$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/6A9Cq4xKNjzRXOjTQgOFWDeGVRM.roa File: 6A9Cq4xKNjzRXOjTQgOFWDeGVRM.roa (raw, json) Hash identifier: 22r9bnKSIYKIJGoYKuBrWS1s4IkO2x0BNoQRshyfJxs= Subject key identifier: E8:0F:42:AB:8C:4A:36:3C:D1:5C:E8:D3:42:03:85:58:37:86:55:13 Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Certificate serial: 015B Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/6A9Cq4xKNjzRXOjTQgOFWDeGVRM.roa Signing time: Tue 03 Mar 2026 15:56:50 +0000 ROA not before: Tue 03 Mar 2026 15:56:50 +0000 ROA not after: Wed 30 Dec 2026 15:30:20 +0000 asID: 18040 IP address blocks: 2402:43e0::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C Validity Not Before: Mar 3 15:56:50 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=E80F42AB8C4A363CD15CE8D34203855837865513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3d:92:4d:02:69:23:31:e6:93:c1:85:27:fe: 1d:1d:3c:f6:29:21:74:ff:fa:24:1f:20:e3:c2:39: 57:7f:29:4b:48:b5:bd:d0:a0:3d:d4:99:e3:3d:b7: c2:20:fb:b0:1e:d4:96:03:f9:b4:6e:bd:03:83:c9: b1:e5:72:6f:8b:c3:82:c0:0e:4b:e9:79:d1:64:bd: 4f:8e:05:db:60:85:96:b2:50:ec:77:01:b7:98:6f: d3:94:f7:2b:60:14:29:a0:3e:54:72:d5:ad:61:7f: 3a:fe:53:ee:85:15:95:8a:27:a0:5a:7e:8f:ab:28: 06:9c:b2:1f:19:e8:33:92:8e:a2:50:11:b3:91:1b: 1d:1d:06:2e:3b:ba:ca:64:d5:e9:25:e7:80:ca:c2: 32:df:a4:db:a0:21:52:4e:b3:21:3a:48:bc:55:7e: 01:d9:94:b9:39:c8:0f:96:73:57:10:35:2c:67:20: 87:28:c0:08:b2:82:02:dd:93:fd:f2:e1:6c:88:36: 49:df:96:cd:c7:43:59:6c:8f:b2:d0:08:a0:b7:99: 1d:b9:b2:84:ca:6f:95:5a:91:0a:50:92:12:bc:2e: 52:c1:f7:34:76:b9:89:7e:06:7d:76:e1:2a:b5:14: de:8d:0f:8d:6b:c1:02:ca:d4:c1:3c:27:cb:12:af: 55:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:0F:42:AB:8C:4A:36:3C:D1:5C:E8:D3:42:03:85:58:37:86:55:13 X509v3 Authority Key Identifier: keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/6A9Cq4xKNjzRXOjTQgOFWDeGVRM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:43e0::/48 Signature Algorithm: sha256WithRSAEncryption 94:dc:51:8d:5c:70:3e:52:aa:e0:fc:46:31:fb:d9:28:9b:4d: 7e:e8:83:aa:a2:c5:11:24:af:a8:2d:52:fd:2c:34:71:e5:e5: 0b:06:42:92:6c:83:da:a6:8b:89:b0:e8:72:31:e7:d7:4d:0b: 04:52:92:4a:a0:bf:f4:48:fe:c5:51:cf:fc:74:ef:5f:94:fa: 29:e6:8c:8f:84:bf:43:6b:87:32:d8:4a:5d:b0:d0:1c:68:77: 68:eb:21:7c:94:bd:91:23:07:01:3a:e9:14:02:81:a2:b6:21: c5:c6:04:66:f1:de:30:a6:9d:fd:eb:f7:96:ba:40:75:c6:b9: c0:cd:1c:1f:77:36:9f:b5:57:83:85:0e:d8:ba:48:08:1b:31: 7b:a4:c5:93:e1:34:3d:01:f3:4c:94:f8:4d:7b:3b:21:47:ec: 12:57:fc:bf:8c:e7:45:31:28:f6:a5:40:47:77:4d:81:f2:41: d5:14:cb:56:49:94:b0:9c:59:fc:0f:99:63:79:6f:8a:5d:07: 2d:ed:30:9d:37:e2:3d:e8:23:63:2a:7e:71:a4:5d:05:b7:0f: 03:c9:16:02:c3:ae:06:b4:57:0c:8f:f2:08:88:c2:ec:2e:63: dd:34:44:46:e5:6a:e5:cc:4c:a5:60:9f:29:d1:8d:09:b1:ce: fa:c1:28:7e -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAVswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkM3 NTJDQTU5RUI4RUFFRjIzRDIyNURDNjdBQTA4NTIwMUYxRjc5QzAeFw0yNjAzMDMx NTU2NTBaFw0yNjEyMzAxNTMwMjBaMDMxMTAvBgNVBAMTKEU4MEY0MkFCOEM0QTM2 M0NEMTVDRThEMzQyMDM4NTU4Mzc4NjU1MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwPZJNAmkjMeaTwYUn/h0dPPYpIXT/+iQfIOPCOVd/KUtItb3Q oD3UmeM9t8Ig+7Ae1JYD+bRuvQODybHlcm+Lw4LADkvpedFkvU+OBdtghZayUOx3 AbeYb9OU9ytgFCmgPlRy1a1hfzr+U+6FFZWKJ6Bafo+rKAacsh8Z6DOSjqJQEbOR Gx0dBi47uspk1ekl54DKwjLfpNugIVJOsyE6SLxVfgHZlLk5yA+Wc1cQNSxnIIco wAiyggLdk/3y4WyINknfls3HQ1lsj7LQCKC3mR25soTKb5VakQpQkhK8LlLB9zR2 uYl+Bn124Sq1FN6ND41rwQLK1ME8J8sSr1WjAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQU6A9Cq4xKNjzRXOjTQgOFWDeGVRMwHwYDVR0jBBgwFoAU/HUspZ646u8j0iXc Z6oIUgHx95wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJO RVQvX0hVc3BaNjQ2dThqMGlYY1o2b0lVZ0h4OTV3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9fSFVzcFo2NDZ1OGowaVhjWjZvSVVnSHg5NXcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5FVC82QTlDcTR4S05qelJY T2pUUWdPRldEZUdWUk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcAJAJD4AAAMA0GCSqGSIb3DQEBCwUAA4IBAQCU3FGNXHA+Uqrg/EYx+9kom01+ 6IOqosURJK+oLVL9LDRx5eULBkKSbIPapouJsOhyMefXTQsEUpJKoL/0SP7FUc/8 dO9flPop5oyPhL9Da4cy2EpdsNAcaHdo6yF8lL2RIwcBOukUAoGitiHFxgRm8d4w pp396/eWukB1xrnAzRwfdzaftVeDhQ7YukgIGzF7pMWT4TQ9AfNMlPhNezshR+wS V/y/jOdFMSj2pUBHd02B8kHVFMtWSZSwnFn8D5ljeW+KXQct7TCdN+I96CNjKn5x pF0Ftw8DyRYCw64GtFcMj/IIiMLsLmPdNERG5WrlzEylYJ8p0Y0Jsc76wSh+ -----END CERTIFICATE-----Generated at Sun Mar 8 03:09:56 2026 by rpki-client