$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/N7w79PTEVIdZ2N2wWHmhTqPyW1k.roa File: N7w79PTEVIdZ2N2wWHmhTqPyW1k.roa (raw, json) Hash identifier: WyHziWW2C3rXScOeitqG7jDpWB0xlrKdnTRAVAAV5+s= Subject key identifier: 37:BC:3B:F4:F4:C4:54:87:59:D8:DD:B0:58:79:A1:4E:A3:F2:5B:59 Certificate issuer: /CN=461BC0E516022C3C278FC892420705FEB85668D9 Certificate serial: 01E1 Authority key identifier: 46:1B:C0:E5:16:02:2C:3C:27:8F:C8:92:42:07:05:FE:B8:56:68:D9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/N7w79PTEVIdZ2N2wWHmhTqPyW1k.roa Signing time: Fri 22 Aug 2025 08:44:05 +0000 ROA not before: Fri 22 Aug 2025 08:44:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150769 IP address blocks: 157.15.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/RhvA5RYCLDwnj8iSQgcF_rhWaNk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/RhvA5RYCLDwnj8iSQgcF_rhWaNk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=461BC0E516022C3C278FC892420705FEB85668D9 Validity Not Before: Aug 22 08:44:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=37BC3BF4F4C4548759D8DDB05879A14EA3F25B59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:91:65:93:2e:93:e6:13:4d:3b:e1:42:50:6b: 63:44:b9:8e:19:59:2f:4a:a0:ee:13:f6:48:a9:7f: 36:ae:6d:43:5a:57:0b:a9:6e:5d:a5:26:1d:ef:f2: 4f:9b:5b:ed:69:aa:ab:92:ae:0f:9a:2d:60:6f:fa: 21:ac:ba:a7:5a:d4:3f:03:00:28:2d:1c:d6:58:e3: 55:87:e9:82:e4:d5:2f:cd:d1:fa:80:7d:65:9a:fe: bb:f4:c2:d2:f4:47:66:c8:6e:4d:a6:6c:bc:b6:84: 0d:77:a3:05:4b:c7:c7:b3:5d:41:31:24:ab:af:1a: ff:34:da:a9:c2:81:01:23:71:99:d5:7f:3e:09:8a: f5:b1:b3:6d:63:34:b6:68:e7:d6:cc:0e:09:f4:d0: 74:66:61:e8:a0:8c:1c:c4:ef:64:1c:ad:d4:05:1f: a7:28:ff:8d:36:a1:9f:4e:71:d3:35:0f:24:64:b7: 29:f5:4e:e7:c5:2d:cd:7a:d1:0e:f1:71:03:04:f3: 0c:f5:ed:51:87:df:eb:8d:84:41:9c:86:00:a4:47: 68:d9:9e:90:1a:66:3f:a8:48:5a:c2:55:da:c8:ce: dd:38:78:3b:4f:fe:8e:90:c9:e6:1a:73:99:a3:89: 6d:28:97:1c:a9:86:7f:3f:6b:f7:4a:e5:14:74:22: 4f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BC:3B:F4:F4:C4:54:87:59:D8:DD:B0:58:79:A1:4E:A3:F2:5B:59 X509v3 Authority Key Identifier: keyid:46:1B:C0:E5:16:02:2C:3C:27:8F:C8:92:42:07:05:FE:B8:56:68:D9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/RhvA5RYCLDwnj8iSQgcF_rhWaNk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/N7w79PTEVIdZ2N2wWHmhTqPyW1k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.15.70.