$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/69yglPeF2C1TVCygI0PXZ2ZAjUs.roa File: 69yglPeF2C1TVCygI0PXZ2ZAjUs.roa (raw, json) Hash identifier: Bc5Onii0qo8obveRGrqerA0ZSF3obENlWwpHWIyUgws= Subject key identifier: EB:DC:A0:94:F7:85:D8:2D:53:54:2C:A0:23:43:D7:67:66:40:8D:4B Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0DEC Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/69yglPeF2C1TVCygI0PXZ2ZAjUs.roa Signing time: Fri 22 Aug 2025 08:57:08 +0000 ROA not before: Fri 22 Aug 2025 08:57:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131611 IP address blocks: 121.50.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3564 (0xdec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 22 08:57:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EBDCA094F785D82D53542CA02343D76766408D4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:17:ea:59:0e:5b:4f:d1:f4:d8:24:c8:32:0a: 60:d2:b4:32:43:d4:ed:42:46:22:e6:5c:7d:a9:44: 5b:c4:24:7e:03:44:2f:fb:8a:4e:4b:00:93:2d:39: 38:4a:0c:31:57:f9:bb:6e:7d:4d:92:da:e8:ee:41: cb:7b:4c:aa:75:fe:e3:03:46:7b:9a:8f:74:f0:b4: 9e:66:25:24:ea:ca:86:67:02:ce:cc:8a:d9:bf:f4: 20:8d:cc:50:1b:1f:1c:9f:57:8f:06:8b:ac:93:e6: b9:1b:82:ef:21:26:69:3c:e0:cc:d5:66:33:bb:d5: a9:84:a3:b7:66:cf:7c:21:d1:05:4f:8c:9f:64:db: a7:69:21:22:30:43:47:04:5b:d9:52:c0:40:ce:00: 37:d5:90:90:3b:73:59:bc:92:3a:61:a4:70:b4:27: b8:80:82:83:bc:4f:73:61:d4:e9:85:49:8b:44:52: 6e:3a:42:f2:bf:6c:88:05:c4:f8:b5:e9:7c:d9:a2: 6d:45:fe:82:ee:86:2d:02:cb:bf:f1:89:bf:f5:d1: 94:d1:1b:aa:f2:a1:c0:6b:21:00:c5:e3:49:c0:45: d6:c7:75:74:5b:e9:f8:06:49:07:6b:c8:4a:9d:69: 41:0a:7d:de:cb:47:ae:b6:d4:c9:3d:b6:0a:90:89: 96:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:DC:A0:94:F7:85:D8:2D:53:54:2C:A0:23:43:D7:67:66:40:8D:4B X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/69yglPeF2C1TVCygI0PXZ2ZAjUs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.184.0/22 Signature Algorithm: sha256WithRSAEncryption a5:0c:bb:a7:7a:e4:62:e6:2e:44:77:6f:b5:26:7b:f9:b9:bc: a6:68:84:1b:86:1d:4d:5e:d6:89:6a:82:9f:ad:2f:62:38:8b: bc:91:7d:b0:3f:46:cd:91:ab:9e:01:f4:4d:cd:d3:c0:3d:f8: fa:34:62:b0:87:c9:60:99:9f:e8:bd:d1:06:5e:92:5a:6d:72: 26:b0:a4:db:3a:9e:3d:b8:b4:46:84:25:fd:34:0f:ab:05:63: 43:9a:85:df:f7:da:cf:98:06:10:40:45:47:d2:54:bd:db:81: 0a:0e:18:28:bb:2b:86:25:50:6f:02:a0:6a:a9:dc:3c:77:81: e4:a1:17:cc:c7:69:16:c9:61:7f:e4:18:7f:be:91:2e:fd:cb: 68:ed:cb:42:da:51:b0:d3:bf:6c:fc:69:22:a8:d0:c0:73:2e: 50:e3:e7:e5:30:73:fb:db:87:57:3a:17:62:fe:67:88:a1:12: 2f:67:c8:8d:72:4b:d6:f1:93:91:ba:3e:eb:7a:12:c5:db:a3: 2b:d7:12:ee:bd:da:01:c4:eb:81:b9:55:b0:06:d3:3c:db:68: 21:e9:69:10:45:3b:4d:68:fe:74:f7:71:6c:fc:91:43:c9:81: b9:2c:56:1d:18:d4:59:94:56:3f:12:4f:f5:2a:7c:23:3a:3a: 48:3b:80:f8 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTA4MjIw ODU3MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVCRENBMDk0Rjc4NUQ4 MkQ1MzU0MkNBMDIzNDNENzY3NjY0MDhENEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuF+pZDltP0fTYJMgyCmDStDJD1O1CRiLmXH2pRFvEJH4DRC/7 ik5LAJMtOThKDDFX+btufU2S2ujuQct7TKp1/uMDRnuaj3TwtJ5mJSTqyoZnAs7M itm/9CCNzFAbHxyfV48Gi6yT5rkbgu8hJmk84MzVZjO71amEo7dmz3wh0QVPjJ9k 26dpISIwQ0cEW9lSwEDOADfVkJA7c1m8kjphpHC0J7iAgoO8T3Nh1OmFSYtEUm46 QvK/bIgFxPi16XzZom1F/oLuhi0Cy7/xib/10ZTRG6ryocBrIQDF40nARdbHdXRb 6fgGSQdryEqdaUEKfd7LR6621Mk9tgqQiZbzAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU69yglPeF2C1TVCygI0PXZ2ZAjUswHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vNjl5Z2xQZUYy QzFUVkN5Z0kwUFhaMlpBalVzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAnkyuDANBgkqhkiG9w0BAQsFAAOCAQEApQy7p3rkYuYuRHdvtSZ7+bm8 pmiEG4YdTV7WiWqCn60vYjiLvJF9sD9GzZGrngH0Tc3TwD34+jRisIfJYJmf6L3R Bl6SWm1yJrCk2zqePbi0RoQl/TQPqwVjQ5qF3/faz5gGEEBFR9JUvduBCg4YKLsr hiVQbwKgaqncPHeB5KEXzMdpFslhf+QYf76RLv3LaO3LQtpRsNO/bPxpIqjQwHMu UOPn5TBz+9uHVzoXYv5niKESL2fIjXJL1vGTkbo+63oSxdujK9cS7r3aAcTrgblV sAbTPNtoIelpEEU7TWj+dPdxbPyRQ8mBuSxWHRjUWZRWPxJP9Sp8Izo6SDuA+A== -----END CERTIFICATE-----Generated at Sun Aug 24 05:09:35 2025 by rpki-client