$ rpki-client -vvf rpkica.twnic.tw/rpki/SHIJICOLTD/0/323430313a356632303a663030303a3a2f34382d313237203d3e20323136313233.roa File: 323430313a356632303a663030303a3a2f34382d313237203d3e20323136313233.roa (raw, json) Hash identifier: kbqJXOVL+rIVgTjXmyOflW5aA5dujQIMdG/ncqD3NDM= Subject key identifier: 3F:5E:6A:AB:5E:DA:01:45:F5:69:19:06:40:42:72:85:0D:BB:02:3F Certificate issuer: /CN=1A5DE0B5C72E02E2A2380CA27CEDA3329959C532 Certificate serial: 503D035F48584C62998838FCCD66D2B8ADB5ECF7 Authority key identifier: 1A:5D:E0:B5:C7:2E:02:E2:A2:38:0C:A2:7C:ED:A3:32:99:59:C5:32 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SHIJICOLTD/0/323430313a356632303a663030303a3a2f34382d313237203d3e20323136313233.roa Signing time: Mon 11 May 2026 17:38:43 +0000 ROA not before: Mon 11 May 2026 17:33:43 +0000 ROA not after: Mon 10 May 2027 17:38:43 +0000 asID: 216123 IP address blocks: 2401:5f20:f000::/48 maxlen: 127 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SHIJICOLTD/0/1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.crl rsync://rpkica.twnic.tw/rpki/SHIJICOLTD/0/1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3d:03:5f:48:58:4c:62:99:88:38:fc:cd:66:d2:b8:ad:b5:ec:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A5DE0B5C72E02E2A2380CA27CEDA3329959C532 Validity Not Before: May 11 17:33:43 2026 GMT Not After : May 10 17:38:43 2027 GMT Subject: CN=3F5E6AAB5EDA0145F5691906404272850DBB023F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0a:c2:29:9f:9f:6f:9d:6a:eb:6a:c4:5d:48: ed:cf:1a:e4:28:2f:17:8c:d3:79:99:16:7b:a8:56: e0:45:2c:b1:bb:d8:d1:e1:93:85:35:20:0d:85:d8: 5b:cb:1a:5f:45:78:e2:d0:15:be:5d:df:66:5b:d1: 1a:e4:d3:12:fe:b7:df:c1:6e:1b:6f:0b:37:7d:0a: bd:1b:c9:b9:f7:2c:18:80:64:b4:65:df:5b:2e:ae: b8:3c:7f:62:5e:dc:a6:e9:f4:45:a1:46:9b:cf:35: 2b:34:7c:be:36:1b:b1:32:81:1e:8a:c6:3e:87:32: fb:56:0f:8f:97:2c:d9:1d:bd:3e:c7:50:35:d5:0c: df:7a:57:b9:12:20:cb:89:0d:77:1c:67:31:7e:a0: 97:0e:a4:31:8b:29:50:ac:5b:6a:4b:f4:a5:b1:da: e5:eb:0b:c2:f9:f1:12:92:aa:1f:6d:d8:2d:2d:04: 0f:45:3e:9c:89:71:01:27:4f:e1:8d:4e:79:80:a8: 44:85:1b:01:58:ef:ad:bb:74:6d:75:11:60:db:60: 26:23:83:a9:8f:16:ee:cb:33:93:cd:41:d4:bf:8c: 31:be:1e:a7:3a:1b:b4:dc:e5:c3:b1:ed:e3:69:c5: 1f:a4:bd:dc:33:b1:a3:8d:f8:6b:a9:cd:0e:88:9d: d9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:5E:6A:AB:5E:DA:01:45:F5:69:19:06:40:42:72:85:0D:BB:02:3F X509v3 Authority Key Identifier: keyid:1A:5D:E0:B5:C7:2E:02:E2:A2:38:0C:A2:7C:ED:A3:32:99:59:C5:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SHIJICOLTD/0/1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1A5DE0B5C72E02E2A2380CA27CEDA3329959C532.