$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/zltFiUxl9zlccvR5l1V4KOw8x_4.roa File: zltFiUxl9zlccvR5l1V4KOw8x_4.roa (raw, json) Hash identifier: oLGQNql5JbmtJHP8yYP+HIAgq9QuBkVDJY4w9NyeBY8= Subject key identifier: CE:5B:45:89:4C:65:F7:39:5C:72:F4:79:97:55:78:28:EC:3C:C7:FE Certificate issuer: /CN=EAB250D058FACBEB3EA0D16B53865061339074B6 Certificate serial: 01F4 Authority key identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/zltFiUxl9zlccvR5l1V4KOw8x_4.roa Signing time: Fri 22 Aug 2025 09:02:10 +0000 ROA not before: Fri 22 Aug 2025 09:02:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18041 IP address blocks: 157.15.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAB250D058FACBEB3EA0D16B53865061339074B6 Validity Not Before: Aug 22 09:02:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CE5B45894C65F7395C72F47997557828EC3CC7FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:28:46:29:d2:61:68:19:b1:bb:04:b8:b7:a2: 0a:a0:59:40:2e:b2:58:96:4b:c1:e6:c3:7a:4b:62: 67:e6:82:a8:b9:28:a7:98:64:25:25:bd:6d:31:40: 75:04:90:57:a4:0f:27:93:6a:63:5e:32:98:2e:84: 74:1d:ec:c8:17:3c:e5:ba:2f:a7:67:b7:85:01:00: 4c:2d:f4:35:18:45:12:be:ca:65:21:82:c3:14:26: 68:0e:31:85:3d:21:a1:f4:2d:08:0c:19:50:68:1e: d6:04:4f:a5:f2:13:ea:0b:8d:68:eb:44:5a:40:53: 58:dd:7e:cc:da:1e:5d:81:4b:c0:db:8f:6a:bc:31: be:91:48:4d:74:a0:c0:a9:4c:db:28:99:de:19:90: 83:4d:82:af:2a:e3:d9:65:5b:4d:29:17:61:55:a1: 0e:d3:69:69:b9:09:ac:66:5a:b5:70:50:22:8b:3b: dc:58:10:0c:86:c3:e6:e8:44:2b:f4:f3:f2:d4:84: f7:80:ae:ba:fd:da:c6:87:97:fe:5b:19:b7:f7:86: 8c:95:ce:8c:a6:43:4a:3b:d6:a4:c9:a7:6f:8b:56: d1:b3:1b:b3:d8:e7:5f:b9:24:d9:50:63:3b:69:c8: 11:b1:b3:a6:4e:65:3b:dd:5f:5d:fe:0d:4a:4a:74: 6d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:5B:45:89:4C:65:F7:39:5C:72:F4:79:97:55:78:28:EC:3C:C7:FE X509v3 Authority Key Identifier: keyid:EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/zltFiUxl9zlccvR5l1V4KOw8x_4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.15.32.0/23 Signature Algorithm: sha256WithRSAEncryption 55:c5:e7:56:86:8a:33:a0:1b:0f:5a:cd:dd:09:39:98:9c:d8: f8:35:f9:0e:df:00:25:8d:fd:9f:51:90:2a:d1:fa:1e:fa:50: 70:7e:3d:c8:ac:48:1e:f6:4a:1c:9a:1d:29:89:a6:e8:2b:41: 04:c8:4c:63:ef:5a:a9:03:0d:31:d2:2a:fb:af:bf:b5:c3:98: b2:6c:3e:95:98:f3:5a:43:7c:c6:57:84:a5:46:a9:72:33:e6: 46:48:25:37:fe:cb:f0:2e:54:9c:e8:8c:b5:f2:2f:fb:fc:dd: dc:c0:86:01:a1:7c:bc:78:9d:a2:1b:4d:46:49:1f:9a:68:61: 34:3d:ee:84:20:87:87:ec:39:8e:0c:ac:76:2e:5a:dc:1c:f1: f4:3b:87:c0:a8:cc:93:86:25:7d:2a:ef:b7:00:12:26:ff:d3: 8f:0e:2c:6e:5f:81:da:f9:e2:20:e7:c1:54:9d:0d:fe:56:50: 1a:48:95:9d:ae:bb:3f:0a:a6:0b:be:af:7e:95:ba:f1:df:a9: 37:c2:7a:8d:b0:08:04:53:d0:ac:3a:92:e9:95:09:c4:d4:28: 14:0a:b4:71:93:cb:6b:f3:ce:9c:f9:bb:de:5c:5e:d6:6d:72: 7b:f4:5c:69:55:aa:30:37:7a:fe:1b:ac:9f:c0:99:24:b9:dd: 7a:fc:2a:24 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUFC MjUwRDA1OEZBQ0JFQjNFQTBEMTZCNTM4NjUwNjEzMzkwNzRCNjAeFw0yNTA4MjIw OTAyMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENFNUI0NTg5NEM2NUY3 Mzk1QzcyRjQ3OTk3NTU3ODI4RUMzQ0M3RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYKEYp0mFoGbG7BLi3ogqgWUAusliWS8Hmw3pLYmfmgqi5KKeY ZCUlvW0xQHUEkFekDyeTamNeMpguhHQd7MgXPOW6L6dnt4UBAEwt9DUYRRK+ymUh gsMUJmgOMYU9IaH0LQgMGVBoHtYET6XyE+oLjWjrRFpAU1jdfszaHl2BS8Dbj2q8 Mb6RSE10oMCpTNsomd4ZkINNgq8q49llW00pF2FVoQ7TaWm5CaxmWrVwUCKLO9xY EAyGw+boRCv08/LUhPeArrr92saHl/5bGbf3hoyVzoymQ0o71qTJp2+LVtGzG7PY 51+5JNlQYztpyBGxs6ZOZTvdX13+DUpKdG3ZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUzltFiUxl9zlccvR5l1V4KOw8x/4wHwYDVR0jBBgwFoAU6rJQ0Fj6y+s+oNFr U4ZQYTOQdLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVJDSEUv NnJKUTBGajZ5LXMtb05GclU0WlFZVE9RZExZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS82ckpRMEZqNnktcy1vTkZyVTRaUVlUT1FkTFkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BUkNIRS96bHRGaVV4bDl6bGNjdlI1bDFW NEtPdzh4XzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQ8g MA0GCSqGSIb3DQEBCwUAA4IBAQBVxedWhoozoBsPWs3dCTmYnNj4NfkO3wAljf2f UZAq0foe+lBwfj3IrEge9kocmh0piaboK0EEyExj71qpAw0x0ir7r7+1w5iybD6V mPNaQ3zGV4SlRqlyM+ZGSCU3/svwLlSc6Iy18i/7/N3cwIYBoXy8eJ2iG01GSR+a aGE0Pe6EIIeH7DmODKx2LlrcHPH0O4fAqMyThiV9Ku+3ABIm/9OPDixuX4Ha+eIg 58FUnQ3+VlAaSJWdrrs/CqYLvq9+lbrx36k3wnqNsAgEU9CsOpLplQnE1CgUCrRx k8tr886c+bveXF7WbXJ79FxpVaowN3r+G6yfwJkkud16/Cok -----END CERTIFICATE-----Generated at Sun Aug 24 06:52:15 2025 by rpki-client