$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/8SS0c9eOqVddV35oLr0FHO6N9Fg.roa File: 8SS0c9eOqVddV35oLr0FHO6N9Fg.roa (raw, json) Hash identifier: ZjGdVt4+DDdO5RAQK0pQbTTDUsgTQJpbVB5IhiWI+Zw= Subject key identifier: F1:24:B4:73:D7:8E:A9:57:5D:57:7E:68:2E:BD:05:1C:EE:8D:F4:58 Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 06D3 Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/8SS0c9eOqVddV35oLr0FHO6N9Fg.roa Signing time: Fri 22 Aug 2025 08:48:57 +0000 ROA not before: Fri 22 Aug 2025 08:48:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38136 IP address blocks: 2406:8dc0::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1747 (0x6d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Aug 22 08:48:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F124B473D78EA9575D577E682EBD051CEE8DF458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:73:29:bb:2e:53:2c:de:ac:02:b2:4b:3d:63: e3:7e:c4:17:09:04:4a:47:ce:da:13:2c:cd:5b:ee: bf:82:2d:63:0e:da:ea:7c:58:1c:5b:5c:27:d8:2f: a1:e2:da:10:61:72:7f:f7:a5:02:2c:df:ac:cc:7b: a8:00:69:23:06:e2:03:dc:ba:07:81:42:3b:22:6b: 19:95:04:d8:ea:39:e6:b6:e7:4c:49:1c:9d:ba:1d: 0f:8e:a2:90:55:b9:73:a0:02:ff:24:86:f4:84:d1: dd:fd:02:73:45:cd:cf:a2:85:f9:4c:8c:ed:f1:69: cf:b7:ba:ac:e0:09:be:0d:b9:62:89:28:58:2f:79: 64:77:ce:57:31:8f:2e:d5:03:67:ef:91:78:6f:24: 06:29:d6:35:a7:ac:45:d9:26:d4:22:55:07:26:fa: 06:40:9e:b9:37:6d:a1:0a:01:19:ab:b2:45:36:78: 8d:af:b0:d7:21:38:e0:51:58:77:de:c0:77:46:18: d6:2b:16:db:c0:28:8a:1d:12:2a:17:dc:56:11:a6: e6:0d:9a:a3:29:4d:38:43:f6:31:db:1d:5c:cb:2a: 5a:3b:01:47:c0:90:26:0e:8b:73:b6:d5:ed:8e:64: 49:0e:ed:c1:e7:ba:c7:4a:bd:cc:e3:d2:19:18:5c: 71:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:24:B4:73:D7:8E:A9:57:5D:57:7E:68:2E:BD:05:1C:EE:8D:F4:58 X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/8SS0c9eOqVddV35oLr0FHO6N9Fg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:8dc0::/36 Signature Algorithm: sha256WithRSAEncryption d6:c3:56:a6:82:5f:2a:1c:32:9a:a1:b0:25:53:34:08:89:d9: 45:4e:7c:d3:6b:2c:a3:c2:4e:26:06:64:8b:99:09:41:bc:f0: e9:79:8d:4e:1f:ac:bf:1b:bc:65:a0:80:90:35:46:f5:6b:91: 23:27:a2:34:44:c8:a0:39:94:e5:59:28:42:73:9d:ae:97:b8: f6:2e:4e:b1:18:10:e7:1f:d5:d2:93:9d:64:da:12:8a:56:07: 74:1d:45:26:6c:8a:5a:16:6d:15:be:48:3a:66:e7:b7:13:89: 36:b6:9d:28:56:ff:d5:50:bb:5b:af:77:1d:61:34:c2:70:05: d7:b1:b6:5b:f2:8c:a0:0b:c2:a1:de:39:93:06:d2:28:0f:00: 5b:60:97:b8:95:20:78:51:87:df:1e:79:71:f4:f9:d5:2f:9f: 58:1d:f0:b1:31:42:de:bd:e2:9b:27:e0:41:56:32:e4:91:3f: 47:fe:fb:7b:1e:82:36:0e:17:49:cb:83:48:57:9c:bd:52:d1: 0a:b8:0b:bf:14:11:8d:e8:46:90:64:6c:06:2b:3d:ee:e3:c1: 47:85:23:06:1f:82:40:bb:68:8a:56:19:61:f1:77:63:79:20: 1c:7e:be:e5:9f:05:72:e2:d9:17:d0:f4:d3:bb:9b:f5:59:fc: 66:21:9c:a3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yNTA4MjIw ODQ4NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYxMjRCNDczRDc4RUE5 NTc1RDU3N0U2ODJFQkQwNTFDRUU4REY0NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkcym7LlMs3qwCsks9Y+N+xBcJBEpHztoTLM1b7r+CLWMO2up8 WBxbXCfYL6Hi2hBhcn/3pQIs36zMe6gAaSMG4gPcugeBQjsiaxmVBNjqOea250xJ HJ26HQ+OopBVuXOgAv8khvSE0d39AnNFzc+ihflMjO3xac+3uqzgCb4NuWKJKFgv eWR3zlcxjy7VA2fvkXhvJAYp1jWnrEXZJtQiVQcm+gZAnrk3baEKARmrskU2eI2v sNchOOBRWHfewHdGGNYrFtvAKIodEioX3FYRpuYNmqMpTThD9jHbHVzLKlo7AUfA kCYOi3O21e2OZEkO7cHnusdKvczj0hkYXHEDAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU8SS0c9eOqVddV35oLr0FHO6N9FgwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvOFNTMGM5ZU9xVmRkVjM1 b0xyMEZITzZOOUZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMG BCQGjcAAMA0GCSqGSIb3DQEBCwUAA4IBAQDWw1amgl8qHDKaobAlUzQIidlFTnzT ayyjwk4mBmSLmQlBvPDpeY1OH6y/G7xloICQNUb1a5EjJ6I0RMigOZTlWShCc52u l7j2Lk6xGBDnH9XSk51k2hKKVgd0HUUmbIpaFm0Vvkg6Zue3E4k2tp0oVv/VULtb r3cdYTTCcAXXsbZb8oygC8Kh3jmTBtIoDwBbYJe4lSB4UYffHnlx9PnVL59YHfCx MULeveKbJ+BBVjLkkT9H/vt7HoI2DhdJy4NIV5y9UtEKuAu/FBGN6EaQZGwGKz3u 48FHhSMGH4JAu2iKVhlh8XdjeSAcfr7lnwVy4tkX0PTTu5v1WfxmIZyj -----END CERTIFICATE-----Generated at Sun Aug 24 07:42:04 2025 by rpki-client