$ rpki-client -vvf rpkica.twnic.tw/rpki/TWDS/0/323430353a613634303a313137333a3a2f34382d3438203d3e20313431313733.roa File: 323430353a613634303a313137333a3a2f34382d3438203d3e20313431313733.roa (raw, json) Hash identifier: 87eGcMzsBcFERAr5N4m3uIfuCE9wu8GrAFKZcBGz6Qc= Subject key identifier: 91:66:A9:65:DA:D6:E8:67:5F:92:CF:CF:C7:D9:45:41:49:69:F6:E0 Certificate issuer: /CN=432734F40920205CA6443A3B99308DD718E70D42 Certificate serial: 4E9CAC4DE0833813C05C4CA42E92074C7B735B57 Authority key identifier: 43:27:34:F4:09:20:20:5C:A6:44:3A:3B:99:30:8D:D7:18:E7:0D:42 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432734F40920205CA6443A3B99308DD718E70D42.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWDS/0/323430353a613634303a313137333a3a2f34382d3438203d3e20313431313733.roa Signing time: Mon 11 May 2026 17:09:22 +0000 ROA not before: Mon 11 May 2026 17:04:22 +0000 ROA not after: Mon 10 May 2027 17:09:22 +0000 asID: 141173 IP address blocks: 2405:a640:1173::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.crl rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432734F40920205CA6443A3B99308DD718E70D42.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:9c:ac:4d:e0:83:38:13:c0:5c:4c:a4:2e:92:07:4c:7b:73:5b:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432734F40920205CA6443A3B99308DD718E70D42 Validity Not Before: May 11 17:04:22 2026 GMT Not After : May 10 17:09:22 2027 GMT Subject: CN=9166A965DAD6E8675F92CFCFC7D945414969F6E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cb:5c:63:b3:4b:ce:71:0b:b1:9c:33:6f:aa: 5c:6d:ea:c0:fc:3f:c5:2d:7c:eb:4d:b7:87:b3:f4: 7a:b2:27:80:c6:0e:cd:92:57:77:54:03:43:58:7c: 03:93:4e:97:99:f3:6e:b9:de:a3:48:df:3b:60:75: 6f:54:07:29:ed:d6:40:25:76:2f:58:a5:6d:a6:18: c6:3e:03:dc:39:e9:06:44:15:2a:f5:06:32:a3:56: 85:38:79:d1:23:db:b3:9e:13:15:cc:4b:f0:70:49: 2d:e2:25:fe:e8:ef:99:2b:4a:6b:cf:c3:fc:c7:31: 0c:38:47:a2:24:ab:af:76:59:ce:76:2f:66:fe:69: 6a:d1:aa:05:01:a1:2c:17:e5:26:8d:c3:3d:f1:8d: 6d:d6:65:5a:f9:be:f6:f8:19:a0:a3:b4:89:26:73: 27:0b:04:2f:7b:52:b6:b4:19:6c:b7:bb:36:5f:7c: e4:ab:e9:9a:a4:92:71:73:3d:99:e4:19:60:32:1d: aa:cc:97:a1:18:5a:e1:90:e6:cb:54:28:bb:df:5e: eb:7d:f1:7b:04:41:40:f5:13:99:72:9d:b0:00:32: 1f:15:a7:75:af:79:e8:25:5e:16:ce:a4:77:a5:93: 2d:f4:f7:e3:1a:bd:6c:14:b1:b1:29:d0:dc:0e:db: ec:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:66:A9:65:DA:D6:E8:67:5F:92:CF:CF:C7:D9:45:41:49:69:F6:E0 X509v3 Authority Key Identifier: keyid:43:27:34:F4:09:20:20:5C:A6:44:3A:3B:99:30:8D:D7:18:E7:0D:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432734F40920205CA6443A3B99308DD718E70D42.