$ rpki-client -vvf rpkica.twnic.tw/rpki/SGU/0/323430303a373432303a3a2f33322d3332203d3e20313334383233.roa File: 323430303a373432303a3a2f33322d3332203d3e20313334383233.roa (raw, json) Hash identifier: qqWWtvqYwHtuTqDmq6KrURru6pr7pReD9Wzh4csu0e4= Subject key identifier: 74:42:D7:A8:16:C2:7A:75:4F:D6:CE:EB:C1:54:23:A7:F1:23:41:59 Certificate issuer: /CN=86971504F42B7B0AF1883E8DFA5BAA555A8BE849 Certificate serial: 03559139C881C1992A8DB94E0C8574E80BF2C967 Authority key identifier: 86:97:15:04:F4:2B:7B:0A:F1:88:3E:8D:FA:5B:AA:55:5A:8B:E8:49 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/86971504F42B7B0AF1883E8DFA5BAA555A8BE849.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SGU/0/323430303a373432303a3a2f33322d3332203d3e20313334383233.roa Signing time: Mon 11 May 2026 17:31:39 +0000 ROA not before: Mon 11 May 2026 17:26:39 +0000 ROA not after: Mon 10 May 2027 17:31:39 +0000 asID: 134823 IP address blocks: 2400:7420::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SGU/0/86971504F42B7B0AF1883E8DFA5BAA555A8BE849.crl rsync://rpkica.twnic.tw/rpki/SGU/0/86971504F42B7B0AF1883E8DFA5BAA555A8BE849.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/86971504F42B7B0AF1883E8DFA5BAA555A8BE849.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:55:91:39:c8:81:c1:99:2a:8d:b9:4e:0c:85:74:e8:0b:f2:c9:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86971504F42B7B0AF1883E8DFA5BAA555A8BE849 Validity Not Before: May 11 17:26:39 2026 GMT Not After : May 10 17:31:39 2027 GMT Subject: CN=7442D7A816C27A754FD6CEEBC15423A7F1234159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:aa:cd:53:98:68:85:bb:58:f4:4d:40:95:7f: 90:b1:69:ad:9e:f7:b6:b3:ab:bc:91:7a:d4:9e:51: 06:20:92:1c:b0:cd:3c:31:92:10:ff:f4:77:f2:a0: d6:fc:46:b3:04:e0:d8:8f:79:35:d1:5a:2c:56:5c: 80:d2:c3:16:86:b7:73:c1:64:9f:d5:8f:6e:25:82: ca:73:e5:70:88:38:b6:af:13:63:c6:64:89:88:7a: 14:7e:d7:3b:2c:51:b4:d6:d1:af:21:67:b8:10:21: d1:c1:2d:63:f1:2c:6a:0e:b4:81:2f:28:b3:68:ce: 75:c1:ff:7f:9b:2f:34:11:de:95:a3:46:b2:b9:08: d3:6d:0e:58:26:bc:ec:87:9e:af:37:5f:d5:39:29: f3:8f:33:82:40:7c:5e:38:3f:15:c7:21:46:60:37: 8f:b0:40:5b:10:ea:7e:cc:ac:5e:ed:60:0b:81:b0: 57:78:fe:55:7e:1a:64:11:14:60:38:61:14:5c:38: 8b:13:b9:c0:7c:38:71:08:ed:39:c7:98:e4:55:6f: c3:42:79:03:14:84:81:2a:8f:39:24:26:bd:8b:0d: ec:16:c3:ce:e8:26:c2:26:dd:8f:b4:95:eb:b3:6c: 03:6e:b2:af:18:ba:76:63:4b:a7:51:6a:f4:c8:6e: 59:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:42:D7:A8:16:C2:7A:75:4F:D6:CE:EB:C1:54:23:A7:F1:23:41:59 X509v3 Authority Key Identifier: keyid:86:97:15:04:F4:2B:7B:0A:F1:88:3E:8D:FA:5B:AA:55:5A:8B:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SGU/0/86971504F42B7B0AF1883E8DFA5BAA555A8BE849.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/86971504F42B7B0AF1883E8DFA5BAA555A8BE849.