$ rpki-client -vvf rpkica.twnic.tw/rpki/OPEN/0/323430323a323865303a3a2f33322d3438203d3e2039393233.roa File: 323430323a323865303a3a2f33322d3438203d3e2039393233.roa (raw, json) Hash identifier: gHs1ooQ8UXCCXGul6QZXotFYNVwq0J8g9JJdOF3VUFM= Subject key identifier: BA:39:88:FB:D9:21:55:3B:A2:D0:67:04:D4:A8:7E:2E:B6:42:1B:3E Certificate issuer: /CN=7F7E2E5D20C748B8BE9FDE4400E023205975FD55 Certificate serial: 72C332B6C00E9B93C366BC90E21CF02F064C6078 Authority key identifier: 7F:7E:2E:5D:20:C7:48:B8:BE:9F:DE:44:00:E0:23:20:59:75:FD:55 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.cer Subject info access: rsync://rpkica.twnic.tw/rpki/OPEN/0/323430323a323865303a3a2f33322d3438203d3e2039393233.roa Signing time: Mon 11 May 2026 17:52:55 +0000 ROA not before: Mon 11 May 2026 17:47:55 +0000 ROA not after: Mon 10 May 2027 17:52:55 +0000 asID: 9923 IP address blocks: 2402:28e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/OPEN/0/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.crl rsync://rpkica.twnic.tw/rpki/OPEN/0/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:52:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:c3:32:b6:c0:0e:9b:93:c3:66:bc:90:e2:1c:f0:2f:06:4c:60:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F7E2E5D20C748B8BE9FDE4400E023205975FD55 Validity Not Before: May 11 17:47:55 2026 GMT Not After : May 10 17:52:55 2027 GMT Subject: CN=BA3988FBD921553BA2D06704D4A87E2EB6421B3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:3e:18:a3:a1:a2:3e:2f:49:7d:9f:31:d2:c1: 09:38:b0:ec:ae:b6:94:14:8a:8b:65:9d:c8:9a:e5: c4:81:5c:fe:a4:6d:4f:a9:9a:e7:98:7d:3b:69:ec: 75:a6:1d:24:40:45:38:0f:14:31:76:7a:5c:3a:b3: 97:fc:83:57:02:0e:3e:da:51:b1:78:96:4d:0d:9d: 56:74:22:a7:c6:ad:7c:0e:0b:34:ed:9e:37:b7:96: 16:8a:5c:8c:56:ac:f4:27:da:f3:bd:34:9b:01:f8: 38:10:83:d4:19:77:ab:c9:6c:bf:f0:88:50:78:c2: dc:79:c9:88:e1:01:c8:cd:d7:e5:22:c4:a8:36:8f: ea:f4:ee:b7:d5:8a:f4:d1:fd:34:cc:f0:7d:f6:c2: db:72:70:27:af:52:64:c0:78:27:a7:36:ea:02:00: f2:ca:97:d1:a9:bd:6a:00:fd:a9:82:12:32:31:b5: 34:f3:89:86:40:04:2b:13:cf:bd:2b:b7:28:68:8b: 8b:aa:ef:d5:ae:4b:39:2b:7b:53:c2:e3:15:5e:f7: e7:4e:0c:8a:0f:c0:35:47:d7:e0:3c:a8:38:5b:33: e4:c3:97:ef:97:a6:13:09:24:b1:5a:f9:52:9d:86: 47:18:f4:0f:a9:69:38:44:d8:fb:32:28:26:8c:6a: d4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:39:88:FB:D9:21:55:3B:A2:D0:67:04:D4:A8:7E:2E:B6:42:1B:3E X509v3 Authority Key Identifier: keyid:7F:7E:2E:5D:20:C7:48:B8:BE:9F:DE:44:00:E0:23:20:59:75:FD:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/OPEN/0/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/7F7E2E5D20C748B8BE9FDE4400E023205975FD55.