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:d9:ce:82:e5:95:e4:4e:1f:61:2e:19:a2:db:2c:a9:d2:85: 5e:30:41:11:d1:5b:5c:bb:ff:5a:02:72:96:6e:3f:9f:25:0d: 6c:35:9c:da:4c:28:8d:14:a9:cb:3b:6e:31:7e:ce:39:ca:32: 73:5a:89:ab:9f:ea:f2:e7:1c:bf:9b:c4:f3:92:ec:44:6b:8a: b1:58:49:18:ba:1d:0b:c5:94:85:dc:43:e8:40:2e:f8:46:87: e5:78:aa:3c:e5:a7:df:13:87:a2:85:e3:e3:60:de:0a:1f:1d: a4:d3:81:ad:d6:86:e7:3e:24:ad:c6:1e:37:7b:b7:2a:8c:ca: 19:6c:c9:23:ac:f6:56:7f:8a:e0:10:81:d6:73:98:73:f8:c5: b9:79:b3:b2:8d:37:02:15:54:ea:84:c2:6a:3a:8b:36:63:07: cb:17:7a:04:58:70:cf:63:2a:37:c0:6e:6e:48:db:f4:c8:d5: bc:64:cf:8b:33:ee:9d:20:1f:18:33:14:c0:2a:f8:36:c2:c6: 21:4b:14:58:25:e0:ff:bf:4a:f3:84:81:96:07:dc:0a:4b:a8: fc:65:de:4f:c2:5a:73:10:10:51:14:dc:ed:89:52:60:a4:45: 5d:0c:78:61:f7:0e:db:ab:30:21:a7:d6:17:ae:54:ba:06:08: 14:76:27:aa -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDYx QkMwRTUxNjAyMkMzQzI3OEZDODkyNDIwNzA1RkVCODU2NjhEOTAeFw0yNTA4MjIw ODQ0MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM3QkMzQkY0RjRDNDU0 ODc1OUQ4RERCMDU4NzlBMTRFQTNGMjVCNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3kWWTLpPmE0074UJQa2NEuY4ZWS9KoO4T9kipfzaubUNaVwup bl2lJh3v8k+bW+1pqquSrg+aLWBv+iGsuqda1D8DACgtHNZY41WH6YLk1S/N0fqA fWWa/rv0wtL0R2bIbk2mbLy2hA13owVLx8ezXUExJKuvGv802qnCgQEjcZnVfz4J ivWxs21jNLZo59bMDgn00HRmYeigjBzE72QcrdQFH6co/402oZ9OcdM1DyRktyn1 TufFLc160Q7xcQME8wz17VGH3+uNhEGchgCkR2jZnpAaZj+oSFrCVdrIzt04eDtP /o6QyeYac5mjiW0olxyphn8/a/dK5RR0Ik/xAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUN7w79PTEVIdZ2N2wWHmhTqPyW1kwHwYDVR0jBBgwFoAURhvA5RYCLDwnj8iS QgcF/rhWaNkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJB UFBTL1JodkE1UllDTER3bmo4aVNRZ2NGX3JoV2FOay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvUmh2QTVSWUNMRHduajhpU1FnY0ZfcmhXYU5rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJBUFBTL043dzc5UFRFVklk WjJOMndXSG1oVHFQeVcxay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGdD0YwDQYJKoZIhvcNAQELBQADggEBAGvZzoLlleROH2EuGaLbLKnShV4w QRHRW1y7/1oCcpZuP58lDWw1nNpMKI0Uqcs7bjF+zjnKMnNaiauf6vLnHL+bxPOS 7ERrirFYSRi6HQvFlIXcQ+hALvhGh+V4qjzlp98Th6KF4+Ng3gofHaTTga3Whuc+ JK3GHjd7tyqMyhlsySOs9lZ/iuAQgdZzmHP4xbl5s7KNNwIVVOqEwmo6izZjB8sX egRYcM9jKjfAbm5I2/TI1bxkz4sz7p0gHxgzFMAq+DbCxiFLFFgl4P+/SvOEgZYH 3ApLqPxl3k/CWnMQEFEU3O2JUmCkRV0MeGH3DturMCGn1heuVLoGCBR2J6o= -----END CERTIFICATE-----Generated at Sun Aug 24 11:12:51 2025 by rpki-client