$ rpki-client -vvf rpkica.twnic.tw/rpki/TUCD/0/323430303a656265303a3a2f33322d3332203d3e203633393038.roa File: 323430303a656265303a3a2f33322d3332203d3e203633393038.roa (raw, json) Hash identifier: yiaDMH+RG+1Oi2ZJm9NkMQbKlRz53qXOlLRWHQMDjvY= Subject key identifier: B1:1E:04:41:4A:1D:3D:F0:6C:7C:E8:6C:25:A2:F1:0C:B0:2B:1F:51 Certificate issuer: /CN=0826347870AE5C6B60D1029A541AB2E6896CF5E9 Certificate serial: 3E07EC63854EDFB2AF5D9FC8525C547B437203A1 Authority key identifier: 08:26:34:78:70:AE:5C:6B:60:D1:02:9A:54:1A:B2:E6:89:6C:F5:E9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0826347870AE5C6B60D1029A541AB2E6896CF5E9.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TUCD/0/323430303a656265303a3a2f33322d3332203d3e203633393038.roa Signing time: Mon 11 May 2026 17:37:19 +0000 ROA not before: Mon 11 May 2026 17:32:19 +0000 ROA not after: Mon 10 May 2027 17:37:19 +0000 asID: 63908 IP address blocks: 2400:ebe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TUCD/0/0826347870AE5C6B60D1029A541AB2E6896CF5E9.crl rsync://rpkica.twnic.tw/rpki/TUCD/0/0826347870AE5C6B60D1029A541AB2E6896CF5E9.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0826347870AE5C6B60D1029A541AB2E6896CF5E9.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:58:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:07:ec:63:85:4e:df:b2:af:5d:9f:c8:52:5c:54:7b:43:72:03:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0826347870AE5C6B60D1029A541AB2E6896CF5E9 Validity Not Before: May 11 17:32:19 2026 GMT Not After : May 10 17:37:19 2027 GMT Subject: CN=B11E04414A1D3DF06C7CE86C25A2F10CB02B1F51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:bf:bc:73:8c:6b:34:ef:a2:15:75:84:05:09: a9:28:3c:9f:ae:d2:24:12:3f:d0:12:f6:cf:85:58: f1:8c:30:ba:c1:b5:31:50:01:aa:c8:41:09:3c:13: bc:8f:58:0f:dc:45:05:c0:40:fa:de:71:91:7e:78: 66:f0:db:e3:97:08:be:65:54:c6:31:23:9c:c1:84: 8a:10:a2:f0:61:71:fd:7c:22:fa:8c:56:eb:b8:2d: e6:75:9f:2d:1e:f0:04:2e:4d:36:35:0a:06:e4:9f: 61:aa:36:a6:7b:20:65:af:fc:8b:ad:f6:fb:c1:4d: 84:d4:5c:c6:a1:ff:11:75:a2:01:55:a3:b6:fd:56: c0:42:92:dd:1a:7f:02:2e:70:f9:97:bc:c6:40:4e: 15:6a:13:e8:d3:43:32:91:5f:e3:0b:f8:05:4e:c2: ed:d5:5b:62:ab:82:a4:6d:09:df:22:8d:1a:1d:7b: ce:fb:3a:54:65:53:eb:7e:51:60:dc:e7:64:7b:37: c2:45:6f:e0:c7:49:9d:6f:b4:44:59:2c:34:56:04: 11:6e:cc:b2:f9:43:cd:5e:98:5a:14:b6:6e:ff:11: d6:6b:b0:b9:01:14:87:40:fb:86:8c:8b:74:97:cf: d2:ef:ea:7e:cd:71:fd:f7:d2:6b:d9:58:92:26:d7: df:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1E:04:41:4A:1D:3D:F0:6C:7C:E8:6C:25:A2:F1:0C:B0:2B:1F:51 X509v3 Authority Key Identifier: keyid:08:26:34:78:70:AE:5C:6B:60:D1:02:9A:54:1A:B2:E6:89:6C:F5:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TUCD/0/0826347870AE5C6B60D1029A541AB2E6896CF5E9.