$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/f0LS-dXXQKjkcRZLMVuP9g3OkH4.roa File: f0LS-dXXQKjkcRZLMVuP9g3OkH4.roa (raw, json) Hash identifier: TDDsd1oMj9nc0RE/KQmB03zOUIPZDBv4q9CB0VBHIOI= Subject key identifier: 7F:42:D2:F9:D5:D7:40:A8:E4:71:16:4B:31:5B:8F:F6:0D:CE:90:7E Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0DB2 Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/f0LS-dXXQKjkcRZLMVuP9g3OkH4.roa Signing time: Fri 22 Aug 2025 09:00:57 +0000 ROA not before: Fri 22 Aug 2025 09:00:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9264 IP address blocks: 202.169.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3506 (0xdb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Aug 22 09:00:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7F42D2F9D5D740A8E471164B315B8FF60DCE907E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:15:17:8c:df:7c:93:5e:bc:e1:b9:45:bc:99: 73:be:ba:71:3b:cb:fe:35:54:15:e0:26:1a:9e:e0: 39:99:04:14:76:d0:59:24:95:37:40:b5:d5:d9:41: b5:ad:cc:4e:0d:81:09:4e:e5:a9:6b:b7:ff:68:91: f1:8d:2d:60:3d:57:e7:8f:0a:a2:ab:bc:79:b4:db: ae:39:92:25:31:72:85:74:2e:81:26:95:f1:31:cf: d3:4b:4c:da:b2:c1:ca:6e:b3:23:af:ff:7c:ff:68: 08:2c:85:16:c7:6d:78:31:1b:97:dd:33:69:2d:02: b6:bc:3c:15:ab:aa:33:53:8f:55:6f:31:e3:e2:1c: bd:d9:8a:af:db:68:89:04:7a:47:ea:19:c0:8a:1c: 92:da:89:78:2a:8a:cc:00:ad:f9:c8:e3:a2:34:f7: 5b:8b:27:ac:d9:5d:0e:2e:96:77:c5:a2:c7:00:7a: 41:cb:82:01:a7:9f:83:f1:10:ec:6e:eb:dc:89:72: 09:95:d2:2f:33:e5:84:84:37:8f:4b:59:6f:83:9a: a4:a4:9d:a8:97:4d:0c:cf:b4:eb:9e:35:5f:70:10: da:13:3b:cb:2f:07:46:5d:13:6f:0a:f6:34:2d:f5: 1e:e8:c7:f9:e7:28:cc:28:61:eb:5a:c5:d8:8d:74: aa:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:42:D2:F9:D5:D7:40:A8:E4:71:16:4B:31:5B:8F:F6:0D:CE:90:7E X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/f0LS-dXXQKjkcRZLMVuP9g3OkH4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.169.160.0/20 Signature Algorithm: sha256WithRSAEncryption 54:eb:a4:06:68:e6:18:a8:cb:c2:5f:f5:26:17:cb:79:21:51: 16:9d:57:ad:be:6f:aa:93:0c:58:a2:49:64:a2:9b:ea:d2:62: f1:f8:6f:01:18:a1:b1:e6:92:97:cd:0b:a8:c8:eb:ac:74:07: 2f:dc:9e:2d:a9:3d:d4:82:b4:ac:0a:27:39:ce:e0:81:cd:fa: fb:19:8e:65:b5:c7:69:37:b8:21:ab:e9:4a:d1:6d:c0:3e:15: 69:86:73:c2:46:3f:77:4a:47:9c:60:0c:ad:fc:32:9f:e9:59: 94:a5:4e:03:bc:3d:40:bd:2f:3c:8b:31:c6:78:8e:58:bf:14: b2:d7:a4:bf:b3:fb:44:a6:cf:42:d2:2b:5d:cd:a0:f9:96:89: b6:9d:97:6c:8f:fa:9f:6f:73:28:14:c7:6f:22:86:5a:64:ba: db:7b:9e:c8:4a:d0:6a:2a:5c:03:8f:c1:18:3d:ff:14:76:ca: 41:47:13:a8:6c:33:c2:04:b2:aa:af:e2:a1:7b:90:89:94:7c: 60:25:ec:89:7c:59:b6:32:2c:2e:39:07:54:22:ed:b5:ae:f2: 5f:0f:f3:24:c9:78:cc:c9:95:47:a1:bf:c2:a7:79:77:64:d8: c2:f3:e9:c1:5e:65:78:73:b7:f8:f1:41:fd:4e:80:36:c9:9e: f8:0b:f4:ab -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDbIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNTA4MjIw OTAwNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdGNDJEMkY5RDVENzQw QThFNDcxMTY0QjMxNUI4RkY2MERDRTkwN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6FReM33yTXrzhuUW8mXO+unE7y/41VBXgJhqe4DmZBBR20Fkk lTdAtdXZQbWtzE4NgQlO5alrt/9okfGNLWA9V+ePCqKrvHm02645kiUxcoV0LoEm lfExz9NLTNqywcpusyOv/3z/aAgshRbHbXgxG5fdM2ktAra8PBWrqjNTj1VvMePi HL3Ziq/baIkEekfqGcCKHJLaiXgqiswArfnI46I091uLJ6zZXQ4ulnfFoscAekHL ggGnn4PxEOxu69yJcgmV0i8z5YSEN49LWW+DmqSknaiXTQzPtOueNV9wENoTO8sv B0ZdE28K9jQt9R7ox/nnKMwoYetaxdiNdKrZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUf0LS+dXXQKjkcRZLMVuP9g3OkH4wHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9mMExTLWRYWFFLamtjUlpMTVZ1 UDlnM09rSDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyqmg MA0GCSqGSIb3DQEBCwUAA4IBAQBU66QGaOYYqMvCX/UmF8t5IVEWnVetvm+qkwxY oklkopvq0mLx+G8BGKGx5pKXzQuoyOusdAcv3J4tqT3UgrSsCic5zuCBzfr7GY5l tcdpN7ghq+lK0W3APhVphnPCRj93SkecYAyt/DKf6VmUpU4DvD1AvS88izHGeI5Y vxSy16S/s/tEps9C0itdzaD5lom2nZdsj/qfb3MoFMdvIoZaZLrbe57IStBqKlwD j8EYPf8UdspBRxOobDPCBLKqr+Khe5CJlHxgJeyJfFm2MiwuOQdUIu21rvJfD/Mk yXjMyZVHob/Cp3l3ZNjC8+nBXmV4c7f48UH9ToA2yZ74C/Sr -----END CERTIFICATE-----Generated at Sun Aug 24 11:01:42 2025 by rpki-client