$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/323430303a623338303a3a2f33322d3332203d3e203338383433.roa File: 323430303a623338303a3a2f33322d3332203d3e203338383433.roa (raw, json) Hash identifier: +pXDgr1wLsUgZAMfX+d8P2TB6aqNRRWg1pdGfbtokfM= Subject key identifier: 1D:F8:0B:1F:BA:26:A8:60:01:00:B6:B5:01:58:BD:13:35:32:C2:2D Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Certificate serial: 31ACEBA5C9FC3DAB624A50C5D64E704DEF4F5EE0 Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/323430303a623338303a3a2f33322d3332203d3e203338383433.roa Signing time: Mon 11 May 2026 16:48:37 +0000 ROA not before: Mon 11 May 2026 16:43:37 +0000 ROA not after: Mon 10 May 2027 16:48:37 +0000 asID: 38843 IP address blocks: 2400:b380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ac:eb:a5:c9:fc:3d:ab:62:4a:50:c5:d6:4e:70:4d:ef:4f:5e:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791 Validity Not Before: May 11 16:43:37 2026 GMT Not After : May 10 16:48:37 2027 GMT Subject: CN=1DF80B1FBA26A8600100B6B50158BD133532C22D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f8:01:9e:73:04:ea:aa:bd:d9:47:5c:e6:0f: 7c:22:9b:6e:1e:04:19:e7:1c:9a:bc:63:49:91:3d: 2b:f2:40:9e:1f:43:6b:e6:8c:d0:4b:13:0a:97:f2: 5e:0e:7c:9e:a4:8f:46:53:8b:91:d0:74:08:9e:83: da:d9:db:a0:ca:3f:36:ea:07:81:13:04:74:35:2b: ee:6e:fe:72:ca:3c:7c:c1:32:c0:dc:cb:8c:b1:a2: a0:6c:45:ad:ea:f8:e3:ab:95:d6:8b:a5:67:fe:3a: b7:19:0a:76:78:4a:3e:f8:e7:02:94:2e:33:81:b7: d7:aa:97:cf:af:91:69:c1:84:8a:d7:4a:c8:44:ee: f3:e5:15:28:74:51:d0:93:b5:ef:cc:aa:bb:b5:c4: 00:f7:d6:60:3a:67:95:5e:e8:37:71:cd:6c:e6:03: a4:12:ac:87:8b:0c:b0:44:83:78:56:75:65:3a:e1: 49:f3:31:39:d4:98:0e:ec:2b:ea:f9:65:3e:8d:13: 0e:3e:64:9a:98:d0:ca:a2:07:f3:cc:d3:4e:b0:23: d7:d8:9d:31:d4:2e:ec:7f:07:47:81:55:7b:21:b5: ae:fc:6b:47:c0:39:f1:87:51:97:5c:9b:32:17:1e: 85:43:ba:4d:53:71:59:9a:d2:6c:1d:87:84:0b:cd: 64:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F8:0B:1F:BA:26:A8:60:01:00:B6:B5:01:58:BD:13:35:32:C2:2D X509v3 Authority Key Identifier: keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/323430303a623338303a3a2f33322d3332203d3e203338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:b380::/32 Signature Algorithm: sha256WithRSAEncryption 26:b2:7d:d8:0a:26:f2:78:56:2b:60:1e:48:bc:b1:41:54:ed: c6:41:57:47:00:f2:b4:2d:f7:91:86:79:54:3d:88:14:23:b0: f0:1f:b3:b3:57:05:45:23:36:09:e8:18:66:68:1e:c8:68:03: 18:63:48:eb:c1:1e:b7:84:a6:04:a9:03:38:53:8d:69:0e:c0: f0:c7:ab:f6:94:d7:b4:c9:a6:18:3a:90:d6:5f:72:d2:2e:e2: ef:23:ce:06:82:68:5c:eb:f6:70:d6:2d:fb:6c:97:16:61:cc: 4f:82:f9:14:bc:fd:e4:d8:01:a9:69:cc:f2:47:22:26:40:bc: a4:33:a1:3e:97:be:b5:5d:be:51:49:6b:51:7a:7f:ae:a9:53: 5f:3b:f9:ff:e4:40:1b:5e:75:14:8d:18:66:b7:42:e2:45:67: ec:d4:d0:8b:3a:4e:f4:61:bd:72:dc:9f:20:a8:a4:1d:25:11: 87:2e:e5:ed:a2:82:62:34:22:39:3d:2d:15:68:ee:92:d9:78: 8b:fb:9e:01:02:45:5b:27:2b:98:89:87:8e:ee:e5:85:eb:de: d1:ad:92:55:58:3d:30:6e:35:06:c1:f3:ca:ba:4e:f7:fd:33: 2a:60:83:d2:9a:6c:70:66:0f:51:2e:cb:c9:ea:17:57:71:85: 0f:90:9e:7f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUMazrpcn8PatiSlDF1k5wTe9PXuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw ODJDMTc5MTAeFw0yNjA1MTExNjQzMzdaFw0yNzA1MTAxNjQ4MzdaMDMxMTAvBgNV BAMTKDFERjgwQjFGQkEyNkE4NjAwMTAwQjZCNTAxNThCRDEzMzUzMkMyMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6+AGecwTqqr3ZR1zmD3wim24e BBnnHJq8Y0mRPSvyQJ4fQ2vmjNBLEwqX8l4OfJ6kj0ZTi5HQdAieg9rZ26DKPzbq B4ETBHQ1K+5u/nLKPHzBMsDcy4yxoqBsRa3q+OOrldaLpWf+OrcZCnZ4Sj745wKU LjOBt9eql8+vkWnBhIrXSshE7vPlFSh0UdCTte/Mqru1xAD31mA6Z5Ve6DdxzWzm A6QSrIeLDLBEg3hWdWU64UnzMTnUmA7sK+r5ZT6NEw4+ZJqY0MqiB/PM006wI9fY nTHULux/B0eBVXshta78a0fAOfGHUZdcmzIXHoVDuk1TcVma0mwdh4QLzWQfAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUHfgLH7omqGABALa1AVi9EzUywi0wHwYDVR0j BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjM0MzAzMDNhNjIzMzM4 MzAzYTNhMmYzMzMyMmQzMzMyMjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JACzgDANBgkqhkiG9w0BAQsFAAOCAQEAJrJ92Aom8nhWK2AeSLyxQVTtxkFXRwDy tC33kYZ5VD2IFCOw8B+zs1cFRSM2CegYZmgeyGgDGGNI68Eet4SmBKkDOFONaQ7A 8Mer9pTXtMmmGDqQ1l9y0i7i7yPOBoJoXOv2cNYt+2yXFmHMT4L5FLz95NgBqWnM 8kciJkC8pDOhPpe+tV2+UUlrUXp/rqlTXzv5/+RAG151FI0YZrdC4kVn7NTQizpO 9GG9ctyfIKikHSURhy7l7aKCYjQiOT0tFWjuktl4i/ueAQJFWycrmImHju7lheve 0a2SVVg9MG41BsHzyrpO9/0zKmCD0ppscGYPUS7LyeoXV3GFD5Cefw== -----END CERTIFICATE-----Generated at Wed May 13 21:17:52 2026 by rpki-client