$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SPUSER/qI7XbxdaJ7o2S2EdJMOfBC8XFwM.roa File: qI7XbxdaJ7o2S2EdJMOfBC8XFwM.roa (raw, json) Hash identifier: Xag3CviWYL9M3NfAliamyS+Ixpa0XVZ0L14oYoJklxA= Subject key identifier: A8:8E:D7:6F:17:5A:27:BA:36:4B:61:1D:24:C3:9F:04:2F:17:17:03 Certificate issuer: /CN=40DA4E2CCB032B6DC77C6580AE2CE2F80DCCFE21 Certificate serial: 0DD4 Authority key identifier: 40:DA:4E:2C:CB:03:2B:6D:C7:7C:65:80:AE:2C:E2:F8:0D:CC:FE:21 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QNpOLMsDK23HfGWArizi-A3M_iE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/qI7XbxdaJ7o2S2EdJMOfBC8XFwM.roa Signing time: Tue 31 Mar 2026 09:32:16 +0000 ROA not before: Tue 31 Mar 2026 09:32:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 2406:300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QNpOLMsDK23HfGWArizi-A3M_iE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 Apr 2026 16:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3540 (0xdd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40DA4E2CCB032B6DC77C6580AE2CE2F80DCCFE21 Validity Not Before: Mar 31 09:32:16 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A88ED76F175A27BA364B611D24C39F042F171703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5a:61:e8:be:67:44:0a:36:8a:7d:03:7f:64: e3:5d:d3:22:58:0d:52:44:10:05:ab:65:ce:45:ec: 3e:ff:8c:21:fb:49:76:b8:ba:d3:fb:f6:d2:99:90: fa:c0:87:de:e4:33:fc:eb:dd:2d:4b:09:e0:3f:f0: 38:66:78:1c:5f:11:a3:10:1c:15:ca:25:6e:ee:33: 05:a7:22:ed:cb:73:6c:3d:84:ab:3d:50:20:00:a4: 59:a7:00:29:a1:f6:6c:d8:11:30:42:fe:46:d6:20: d6:dd:fb:25:ca:df:7a:7d:d7:4f:58:88:c8:b6:f4: 9f:5c:22:78:a0:a8:c5:6d:4c:bd:dd:90:03:95:a8: 53:15:a6:48:0d:de:66:2a:b9:2b:99:26:55:ad:ee: 87:49:c1:72:6a:44:9f:e9:fd:2b:df:c4:f4:c0:37: 38:dd:89:2c:7f:e5:61:cc:63:ac:71:22:89:ee:9d: c5:97:02:ae:4c:fb:4c:23:8b:ea:1d:5e:69:2e:9b: de:e8:34:5a:67:fe:0e:36:c5:4d:b5:3c:ab:5e:a1: 77:7d:a7:c8:23:23:7f:41:da:07:92:2d:20:c8:ef: c8:ba:0c:cd:df:8e:f4:fd:41:27:c8:68:07:4c:c0: 16:09:20:cc:fa:8c:14:be:ba:1a:4b:3a:28:47:da: 7a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8E:D7:6F:17:5A:27:BA:36:4B:61:1D:24:C3:9F:04:2F:17:17:03 X509v3 Authority Key Identifier: keyid:40:DA:4E:2C:CB:03:2B:6D:C7:7C:65:80:AE:2C:E2:F8:0D:CC:FE:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QNpOLMsDK23HfGWArizi-A3M_iE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/qI7XbxdaJ7o2S2EdJMOfBC8XFwM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:300::/32 