$ rpki-client -vvf rpkica.twnic.tw/rpki/OPENFOR/0/323430353a653463303a3a2f33322d3634203d3e20313331363734.roa File: 323430353a653463303a3a2f33322d3634203d3e20313331363734.roa (raw, json) Hash identifier: R5XmHRGNRbL/JzVgicSjGM6c3avdhtCi9gHhhibn8Iw= Subject key identifier: 89:BA:5E:F2:AA:0A:29:B1:D8:7B:C3:66:9D:46:7B:80:B8:7F:09:37 Certificate issuer: /CN=42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162 Certificate serial: 437F193B3BBD5083EEC4095939EC61A48D5CBF01 Authority key identifier: 42:C7:F7:8E:9F:DA:00:B9:CA:3E:2D:1D:DF:5E:08:DE:A8:62:01:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer Subject info access: rsync://rpkica.twnic.tw/rpki/OPENFOR/0/323430353a653463303a3a2f33322d3634203d3e20313331363734.roa Signing time: Mon 11 May 2026 17:09:47 +0000 ROA not before: Mon 11 May 2026 17:04:47 +0000 ROA not after: Mon 10 May 2027 17:09:47 +0000 asID: 131674 IP address blocks: 2405:e4c0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/OPENFOR/0/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.crl rsync://rpkica.twnic.tw/rpki/OPENFOR/0/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7f:19:3b:3b:bd:50:83:ee:c4:09:59:39:ec:61:a4:8d:5c:bf:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162 Validity Not Before: May 11 17:04:47 2026 GMT Not After : May 10 17:09:47 2027 GMT Subject: CN=89BA5EF2AA0A29B1D87BC3669D467B80B87F0937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a7:c3:a4:f7:c7:d2:32:b3:3d:96:ac:7e:b0: 0a:1d:3a:9a:21:ec:9f:67:56:48:b8:88:b6:4c:80: ac:db:f3:eb:9c:3b:b0:a1:66:a1:44:e5:05:c8:b3: 78:4b:33:fb:46:a5:59:61:8a:4d:5f:17:37:e9:1a: b7:08:13:80:be:83:4a:61:fb:ef:46:4f:e8:26:00: 61:6e:a0:f8:c8:c9:db:19:26:aa:0f:77:cb:47:ba: 52:bf:0d:73:1a:52:38:84:e3:8d:b7:e4:a3:02:ae: 8f:68:d3:4e:4a:a3:c1:52:fe:09:95:34:27:57:db: 1d:59:2e:16:b2:7b:a3:ad:94:7b:1c:ed:5a:28:66: 01:9f:e6:f9:07:06:4f:b9:f5:80:b8:9c:6f:1e:00: 97:cf:87:77:41:5f:72:bb:1b:a5:0a:72:61:2a:57: b7:de:a4:6f:a5:39:9e:b0:78:4e:89:71:a2:6f:1c: 52:14:5c:1f:43:ff:c8:80:df:65:ae:e4:6e:80:c1: 60:c0:a2:42:fe:53:6b:fc:83:39:2d:60:0e:5e:34: 7c:58:56:93:78:3b:ed:0f:b5:8d:c2:4b:d7:cb:89: 6a:86:b5:b8:8e:40:dd:59:4d:bc:ba:d2:72:31:0a: 58:8e:29:74:25:f8:d5:23:e9:ba:4a:ae:c1:73:01: 21:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BA:5E:F2:AA:0A:29:B1:D8:7B:C3:66:9D:46:7B:80:B8:7F:09:37 X509v3 Authority Key Identifier: keyid:42:C7:F7:8E:9F:DA:00:B9:CA:3E:2D:1D:DF:5E:08:DE:A8:62:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/OPENFOR/0/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPENFOR/0/323430353a653463303a3a2f33322d3634203d3e20313331363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:e4c0::/32 