$ rpki-client -vvf rpkica.twnic.tw/rpki/TW1033/0/323430323a346465303a3a2f33322d3438203d3e20313432303436.roa File: 323430323a346465303a3a2f33322d3438203d3e20313432303436.roa (raw, json) Hash identifier: utFWN+nIe6ybPW2ARjXAofwG1zRBUaKHEqvyyRToBOU= Subject key identifier: BF:44:6D:BA:22:FF:57:DC:A0:E6:E4:71:AC:64:C8:40:6E:D5:65:7F Certificate issuer: /CN=68C2C435D736FC21F07F0FD09824C8408E615E50 Certificate serial: 7951C0DF51D09235A394E0B53F1E7B04DBF2C92D Authority key identifier: 68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TW1033/0/323430323a346465303a3a2f33322d3438203d3e20313432303436.roa Signing time: Mon 11 May 2026 17:58:06 +0000 ROA not before: Mon 11 May 2026 17:53:06 +0000 ROA not after: Mon 10 May 2027 17:58:06 +0000 asID: 142046 IP address blocks: 2402:4de0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.crl rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:51:c0:df:51:d0:92:35:a3:94:e0:b5:3f:1e:7b:04:db:f2:c9:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68C2C435D736FC21F07F0FD09824C8408E615E50 Validity Not Before: May 11 17:53:06 2026 GMT Not After : May 10 17:58:06 2027 GMT Subject: CN=BF446DBA22FF57DCA0E6E471AC64C8406ED5657F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:db:4b:2a:cf:df:a9:46:f8:82:b5:2e:6e:0c: 01:64:7e:28:49:c2:27:2f:6c:d3:f3:4d:f3:f0:50: 42:ed:66:d0:0b:06:98:f4:e5:c1:d0:53:4d:b5:e6: e1:e5:a6:cd:90:68:e6:74:89:ee:e2:7f:a0:6d:3f: dc:96:df:65:33:ea:45:c2:81:3f:ae:68:55:f7:f6: 85:2e:e9:d4:70:3d:13:dd:f5:b6:30:9e:fa:d1:57: cd:38:14:a3:8d:bb:6d:70:bf:86:ad:08:58:de:2d: 81:6e:fe:2b:e7:82:b1:5b:0c:6c:85:db:94:3b:48: cc:68:c4:bd:ca:ce:a9:f0:dc:58:3e:7b:22:28:c5: 14:4e:a7:88:5e:38:a7:1a:a3:ae:3c:7a:46:51:48: 97:72:b3:9e:59:76:39:1e:86:d8:8e:96:9c:03:94: 0b:f2:00:e7:89:40:1e:7f:7e:72:ad:62:09:82:1a: ee:9a:73:c6:e6:98:fe:24:16:31:d4:43:49:a9:c0: 7f:38:01:40:db:55:dd:1f:d9:32:1b:42:3c:03:7c: 96:50:3f:14:7e:c5:a5:b3:57:69:6f:e7:b6:5a:62: d8:07:6f:be:c5:0c:a8:26:be:3d:e2:49:42:70:ab: c8:4c:fd:b9:b3:85:4e:08:82:23:94:bd:36:cd:aa: fb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:44:6D:BA:22:FF:57:DC:A0:E6:E4:71:AC:64:C8:40:6E:D5:65:7F X509v3 Authority Key Identifier: keyid:68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/323430323a346465303a3a2f33322d3438203d3e20313432303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4de0::/32 Signature Algorithm: sha256WithRSAEncryption 8d:44:e2:51:cf:6a:63:a3:f3:43:a6:9a:74:d3:ab:85:10:00: