$ rpki-client -vvf rpkica.twnic.tw/rpki/SIMPLE/0/323430313a626136303a3a2f33322d3438203d3e203332353935.roa File: 323430313a626136303a3a2f33322d3438203d3e203332353935.roa (raw, json) Hash identifier: RBIOP3iKwRtqrSWqj44FA3/x/uVqA34IvA8ZG8hK44Q= Subject key identifier: 56:96:19:B9:F3:D2:98:77:57:C8:EB:1B:0F:2E:AF:6C:44:EC:53:AE Certificate issuer: /CN=5407824F2094BDB5E96C450A4F36563A73225CCB Certificate serial: 4529D0E9920668578620ACADA8F9A3AE28872B8E Authority key identifier: 54:07:82:4F:20:94:BD:B5:E9:6C:45:0A:4F:36:56:3A:73:22:5C:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5407824F2094BDB5E96C450A4F36563A73225CCB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SIMPLE/0/323430313a626136303a3a2f33322d3438203d3e203332353935.roa Signing time: Mon 11 May 2026 17:37:29 +0000 ROA not before: Mon 11 May 2026 17:32:29 +0000 ROA not after: Mon 10 May 2027 17:37:29 +0000 asID: 32595 IP address blocks: 2401:ba60::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SIMPLE/0/5407824F2094BDB5E96C450A4F36563A73225CCB.crl rsync://rpkica.twnic.tw/rpki/SIMPLE/0/5407824F2094BDB5E96C450A4F36563A73225CCB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5407824F2094BDB5E96C450A4F36563A73225CCB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:29:d0:e9:92:06:68:57:86:20:ac:ad:a8:f9:a3:ae:28:87:2b:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5407824F2094BDB5E96C450A4F36563A73225CCB Validity Not Before: May 11 17:32:29 2026 GMT Not After : May 10 17:37:29 2027 GMT Subject: CN=569619B9F3D2987757C8EB1B0F2EAF6C44EC53AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:9f:8b:73:eb:f1:2e:23:0b:db:65:2e:c5:3c: bc:c2:e7:f4:38:65:1d:d6:64:a3:96:de:3a:e2:57: 3c:76:dc:0a:b9:ba:b4:a7:51:96:56:39:c3:98:e5: 57:a4:4d:42:e6:4c:01:5d:f9:1d:77:3d:07:11:da: 6d:78:fa:47:6e:80:81:3e:f8:74:b3:46:52:c0:f5: 1d:ab:a1:e8:c7:38:9a:ec:b7:55:37:9a:f7:ff:e1: 8c:48:05:b0:13:88:d8:6c:b8:4f:91:79:ae:8b:c3: 9b:dc:e6:49:14:00:86:d7:65:e4:bc:ff:c1:9a:d6: 72:b0:1a:ae:59:be:6e:d4:89:ce:20:19:57:7e:89: 03:81:f9:80:98:6d:33:d9:92:13:cb:8c:f3:54:4f: 4b:49:a9:58:5e:5f:b0:a8:dc:f2:25:68:8e:39:b0: 60:db:f9:e6:50:d7:3e:88:a1:8c:7f:f5:e4:1f:af: f7:78:f3:80:bf:df:7a:f7:5b:85:50:54:da:05:90: 31:e5:06:dc:8a:d3:98:c8:33:9c:0e:d1:2a:ce:84: c2:58:ea:95:15:26:03:70:c9:b4:19:f8:69:b4:40: 57:5f:11:d1:88:6e:5f:43:43:16:44:b1:f9:e0:9a: 21:d2:3d:f4:59:dc:4f:0a:cc:45:e5:44:07:5c:5b: 93:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:96:19:B9:F3:D2:98:77:57:C8:EB:1B:0F:2E:AF:6C:44:EC:53:AE X509v3 Authority Key Identifier: keyid:54:07:82:4F:20:94:BD:B5:E9:6C:45:0A:4F:36:56:3A:73:22:5C:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SIMPLE/0/5407824F2094BDB5E96C450A4F36563A73225CCB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5407824F2094BDB5E96C450A4F36563A73225CCB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SIMPLE/0/323430313a626136303a3a2f33322d3438203d3e203332353935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ba60::/32 