$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/sZA1fm-wZbNMumqy14nHa4o_nzk.roa File: sZA1fm-wZbNMumqy14nHa4o_nzk.roa (raw, json) Hash identifier: LODsCOw5JbnVSKvTrhW9y71hWNHTJgXB6GmH0PRYIOw= Subject key identifier: B1:90:35:7E:6F:B0:65:B3:4C:BA:6A:B2:D7:89:C7:6B:8A:3F:9F:39 Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Certificate serial: 0D64 Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/sZA1fm-wZbNMumqy14nHa4o_nzk.roa Signing time: Fri 22 Aug 2025 08:50:37 +0000 ROA not before: Fri 22 Aug 2025 08:50:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 147035 IP address blocks: 2403:8ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3428 (0xd64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Validity Not Before: Aug 22 08:50:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B190357E6FB065B34CBA6AB2D789C76B8A3F9F39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e0:8e:a5:0f:b0:cf:d4:b3:3d:b9:bc:f9:cd: f7:7d:de:14:07:b9:ac:d5:2a:61:0f:f2:16:66:af: 05:2e:f6:7d:ca:9d:cf:88:38:5c:10:ff:45:e5:1a: e3:f6:62:d5:dc:14:6d:03:1f:08:0f:66:0a:65:de: e0:7a:7e:99:83:d9:e0:72:66:96:b7:36:ad:62:32: 42:3b:e1:51:02:4d:b0:29:8b:c5:53:39:3a:89:83: 8e:15:62:2a:df:61:af:25:4f:99:fb:81:f5:f8:8b: bd:d5:62:9e:41:ec:02:77:e3:bf:06:db:41:f3:67: e6:d0:2f:4f:e3:bf:c7:7a:bf:48:fa:ec:4b:f3:82: 21:24:fe:65:67:1d:7b:90:ad:04:21:0a:46:0d:1f: 1f:36:b8:c2:4f:ab:79:58:eb:99:4b:0e:d8:d2:33: d5:d2:4f:3b:c4:41:8d:9a:fa:9a:04:5a:d9:d7:90: c7:31:56:8e:b1:24:bb:ea:ee:72:c0:a7:6a:06:4d: 71:f5:3d:75:8a:92:67:59:db:9b:e2:35:28:33:42: 19:c4:ea:f5:97:d0:83:33:24:c7:76:a6:1d:2b:05: 4f:ea:d2:11:7b:bf:f1:57:6c:04:12:b7:ff:6f:bb: 93:d2:c6:f0:0f:7a:44:c9:d9:e3:8f:71:75:6d:f3: 8c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:90:35:7E:6F:B0:65:B3:4C:BA:6A:B2:D7:89:C7:6B:8A:3F:9F:39 X509v3 Authority Key Identifier: keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/sZA1fm-wZbNMumqy14nHa4o_nzk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:8ec0::/48 Signature Algorithm: sha256WithRSAEncryption 5e:ae:28:5d:2d:e9:11:bd:dd:a5:d7:cd:7b:6f:55:f0:08:b7: d4:98:a7:10:c8:e7:81:1e:7a:a1:ba:da:96:1b:54:85:af:21: 0e:89:b2:c6:df:84:d3:b1:81:fd:06:9f:65:a7:4c:f4:50:53: d9:21:fc:3a:3a:7f:52:cc:2b:57:76:c2:e9:dc:4a:22:4b:2b: 0d:b8:fb:36:a3:48:33:de:2d:cc:e9:4a:c6:ca:11:dd:8f:9b: ff:6b:bd:75:b4:59:dc:5a:45:86:34:33:ca:7e:d9:32:50:bc: 34:01:10:a9:bc:41:b5:3b:88:5b:6a:6e:12:09:94:20:f1:e8: 20:16:ab:7d:6b:52:1f:78:85:16:8d:f7:41:93:d9:f3:c4:a9: 7b:f7:e6:3e:fa:1d:8c:9f:fc:ac:f2:ef:ca:2d:3d:98:d4:78: c6:47:cd:a8:53:b1:da:74:51:61:4b:09:be:93:56:8d:84:c1: e7:5e:54:2c:81:09:f2:1f:78:1c:8e:9f:b2:98:85:86:45:2b: d0:4a:c2:76:1a:4c:ac:36:11:7c:22:e1:d1:92:fc:76:2e:ff: 3a:f7:8a:3b:33:54:6c:86:2b:b3:e1:f4:3f:db:d5:14:75:92: 66:60:31:08:55:d8:f3:12:f2:c1:a6:56:ea:e3:d5:ad:00:ab: b3:ad:e4:55 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDWQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDU4 NjYyQjhEQTA1RTQwMjlGM0ZBNEQ1NkE1MTIxREQ0QkQ2ODk4OTAeFw0yNTA4MjIw ODUwMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIxOTAzNTdFNkZCMDY1 QjM0Q0JBNkFCMkQ3ODlDNzZCOEEzRjlGMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG4I6lD7DP1LM9ubz5zfd93hQHuazVKmEP8hZmrwUu9n3Knc+I OFwQ/0XlGuP2YtXcFG0DHwgPZgpl3uB6fpmD2eByZpa3Nq1iMkI74VECTbApi8VT OTqJg44VYirfYa8lT5n7gfX4i73VYp5B7AJ3478G20HzZ+bQL0/jv8d6v0j67Evz giEk/mVnHXuQrQQhCkYNHx82uMJPq3lY65lLDtjSM9XSTzvEQY2a+poEWtnXkMcx Vo6xJLvq7nLAp2oGTXH1PXWKkmdZ25viNSgzQhnE6vWX0IMzJMd2ph0rBU/q0hF7 v/FXbAQSt/9vu5PSxvAPekTJ2eOPcXVt84z/AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUsZA1fm+wZbNMumqy14nHa4o/nzkwHwYDVR0jBBgwFoAUBYZiuNoF5AKfP6TV alEh3UvWiYkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFV L0JZWml1Tm9GNUFLZlA2VFZhbEVoM1V2V2lZay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQllaaXVOb0Y1QUtmUDZUVmFsRWgzVXZXaVlrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFVL3NaQTFmbS13WmJOTXVtcXkx NG5IYTRvX256ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A47AAAAwDQYJKoZIhvcNAQELBQADggEBAF6uKF0t6RG93aXXzXtvVfAIt9SYpxDI 54EeeqG62pYbVIWvIQ6JssbfhNOxgf0Gn2WnTPRQU9kh/Do6f1LMK1d2wuncSiJL Kw24+zajSDPeLczpSsbKEd2Pm/9rvXW0WdxaRYY0M8p+2TJQvDQBEKm8QbU7iFtq bhIJlCDx6CAWq31rUh94hRaN90GT2fPEqXv35j76HYyf/Kzy78otPZjUeMZHzahT sdp0UWFLCb6TVo2EwedeVCyBCfIfeByOn7KYhYZFK9BKwnYaTKw2EXwi4dGS/HYu /zr3ijszVGyGK7Ph9D/b1RR1kmZgMQhV2PMS8sGmVurj1a0Aq7Ot5FU= -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:30 2025 by rpki-client