$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/sQqRmA10GthuXGRkpTtX9n_ZBrI.roa File: sQqRmA10GthuXGRkpTtX9n_ZBrI.roa (raw, json) Hash identifier: 4obaoWU328k4rVD+yQS2KGDxmTQx10ZBoqdXf1RfRMI= Subject key identifier: B1:0A:91:98:0D:74:1A:D8:6E:5C:64:64:A5:3B:57:F6:7F:D9:06:B2 Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Certificate serial: 0D66 Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/sQqRmA10GthuXGRkpTtX9n_ZBrI.roa Signing time: Fri 22 Aug 2025 08:50:37 +0000 ROA not before: Fri 22 Aug 2025 08:50:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38254 IP address blocks: 2403:8ec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3430 (0xd66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Validity Not Before: Aug 22 08:50:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B10A91980D741AD86E5C6464A53B57F67FD906B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ad:a5:c8:39:f4:2e:b5:4f:5d:d2:54:e2:07: f2:5b:76:74:21:76:5c:62:ab:2c:92:80:0d:84:74: 8e:73:06:64:1d:78:f1:75:a4:ab:91:ea:c6:40:45: 64:79:cb:45:25:cd:81:a5:7e:d1:af:f1:ee:44:81: 2f:b9:6a:b2:a7:27:e4:98:ea:aa:e3:df:85:fe:92: cd:2e:7e:97:1f:65:6a:d6:5a:54:2d:ac:e8:54:dd: 58:fd:92:26:63:73:6d:da:14:1e:86:6f:db:41:43: a5:5a:e9:13:65:33:4c:b3:2d:a9:9a:6c:3a:d1:50: da:ec:ee:5e:68:e9:b1:01:df:39:f4:31:8f:c4:75: 45:a3:67:87:69:52:d4:d5:cb:e4:12:28:cf:bc:16: 96:5b:f0:77:90:44:25:e4:bd:4a:79:ea:b2:1a:7f: 6b:6b:17:09:d9:ec:2f:eb:9c:7a:6f:ea:09:dd:e5: f8:72:cc:31:41:80:53:39:5e:9d:4d:c5:26:6d:a3: 73:ef:99:50:c3:56:03:33:5d:c0:f6:31:f2:8e:3f: e2:62:af:69:63:2e:a3:79:47:75:2d:fd:07:ef:ab: af:fa:c5:d8:ff:36:3b:5a:78:3c:9e:18:ef:3f:36: 64:80:f7:95:03:f2:d8:f2:fb:17:27:5b:39:06:c7: 13:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:0A:91:98:0D:74:1A:D8:6E:5C:64:64:A5:3B:57:F6:7F:D9:06:B2 X509v3 Authority Key Identifier: keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/sQqRmA10GthuXGRkpTtX9n_ZBrI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:8ec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 91:1d:4d:37:7e:11:b5:57:2f:be:53:2c:55:5b:ed:76:93:38: f1:3c:7f:80:30:17:55:dd:37:85:5c:75:61:34:3c:03:21:5d: c4:34:ee:ec:10:e2:d0:78:73:be:08:07:34:cd:d7:08:4e:65: 7b:10:10:dd:20:ef:97:f9:89:33:bb:43:98:d9:5e:fb:17:8e: 2b:80:46:02:af:10:b7:49:38:fc:0e:67:73:25:97:94:2d:cf: 69:55:94:81:55:03:e2:4d:a3:46:d3:5f:53:69:bf:48:4a:79: 93:66:4b:22:d5:39:e5:86:7d:a4:6e:f9:fd:13:58:9f:21:b8: 4b:7a:ae:e4:42:f0:87:ac:45:b6:fb:4b:77:ed:3b:f7:70:2a: 5d:6a:e8:47:98:89:73:10:bb:49:cc:72:9e:21:60:87:dd:ba: f9:25:d8:7b:17:61:85:e4:f3:21:b5:9a:10:82:fd:f0:77:fe: 48:88:47:e0:9f:d1:6e:8d:20:e7:c5:b2:ae:e6:30:8f:db:54: 3b:a5:00:fe:19:f1:ea:f1:79:27:97:1d:1c:f4:ae:f3:0b:1b: f0:bc:23:ec:22:8b:50:b2:29:bc:f3:f6:19:b9:ff:b2:1b:fc: 03:2e:1b:df:1c:d5:98:35:bd:99:2d:8d:ed:db:43:c3:02:17: 75:a8:1c:88 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDWYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDU4 NjYyQjhEQTA1RTQwMjlGM0ZBNEQ1NkE1MTIxREQ0QkQ2ODk4OTAeFw0yNTA4MjIw ODUwMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIxMEE5MTk4MEQ3NDFB RDg2RTVDNjQ2NEE1M0I1N0Y2N0ZEOTA2QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYraXIOfQutU9d0lTiB/JbdnQhdlxiqyySgA2EdI5zBmQdePF1 pKuR6sZARWR5y0UlzYGlftGv8e5EgS+5arKnJ+SY6qrj34X+ks0ufpcfZWrWWlQt rOhU3Vj9kiZjc23aFB6Gb9tBQ6Va6RNlM0yzLamabDrRUNrs7l5o6bEB3zn0MY/E dUWjZ4dpUtTVy+QSKM+8FpZb8HeQRCXkvUp56rIaf2trFwnZ7C/rnHpv6gnd5fhy zDFBgFM5Xp1NxSZto3PvmVDDVgMzXcD2MfKOP+Jir2ljLqN5R3Ut/Qfvq6/6xdj/ NjtaeDyeGO8/NmSA95UD8tjy+xcnWzkGxxOJAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUsQqRmA10GthuXGRkpTtX9n/ZBrIwHwYDVR0jBBgwFoAUBYZiuNoF5AKfP6TV alEh3UvWiYkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFV L0JZWml1Tm9GNUFLZlA2VFZhbEVoM1V2V2lZay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQllaaXVOb0Y1QUtmUDZUVmFsRWgzVXZXaVlrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFVL3NRcVJtQTEwR3RodVhHUmtw VHRYOW5fWkJySS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A47AAAEwDQYJKoZIhvcNAQELBQADggEBAJEdTTd+EbVXL75TLFVb7XaTOPE8f4Aw F1XdN4VcdWE0PAMhXcQ07uwQ4tB4c74IBzTN1whOZXsQEN0g75f5iTO7Q5jZXvsX jiuARgKvELdJOPwOZ3Mll5Qtz2lVlIFVA+JNo0bTX1Npv0hKeZNmSyLVOeWGfaRu +f0TWJ8huEt6ruRC8IesRbb7S3ftO/dwKl1q6EeYiXMQu0nMcp4hYIfduvkl2HsX YYXk8yG1mhCC/fB3/kiIR+Cf0W6NIOfFsq7mMI/bVDulAP4Z8erxeSeXHRz0rvML G/C8I+wii1CyKbzz9hm5/7Ib/AMuG98c1Zg1vZktje3bQ8MCF3WoHIg= -----END CERTIFICATE-----Generated at Sun Aug 24 08:29:35 2025 by rpki-client