$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/fweyCJGv_v8QTIW4XKkzUacP6vk.roa File: fweyCJGv_v8QTIW4XKkzUacP6vk.roa (raw, json) Hash identifier: uczlpVD1rP4wr6HoNW15a24I68dFqzcJueLKVlUwpS8= Subject key identifier: 7F:07:B2:08:91:AF:FE:FF:10:4C:85:B8:5C:A9:33:51:A7:0F:EA:F9 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0F60 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/fweyCJGv_v8QTIW4XKkzUacP6vk.roa Signing time: Fri 22 Aug 2025 08:51:17 +0000 ROA not before: Fri 22 Aug 2025 08:51:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18429 IP address blocks: 45.64.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3936 (0xf60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Aug 22 08:51:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7F07B20891AFFEFF104C85B85CA93351A70FEAF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1c:0c:0b:79:55:8a:32:f9:fd:a5:cf:22:d5: 14:7a:94:5c:99:18:29:06:16:bc:70:eb:d7:9c:9f: 2a:a2:97:02:d3:cd:df:1c:32:44:6e:db:17:47:14: 85:85:57:5c:89:0c:54:cb:5e:4b:9f:a5:55:9a:da: c7:f2:73:9c:99:63:a9:46:23:3e:e0:b7:10:29:a3: 64:c6:41:a2:01:0c:7b:57:ed:dc:71:17:25:fd:7f: 92:9a:0a:35:49:4f:2e:69:f1:e8:07:56:f1:9d:75: d4:bf:62:c0:10:ae:9b:a0:ed:18:4e:40:fe:67:33: c7:a9:71:ad:75:c6:cc:a0:a8:c9:42:7c:c8:fd:5e: 6c:b9:71:ae:e6:fc:15:56:7d:cd:5a:c8:2e:13:e7: f3:97:06:83:33:61:58:13:63:97:1e:7a:11:5c:11: 34:23:bd:3d:56:8d:98:ca:68:c9:81:7b:0a:23:36: 57:48:74:ca:0e:ba:0d:13:a7:46:42:1b:4f:cf:ba: 2a:b2:5d:8c:fe:52:19:19:15:a3:f1:9f:4d:bb:af: fc:39:7f:83:c4:12:fe:f0:e6:09:60:bb:e3:ac:86: 22:45:cb:68:ee:21:45:ff:0f:40:6e:7e:18:db:aa: 84:19:e8:9a:19:06:b9:86:ce:34:e9:2a:c3:ca:f9: 33:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:07:B2:08:91:AF:FE:FF:10:4C:85:B8:5C:A9:33:51:A7:0F:EA:F9 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/fweyCJGv_v8QTIW4XKkzUacP6vk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.232.0/22 Signature Algorithm: sha256WithRSAEncryption a3:a7:10:c3:8e:83:0e:17:77:9c:92:c7:42:7b:12:01:f5:56: 2e:47:9e:35:ca:91:8d:60:26:01:07:47:a9:87:a5:80:01:8a: 74:7c:7d:20:e2:1e:01:a2:d1:fd:62:09:95:53:9e:a8:b6:09: 7a:ce:24:fa:c1:31:8b:27:46:2e:b8:a8:c9:2d:7e:2a:3e:5b: e4:c5:d7:cf:a4:9a:64:27:91:47:da:e0:de:d6:d6:39:8c:45: 0d:e9:d4:30:42:d3:e9:42:1d:e3:ce:4b:b3:5c:6b:88:72:40: 4e:da:bb:67:6e:83:e9:86:7e:87:06:18:b1:8a:7e:2d:25:10: 93:4e:f6:0c:6a:a0:cd:96:37:f8:fa:a0:54:a3:15:1d:c0:34: af:b8:93:67:e4:92:8b:43:32:5f:f3:65:41:77:79:68:ff:cc: 67:11:b6:a7:04:93:16:3b:56:37:4d:9e:e0:4b:47:a5:55:af: 0f:60:bc:5e:32:7a:43:79:8a:c1:48:4b:2d:27:7d:92:6b:db: 25:5e:44:7c:a2:f4:ea:c2:21:d6:37:cf:5c:65:11:93:c5:10: 3d:91:a6:47:2a:50:cb:8e:3e:77:5a:a5:8a:0a:c9:f4:1d:a6: 02:21:3b:f8:87:e5:4a:6e:d8:c8:d4:48:37:73:13:ae:69:5f: 84:5b:2b:46 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD2AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTA4MjIw ODUxMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdGMDdCMjA4OTFBRkZF RkYxMDRDODVCODVDQTkzMzUxQTcwRkVBRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBHAwLeVWKMvn9pc8i1RR6lFyZGCkGFrxw69ecnyqilwLTzd8c MkRu2xdHFIWFV1yJDFTLXkufpVWa2sfyc5yZY6lGIz7gtxApo2TGQaIBDHtX7dxx FyX9f5KaCjVJTy5p8egHVvGdddS/YsAQrpug7RhOQP5nM8epca11xsygqMlCfMj9 Xmy5ca7m/BVWfc1ayC4T5/OXBoMzYVgTY5ceehFcETQjvT1WjZjKaMmBewojNldI dMoOug0Tp0ZCG0/PuiqyXYz+UhkZFaPxn027r/w5f4PEEv7w5glgu+OshiJFy2ju IUX/D0BufhjbqoQZ6JoZBrmGzjTpKsPK+TNlAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUfweyCJGv/v8QTIW4XKkzUacP6vkwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9md2V5Q0pHdl92OFFUSVc0WEtr elVhY1A2dmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLUDo MA0GCSqGSIb3DQEBCwUAA4IBAQCjpxDDjoMOF3ecksdCexIB9VYuR541ypGNYCYB B0eph6WAAYp0fH0g4h4BotH9YgmVU56otgl6ziT6wTGLJ0YuuKjJLX4qPlvkxdfP pJpkJ5FH2uDe1tY5jEUN6dQwQtPpQh3jzkuzXGuIckBO2rtnboPphn6HBhixin4t JRCTTvYMaqDNljf4+qBUoxUdwDSvuJNn5JKLQzJf82VBd3lo/8xnEbanBJMWO1Y3 TZ7gS0elVa8PYLxeMnpDeYrBSEstJ32Sa9slXkR8ovTqwiHWN89cZRGTxRA9kaZH KlDLjj53WqWKCsn0HaYCITv4h+VKbtjI1Eg3cxOuaV+EWytG -----END CERTIFICATE-----Generated at Sun Aug 24 16:07:09 2025 by rpki-client