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0826347870AE5C6B60D1029A541AB2E6896CF5E9.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TUCD/0/323430303a656265303a3a2f33322d3332203d3e203633393038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:ebe0::/32 Signature Algorithm: sha256WithRSAEncryption 4e:03:87:e9:4d:5a:0e:21:09:71:c4:e4:98:e2:a3:73:2e:0c: fb:5b:05:a9:a3:5d:4e:14:5d:59:16:af:40:1d:85:f4:d4:40: 8f:5f:8f:7a:69:f9:b0:25:36:ce:fe:57:8e:19:f4:8f:82:43: f2:d3:b4:b7:b0:55:50:d1:2d:8f:6f:f6:fb:ce:94:50:6c:e4: 8a:a1:20:53:10:42:c0:a6:a9:99:6d:65:cd:96:69:f7:ff:73: 6e:e9:c9:ab:c9:5e:84:d7:7c:23:fb:a9:43:a0:db:96:de:66: 82:5c:17:a1:65:c7:6f:f9:50:f4:f2:88:6d:0d:5b:47:6c:95: 17:81:79:e1:cd:58:6b:55:5d:50:a6:fd:e3:69:af:2f:44:29: d1:b8:19:6b:21:bb:da:39:46:dc:99:5d:e4:e2:70:57:ae:a5: 2c:b0:1a:9f:d7:d7:13:a1:ef:ea:1c:4b:c8:82:3d:bf:5b:47: 55:9e:dd:dc:22:b2:cf:2e:c1:fe:17:69:20:10:9a:e3:f8:b5: 74:84:5b:87:fc:b8:cb:34:e3:71:42:10:57:74:32:db:65:f1: 26:f0:d5:ae:ee:de:ee:a4:5f:5d:26:a4:af:f7:48:6f:62:e4: 2f:b7:9f:b8:1f:43:ab:20:5d:68:c3:4f:18:ba:8b:bc:1a:a7: 47:6d:7f:c7 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUPgfsY4VO37KvXZ/IUlxUe0NyA6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDgyNjM0Nzg3MEFFNUM2QjYwRDEwMjlBNTQxQUIyRTY4 OTZDRjVFOTAeFw0yNjA1MTExNzMyMTlaFw0yNzA1MTAxNzM3MTlaMDMxMTAvBgNV BAMTKEIxMUUwNDQxNEExRDNERjA2QzdDRTg2QzI1QTJGMTBDQjAyQjFGNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1v7xzjGs076IVdYQFCakoPJ+u 0iQSP9AS9s+FWPGMMLrBtTFQAarIQQk8E7yPWA/cRQXAQPrecZF+eGbw2+OXCL5l VMYxI5zBhIoQovBhcf18IvqMVuu4LeZ1ny0e8AQuTTY1Cgbkn2GqNqZ7IGWv/Iut 9vvBTYTUXMah/xF1ogFVo7b9VsBCkt0afwIucPmXvMZAThVqE+jTQzKRX+ML+AVO wu3VW2KrgqRtCd8ijRode877OlRlU+t+UWDc52R7N8JFb+DHSZ1vtERZLDRWBBFu zLL5Q81emFoUtm7/EdZrsLkBFIdA+4aMi3SXz9Lv6n7Ncf330mvZWJIm19/zAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUsR4EQUodPfBsfOhsJaLxDLArH1EwHwYDVR0j BBgwFoAUCCY0eHCuXGtg0QKaVBqy5ols9ekwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFVDRC8w LzA4MjYzNDc4NzBBRTVDNkI2MEQxMDI5QTU0MUFCMkU2ODk2Q0Y1RTkuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMDgyNjM0Nzg3MEFFNUM2QjYwRDEwMjlBNTQxQUIy RTY4OTZDRjVFOS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RVQ0QvMC8zMjM0MzAzMDNhNjU2MjY1 MzAzYTNhMmYzMzMyMmQzMzMyMjAzZDNlMjAzNjMzMzkzMDM4LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JADr4DANBgkqhkiG9w0BAQsFAAOCAQEATgOH6U1aDiEJccTkmOKjcy4M+1sFqaNd ThRdWRavQB2F9NRAj1+Pemn5sCU2zv5Xjhn0j4JD8tO0t7BVUNEtj2/2+86UUGzk iqEgUxBCwKapmW1lzZZp9/9zbunJq8lehNd8I/upQ6Dblt5mglwXoWXHb/lQ9PKI bQ1bR2yVF4F54c1Ya1VdUKb942mvL0Qp0bgZayG72jlG3Jld5OJwV66lLLAan9fX E6Hv6hxLyII9v1tHVZ7d3CKyzy7B/hdpIBCa4/i1dIRbh/y4yzTjcUIQV3Qy22Xx JvDVru7e7qRfXSakr/dIb2LkL7efuB9DqyBdaMNPGLqLvBqnR21/xw== -----END CERTIFICATE-----Generated at Wed May 13 21:09:08 2026 by rpki-client