$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/FcLMk6Ms7LeRO8B-u_BK4U8EFbg.roa File: FcLMk6Ms7LeRO8B-u_BK4U8EFbg.roa (raw, json) Hash identifier: aXWi0r+zCGHrO1NooXA/SEhLfel0z/A3bWQ3qnwXQ0E= Subject key identifier: 15:C2:CC:93:A3:2C:EC:B7:91:3B:C0:7E:BB:F0:4A:E1:4F:04:15:B8 Certificate issuer: /CN=2C20881A0EFD0664A591AF3095D29935EF9BC361 Certificate serial: 0467 Authority key identifier: 2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/FcLMk6Ms7LeRO8B-u_BK4U8EFbg.roa Signing time: Fri 22 Aug 2025 08:50:35 +0000 ROA not before: Fri 22 Aug 2025 08:50:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 396982 IP address blocks: 2401:bf60:4ff5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1127 (0x467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C20881A0EFD0664A591AF3095D29935EF9BC361 Validity Not Before: Aug 22 08:50:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=15C2CC93A32CECB7913BC07EBBF04AE14F0415B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:13:77:f7:c6:87:b4:ed:fe:0d:c0:0f:3f:8e: 8f:80:8a:1a:e6:89:dc:d2:ef:bd:0b:49:35:bf:ca: b5:47:5a:53:02:f1:15:ff:87:ad:94:69:44:e6:c8: 78:e1:f6:23:19:4c:71:12:de:42:29:47:72:ea:85: a0:42:d6:48:1b:d9:8a:ff:a3:c0:f3:ab:e4:0b:d8: 5e:c7:6e:dd:df:4e:d5:05:c3:eb:ce:9b:8f:ff:6a: 69:0a:f3:84:f3:f1:3e:69:f2:23:d7:32:b2:44:cb: 71:35:47:90:82:30:d2:19:e9:19:b6:08:c6:d8:90: c8:6c:97:de:db:cf:54:a2:33:70:c4:05:a5:2e:2a: 3c:6c:84:5a:ab:20:c0:d8:c2:00:aa:83:25:a9:91: 70:11:98:b5:5f:ee:11:bf:6a:c6:41:dc:af:4b:51: bc:52:e7:0b:3d:b8:60:bc:11:a5:20:31:5c:76:dd: 27:69:d4:ab:51:59:b8:91:bc:a4:ea:af:62:6d:9b: 70:7d:5d:af:64:f2:e2:dd:79:d6:9d:4b:22:f6:0c: de:8e:39:4d:38:68:b9:ee:dc:25:1c:56:25:c9:c5: 9a:b0:30:e1:78:bf:93:07:4e:f4:ff:08:7d:1a:20: 87:ae:5e:f9:02:18:99:cb:8c:47:9d:27:41:47:7f: 64:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C2:CC:93:A3:2C:EC:B7:91:3B:C0:7E:BB:F0:4A:E1:4F:04:15:B8 X509v3 Authority Key Identifier: keyid:2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/FcLMk6Ms7LeRO8B-u_BK4U8EFbg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:bf60:4ff5::/48 Signature Algorithm: sha256WithRSAEncryption a8:73:db:dd:40:94:8d:27:41:df:23:81:6c:a0:c5:ad:60:23: d1:b2:da:e5:02:8d:43:14:f1:20:38:76:a0:1b:d8:0d:16:cb: a4:d1:4d:e4:b8:b1:6d:fd:b7:05:9f:10:0f:13:b7:4b:79:b3: 1b:0a:07:55:b9:b0:b3:fb:b0:f9:d4:46:f4:02:ec:ff:4b:cd: 11:f3:a5:21:4b:9b:cb:f1:b8:4a:4c:97:75:b0:73:bd:b5:8c: ee:1e:8e:d6:0c:1f:d1:78:c6:93:4c:ad:7d:d0:27:74:c9:29: ce:30:d9:1d:d7:72:4d:58:9d:fa:fc:98:96:29:2f:90:84:ad: 96:4c:3a:27:8d:a2:bb:9c:58:76:11:7a:1c:21:76:59:0c:63: 31:f3:2d:cf:8c:74:00:9b:8a:d5:57:3c:3e:58:87:d4:b6:4c: f2:de:f8:24:8a:19:8c:40:69:a7:de:85:ee:4b:df:21:fd:89: b0:3f:14:65:f6:15:71:33:5f:a0:e8:59:da:3d:1e:e3:08:20: 56:c8:81:d4:92:94:a5:4f:da:c3:19:c4:b1:02:68:45:0d:53: 93:37:d4:51:b3:58:c5:af:42:1d:be:6b:38:a3:d6:a6:65:4e: ba:65:f2:df:7f:f6:63:d6:02:30:c7:b0:b8:c6:1e:6d:c3:44: e4:00:0c:ee -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICBGcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMy MDg4MUEwRUZEMDY2NEE1OTFBRjMwOTVEMjk5MzVFRjlCQzM2MTAeFw0yNTA4MjIw ODUwMzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE1QzJDQzkzQTMyQ0VD Qjc5MTNCQzA3RUJCRjA0QUUxNEYwNDE1QjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpE3f3xoe07f4NwA8/jo+AihrmidzS770LSTW/yrVHWlMC8RX/ h62UaUTmyHjh9iMZTHES3kIpR3LqhaBC1kgb2Yr/o8Dzq+QL2F7Hbt3fTtUFw+vO m4//amkK84Tz8T5p8iPXMrJEy3E1R5CCMNIZ6Rm2CMbYkMhsl97bz1SiM3DEBaUu KjxshFqrIMDYwgCqgyWpkXARmLVf7hG/asZB3K9LUbxS5ws9uGC8EaUgMVx23Sdp 1KtRWbiRvKTqr2Jtm3B9Xa9k8uLdedadSyL2DN6OOU04aLnu3CUcViXJxZqwMOF4 v5MHTvT/CH0aIIeuXvkCGJnLjEedJ0FHf2RVAgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQUFcLMk6Ms7LeRO8B+u/BK4U8EFbgwHwYDVR0jBBgwFoAULCCIGg79BmSlka8w ldKZNe+bw2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09ERVVQ VEVDSC9MQ0NJR2c3OUJtU2xrYTh3bGRLWk5lLWJ3MkUuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0xDQ0lHZzc5Qm1TbGthOHdsZEtaTmUtYncyRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NPREVVUFRFQ0gvRmNMTWs2TXM3 TGVSTzhCLXVfQks0VThFRmJnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACQBv2BP9TANBgkqhkiG9w0BAQsFAAOCAQEAqHPb3UCUjSdB3yOBbKDF rWAj0bLa5QKNQxTxIDh2oBvYDRbLpNFN5Lixbf23BZ8QDxO3S3mzGwoHVbmws/uw +dRG9ALs/0vNEfOlIUuby/G4SkyXdbBzvbWM7h6O1gwf0XjGk0ytfdAndMkpzjDZ HddyTVid+vyYlikvkIStlkw6J42iu5xYdhF6HCF2WQxjMfMtz4x0AJuK1Vc8PliH 1LZM8t74JIoZjEBpp96F7kvfIf2JsD8UZfYVcTNfoOhZ2j0e4wggVsiB1JKUpU/a wxnEsQJoRQ1TkzfUUbNYxa9CHb5rOKPWpmVOumXy33/2Y9YCMMewuMYebcNE5AAM 7g== -----END CERTIFICATE-----Generated at Sun Aug 24 07:41:34 2025 by rpki-client