$ rpki-client -vvf rpkica.twnic.tw/rpki/NKBNET/0/323430333a623334303a3a2f33322d3332203d3e2037343832.roa File: 323430333a623334303a3a2f33322d3332203d3e2037343832.roa (raw, json) Hash identifier: hiAMshIFeOvfI56eDRx+E/hRaz9fkWvi1Lc3t0AuAEM= Subject key identifier: 15:AF:1E:F1:5A:99:76:B9:83:C2:BA:22:B2:E0:1A:88:DB:4D:DC:40 Certificate issuer: /CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Certificate serial: 2433E3A4F2E5EEF2340856DFBC30997AC50B9941 Authority key identifier: 5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NKBNET/0/323430333a623334303a3a2f33322d3332203d3e2037343832.roa Signing time: Mon 11 May 2026 16:45:44 +0000 ROA not before: Mon 11 May 2026 16:40:44 +0000 ROA not after: Mon 10 May 2027 16:45:44 +0000 asID: 7482 IP address blocks: 2403:b340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:33:e3:a4:f2:e5:ee:f2:34:08:56:df:bc:30:99:7a:c5:0b:99:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Validity Not Before: May 11 16:40:44 2026 GMT Not After : May 10 16:45:44 2027 GMT Subject: CN=15AF1EF15A9976B983C2BA22B2E01A88DB4DDC40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c5:d7:77:9d:2b:00:27:fa:2b:60:07:95:7f: 3a:75:ba:9f:5d:37:5e:c3:82:68:bc:10:a6:16:38: ab:ec:f4:3a:03:af:1c:f3:a0:ea:86:58:df:b9:ae: 71:52:22:0a:73:8b:e1:d1:d3:b9:11:73:d2:01:6e: 5b:c5:44:b5:62:76:6a:c1:de:4e:7b:b2:cf:97:aa: c4:86:cb:6a:e6:41:67:e2:8e:f9:a5:b0:21:9b:41: 86:2d:b1:57:0c:79:2e:89:50:32:8d:57:f2:f0:3a: 28:a6:50:92:92:96:6b:20:26:e6:ae:9d:b0:61:cf: 15:a8:85:73:97:82:dd:67:a4:67:1c:2f:1d:5e:74: 19:d3:77:05:0a:f2:15:71:1a:8e:f4:93:ba:b6:41: c4:86:2d:4e:7c:fa:aa:31:0b:0d:d2:81:53:8d:c7: 05:0e:f4:c7:f6:16:d4:bc:41:2d:6e:c0:ea:f7:e1: 4c:60:b9:5c:01:21:dd:68:43:3b:88:fd:13:1b:8e: 1f:35:cc:78:a2:f4:c1:a1:a1:07:cd:a7:be:6a:f1: 56:0f:95:f2:5e:41:30:0c:29:f3:b3:5c:9e:f5:81: eb:06:da:76:0d:ff:89:98:7b:24:71:58:1d:33:1a: ac:9f:f6:d2:6d:d8:95:94:d8:45:df:18:48:90:37: 58:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:AF:1E:F1:5A:99:76:B9:83:C2:BA:22:B2:E0:1A:88:DB:4D:DC:40 X509v3 Authority Key Identifier: keyid:5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/323430333a623334303a3a2f33322d3332203d3e2037343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b340::/32 Signature Algorithm: sha256WithRSAEncryption 24:a4:71:fd:0b:4f:84:0a:03:64:cd:9b:d6:79:e9:8a:b8:f5: c2:2b:a7:3d:8b:47:e9:7d:e6:78:5f:6b:6b:25:66:a0:64:05: 90:cc:8f:dc:ab:3e:69:15:b3:94:0e:96:26:db:cb:c9:f0:11: db:a4:b0:bf:45:d0:4f:05:75:2b:a8:78:77:5e:d8:97:58:42: 17:e2:47:43:91:3d:24:67:14:92:0b:b3:0e:53:7b:6d:46:99: 81:8e:77:8d:b9:a9:87:2a:aa:71:e4:ad:9d:01:bf:71:08:07: f0:26:38:51:fa:c1:50:de:54:40:5a:a3:a7:09:8e:f1:20:67: b0:29:1a:67:89:ae:cb:50:83:47:4b:a1:6d:03:20:95:ae:1c: 6a:83:47:1e:35:6f:2b:59:69:5a:e9:98:22:30:40:a5:44:66: bd:95:20:a0:50:d4:19:eb:ce:f7:c2:b4:e8:0f:71:0e:15:c9: 42:f8:93:17:77:a5:68:2f:b6:de:76:71:d3:af:03:2e:f3:d1: 1b:60:f0:61:7e:37:a3:6d:25:46:cb:6b:aa:a8:43:ab:31:94: 5d:65:e9:5d:38:8e:8d:cf:7b:c8:51:ac:d7:86:a0:81:13:f6: b1:b8:3d:1a:f2:d1:1c:f9:31:4f:25:11:61:72:3f:d2:c4:2c: bf:2e:92:97 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUJDPjpPLl7vI0CFbfvDCZesULmUEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVD NTg4QkE5RTAeFw0yNjA1MTExNjQwNDRaFw0yNzA1MTAxNjQ1NDRaMDMxMTAvBgNV BAMTKDE1QUYxRUYxNUE5OTc2Qjk4M0MyQkEyMkIyRTAxQTg4REI0RERDNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJxdd3nSsAJ/orYAeVfzp1up9d N17Dgmi8EKYWOKvs9DoDrxzzoOqGWN+5rnFSIgpzi+HR07kRc9IBblvFRLVidmrB 3k57ss+XqsSGy2rmQWfijvmlsCGbQYYtsVcMeS6JUDKNV/LwOiimUJKSlmsgJuau nbBhzxWohXOXgt1npGccLx1edBnTdwUK8hVxGo70k7q2QcSGLU58+qoxCw3SgVON xwUO9Mf2FtS8QS1uwOr34UxguVwBId1oQzuI/RMbjh81zHii9MGhoQfNp75q8VYP lfJeQTAMKfOzXJ71gesG2nYN/4mYeyRxWB0zGqyf9tJt2JWU2EXfGEiQN1hpAgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQUFa8e8VqZdrmDwroisuAaiNtN3EAwHwYDVR0j BBgwFoAUWivuJDlbNvT/qVdT9nMVFcWIup4wDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVU LzAvNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVDNTg4QkE5RS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS81QTJCRUUyNDM5NUIzNkY0RkZBOTU3NTNGNjcz MTUxNUM1ODhCQTlFLmNlcjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVULzAvMzIzNDMwMzMzYTYy MzMzNDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzczNDM4MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkA7NAMA0GCSqGSIb3DQEBCwUAA4IBAQAkpHH9C0+ECgNkzZvWeemKuPXCK6c9 i0fpfeZ4X2trJWagZAWQzI/cqz5pFbOUDpYm28vJ8BHbpLC/RdBPBXUrqHh3XtiX WEIX4kdDkT0kZxSSC7MOU3ttRpmBjneNuamHKqpx5K2dAb9xCAfwJjhR+sFQ3lRA WqOnCY7xIGewKRpnia7LUINHS6FtAyCVrhxqg0ceNW8rWWla6ZgiMEClRGa9lSCg UNQZ6873wrToD3EOFclC+JMXd6VoL7bednHTrwMu89EbYPBhfjejbSVGy2uqqEOr MZRdZeldOI6Nz3vIUazXhqCBE/axuD0a8tEc+TFPJRFhcj/SxCy/LpKX -----END CERTIFICATE-----Generated at Wed May 13 21:10:51 2026 by rpki-client