$ rpki-client -vvf rpkica.twnic.tw/rpki/ONEDEGREE/0/323430303a663532303a3a2f33322d3332203d3e2038303735.roa File: 323430303a663532303a3a2f33322d3332203d3e2038303735.roa (raw, json) Hash identifier: bcCWlKGdFRzkYWjpAxFiDRBiMFMYz6fz3Mvlqay5uQg= Subject key identifier: 24:C2:8B:4F:9C:BF:8E:1D:F0:55:AE:07:E0:18:A1:30:C4:DD:4E:9F Certificate issuer: /CN=F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8 Certificate serial: 34DAA8D043DEBEE83D16DA0A9668117AC529C539 Authority key identifier: F1:F9:1D:03:CF:9C:05:D5:D5:B1:A7:B5:82:34:67:72:75:AD:A1:A8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/323430303a663532303a3a2f33322d3332203d3e2038303735.roa Signing time: Mon 11 May 2026 17:31:16 +0000 ROA not before: Mon 11 May 2026 17:26:16 +0000 ROA not after: Mon 10 May 2027 17:31:16 +0000 asID: 8075 IP address blocks: 2400:f520::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.crl rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:da:a8:d0:43:de:be:e8:3d:16:da:0a:96:68:11:7a:c5:29:c5:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8 Validity Not Before: May 11 17:26:16 2026 GMT Not After : May 10 17:31:16 2027 GMT Subject: CN=24C28B4F9CBF8E1DF055AE07E018A130C4DD4E9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:1f:b3:83:ea:9c:ef:1a:a1:2b:e7:5b:f3:60: 16:0b:fb:a1:6e:df:49:ba:b4:f4:44:80:00:d6:ce: 4e:ce:0c:4c:44:bf:e0:83:b3:de:f9:e9:17:37:a4: 65:0b:b0:cd:f6:a4:75:d5:b0:a2:30:8f:0b:81:62: e3:9b:66:b6:0f:d6:52:d8:9c:3b:8d:b4:75:a1:51: 7d:1a:9f:a7:b9:ed:dd:aa:ce:24:f6:4e:24:cc:69: 4e:4a:36:81:db:26:df:73:d3:3a:eb:c3:7b:97:d0: bc:19:ad:53:80:92:90:3c:04:ba:d8:5d:a4:aa:76: 4e:fa:fb:ce:0c:09:aa:91:c3:26:c1:2e:5c:88:2c: 6d:d8:de:04:a4:7f:04:2d:cd:ed:c2:e4:2e:53:77: d5:41:6f:c2:e4:05:c2:f8:c7:3e:c5:75:6b:1d:60: f6:2f:b4:fe:6a:97:82:14:bf:eb:fc:eb:c8:b4:ca: bd:e8:01:6e:06:8a:52:f1:c1:ab:f2:c7:6f:6d:45: 15:a3:99:33:bd:56:be:a8:61:68:72:40:de:9c:53: 16:f3:d7:bb:f4:de:fa:73:64:87:b6:61:bf:75:e6: 7d:fc:2b:57:65:2e:d7:c4:ea:59:09:cc:a7:25:26: 71:e2:73:4f:bf:53:32:9f:eb:e6:c3:ab:23:0d:ba: 53:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C2:8B:4F:9C:BF:8E:1D:F0:55:AE:07:E0:18:A1:30:C4:DD:4E:9F X509v3 Authority Key Identifier: keyid:F1:F9:1D:03:CF:9C:05:D5:D5:B1:A7:B5:82:34:67:72:75:AD:A1:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/323430303a663532303a3a2f33322d3332203d3e2038303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:f520::/32 Signature Algorithm: sha256WithRSAEncryption 4f:41:27:5c:53:9a:96:42:9d:ed:f7:ae:9b:b4:b5:e8:22:b4: