$ rpki-client -vvf rpkica.twnic.tw/rpki/OPENFOR/0/323430353a653463303a3a2f33322d3634203d3e20313331363737.roa File: 323430353a653463303a3a2f33322d3634203d3e20313331363737.roa (raw, json) Hash identifier: 81X32lIDsqpLyEd5Xpy3ESJVHUbt39R1tegiSMqE1PY= Subject key identifier: 4A:F6:D2:6D:C0:30:5A:E1:44:87:FB:18:50:7C:45:A5:AF:77:6D:6F Certificate issuer: /CN=42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162 Certificate serial: 7C31DC6CC003725E164F53B79F24221B879EC7C7 Authority key identifier: 42:C7:F7:8E:9F:DA:00:B9:CA:3E:2D:1D:DF:5E:08:DE:A8:62:01:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer Subject info access: rsync://rpkica.twnic.tw/rpki/OPENFOR/0/323430353a653463303a3a2f33322d3634203d3e20313331363737.roa Signing time: Mon 11 May 2026 17:07:00 +0000 ROA not before: Mon 11 May 2026 17:02:00 +0000 ROA not after: Mon 10 May 2027 17:07:00 +0000 asID: 131677 IP address blocks: 2405:e4c0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/OPENFOR/0/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.crl rsync://rpkica.twnic.tw/rpki/OPENFOR/0/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:31:dc:6c:c0:03:72:5e:16:4f:53:b7:9f:24:22:1b:87:9e:c7:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162 Validity Not Before: May 11 17:02:00 2026 GMT Not After : May 10 17:07:00 2027 GMT Subject: CN=4AF6D26DC0305AE14487FB18507C45A5AF776D6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:34:f9:87:2c:73:7d:0b:6f:7e:f4:b9:ce:f0: 5a:16:af:8a:9a:e7:a2:d6:15:87:bc:cc:ea:4c:10: f5:06:90:43:ae:f9:0e:f8:90:22:99:31:92:cf:ae: 22:b7:42:a7:31:37:33:ed:8b:83:04:c1:24:7f:b3: 30:63:10:8d:b7:f1:d8:4b:a2:ef:91:22:ee:fd:51: 06:53:54:01:f5:ca:90:33:7f:af:9f:64:dc:bc:e6: 4c:a2:4e:cd:4e:4d:a9:cd:60:5f:6f:f2:c5:8b:5a: db:dc:9c:a1:d1:5f:9c:52:43:88:1a:85:48:53:50: 26:65:f8:67:ca:75:88:fa:c3:0a:41:39:90:4a:02: 9c:16:42:77:c4:73:24:b9:35:46:fa:f0:76:f4:17: 1d:ab:9d:7a:51:2d:5f:0e:4b:1a:07:35:a8:9f:f9: a7:70:86:88:91:30:d5:49:45:b0:34:9d:cb:48:67: cc:ed:79:b3:e0:9d:ac:20:aa:72:d5:c5:08:52:b3: 8d:b3:35:a0:c9:05:c4:74:ff:1a:08:21:13:ef:a3: 3f:b6:00:cb:a0:df:e2:b0:c2:0a:43:e5:09:d3:ae: 4b:01:28:7c:55:d4:27:fc:48:53:ee:51:7a:d5:29: 2a:cb:85:83:80:eb:2e:c3:52:4a:87:52:70:74:3b: e8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F6:D2:6D:C0:30:5A:E1:44:87:FB:18:50:7C:45:A5:AF:77:6D:6F X509v3 Authority Key Identifier: keyid:42:C7:F7:8E:9F:DA:00:B9:CA:3E:2D:1D:DF:5E:08:DE:A8:62:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/OPENFOR/0/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPENFOR/0/323430353a653463303a3a2f33322d3634203d3e20313331363737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:e4c0::/32 