Signature Algorithm: sha256WithRSAEncryption 29:fb:3b:1f:cf:77:0c:f9:1d:8b:ec:9c:52:de:91:82:87:66: a6:07:ca:f6:dd:4c:05:35:f7:52:64:96:f8:0a:0c:b8:8b:94: ab:03:76:34:d1:fb:8c:64:bb:3b:71:69:3b:c6:8e:c6:2e:25: b2:27:9b:ea:2f:be:4b:98:18:29:5c:30:c0:0c:a0:1d:2b:f7: f2:da:fd:47:1f:fa:59:35:c3:a6:2e:33:6c:08:f8:da:22:45: 93:a5:bf:3e:28:da:85:74:a1:74:15:ba:f9:7a:dd:16:ce:f5: d0:17:54:87:77:f6:07:88:49:e4:55:6f:18:e7:76:44:d1:8f: 78:7a:f7:ee:28:62:d7:bb:60:9a:84:47:4a:aa:55:52:a1:e0: 75:93:9e:1b:63:69:04:71:f3:3e:b7:c6:9a:aa:df:da:7b:6d: 21:c5:a6:b8:a6:bc:06:eb:2d:37:7c:78:21:be:5a:67:de:89: d5:fb:fa:ed:86:7b:f6:cf:bc:b4:6b:39:ba:7a:e5:31:68:1f: f3:0e:21:90:0e:be:5f:8c:13:be:64:e2:1b:0f:55:f5:ad:27: cb:3f:4f:63:27:07:28:2c:79:cf:05:eb:94:fd:a1:49:11:74: bf:69:23:55:b5:27:b8:da:3a:14:b8:47:01:bd:c0:f0:1c:a1: 79:c1:7a:62 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUQ38ZOzu9UIPuxAlZOexhpI1cvwEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDN0Y3OEU5RkRBMDBCOUNBM0UyRDFEREY1RTA4REVB ODYyMDE2MjAeFw0yNjA1MTExNzA0NDdaFw0yNzA1MTAxNzA5NDdaMDMxMTAvBgNV BAMTKDg5QkE1RUYyQUEwQTI5QjFEODdCQzM2NjlENDY3QjgwQjg3RjA5MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOp8Ok98fSMrM9lqx+sAodOpoh 7J9nVki4iLZMgKzb8+ucO7ChZqFE5QXIs3hLM/tGpVlhik1fFzfpGrcIE4C+g0ph ++9GT+gmAGFuoPjIydsZJqoPd8tHulK/DXMaUjiE44235KMCro9o005Ko8FS/gmV NCdX2x1ZLhaye6OtlHsc7VooZgGf5vkHBk+59YC4nG8eAJfPh3dBX3K7G6UKcmEq V7fepG+lOZ6weE6JcaJvHFIUXB9D/8iA32Wu5G6AwWDAokL+U2v8gzktYA5eNHxY VpN4O+0PtY3CS9fLiWqGtbiOQN1ZTby60nIxCliOKXQl+NUj6bpKrsFzASEhAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUibpe8qoKKbHYe8NmnUZ7gLh/CTcwHwYDVR0j BBgwFoAUQsf3jp/aALnKPi0d314I3qhiAWIwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT1BFTkZP Ui8wLzQyQzdGNzhFOUZEQTAwQjlDQTNFMkQxRERGNUUwOERFQTg2MjAxNjIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvNDJDN0Y3OEU5RkRBMDBCOUNBM0UyRDFEREY1 RTA4REVBODYyMDE2Mi5jZXIwfQYIKwYBBQUHAQsEcTBvMG0GCCsGAQUFBzALhmFy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL09QRU5GT1IvMC8zMjM0MzAzNTNh NjUzNDYzMzAzYTNhMmYzMzMyMmQzNjM0MjAzZDNlMjAzMTMzMzEzNjM3MzQucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkBeTAMA0GCSqGSIb3DQEBCwUAA4IBAQAp+zsfz3cM+R2L7JxS3pGC h2amB8r23UwFNfdSZJb4Cgy4i5SrA3Y00fuMZLs7cWk7xo7GLiWyJ5vqL75LmBgp XDDADKAdK/fy2v1HH/pZNcOmLjNsCPjaIkWTpb8+KNqFdKF0Fbr5et0WzvXQF1SH d/YHiEnkVW8Y53ZE0Y94evfuKGLXu2CahEdKqlVSoeB1k54bY2kEcfM+t8aaqt/a e20hxaa4prwG6y03fHghvlpn3onV+/rthnv2z7y0azm6euUxaB/zDiGQDr5fjBO+ ZOIbD1X1rSfLP09jJwcoLHnPBeuU/aFJEXS/aSNVtSe42joUuEcBvcDwHKF5wXpi -----END CERTIFICATE-----Generated at Wed May 13 21:11:01 2026 by rpki-client