$ rpki-client -vvf rpkica.twnic.tw/rpki/UNIGATE/0/323430333a613363303a3a2f33322d3438203d3e20313331363030.roa File: 323430333a613363303a3a2f33322d3438203d3e20313331363030.roa (raw, json) Hash identifier: XCT7s3NCwXJ69S7zo+KJz8lVVlArsSIbihOeA7c8fho= Subject key identifier: 17:38:4A:D4:8A:00:17:F3:00:DB:24:83:C7:76:9E:65:A5:8B:5B:3E Certificate issuer: /CN=3442A34301CC610CF272F765ABBAFC9ED1F4A9BE Certificate serial: 46820ECF2073712F810CF4D242276E5C17D96CC2 Authority key identifier: 34:42:A3:43:01:CC:61:0C:F2:72:F7:65:AB:BA:FC:9E:D1:F4:A9:BE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/UNIGATE/0/323430333a613363303a3a2f33322d3438203d3e20313331363030.roa Signing time: Mon 11 May 2026 17:15:50 +0000 ROA not before: Mon 11 May 2026 17:10:50 +0000 ROA not after: Mon 10 May 2027 17:15:50 +0000 asID: 131600 IP address blocks: 2403:a3c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/UNIGATE/0/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.crl rsync://rpkica.twnic.tw/rpki/UNIGATE/0/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:82:0e:cf:20:73:71:2f:81:0c:f4:d2:42:27:6e:5c:17:d9:6c:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3442A34301CC610CF272F765ABBAFC9ED1F4A9BE Validity Not Before: May 11 17:10:50 2026 GMT Not After : May 10 17:15:50 2027 GMT Subject: CN=17384AD48A0017F300DB2483C7769E65A58B5B3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8c:98:04:df:06:e5:93:8c:99:65:20:a9:ef: fe:f4:c3:6c:2b:f8:20:80:bc:27:21:db:11:1b:60: 51:ac:39:e9:e2:df:ef:de:e1:6e:8d:92:9e:04:e4: 4f:a6:b9:c6:a4:54:0c:32:f3:92:7b:a2:d5:04:76: 09:bb:53:38:63:7f:58:f7:0e:56:42:aa:31:64:99: 4c:53:16:75:44:54:4e:97:0e:31:f3:fa:df:e0:86: 27:57:c5:d0:a2:4f:9e:43:9b:b4:f0:06:50:d5:c1: 70:ba:58:ca:60:c5:a9:dd:57:41:4e:42:bb:4c:6b: c2:6a:3c:ab:27:51:0d:c2:28:6f:a3:73:ec:b3:b9: af:85:b9:86:e0:c8:4d:bb:13:a8:62:67:f8:60:65: e2:eb:33:40:65:47:e6:20:1f:c9:7f:d7:c8:c0:b6: 3f:c6:47:7a:c9:af:e8:bc:f3:b0:69:34:ec:cc:30: c5:bb:8d:47:d2:04:4d:5b:1e:01:3c:38:ef:db:37: 96:97:4c:16:f6:36:49:23:95:5b:86:ed:49:19:47: c9:08:6f:b0:82:a0:a7:c3:d6:cd:9b:99:96:87:a7: 0a:2c:f1:22:26:e8:88:67:48:8a:6a:96:4f:4e:c7: ef:66:2d:5e:55:a4:df:8c:02:74:b7:9c:df:94:e4: ef:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:38:4A:D4:8A:00:17:F3:00:DB:24:83:C7:76:9E:65:A5:8B:5B:3E X509v3 Authority Key Identifier: keyid:34:42:A3:43:01:CC:61:0C:F2:72:F7:65:AB:BA:FC:9E:D1:F4:A9:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/UNIGATE/0/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/UNIGATE/0/323430333a613363303a3a2f33322d3438203d3e20313331363030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:a3c0::/32 