$ rpki-client -vvf rpkica.twnic.tw/rpki/PARAMITA/0/323430373a396134303a3a2f33322d3332203d3e203338383533.roa File: 323430373a396134303a3a2f33322d3332203d3e203338383533.roa (raw, json) Hash identifier: ERDqezCNr45nwvyDz+Y8lRLlwPRBETgUWycHuIYfWTY= Subject key identifier: 8D:E5:E6:F9:78:93:9B:D0:CD:77:70:AC:1D:EB:E2:E0:CA:3C:31:AC Certificate issuer: /CN=AE6BAF44145B748B247B352467ADFF5B9D076559 Certificate serial: 3361FC6146701C91347E2D7F508559039875AFF7 Authority key identifier: AE:6B:AF:44:14:5B:74:8B:24:7B:35:24:67:AD:FF:5B:9D:07:65:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/AE6BAF44145B748B247B352467ADFF5B9D076559.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PARAMITA/0/323430373a396134303a3a2f33322d3332203d3e203338383533.roa Signing time: Mon 11 May 2026 17:10:18 +0000 ROA not before: Mon 11 May 2026 17:05:18 +0000 ROA not after: Mon 10 May 2027 17:10:18 +0000 asID: 38853 IP address blocks: 2407:9a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PARAMITA/0/AE6BAF44145B748B247B352467ADFF5B9D076559.crl rsync://rpkica.twnic.tw/rpki/PARAMITA/0/AE6BAF44145B748B247B352467ADFF5B9D076559.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/AE6BAF44145B748B247B352467ADFF5B9D076559.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:61:fc:61:46:70:1c:91:34:7e:2d:7f:50:85:59:03:98:75:af:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE6BAF44145B748B247B352467ADFF5B9D076559 Validity Not Before: May 11 17:05:18 2026 GMT Not After : May 10 17:10:18 2027 GMT Subject: CN=8DE5E6F978939BD0CD7770AC1DEBE2E0CA3C31AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:da:0a:3a:47:5a:e8:68:c0:7c:82:b0:89:e7: db:da:ae:85:7d:ab:c6:96:d5:04:1f:c1:14:69:e0: 9e:a9:e6:fa:01:34:d3:dc:92:9d:5f:77:e8:9e:14: 97:a7:53:49:a2:80:4b:9f:2d:e2:4a:3e:01:3d:9f: 27:2d:80:1d:97:61:96:85:4a:2c:4f:00:87:ee:00: 30:12:53:da:d2:b6:0a:16:f9:24:78:09:a8:a8:d9: 25:2f:b2:71:42:c2:65:5d:89:67:a8:28:c2:cc:80: 55:66:8a:6e:e5:6f:cf:93:f8:fa:40:79:fb:67:d8: ba:25:be:6f:dd:ff:58:03:20:1d:60:4d:b9:1a:95: 68:fb:c2:22:9a:25:12:fb:34:a1:c8:9b:25:b4:57: 39:57:2f:b8:d2:5a:57:6d:6f:1f:27:0e:e8:25:99: 83:85:db:20:f2:dc:5f:1d:8d:48:8f:2f:3a:17:9b: 04:3b:f7:0e:db:bd:cb:8c:26:10:e6:0b:91:67:09: 7b:64:c9:88:59:e6:20:98:76:15:a7:5e:a5:3b:0a: ee:98:a6:ca:f8:0a:d9:89:b8:e9:c5:d0:5b:46:7f: 7f:6b:db:d0:94:c0:52:99:ec:52:8d:b6:59:6e:a2: 49:72:d1:39:3b:8e:20:fd:f8:33:f6:3b:0b:c3:91: 25:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E5:E6:F9:78:93:9B:D0:CD:77:70:AC:1D:EB:E2:E0:CA:3C:31:AC X509v3 Authority Key Identifier: keyid:AE:6B:AF:44:14:5B:74:8B:24:7B:35:24:67:AD:FF:5B:9D:07:65:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PARAMITA/0/AE6BAF44145B748B247B352467ADFF5B9D076559.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/AE6BAF44145B748B247B352467ADFF5B9D076559.