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SGU/0/323430303a373432303a3a2f33322d3332203d3e20313334383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:7420::/32 Signature Algorithm: sha256WithRSAEncryption 5c:61:b6:05:79:bd:c1:03:3b:aa:ec:5e:b1:4c:ef:8e:b7:9c: c8:b0:51:96:0d:d4:da:dd:f5:cb:51:b9:23:d6:5b:97:a8:15: 13:64:73:fd:70:3c:69:c6:93:6d:5e:f0:aa:12:c5:1c:c1:43: 43:e3:5f:37:3c:53:30:6d:2f:9b:a7:71:c8:ff:e5:20:84:e3: 56:e9:76:a1:8a:8d:9c:0b:91:81:f6:af:13:f3:f1:b6:12:44: e6:b0:9e:e0:64:1a:a1:71:de:08:40:f7:b0:fb:04:eb:32:10: d4:d0:a4:82:1e:f1:b9:1d:34:38:66:7d:0c:7b:51:1c:4b:88: e1:9f:52:6c:f5:f6:59:3f:bd:11:8f:01:d2:dc:5a:b6:98:8a: fa:f9:02:6f:a9:11:03:41:64:69:74:b1:d6:75:b2:d6:9c:ff: 90:67:3f:ec:f4:e1:45:c3:3b:d5:ed:f2:c6:10:0b:f4:96:84: 4a:6b:ce:37:cc:5d:f9:60:b6:2e:d9:85:58:01:af:8f:97:5f: c5:a4:e0:d9:b1:f4:57:92:20:af:e7:0e:32:6c:20:8c:1d:0d: 15:ba:f8:b6:98:e4:c3:68:a0:8d:bc:95:8c:6b:3d:ca:0d:73: ad:4b:0a:49:3a:6c:bc:67:b2:a8:81:7b:ae:e3:fe:54:c8:cc: 57:1e:4e:ae -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUA1WROciBwZkqjblODIV06AvyyWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY5NzE1MDRGNDJCN0IwQUYxODgzRThERkE1QkFBNTU1 QThCRTg0OTAeFw0yNjA1MTExNzI2MzlaFw0yNzA1MTAxNzMxMzlaMDMxMTAvBgNV BAMTKDc0NDJEN0E4MTZDMjdBNzU0RkQ2Q0VFQkMxNTQyM0E3RjEyMzQxNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAqs1TmGiFu1j0TUCVf5Cxaa2e 97azq7yRetSeUQYgkhywzTwxkhD/9HfyoNb8RrME4NiPeTXRWixWXIDSwxaGt3PB ZJ/Vj24lgspz5XCIOLavE2PGZImIehR+1zssUbTW0a8hZ7gQIdHBLWPxLGoOtIEv KLNoznXB/3+bLzQR3pWjRrK5CNNtDlgmvOyHnq83X9U5KfOPM4JAfF44PxXHIUZg N4+wQFsQ6n7MrF7tYAuBsFd4/lV+GmQRFGA4YRRcOIsTucB8OHEI7TnHmORVb8NC eQMUhIEqjzkkJr2LDewWw87oJsIm3Y+0leuzbANusq8YunZjS6dRavTIblmFAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUdELXqBbCenVP1s7rwVQjp/EjQVkwHwYDVR0j BBgwFoAUhpcVBPQrewrxiD6N+luqVVqL6EkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0dVLzAv ODY5NzE1MDRGNDJCN0IwQUYxODgzRThERkE1QkFBNTU1QThCRTg0OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS84Njk3MTUwNEY0MkI3QjBBRjE4ODNFOERGQTVCQUE1 NTVBOEJFODQ5LmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0dVLzAvMzIzNDMwMzAzYTM3MzQzMjMw M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzEzMzM0MzgzMjMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JAB0IDANBgkqhkiG9w0BAQsFAAOCAQEAXGG2BXm9wQM7quxesUzvjrecyLBRlg3U 2t31y1G5I9Zbl6gVE2Rz/XA8acaTbV7wqhLFHMFDQ+NfNzxTMG0vm6dxyP/lIITj Vul2oYqNnAuRgfavE/PxthJE5rCe4GQaoXHeCED3sPsE6zIQ1NCkgh7xuR00OGZ9 DHtRHEuI4Z9SbPX2WT+9EY8B0txatpiK+vkCb6kRA0FkaXSx1nWy1pz/kGc/7PTh RcM71e3yxhAL9JaESmvON8xd+WC2LtmFWAGvj5dfxaTg2bH0V5Igr+cOMmwgjB0N Fbr4tpjkw2igjbyVjGs9yg1zrUsKSTpsvGeyqIF7ruP+VMjMVx5Org== -----END CERTIFICATE-----Generated at Wed May 13 21:12:24 2026 by rpki-client