Signature Algorithm: sha256WithRSAEncryption 1e:03:d9:f2:8c:a4:30:1a:0c:ba:fd:e9:0f:ac:da:e7:da:e8: 4d:87:be:79:74:0c:2f:40:75:62:10:71:fb:ab:d3:e2:74:59: 0b:14:eb:fd:08:3f:8a:e5:d5:66:95:53:bd:9f:4b:c7:de:b0: 26:84:25:fa:a7:22:1a:21:50:04:6a:68:d4:28:8d:fe:f1:b4: 7c:91:e6:32:34:6e:ac:7c:a5:b1:66:43:63:c1:65:be:bb:c6: d9:da:60:84:db:2a:d1:18:26:e6:fb:0e:95:f8:20:c9:91:5b: 1e:ee:17:60:e6:58:7d:c1:1a:44:12:e0:f7:1f:b6:3b:5d:96: aa:3a:05:a7:29:35:7e:9e:84:c8:cb:e5:9c:5a:1d:16:f5:9d: a4:66:5c:3d:9b:18:70:99:fc:e6:fb:11:26:9a:9c:7d:b7:2f: c7:4d:cd:fd:e4:ae:f9:af:2e:df:fb:1c:04:4c:2b:29:bc:b4: f3:24:e2:40:e5:aa:76:c2:09:a2:e5:34:8d:26:b0:8c:8f:57: a2:ae:d3:52:e6:81:b5:b5:70:f0:1b:ba:87:db:db:4e:8b:cf: 91:e0:19:d2:c1:c0:d9:52:05:45:20:87:8c:f6:b5:f9:21:ed: 4b:18:2b:26:3a:3e:3d:d8:62:7e:73:2e:6a:4e:04:17:3b:76: f4:eb:4d:9f -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIURoIOzyBzcS+BDPTSQiduXBfZbMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0MkEzNDMwMUNDNjEwQ0YyNzJGNzY1QUJCQUZDOUVE MUY0QTlCRTAeFw0yNjA1MTExNzEwNTBaFw0yNzA1MTAxNzE1NTBaMDMxMTAvBgNV BAMTKDE3Mzg0QUQ0OEEwMDE3RjMwMERCMjQ4M0M3NzY5RTY1QTU4QjVCM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxjJgE3wblk4yZZSCp7/70w2wr +CCAvCch2xEbYFGsOeni3+/e4W6Nkp4E5E+mucakVAwy85J7otUEdgm7Uzhjf1j3 DlZCqjFkmUxTFnVEVE6XDjHz+t/ghidXxdCiT55Dm7TwBlDVwXC6WMpgxandV0FO QrtMa8JqPKsnUQ3CKG+jc+yzua+FuYbgyE27E6hiZ/hgZeLrM0BlR+YgH8l/18jA tj/GR3rJr+i887BpNOzMMMW7jUfSBE1bHgE8OO/bN5aXTBb2NkkjlVuG7UkZR8kI b7CCoKfD1s2bmZaHpwos8SIm6IhnSIpqlk9Ox+9mLV5VpN+MAnS3nN+U5O8fAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUFzhK1IoAF/MA2ySDx3aeZaWLWz4wHwYDVR0j BBgwFoAUNEKjQwHMYQzycvdlq7r8ntH0qb4wDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVU5JR0FU RS8wLzM0NDJBMzQzMDFDQzYxMENGMjcyRjc2NUFCQkFGQzlFRDFGNEE5QkUuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvMzQ0MkEzNDMwMUNDNjEwQ0YyNzJGNzY1QUJC QUZDOUVEMUY0QTlCRS5jZXIwfQYIKwYBBQUHAQsEcTBvMG0GCCsGAQUFBzALhmFy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1VOSUdBVEUvMC8zMjM0MzAzMzNh NjEzMzYzMzAzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzMTMzMzEzNjMwMzAucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkA6PAMA0GCSqGSIb3DQEBCwUAA4IBAQAeA9nyjKQwGgy6/ekPrNrn 2uhNh755dAwvQHViEHH7q9PidFkLFOv9CD+K5dVmlVO9n0vH3rAmhCX6pyIaIVAE amjUKI3+8bR8keYyNG6sfKWxZkNjwWW+u8bZ2mCE2yrRGCbm+w6V+CDJkVse7hdg 5lh9wRpEEuD3H7Y7XZaqOgWnKTV+noTIy+WcWh0W9Z2kZlw9mxhwmfzm+xEmmpx9 ty/HTc395K75ry7f+xwETCspvLTzJOJA5ap2wgmi5TSNJrCMj1eirtNS5oG1tXDw G7qH29tOi8+R4BnSwcDZUgVFIIeM9rX5Ie1LGCsmOj492GJ+cy5qTgQXO3b0602f -----END CERTIFICATE-----Generated at Wed May 13 21:17:51 2026 by rpki-client