Signature Algorithm: sha256WithRSAEncryption 60:e6:e2:d8:c8:ab:2a:58:56:05:d4:e2:be:a6:85:63:18:a4: e3:6e:97:9d:e3:ea:ff:32:00:3b:41:72:9a:5f:83:42:50:c8: ff:0d:0b:3c:ac:c7:2a:6d:ab:8c:b2:28:34:7a:50:3d:b7:47: 7b:da:09:ca:7f:6a:6c:47:33:da:d8:70:5d:c4:42:37:4a:77: ad:e6:3e:c1:7e:9b:d7:fb:85:97:46:01:3a:0b:91:f7:76:41: 72:29:5e:20:11:77:21:00:dd:c8:bf:08:d6:bd:64:c5:59:80: b1:7d:52:f0:67:21:99:e6:b5:5c:b6:c2:ad:18:f3:2f:be:68: ca:01:7e:f4:95:68:20:f5:2a:c0:57:da:e7:7d:a1:9e:11:76: 19:48:d3:4a:2d:d0:14:8a:cd:c1:91:1b:c3:a8:bc:94:8a:3d: d4:f9:34:d2:9e:fb:b7:de:51:cc:29:1d:10:7e:cf:24:fa:1b: d0:49:11:29:f7:f7:cc:cd:8e:53:fa:98:3e:92:a0:b5:8c:76: 81:fd:18:33:cd:40:8f:48:20:49:fa:39:06:91:1b:0d:a8:28: 89:be:e9:fd:51:e0:df:de:58:db:6f:dc:b5:6b:eb:28:a8:fe: a4:59:6b:cb:8e:42:03:71:a6:fe:ce:cf:97:55:21:14:d9:8f: 1f:31:fe:37 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIURSnQ6ZIGaFeGIKytqPmjriiHK44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTQwNzgyNEYyMDk0QkRCNUU5NkM0NTBBNEYzNjU2M0E3 MzIyNUNDQjAeFw0yNjA1MTExNzMyMjlaFw0yNzA1MTAxNzM3MjlaMDMxMTAvBgNV BAMTKDU2OTYxOUI5RjNEMjk4Nzc1N0M4RUIxQjBGMkVBRjZDNDRFQzUzQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPn4tz6/EuIwvbZS7FPLzC5/Q4 ZR3WZKOW3jriVzx23Aq5urSnUZZWOcOY5VekTULmTAFd+R13PQcR2m14+kdugIE+ +HSzRlLA9R2roejHOJrst1U3mvf/4YxIBbATiNhsuE+Rea6Lw5vc5kkUAIbXZeS8 /8Ga1nKwGq5Zvm7Uic4gGVd+iQOB+YCYbTPZkhPLjPNUT0tJqVheX7Co3PIlaI45 sGDb+eZQ1z6IoYx/9eQfr/d484C/33r3W4VQVNoFkDHlBtyK05jIM5wO0SrOhMJY 6pUVJgNwybQZ+Gm0QFdfEdGIbl9DQxZEsfngmiHSPfRZ3E8KzEXlRAdcW5NJAgMB AAGjggHiMIIB3jAdBgNVHQ4EFgQUVpYZufPSmHdXyOsbDy6vbETsU64wHwYDVR0j BBgwFoAUVAeCTyCUvbXpbEUKTzZWOnMiXMswDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0lNUExF LzAvNTQwNzgyNEYyMDk0QkRCNUU5NkM0NTBBNEYzNjU2M0E3MzIyNUNDQi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS81NDA3ODI0RjIwOTRCREI1RTk2QzQ1MEE0RjM2 NTYzQTczMjI1Q0NCLmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0lNUExFLzAvMzIzNDMwMzEzYTYy NjEzNjMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzMzMjM1MzkzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQBumAwDQYJKoZIhvcNAQELBQADggEBAGDm4tjIqypYVgXU4r6mhWMYpONu l53j6v8yADtBcppfg0JQyP8NCzysxyptq4yyKDR6UD23R3vaCcp/amxHM9rYcF3E QjdKd63mPsF+m9f7hZdGAToLkfd2QXIpXiARdyEA3ci/CNa9ZMVZgLF9UvBnIZnm tVy2wq0Y8y++aMoBfvSVaCD1KsBX2ud9oZ4RdhlI00ot0BSKzcGRG8OovJSKPdT5 NNKe+7feUcwpHRB+zyT6G9BJESn398zNjlP6mD6SoLWMdoH9GDPNQI9IIEn6OQaR Gw2oKIm+6f1R4N/eWNtv3LVr6yio/qRZa8uOQgNxpv7Oz5dVIRTZjx8x/jc= -----END CERTIFICATE-----Generated at Wed May 13 21:52:11 2026 by rpki-client