$ rpki-client -vvf rpkica.twnic.tw/rpki/NKBNET/0/323430333a623334303a3a2f33322d3332203d3e2039393232.roa File: 323430333a623334303a3a2f33322d3332203d3e2039393232.roa (raw, json) Hash identifier: gstqBh9leADrly9mEk8JDvYH97tC5t4YGpfgybnlAak= Subject key identifier: E1:91:AF:71:DF:11:AB:D3:41:5A:E5:3C:B9:73:1A:DC:34:9F:81:E4 Certificate issuer: /CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Certificate serial: 3E23AC102066249C2468D8D220182BB32BED2ECE Authority key identifier: 5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NKBNET/0/323430333a623334303a3a2f33322d3332203d3e2039393232.roa Signing time: Mon 11 May 2026 16:42:08 +0000 ROA not before: Mon 11 May 2026 16:37:08 +0000 ROA not after: Mon 10 May 2027 16:42:08 +0000 asID: 9922 IP address blocks: 2403:b340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:23:ac:10:20:66:24:9c:24:68:d8:d2:20:18:2b:b3:2b:ed:2e:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Validity Not Before: May 11 16:37:08 2026 GMT Not After : May 10 16:42:08 2027 GMT Subject: CN=E191AF71DF11ABD3415AE53CB9731ADC349F81E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:52:f2:0b:93:62:a4:49:c1:16:bd:31:35: cd:c1:ba:6a:0a:b9:50:12:e6:13:51:ea:8a:1a:60: b8:d0:f5:ab:dd:99:c8:f2:8b:2d:4d:93:46:de:27: a7:94:be:a0:cd:8b:c5:d4:96:44:2d:e1:19:21:20: 32:4b:79:ad:e8:38:bb:1a:9e:5d:46:6e:b6:69:73: 2a:34:d1:a8:97:31:ef:19:ef:09:b1:82:55:bb:53: 73:52:22:0c:7e:31:03:d6:a4:3e:9f:d6:8e:01:64: d9:39:6f:0d:c3:87:86:9f:eb:0b:87:47:0d:e9:fc: e0:39:1f:77:8b:0e:41:12:ae:72:a6:58:84:0e:69: 6f:c5:9a:26:25:c7:7c:01:e3:71:1f:37:19:e3:aa: 89:5b:28:58:0e:be:43:5e:bf:4b:6f:63:8c:25:52: 77:ee:4a:d9:ce:67:e2:0a:56:af:34:35:ca:51:d9: 9f:40:1c:80:01:b2:89:5d:c6:60:65:60:80:52:4a: d2:ad:44:59:fb:e7:1a:ab:9f:3f:57:a3:d3:a8:35: 4b:b5:cb:cf:c9:90:fc:a7:db:17:2a:31:40:f2:b2: e9:75:05:72:ec:82:3e:ad:45:cd:89:56:14:95:af: ef:9e:0d:8a:b0:b7:30:07:af:51:de:67:97:a2:b5: a5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:91:AF:71:DF:11:AB:D3:41:5A:E5:3C:B9:73:1A:DC:34:9F:81:E4 X509v3 Authority Key Identifier: keyid:5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/323430333a623334303a3a2f33322d3332203d3e2039393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b340::/32 Signature Algorithm: sha256WithRSAEncryption 4a:2e:5c:57:3f:89:9b:7f:cf:d8:70:1a:3d:86:16:36:ed:1e: a9:5f:63:ba:64:84:70:e6:8f:1d:d0:ee:79:06:5e:16:8f:36: 46:50:97:fb:dc:bd:e6:b7:ab:2e:27:d2:b9:27:fa:05:e3:89: 84:ce:30:a6:cb:6f:68:7c:66:dd:b5:27:45:1f:d5:9e:32:ba: 43:e4:0e:16:66:5d:9d:49:c9:29:a9:ec:bb:e5:5d:c1:c6:0a: ae:ab:58:9b:ea:fb:51:c7:29:ec:db:e2:b0:45:e7:18:3a:99: 7d:13:8d:d0:97:28:74:aa:0d:14:10:73:f6:e3:ae:9d:15:89: 39:31:24:6f:01:b2:46:64:8e:ff:fd:a2:f5:ee:53:63:b9:44: d4:30:16:f9:25:fd:47:7c:cc:23:d6:a7:68:a8:df:00:ef:22: 63:96:3f:16:ad:d5:9c:1a:1b:38:b0:11:69:e0:17:80:d0:54: 7e:8f:ad:2c:1a:14:18:36:db:b4:52:69:70:96:8d:6f:2a:4a: a9:46:50:47:19:88:ae:62:76:0d:18:d1:a0:58:ba:e2:33:ec: 15:f7:19:3d:67:7c:29:9d:98:16:e2:d5:5e:5a:06:9a:a5:74: a0:00:69:2d:02:49:a3:19:cd:9e:6b:93:11:48:98:ac:bf:69: 73:f9:8f:33 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUPiOsECBmJJwkaNjSIBgrsyvtLs4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVD NTg4QkE5RTAeFw0yNjA1MTExNjM3MDhaFw0yNzA1MTAxNjQyMDhaMDMxMTAvBgNV BAMTKEUxOTFBRjcxREYxMUFCRDM0MTVBRTUzQ0I5NzMxQURDMzQ5RjgxRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLqVLyC5NipEnBFr0xNc3BumoK uVAS5hNR6ooaYLjQ9avdmcjyiy1Nk0beJ6eUvqDNi8XUlkQt4RkhIDJLea3oOLsa nl1GbrZpcyo00aiXMe8Z7wmxglW7U3NSIgx+MQPWpD6f1o4BZNk5bw3Dh4af6wuH Rw3p/OA5H3eLDkESrnKmWIQOaW/FmiYlx3wB43EfNxnjqolbKFgOvkNev0tvY4wl UnfuStnOZ+IKVq80NcpR2Z9AHIABsoldxmBlYIBSStKtRFn75xqrnz9Xo9OoNUu1 y8/JkPyn2xcqMUDysul1BXLsgj6tRc2JVhSVr++eDYqwtzAHr1HeZ5eitaX5AgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQU4ZGvcd8Rq9NBWuU8uXMa3DSfgeQwHwYDVR0j BBgwFoAUWivuJDlbNvT/qVdT9nMVFcWIup4wDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVU LzAvNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVDNTg4QkE5RS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS81QTJCRUUyNDM5NUIzNkY0RkZBOTU3NTNGNjcz MTUxNUM1ODhCQTlFLmNlcjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVULzAvMzIzNDMwMzMzYTYy MzMzNDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzkzOTMyMzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkA7NAMA0GCSqGSIb3DQEBCwUAA4IBAQBKLlxXP4mbf8/YcBo9hhY27R6pX2O6 ZIRw5o8d0O55Bl4WjzZGUJf73L3mt6suJ9K5J/oF44mEzjCmy29ofGbdtSdFH9We MrpD5A4WZl2dSckpqey75V3Bxgquq1ib6vtRxyns2+KwRecYOpl9E43Qlyh0qg0U EHP2466dFYk5MSRvAbJGZI7//aL17lNjuUTUMBb5Jf1HfMwj1qdoqN8A7yJjlj8W rdWcGhs4sBFp4BeA0FR+j60sGhQYNtu0Umlwlo1vKkqpRlBHGYiuYnYNGNGgWLri M+wV9xk9Z3wpnZgW4tVeWgaapXSgAGktAkmjGc2ea5MRSJisv2lz+Y8z -----END CERTIFICATE-----Generated at Wed May 13 21:10:51 2026 by rpki-client