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWDS/0/323430353a613634303a313137333a3a2f34382d3438203d3e20313431313733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a640:1173::/48 Signature Algorithm: sha256WithRSAEncryption 82:65:89:25:30:7c:af:c3:ab:b0:3a:ad:40:91:61:ba:fc:9e: 54:1b:fa:18:bc:72:c2:0a:74:45:36:ff:ba:f3:76:10:4d:2f: 0f:6e:16:ef:01:98:14:18:59:7e:5f:b4:6d:60:67:d2:62:ce: 28:df:18:f0:09:1f:82:e5:5e:56:65:fc:5e:a7:21:31:bd:40: f1:2f:00:ef:6f:57:6a:17:26:4e:4b:c9:4d:20:b1:75:e5:d6: 64:2e:7a:9a:8b:fd:12:48:8f:5f:58:14:8e:5a:99:97:35:d2: 07:e8:5a:9d:bc:6a:c5:0b:a2:c8:f0:d7:78:6e:51:94:d6:17: a1:7b:15:40:e0:ce:ef:f0:a9:9b:98:53:7c:47:e6:f9:e5:6a: 50:e0:89:cc:ed:db:89:62:cc:13:49:88:85:b1:83:ac:8f:c0: 7a:52:f4:b5:f3:03:da:f1:db:50:85:f1:17:77:a2:30:fb:01: da:79:92:2c:14:26:10:dc:60:11:89:e5:81:9f:4b:63:ab:6e: e9:98:f1:39:03:80:9b:38:09:33:10:48:05:a0:4e:8c:9a:92: bd:e1:5c:a1:30:5e:df:20:22:fa:f2:5d:92:98:23:48:bc:5a: 92:78:70:90:08:42:7d:c6:5d:d9:d3:ba:6b:9b:df:3b:33:36: 1f:c1:13:13 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUTpysTeCDOBPAXEykLpIHTHtzW1cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyNzM0RjQwOTIwMjA1Q0E2NDQzQTNCOTkzMDhERDcx OEU3MEQ0MjAeFw0yNjA1MTExNzA0MjJaFw0yNzA1MTAxNzA5MjJaMDMxMTAvBgNV BAMTKDkxNjZBOTY1REFENkU4Njc1RjkyQ0ZDRkM3RDk0NTQxNDk2OUY2RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDky1xjs0vOcQuxnDNvqlxt6sD8 P8UtfOtNt4ez9HqyJ4DGDs2SV3dUA0NYfAOTTpeZ82653qNI3ztgdW9UBynt1kAl di9YpW2mGMY+A9w56QZEFSr1BjKjVoU4edEj27OeExXMS/BwSS3iJf7o75krSmvP w/zHMQw4R6Ikq692Wc52L2b+aWrRqgUBoSwX5SaNwz3xjW3WZVr5vvb4GaCjtIkm cycLBC97Ura0GWy3uzZffOSr6ZqkknFzPZnkGWAyHarMl6EYWuGQ5stUKLvfXut9 8XsEQUD1E5lynbAAMh8Vp3WveeglXhbOpHelky309+MavWwUsbEp0NwO2+yVAgMB AAGjggHtMIIB6TAdBgNVHQ4EFgQUkWapZdrW6Gdfks/Px9lFQUlp9uAwHwYDVR0j BBgwFoAUQyc09AkgIFymRDo7mTCN1xjnDUIwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdEUy8w LzQzMjczNEY0MDkyMDIwNUNBNjQ0M0EzQjk5MzA4REQ3MThFNzBENDIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvNDMyNzM0RjQwOTIwMjA1Q0E2NDQzQTNCOTkzMDhE RDcxOEU3MEQ0Mi5jZXIwgYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV0RTLzAvMzIzNDMwMzUzYTYxMzYz NDMwM2EzMTMxMzczMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTMxMzcz My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQFpkARczANBgkqhkiG9w0BAQsFAAOCAQEAgmWJJTB8r8Or sDqtQJFhuvyeVBv6GLxywgp0RTb/uvN2EE0vD24W7wGYFBhZfl+0bWBn0mLOKN8Y 8AkfguVeVmX8XqchMb1A8S8A729XahcmTkvJTSCxdeXWZC56mov9EkiPX1gUjlqZ lzXSB+hanbxqxQuiyPDXeG5RlNYXoXsVQODO7/Cpm5hTfEfm+eVqUOCJzO3biWLM E0mIhbGDrI/AelL0tfMD2vHbUIXxF3eiMPsB2nmSLBQmENxgEYnlgZ9LY6tu6Zjx OQOAmzgJMxBIBaBOjJqSveFcoTBe3yAi+vJdkpgjSLxaknhwkAhCfcZd2dO6a5vf OzM2H8ETEw== -----END CERTIFICATE-----Generated at Wed May 13 21:17:50 2026 by rpki-client