uVEf0J8cfSE99qQCclcdeif9RNDQJ2NtVqY8p2nl6j3gM5dsKu/0g1uDCAMRUD bgtC/xlocKRhDpuidJAwNCNEfMSnwti1BDCYxJ7khyiBQH6hVoppo0J8QEyikuH4 msIKJEWV6EnWyykzHuRhiVcU5cHLjOMhFdfjgeIRSLZ+cVD9MVJoEhUxOWvIzkMj N3OU2ssY21CxXvDKyA3QoL9zA5R+vIgYJaZv76MTMCSasgoK5rIIX8mAQuWlAgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQU5/Mkx4m+NH4HSIcePkloFzSgIwIwHwYDVR0j BBgwFoAUl9SIT5htVDeC7QeWJH3VI3Rh4y4wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNSRUUv MC85N0Q0ODg0Rjk4NkQ1NDM3ODJFRDA3OTYyNDdERDUyMzc0NjFFMzJFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzk3RDQ4ODRGOTg2RDU0Mzc4MkVEMDc5NjI0N0RE NTIzNzQ2MUUzMkUuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9OQ1JFRS8wLzMyMzQzMDMwM2EzODM1 NjEzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzgzMTM4MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAIWgMA0GCSqGSIb3DQEBCwUAA4IBAQAwoXmsXolTpKL4ygV0sLI86BijLBkK 0tHwyMs5Zgc0z8ANE2IvIJgQXAV0erD195Ve8V6GQZicvelhBhNXUz5UpF5ndULE Gq3+p8o25mF+U3pgvF1AfpUtwqi75KmDKMsiuI8ocuQLGNn2nXiWucthqdjQ1o7O sEdlPtZfLDPvAlIqfcjnQJdWxiMpGnfADGUmTtvOHxVNb60Z7I3627qxm4I66pZa VbtqejQ5L3aW6sS2/IncYR7pSH00eZY3dyYBhmts18MtfQexyp82GoOlq064kV/t U99XYyFyMVK6x818uT5zentWA8BtiYjEwbMc+ILWwPC6EXhHpNC0BMPu -----END CERTIFICATE-----Generated at Wed May 13 21:17:50 2026 by rpki-client