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PARAMITA/0/323430373a396134303a3a2f33322d3332203d3e203338383533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:9a40::/32 Signature Algorithm: sha256WithRSAEncryption 63:34:4d:25:60:33:f4:63:f3:e4:1f:42:37:8d:7a:73:fa:6b: 1d:ba:03:f7:44:54:ea:6a:0c:00:f5:ce:8a:a7:06:40:68:ee: 29:a8:f5:4c:2b:25:5f:d4:23:86:f0:d1:c0:74:38:23:30:0b: ef:0f:66:f1:6e:61:80:79:24:42:af:7f:17:1d:7d:7d:84:25: c5:21:d8:e1:32:88:af:91:e2:e7:08:6e:99:00:2f:71:33:32: 34:fc:fe:76:12:c9:f6:01:47:70:67:08:c4:cc:52:fc:e5:4c: 92:0c:a5:56:5e:b2:13:f5:55:dd:cf:36:bf:97:37:27:f9:b2: f5:05:88:37:28:67:48:39:a8:18:1e:4c:18:32:15:ff:ef:56: 1a:bc:55:fe:57:d9:d4:11:b8:52:58:a0:d6:25:61:55:7f:d2: d1:22:69:1d:92:10:2f:34:38:a3:8a:63:4a:47:65:bb:c8:5c: d6:a2:b0:03:5b:74:8e:4f:ca:d1:3e:28:ee:ee:ab:9c:8c:8a: 63:54:e9:99:64:43:fb:aa:fc:22:aa:c2:21:5d:17:e2:fc:15: 8d:f3:e8:2b:a0:aa:5b:61:bc:31:36:4d:10:06:17:d4:17:68: 31:b3:8a:53:93:a8:4c:49:a7:99:45:95:a1:32:ef:eb:f8:d3: b8:04:74:f6 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUM2H8YUZwHJE0fi1/UIVZA5h1r/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU2QkFGNDQxNDVCNzQ4QjI0N0IzNTI0NjdBREZGNUI5 RDA3NjU1OTAeFw0yNjA1MTExNzA1MThaFw0yNzA1MTAxNzEwMThaMDMxMTAvBgNV BAMTKDhERTVFNkY5Nzg5MzlCRDBDRDc3NzBBQzFERUJFMkUwQ0EzQzMxQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCG2go6R1roaMB8grCJ59varoV9 q8aW1QQfwRRp4J6p5voBNNPckp1fd+ieFJenU0migEufLeJKPgE9nyctgB2XYZaF SixPAIfuADASU9rStgoW+SR4Caio2SUvsnFCwmVdiWeoKMLMgFVmim7lb8+T+PpA eftn2Lolvm/d/1gDIB1gTbkalWj7wiKaJRL7NKHImyW0VzlXL7jSWldtbx8nDugl mYOF2yDy3F8djUiPLzoXmwQ79w7bvcuMJhDmC5FnCXtkyYhZ5iCYdhWnXqU7Cu6Y psr4CtmJuOnF0FtGf39r29CUwFKZ7FKNtlluokly0Tk7jiD9+DP2OwvDkSUdAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUjeXm+XiTm9DNd3CsHevi4Mo8MawwHwYDVR0j BBgwFoAUrmuvRBRbdIskezUkZ63/W50HZVkwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUEFSQU1J VEEvMC9BRTZCQUY0NDE0NUI3NDhCMjQ3QjM1MjQ2N0FERkY1QjlEMDc2NTU5LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xL0FFNkJBRjQ0MTQ1Qjc0OEIyNDdCMzUyNDY3 QURGRjVCOUQwNzY1NTkuY2VyMHwGCCsGAQUFBwELBHAwbjBsBggrBgEFBQcwC4Zg cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9QQVJBTUlUQS8wLzMyMzQzMDM3 M2EzOTYxMzQzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMzMzgzODM1MzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkB5pAMA0GCSqGSIb3DQEBCwUAA4IBAQBjNE0lYDP0Y/PkH0I3jXpz +msdugP3RFTqagwA9c6KpwZAaO4pqPVMKyVf1COG8NHAdDgjMAvvD2bxbmGAeSRC r38XHX19hCXFIdjhMoivkeLnCG6ZAC9xMzI0/P52Esn2AUdwZwjEzFL85UySDKVW XrIT9VXdzza/lzcn+bL1BYg3KGdIOagYHkwYMhX/71YavFX+V9nUEbhSWKDWJWFV f9LRImkdkhAvNDijimNKR2W7yFzWorADW3SOT8rRPiju7qucjIpjVOmZZEP7qvwi qsIhXRfi/BWN8+groKpbYbwxNk0QBhfUF2gxs4pTk6hMSaeZRZWhMu/r+NO4BHT2 -----END CERTIFICATE-----Generated at Wed May 13 21:09:25 2026 by rpki-client