$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/ZqMElJMabr6QHKUPSx8OvyiYlGo.roa File: ZqMElJMabr6QHKUPSx8OvyiYlGo.roa (raw, json) Hash identifier: lCk1wVSvOsnYwHaz5DTrdzlvXyAH+xoTT/nmgN4Y70Y= Subject key identifier: 66:A3:04:94:93:1A:6E:BE:90:1C:A5:0F:4B:1F:0E:BF:28:98:94:6A Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Certificate serial: 01F3 Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/ZqMElJMabr6QHKUPSx8OvyiYlGo.roa Signing time: Fri 22 Aug 2025 09:02:09 +0000 ROA not before: Fri 22 Aug 2025 09:02:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18041 IP address blocks: 2401:7a60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Validity Not Before: Aug 22 09:02:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=66A30494931A6EBE901CA50F4B1F0EBF2898946A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cc:46:6d:b0:13:c0:ba:fd:0d:5a:20:1f:de: a4:7c:d3:d1:58:c9:23:f9:9e:f4:5e:be:51:4b:00: d5:0f:e4:7a:7a:5f:39:90:dc:4d:dc:c6:c4:fd:8d: ce:ef:30:09:ff:06:e7:e8:00:72:3f:00:95:7d:ef: 35:01:66:f4:2a:bd:07:56:17:63:f5:5e:c9:a2:3e: a1:ff:46:a2:ac:b3:87:9d:45:43:77:76:99:00:6d: d6:d4:19:d1:06:3a:c9:db:a2:fb:3b:77:bb:63:32: 35:b1:7b:8c:7e:3c:1a:92:cb:69:2c:45:27:23:49: c1:6f:be:16:80:99:cc:11:ee:d3:7e:e7:20:00:9f: 0a:72:c8:0c:11:f9:e3:f1:e5:ae:d9:f4:fa:c6:63: 5a:35:5c:0e:b6:e1:80:c1:20:81:5c:db:34:ff:42: e0:1a:c9:b3:82:2f:fd:30:46:c9:a7:1d:b9:d2:57: 2e:9c:c4:80:98:81:79:58:48:ce:09:56:29:f2:df: 02:d3:c9:86:1c:cf:36:68:c0:04:82:eb:86:09:72: 1a:3f:05:d8:d8:d4:32:94:5c:59:2b:3d:81:95:8f: 7a:c7:b7:49:4e:d4:f2:ba:ef:57:e1:b6:0e:22:4d: 4c:a0:e7:d3:49:91:8f:b3:93:47:0c:51:5f:fd:c8: c9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A3:04:94:93:1A:6E:BE:90:1C:A5:0F:4B:1F:0E:BF:28:98:94:6A X509v3 Authority Key Identifier: keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/ZqMElJMabr6QHKUPSx8OvyiYlGo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:7a60::/32 Signature Algorithm: sha256WithRSAEncryption d7:8f:dd:32:ad:ef:c7:f2:86:bb:1f:19:eb:f3:c4:8b:f6:07: be:25:ee:e4:d3:87:d4:98:fd:32:47:41:b9:a5:a7:5e:7c:fa: fe:0d:62:e2:66:12:36:1f:55:8e:5c:20:c9:60:bf:bc:4f:d1: 93:f9:c2:31:5a:2f:ca:7d:a1:39:89:7b:27:9c:3e:66:14:d4: be:cf:df:13:a6:f7:43:92:2a:2b:2e:cf:dc:67:4e:3c:91:05: b4:55:73:97:c9:ff:13:35:99:f9:ae:9d:c0:9b:3b:37:1c:79: 42:85:29:a1:da:fc:e0:db:f6:a1:27:83:9d:0a:a9:28:98:73: 7f:82:13:fd:08:cd:41:8e:26:0b:82:46:8b:f3:d0:99:51:9a: 10:1e:1d:06:9d:b2:f4:33:39:62:02:e2:e1:6f:28:94:0e:76: f3:ae:49:6f:fa:11:62:e3:a7:56:47:47:d9:2f:75:72:18:7e: d3:53:fb:e2:b3:c7:16:81:57:21:5e:32:4a:84:3c:c1:ab:a6: e5:08:97:de:7b:94:bf:9b:e8:0a:a9:19:00:28:11:00:4e:5b: 00:91:8b:16:c6:4f:47:b4:ef:cf:2d:81:e2:f2:0c:7d:2d:95: 6f:43:2d:ad:04:3c:f2:90:4d:85:8c:74:f9:d6:fa:9a:94:5a: 79:42:a1:67 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDY5 Q0U2NTFERDdENzE2QTg5QThFRTg0ODczRENDQkY0MTM1NDc5OTAeFw0yNTA4MjIw OTAyMDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY2QTMwNDk0OTMxQTZF QkU5MDFDQTUwRjRCMUYwRUJGMjg5ODk0NkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuzEZtsBPAuv0NWiAf3qR809FYySP5nvRevlFLANUP5Hp6XzmQ 3E3cxsT9jc7vMAn/BufoAHI/AJV97zUBZvQqvQdWF2P1XsmiPqH/RqKss4edRUN3 dpkAbdbUGdEGOsnbovs7d7tjMjWxe4x+PBqSy2ksRScjScFvvhaAmcwR7tN+5yAA nwpyyAwR+ePx5a7Z9PrGY1o1XA624YDBIIFc2zT/QuAaybOCL/0wRsmnHbnSVy6c xICYgXlYSM4JViny3wLTyYYczzZowASC64YJcho/BdjY1DKUXFkrPYGVj3rHt0lO 1PK671fhtg4iTUyg59NJkY+zk0cMUV/9yMkRAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUZqMElJMabr6QHKUPSx8OvyiYlGowHwYDVR0jBBgwFoAUBpzmUd19cWqJqO6E hz3Mv0E1R5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVJDSEUv QnB6bVVkMTljV3FKcU82RWh6M012MEUxUjVrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9CcHptVWQxOWNXcUpxTzZFaHozTXYwRTFSNWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BUkNIRS9acU1FbEpNYWJyNlFIS1VQU3g4 T3Z5aVlsR28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAF6 YDANBgkqhkiG9w0BAQsFAAOCAQEA14/dMq3vx/KGux8Z6/PEi/YHviXu5NOH1Jj9 MkdBuaWnXnz6/g1i4mYSNh9VjlwgyWC/vE/Rk/nCMVovyn2hOYl7J5w+ZhTUvs/f E6b3Q5IqKy7P3GdOPJEFtFVzl8n/EzWZ+a6dwJs7Nxx5QoUpodr84Nv2oSeDnQqp KJhzf4IT/QjNQY4mC4JGi/PQmVGaEB4dBp2y9DM5YgLi4W8olA52865Jb/oRYuOn VkdH2S91chh+01P74rPHFoFXIV4ySoQ8waum5QiX3nuUv5voCqkZACgRAE5bAJGL FsZPR7Tvzy2B4vIMfS2Vb0MtrQQ88pBNhYx0+db6mpRaeUKhZw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:25 2025 by rpki-client