Signature Algorithm: sha256WithRSAEncryption d0:31:b3:19:4f:02:30:34:d9:df:5d:7f:dd:3e:b1:d6:c8:90: cb:1e:cd:bb:ac:32:17:74:5d:33:5a:49:87:df:a5:4e:a0:f2: f2:b6:d3:f9:ac:01:a4:f3:de:08:e8:34:77:55:c4:98:d5:f8: a4:bb:04:e6:52:29:bd:4e:61:a2:3d:bf:db:9a:5d:22:26:81: 80:95:0b:12:b1:52:96:a7:78:43:f3:f4:1b:b3:a3:78:33:40: 1f:57:08:88:49:04:3a:ce:9c:f8:99:77:a0:ff:ee:e7:40:82: 35:d1:99:35:3a:7e:22:36:48:fa:58:78:5d:42:a6:c7:1e:a6: 0b:0b:ab:49:ce:3c:7a:f4:d8:86:0c:04:18:2a:13:f4:55:15: 72:f4:22:24:7b:26:3c:f3:9c:fa:db:81:96:5f:9f:37:7b:7f: 93:93:f0:25:44:02:5c:58:68:af:99:41:1a:8d:1a:b3:ef:af: da:79:3e:d4:fb:96:16:2d:7a:19:66:c4:2e:3b:95:f9:e2:d8: b1:00:53:de:9d:d6:7f:7c:03:87:34:25:d6:09:06:72:b5:7f: 8b:8e:67:7d:5a:20:0b:c2:4a:f1:9d:43:6c:75:2b:da:12:77: c1:bd:d8:d4:f1:ac:d4:d2:37:84:26:85:6c:a6:a2:15:be:b7: e1:94:67:98 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDdQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDBE QTRFMkNDQjAzMkI2REM3N0M2NTgwQUUyQ0UyRjgwRENDRkUyMTAeFw0yNjAzMzEw OTMyMTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE4OEVENzZGMTc1QTI3 QkEzNjRCNjExRDI0QzM5RjA0MkYxNzE3MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaWmHovmdECjaKfQN/ZONd0yJYDVJEEAWrZc5F7D7/jCH7SXa4 utP79tKZkPrAh97kM/zr3S1LCeA/8DhmeBxfEaMQHBXKJW7uMwWnIu3Lc2w9hKs9 UCAApFmnACmh9mzYETBC/kbWINbd+yXK33p9109YiMi29J9cInigqMVtTL3dkAOV qFMVpkgN3mYquSuZJlWt7odJwXJqRJ/p/SvfxPTANzjdiSx/5WHMY6xxIonuncWX Aq5M+0wji+odXmkum97oNFpn/g42xU21PKteoXd9p8gjI39B2geSLSDI78i6DM3f jvT9QSfIaAdMwBYJIMz6jBS+uhpLOihH2nqNAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUqI7XbxdaJ7o2S2EdJMOfBC8XFwMwHwYDVR0jBBgwFoAUQNpOLMsDK23HfGWA rizi+A3M/iEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1BVU0VS L1FOcE9MTXNESzIzSGZHV0FyaXppLUEzTV9pRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUU5wT0xNc0RLMjNIZkdXQXJpemktQTNNX2lFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1BVU0VSL3FJN1hieGRhSjdvMlMyRWRK TU9mQkM4WEZ3TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk BgMAMA0GCSqGSIb3DQEBCwUAA4IBAQDQMbMZTwIwNNnfXX/dPrHWyJDLHs27rDIX dF0zWkmH36VOoPLyttP5rAGk894I6DR3VcSY1fikuwTmUim9TmGiPb/bml0iJoGA lQsSsVKWp3hD8/Qbs6N4M0AfVwiISQQ6zpz4mXeg/+7nQII10Zk1On4iNkj6WHhd QqbHHqYLC6tJzjx69NiGDAQYKhP0VRVy9CIkeyY885z624GWX583e3+Tk/AlRAJc WGivmUEajRqz76/aeT7U+5YWLXoZZsQuO5X54tixAFPendZ/fAOHNCXWCQZytX+L jmd9WiALwkrxnUNsdSvaEnfBvdjU8azU0jeEJoVspqIVvrfhlGeY -----END CERTIFICATE-----Generated at Thu Apr 16 13:44:41 2026 by rpki-client