$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DAFU/TnQzIrExeMXFGPVOTF_J6O5o5KM.roa File: TnQzIrExeMXFGPVOTF_J6O5o5KM.roa (raw, json) Hash identifier: z+K5Dzd8KNeuwGCEUeS6n0VWekGc1trje0UAX+K19qs= Subject key identifier: 4E:74:33:22:B1:31:78:C5:C5:18:F5:4E:4C:5F:C9:E8:EE:68:E4:A3 Certificate issuer: /CN=F913CB7A44A57D0893D34D8FE9DB1E77EFE6AB1C Certificate serial: 03 Authority key identifier: F9:13:CB:7A:44:A5:7D:08:93:D3:4D:8F:E9:DB:1E:77:EF:E6:AB:1C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/TnQzIrExeMXFGPVOTF_J6O5o5KM.roa Signing time: Fri 03 Oct 2025 07:05:11 +0000 ROA not before: Fri 03 Oct 2025 07:05:11 +0000 ROA not after: Fri 25 Sep 2026 15:30:20 +0000 asID: 131657 IP address blocks: 210.1.234.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 08:25:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F913CB7A44A57D0893D34D8FE9DB1E77EFE6AB1C Validity Not Before: Oct 3 07:05:11 2025 GMT Not After : Sep 25 15:30:20 2026 GMT Subject: CN=4E743322B13178C5C518F54E4C5FC9E8EE68E4A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:db:bf:41:b7:2b:0e:fe:84:33:f6:cd:0d:db: f8:b3:02:f6:f0:0c:bd:d3:f7:00:96:b1:6c:7a:28: 40:ed:ff:3f:69:d0:64:b8:84:e1:6c:ac:4a:7e:4e: 68:af:d9:39:e3:d5:7f:3d:15:03:9a:c9:f3:6c:12: ef:97:7d:59:fa:90:c4:fe:c2:e9:2d:74:50:31:c0: 5c:e4:51:a3:57:df:8a:2c:50:17:06:9d:57:32:07: 40:f6:a7:70:c8:38:a0:ad:2a:3f:5e:64:59:a3:9c: 3b:cd:95:a2:20:95:11:6f:e3:97:fd:46:81:07:50: 1f:62:6a:02:19:e0:32:23:e4:6b:56:75:fe:7b:10: 36:f3:42:fb:08:5e:33:e3:d4:3c:d7:83:b5:57:04: 7b:38:df:ba:b1:bf:c2:74:86:45:eb:94:bc:f6:55: 04:29:65:53:cd:ee:b7:95:0a:63:49:f5:3f:b0:4f: ce:c8:ea:03:e7:bd:87:d3:6f:cc:99:f8:10:9c:09: 91:c3:b1:bf:80:3a:a6:5d:0e:7f:a2:72:cd:62:50: 02:c5:40:97:b1:8e:f5:72:6d:28:2e:b7:b3:98:af: 58:0d:34:a8:08:f2:09:6e:1b:c5:a2:57:d7:03:94: c2:59:07:2c:c2:b9:66:2e:62:98:ab:5a:f7:dc:b4: 78:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:74:33:22:B1:31:78:C5:C5:18:F5:4E:4C:5F:C9:E8:EE:68:E4:A3 X509v3 Authority Key Identifier: keyid:F9:13:CB:7A:44:A5:7D:08:93:D3:4D:8F:E9:DB:1E:77:EF:E6:AB:1C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/TnQzIrExeMXFGPVOTF_J6O5o5KM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.1.234.0/23 Signature Algorithm: sha256WithRSAEncryption b6:81:92:1a:9d:12:e1:3a:3e:50:38:a1:6f:5e:c7:ca:6c:97: 