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPEN/0/323430323a323865303a3a2f33322d3438203d3e2039393233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:28e0::/32 Signature Algorithm: sha256WithRSAEncryption 8f:0d:d9:9b:cb:31:b0:f4:22:02:76:79:77:7e:3f:5a:1f:1f: af:16:4e:91:a5:f5:ad:22:59:f2:f8:23:f2:27:c0:1c:c3:6d: 82:38:48:cf:9a:76:f8:ec:70:f9:ec:65:3c:99:68:3e:32:17: e0:bc:c7:e9:a8:c0:68:8b:29:94:2c:69:e9:05:65:cc:e1:f0: be:f9:ed:ef:5a:fd:58:36:ad:85:45:59:8a:79:be:d0:b6:53: ec:76:81:98:d5:04:1b:fa:90:6e:09:e9:84:34:9e:84:81:4e: bc:07:2d:65:b6:17:ee:c1:a1:69:df:06:eb:5d:68:b5:1e:a8: 42:ad:04:93:1e:9c:8c:58:26:4f:90:1d:69:c4:7c:92:5d:c5: de:99:22:07:f3:e9:13:83:10:88:05:9e:3a:89:89:7a:6a:9b: 4c:62:31:92:a6:de:c2:aa:f1:54:ec:5d:76:8d:7a:30:80:dd: 8b:58:c6:cb:f2:2b:d1:5a:6f:5f:c7:3a:cd:b2:23:56:54:33: f0:82:3f:2f:c8:e4:97:58:35:17:b4:3e:09:f4:04:31:2d:bc: 98:7e:e9:4c:b1:c1:34:f6:9e:22:a5:07:08:a7:27:77:5d:36: 74:ea:04:a5:a6:0a:10:a6:35:ab:23:69:22:d3:5e:04:e9:55: 66:6e:72:a8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUcsMytsAOm5PDZryQ4hzwLwZMYHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Y3RTJFNUQyMEM3NDhCOEJFOUZERTQ0MDBFMDIzMjA1 OTc1RkQ1NTAeFw0yNjA1MTExNzQ3NTVaFw0yNzA1MTAxNzUyNTVaMDMxMTAvBgNV BAMTKEJBMzk4OEZCRDkyMTU1M0JBMkQwNjcwNEQ0QTg3RTJFQjY0MjFCM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVPhijoaI+L0l9nzHSwQk4sOyu tpQUiotlncia5cSBXP6kbU+pmueYfTtp7HWmHSRARTgPFDF2elw6s5f8g1cCDj7a UbF4lk0NnVZ0IqfGrXwOCzTtnje3lhaKXIxWrPQn2vO9NJsB+DgQg9QZd6vJbL/w iFB4wtx5yYjhAcjN1+UixKg2j+r07rfVivTR/TTM8H32wttycCevUmTAeCenNuoC APLKl9GpvWoA/amCEjIxtTTziYZABCsTz70rtyhoi4uq79WuSzkre1PC4xVe9+dO DIoPwDVH1+A8qDhbM+TDl++XphMJJLFa+VKdhkcY9A+paThE2PsyKCaMatRbAgMB AAGjggHcMIIB2DAdBgNVHQ4EFgQUujmI+9khVTui0GcE1Kh+LrZCGz4wHwYDVR0j BBgwFoAUf34uXSDHSLi+n95EAOAjIFl1/VUwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT1BFTi8w LzdGN0UyRTVEMjBDNzQ4QjhCRTlGREU0NDAwRTAyMzIwNTk3NUZENTUuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvN0Y3RTJFNUQyMEM3NDhCOEJFOUZERTQ0MDBFMDIz MjA1OTc1RkQ1NS5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL09QRU4vMC8zMjM0MzAzMjNhMzIzODY1 MzAzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzOTM5MzIzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQC KOAwDQYJKoZIhvcNAQELBQADggEBAI8N2ZvLMbD0IgJ2eXd+P1ofH68WTpGl9a0i WfL4I/InwBzDbYI4SM+advjscPnsZTyZaD4yF+C8x+mowGiLKZQsaekFZczh8L75 7e9a/Vg2rYVFWYp5vtC2U+x2gZjVBBv6kG4J6YQ0noSBTrwHLWW2F+7BoWnfButd aLUeqEKtBJMenIxYJk+QHWnEfJJdxd6ZIgfz6RODEIgFnjqJiXpqm0xiMZKm3sKq 8VTsXXaNejCA3YtYxsvyK9Fab1/HOs2yI1ZUM/CCPy/I5JdYNRe0Pgn0BDEtvJh+ 6UyxwTT2niKlBwinJ3ddNnTqBKWmChCmNasjaSLTXgTpVWZucqg= -----END CERTIFICATE-----Generated at Wed May 13 21:17:20 2026 by rpki-client