Signature Algorithm: sha256WithRSAEncryption 64:3c:19:44:94:9e:62:58:f7:24:2e:f6:a5:34:d9:06:60:72: 63:ad:a2:77:50:66:c3:28:21:f0:f0:af:b2:9f:93:0f:20:15: c8:2d:a1:74:d1:dc:73:51:7e:fa:7b:62:3d:1c:21:58:9e:fb: 76:80:83:cd:5c:b0:e6:8e:4a:fa:b7:db:e9:97:b9:45:fb:d8: be:59:4a:2b:bb:c9:41:04:7a:e2:3b:41:33:72:89:31:78:7a: fd:f1:5c:13:4d:06:7d:2c:0f:69:a0:76:7e:44:28:fa:45:69: e8:9b:df:7c:16:e4:fd:45:af:e5:3b:e9:af:54:a4:62:cc:11: 48:fe:57:bc:b2:13:8f:ab:6b:d7:d8:6e:44:c5:f3:96:95:af: 37:11:29:b4:40:86:88:75:2e:a7:6d:a6:e7:7f:67:43:e9:7c: f5:57:68:95:5c:9e:22:28:ab:be:eb:e8:25:b1:2f:c8:40:83: 9b:02:74:6b:67:c0:cb:d4:88:a4:fc:bd:ec:91:b8:4e:d6:bb: 41:f6:3d:94:d8:2f:df:fa:74:8e:09:e4:ed:ef:c7:0e:c1:1b: 46:7e:41:09:1f:00:53:85:9e:1c:ae:18:ad:20:9d:0d:c9:1c: c1:d2:f6:ba:cb:b6:84:25:00:14:0d:04:92:ec:9c:1f:46:1e: 97:27:2a:15 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUfDHcbMADcl4WT1O3nyQiG4eex8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDN0Y3OEU5RkRBMDBCOUNBM0UyRDFEREY1RTA4REVB ODYyMDE2MjAeFw0yNjA1MTExNzAyMDBaFw0yNzA1MTAxNzA3MDBaMDMxMTAvBgNV BAMTKDRBRjZEMjZEQzAzMDVBRTE0NDg3RkIxODUwN0M0NUE1QUY3NzZENkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4NPmHLHN9C29+9LnO8FoWr4qa 56LWFYe8zOpMEPUGkEOu+Q74kCKZMZLPriK3QqcxNzPti4MEwSR/szBjEI238dhL ou+RIu79UQZTVAH1ypAzf6+fZNy85kyiTs1OTanNYF9v8sWLWtvcnKHRX5xSQ4ga hUhTUCZl+GfKdYj6wwpBOZBKApwWQnfEcyS5NUb68Hb0Fx2rnXpRLV8OSxoHNaif +adwhoiRMNVJRbA0nctIZ8ztebPgnawgqnLVxQhSs42zNaDJBcR0/xoIIRPvoz+2 AMug3+KwwgpD5QnTrksBKHxV1Cf8SFPuUXrVKSrLhYOA6y7DUkqHUnB0O+hJAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUSvbSbcAwWuFEh/sYUHxFpa93bW8wHwYDVR0j BBgwFoAUQsf3jp/aALnKPi0d314I3qhiAWIwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT1BFTkZP Ui8wLzQyQzdGNzhFOUZEQTAwQjlDQTNFMkQxRERGNUUwOERFQTg2MjAxNjIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvNDJDN0Y3OEU5RkRBMDBCOUNBM0UyRDFEREY1 RTA4REVBODYyMDE2Mi5jZXIwfQYIKwYBBQUHAQsEcTBvMG0GCCsGAQUFBzALhmFy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL09QRU5GT1IvMC8zMjM0MzAzNTNh NjUzNDYzMzAzYTNhMmYzMzMyMmQzNjM0MjAzZDNlMjAzMTMzMzEzNjM3Mzcucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkBeTAMA0GCSqGSIb3DQEBCwUAA4IBAQBkPBlElJ5iWPckLvalNNkG YHJjraJ3UGbDKCHw8K+yn5MPIBXILaF00dxzUX76e2I9HCFYnvt2gIPNXLDmjkr6 t9vpl7lF+9i+WUoru8lBBHriO0EzcokxeHr98VwTTQZ9LA9poHZ+RCj6RWnom998 FuT9Ra/lO+mvVKRizBFI/le8shOPq2vX2G5ExfOWla83ESm0QIaIdS6nbabnf2dD 6Xz1V2iVXJ4iKKu+6+glsS/IQIObAnRrZ8DL1Iik/L3skbhO1rtB9j2U2C/f+nSO CeTt78cOwRtGfkEJHwBThZ4crhitIJ0NyRzB0va6y7aEJQAUDQSS7JwfRh6XJyoV -----END CERTIFICATE-----Generated at Wed May 13 21:11:01 2026 by rpki-client