a4:91:56:8b:cb:4e:08:3e:93:4d:13:fc:9a:86:68:b3:0a:0b: 15:f9:87:4c:14:99:b6:72:2e:14:97:c0:b1:3e:ce:c9:33:c3: a1:b6:dd:20:5d:57:b5:e5:b3:5b:b2:30:04:3d:aa:e5:53:e6: e2:c8:28:14:d6:35:fd:97:66:9b:f5:ac:16:fd:f2:26:3d:a0: 49:5e:a7:ef:7b:1a:06:d6:76:d9:b8:47:2d:ee:88:a6:60:9b: 85:ba:9e:86:a0:88:0d:6f:fe:f9:3d:52:3f:84:12:37:56:5e: 79:8c:ee:c7:da:db:e6:31:ff:9b:18:56:2d:65:b9:23:4a:0a: 36:4f:44:40:47:b8:57:13:94:7c:ff:d4:d2:5c:3e:d1:92:c4: d0:5b:a9:6f:cc:cd:5e:b8:c8:fe:98:b5:cc:80:01:e4:42:30: 95:17:de:56:80:07:91:69:ac:5b:6f:f3:2f:4e:38:2c:e5:80: 2a:c9:dc:cf:c7:71:98:00:38:41:f4:38:66:57:b0:5d:4f:57: 57:5a:6e:72:25:74:39:bf:6a:0c:cf:2c:f0:d5:2b:0f:bb:84: c3:54:d4:5a:04:6c:21:26:8d:eb:86:dc:44:ad:18:2a:a3:fa: e8:7b:c8:76 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUNNqo0EPevug9FtoKlmgResUpxTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFGOTFEMDNDRjlDMDVENUQ1QjFBN0I1ODIzNDY3NzI3 NUFEQTFBODAeFw0yNjA1MTExNzI2MTZaFw0yNzA1MTAxNzMxMTZaMDMxMTAvBgNV BAMTKDI0QzI4QjRGOUNCRjhFMURGMDU1QUUwN0UwMThBMTMwQzRERDRFOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKH7OD6pzvGqEr51vzYBYL+6Fu 30m6tPREgADWzk7ODExEv+CDs9756Rc3pGULsM32pHXVsKIwjwuBYuObZrYP1lLY nDuNtHWhUX0an6e57d2qziT2TiTMaU5KNoHbJt9z0zrrw3uX0LwZrVOAkpA8BLrY XaSqdk76+84MCaqRwybBLlyILG3Y3gSkfwQtze3C5C5Td9VBb8LkBcL4xz7FdWsd YPYvtP5ql4IUv+v868i0yr3oAW4GilLxwavyx29tRRWjmTO9Vr6oYWhyQN6cUxbz 17v03vpzZIe2Yb915n38K1dlLtfE6lkJzKclJnHic0+/UzKf6+bDqyMNulP5AgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUJMKLT5y/jh3wVa4H4BihMMTdTp8wHwYDVR0j BBgwFoAU8fkdA8+cBdXVsae1gjRncnWtoagwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT05FREVH UkVFLzAvRjFGOTFEMDNDRjlDMDVENUQ1QjFBN0I1ODIzNDY3NzI3NUFEQTFBOC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9GMUY5MUQwM0NGOUMwNUQ1RDVCMUE3QjU4 MjM0Njc3Mjc1QURBMUE4LmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuG X3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT05FREVHUkVFLzAvMzIzNDMw MzAzYTY2MzUzMjMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzgzMDM3MzUucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAPUgMA0GCSqGSIb3DQEBCwUAA4IBAQBPQSdcU5qWQp3t966btLXo IrSkkVaLy04IPpNNE/yahmizCgsV+YdMFJm2ci4Ul8CxPs7JM8Ohtt0gXVe15bNb sjAEParlU+biyCgU1jX9l2ab9awW/fImPaBJXqfvexoG1nbZuEct7oimYJuFup6G oIgNb/75PVI/hBI3Vl55jO7H2tvmMf+bGFYtZbkjSgo2T0RAR7hXE5R8/9TSXD7R ksTQW6lvzM1euMj+mLXMgAHkQjCVF95WgAeRaaxbb/MvTjgs5YAqydzPx3GYADhB 9DhmV7BdT1dXWm5yJXQ5v2oMzyzw1SsPu4TDVNRaBGwhJo3rhtxErRgqo/roe8h2 -----END CERTIFICATE-----Generated at Wed May 13 21:14:42 2026 by rpki-client