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SHIJICOLTD/0/323430313a356632303a663030303a3a2f34382d313237203d3e20323136313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5f20:f000::/48 Signature Algorithm: sha256WithRSAEncryption ac:ec:40:0c:dc:39:14:6b:71:fd:13:57:df:87:f3:f0:b8:7f: 55:65:ea:80:b1:41:04:c2:ac:b1:b2:40:cf:d4:40:45:cd:dd: 35:7a:c0:32:39:ad:3b:dd:9e:f7:a8:c5:36:d6:92:88:24:d1: 3d:f3:dd:da:f5:b8:f4:5b:21:e7:c8:5b:c6:a6:1c:10:13:02: 71:36:d3:5e:e2:1b:37:c3:29:89:86:e1:d6:2b:ef:33:d3:03: b8:a7:2b:cb:3a:65:97:31:78:af:97:33:c9:a2:c6:57:d9:30: e0:9d:1c:2b:24:ef:e8:56:dc:9a:29:18:29:66:3c:20:b8:13: 6e:0c:2f:2d:c1:cb:7c:b6:a3:25:8a:dc:6b:d5:22:1f:88:70: 70:3a:20:6d:da:2f:3d:4c:b2:1c:3f:ee:05:fd:ff:11:1c:f7: c0:83:5d:2d:cf:5e:31:2e:43:d8:86:fc:87:f7:09:29:92:d3: dc:e0:a9:55:29:5d:f6:ae:89:13:88:3d:a8:95:d2:f5:36:3d: cd:0f:18:d5:0b:e6:21:b6:fa:77:b6:62:a1:fe:18:f5:95:44: 89:9b:40:93:6d:7d:98:99:28:7b:89:f3:77:fb:26:ee:f0:40: 9d:4e:40:92:33:9d:25:15:fa:75:bb:28:90:3c:00:87:26:e6: 43:60:c7:2d -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUUD0DX0hYTGKZiDj8zWbSuK217PcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE1REUwQjVDNzJFMDJFMkEyMzgwQ0EyN0NFREEzMzI5 OTU5QzUzMjAeFw0yNjA1MTExNzMzNDNaFw0yNzA1MTAxNzM4NDNaMDMxMTAvBgNV BAMTKDNGNUU2QUFCNUVEQTAxNDVGNTY5MTkwNjQwNDI3Mjg1MERCQjAyM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbCsIpn59vnWrrasRdSO3PGuQo LxeM03mZFnuoVuBFLLG72NHhk4U1IA2F2FvLGl9FeOLQFb5d32Zb0Rrk0xL+t9/B bhtvCzd9Cr0bybn3LBiAZLRl31surrg8f2Je3Kbp9EWhRpvPNSs0fL42G7EygR6K xj6HMvtWD4+XLNkdvT7HUDXVDN96V7kSIMuJDXccZzF+oJcOpDGLKVCsW2pL9KWx 2uXrC8L58RKSqh9t2C0tBA9FPpyJcQEnT+GNTnmAqESFGwFY7627dG11EWDbYCYj g6mPFu7LM5PNQdS/jDG+Hqc6G7Tc5cOx7eNpxR+kvdwzsaON+GupzQ6IndmpAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUP15qq17aAUX1aRkGQEJyhQ27Aj8wHwYDVR0j BBgwFoAUGl3gtccuAuKiOAyifO2jMplZxTIwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0hJSklD T0xURC8wLzFBNURFMEI1QzcyRTAyRTJBMjM4MENBMjdDRURBMzMyOTk1OUM1MzIu Y3JsMG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBLzEvMUE1REUwQjVDNzJFMDJFMkEyMzgwQ0Ey N0NFREEzMzI5OTU5QzUzMi5jZXIwgY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUH MAuGcHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0hJSklDT0xURC8wLzMy MzQzMDMxM2EzNTY2MzIzMDNhNjYzMDMwMzAzYTNhMmYzNDM4MmQzMTMyMzcyMDNk M2UyMDMyMzEzNjMxMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQBXyDwADANBgkqhkiG9w0BAQsF AAOCAQEArOxADNw5FGtx/RNX34fz8Lh/VWXqgLFBBMKssbJAz9RARc3dNXrAMjmt O92e96jFNtaSiCTRPfPd2vW49Fsh58hbxqYcEBMCcTbTXuIbN8MpiYbh1ivvM9MD uKcryzpllzF4r5czyaLGV9kw4J0cKyTv6FbcmikYKWY8ILgTbgwvLcHLfLajJYrc a9UiH4hwcDogbdovPUyyHD/uBf3/ERz3wINdLc9eMS5D2Ib8h/cJKZLT3OCpVSld 9q6JE4g9qJXS9TY9zQ8Y1QvmIbb6d7Ziof4Y9ZVEiZtAk219mJkoe4nzd/sm7vBA nU5AkjOdJRX6dbsokDwAhybmQ2DHLQ== -----END CERTIFICATE-----Generated at Wed May 13 21:15:12 2026 by rpki-client