ba:7c:10:71:25:4c:a8:ed:38:6f:40:c3:4b:e8:03:e7:ed:07: 69:03:47:f3:81:24:af:c5:f9:74:be:96:d0:73:ca:97:15:97: bc:02:c1:5a:bd:67:ba:ea:e6:50:fc:6e:97:fa:60:21:89:55: cb:8f:28:ef:f6:b0:73:1a:5f:19:6a:56:3b:ab:ba:79:39:2d: 18:95:73:b9:11:fb:10:e8:e0:36:d0:3b:cd:a7:12:46:c5:42: 5e:bd:74:b1:16:ca:57:52:12:dc:50:c3:68:01:c6:60:e6:02: fd:76:75:ea:33:aa:2a:cf:e2:01:13:da:3a:41:f4:8d:7f:14: 49:c4:c2:99:6b:6f:ca:7e:25:f3:c5:fb:f0:aa:c7:e0:c3:d0: c1:4d:72:89:c7:9f:78:89:ac:8d:31:dd:0d:8a:d5:23:0d:fa: 82:5c:3e:b5:47:32:07:97:bd:65:fe:83:e9:c6:d9:ad:dc:46: b4:9d:bb:76:e8:39:93:3f:44:8a:16:4d:dc:14:c9:25:bf:a6: c9:44:77:a2:06:eb:cd:d6:31:99:9f:11:2b:ab:64:ac:14:27: 8b:0f:e6:bb:8f:e3:80:d7:71:56:c6:eb:7e:ed:6a:e7:8d:bf: 2d:bf:51:1b -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUeVHA31HQkjWjlOC1Px57BNvyyS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhDMkM0MzVENzM2RkMyMUYwN0YwRkQwOTgyNEM4NDA4 RTYxNUU1MDAeFw0yNjA1MTExNzUzMDZaFw0yNzA1MTAxNzU4MDZaMDMxMTAvBgNV BAMTKEJGNDQ2REJBMjJGRjU3RENBMEU2RTQ3MUFDNjRDODQwNkVENTY1N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP20sqz9+pRviCtS5uDAFkfihJ wicvbNPzTfPwUELtZtALBpj05cHQU0215uHlps2QaOZ0ie7if6BtP9yW32Uz6kXC gT+uaFX39oUu6dRwPRPd9bYwnvrRV804FKONu21wv4atCFjeLYFu/ivngrFbDGyF 25Q7SMxoxL3Kzqnw3Fg+eyIoxRROp4heOKcao648ekZRSJdys55ZdjkehtiOlpwD lAvyAOeJQB5/fnKtYgmCGu6ac8bmmP4kFjHUQ0mpwH84AUDbVd0f2TIbQjwDfJZQ PxR+xaWzV2lv57ZaYtgHb77FDKgmvj3iSUJwq8hM/bmzhU4IgiOUvTbNqvvDAgMB AAGjggHkMIIB4DAdBgNVHQ4EFgQUv0RtuiL/V9yg5uRxrGTIQG7VZX8wHwYDVR0j BBgwFoAUaMLENdc2/CHwfw/QmCTIQI5hXlAwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMz LzAvNjhDMkM0MzVENzM2RkMyMUYwN0YwRkQwOTgyNEM4NDA4RTYxNUU1MC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS82OEMyQzQzNUQ3MzZGQzIxRjA3RjBGRDA5ODI0 Qzg0MDhFNjE1RTUwLmNlcjB8BggrBgEFBQcBCwRwMG4wbAYIKwYBBQUHMAuGYHJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMzLzAvMzIzNDMwMzIzYTM0 NjQ2NTMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzEzNDMyMzAzNDM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAJN4DANBgkqhkiG9w0BAQsFAAOCAQEAjUTiUc9qY6PzQ6aadNOrhRAA unwQcSVMqO04b0DDS+gD5+0HaQNH84Ekr8X5dL6W0HPKlxWXvALBWr1nuurmUPxu l/pgIYlVy48o7/awcxpfGWpWO6u6eTktGJVzuRH7EOjgNtA7zacSRsVCXr10sRbK V1IS3FDDaAHGYOYC/XZ16jOqKs/iARPaOkH0jX8UScTCmWtvyn4l88X78KrH4MPQ wU1yicefeImsjTHdDYrVIw36glw+tUcyB5e9Zf6D6cbZrdxGtJ27dug5kz9EihZN 3BTJJb+myUR3ogbrzdYxmZ8RK6tkrBQniw/mu4/jgNdxVsbrfu1q542/Lb9RGw== -----END CERTIFICATE-----Generated at Wed May 13 21:09:43 2026 by rpki-client