3f:c3:de:11:14:10:ad:39:39:1e:70:ed:9d:e0:a2:4e:41:e7: 62:1b:de:fa:d8:4d:51:0d:e8:4e:7b:7c:da:f0:55:5d:3e:a0: fb:0e:3e:1d:8d:fa:28:13:61:a8:a8:82:2d:b1:c1:a5:c9:76: 38:d8:68:fc:90:19:56:eb:00:3f:e6:35:c4:17:bc:5d:8a:da: 86:f2:f4:86:5b:36:a0:24:01:7e:41:aa:43:3b:e2:f7:f1:e2: d0:c7:a0:3a:d3:6b:1b:fa:98:b5:0f:7a:81:bc:b0:e9:1d:a6: a7:11:6a:1a:d2:fd:a5:b4:b0:56:6e:22:ae:f8:13:e7:88:8c: 36:74:46:55:9c:b4:19:1e:19:8d:9d:7f:32:6e:e8:71:dd:42: a7:58:7e:5a:f0:8f:20:81:3f:a5:d0:e7:48:b9:65:b7:93:84: 8a:62:3f:85:74:e9:b5:fe:1f:a4:0c:b1:ca:5e:aa:5a:cb:39: a4:fa:06:02:56:8e:8c:0f:e3:43:cb:93:02:22:d4:91:aa:08: 69:78:18:02:97:50:ce:45:c2:e5:8f:25:e9:81:07:27:67:c6: d9:67:ef:6e:3f:a7:ef:d2:c0:57:5c:6b:53:a9:94:f7:95:0c: f1:36:9e:94 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOTEz Q0I3QTQ0QTU3RDA4OTNEMzREOEZFOURCMUU3N0VGRTZBQjFDMB4XDTI1MTAwMzA3 MDUxMVoXDTI2MDkyNTE1MzAyMFowMzExMC8GA1UEAxMoNEU3NDMzMjJCMTMxNzhD NUM1MThGNTRFNEM1RkM5RThFRTY4RTRBMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJzbv0G3Kw7+hDP2zQ3b+LMC9vAMvdP3AJaxbHooQO3/P2nQZLiE 4WysSn5OaK/ZOePVfz0VA5rJ82wS75d9WfqQxP7C6S10UDHAXORRo1ffiixQFwad VzIHQPancMg4oK0qP15kWaOcO82VoiCVEW/jl/1GgQdQH2JqAhngMiPka1Z1/nsQ NvNC+wheM+PUPNeDtVcEezjfurG/wnSGReuUvPZVBCllU83ut5UKY0n1P7BPzsjq A+e9h9NvzJn4EJwJkcOxv4A6pl0Of6JyzWJQAsVAl7GO9XJtKC63s5ivWA00qAjy CW4bxaJX1wOUwlkHLMK5Zi5imKta99y0eBcCAwEAAaOCAeowggHmMB0GA1UdDgQW BBROdDMisTF4xcUY9U5MX8no7mjkozAfBgNVHSMEGDAWgBT5E8t6RKV9CJPTTY/p 2x537+arHDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQUZVLy1S UExla1NsZlFpVDAwMlA2ZHNlZC1fbXF4dy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev LVJQTGVrU2xmUWlUMDAyUDZkc2VkLV9tcXh3LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvREFGVS9UblF6SXJFeGVNWEZHUFZPVEZfSjZP NW81S00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0gHqMA0G CSqGSIb3DQEBCwUAA4IBAQC2gZIanRLhOj5QOKFvXsfKbJc/w94RFBCtOTkecO2d 4KJOQediG9762E1RDehOe3za8FVdPqD7Dj4djfooE2GoqIItscGlyXY42Gj8kBlW 6wA/5jXEF7xditqG8vSGWzagJAF+QapDO+L38eLQx6A602sb+pi1D3qBvLDpHaan EWoa0v2ltLBWbiKu+BPniIw2dEZVnLQZHhmNnX8ybuhx3UKnWH5a8I8ggT+l0OdI uWW3k4SKYj+FdOm1/h+kDLHKXqpayzmk+gYCVo6MD+NDy5MCItSRqghpeBgCl1DO RcLljyXpgQcnZ8bZZ+9uP6fv0sBXXGtTqZT3lQzxNp6U -----END CERTIFICATE-----Generated at Tue Oct 21 04:15:38 2025 by rpki-client