$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DAFU/jghrzwIHfbEOsomTcsyn4XAv74c.roa File: jghrzwIHfbEOsomTcsyn4XAv74c.roa (raw, json) Hash identifier: a77IBy4z00+E00HPSY5jCFxLXKxBWsGeBy8P7o0Jr20= Subject key identifier: 8E:08:6B:CF:02:07:7D:B1:0E:B2:89:93:72:CC:A7:E1:70:2F:EF:87 Certificate issuer: /CN=F913CB7A44A57D0893D34D8FE9DB1E77EFE6AB1C Certificate serial: 05 Authority key identifier: F9:13:CB:7A:44:A5:7D:08:93:D3:4D:8F:E9:DB:1E:77:EF:E6:AB:1C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/jghrzwIHfbEOsomTcsyn4XAv74c.roa Signing time: Fri 03 Oct 2025 07:05:23 +0000 ROA not before: Fri 03 Oct 2025 07:05:23 +0000 ROA not after: Fri 25 Sep 2026 15:30:20 +0000 asID: 134823 IP address blocks: 210.1.234.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F913CB7A44A57D0893D34D8FE9DB1E77EFE6AB1C Validity Not Before: Oct 3 07:05:23 2025 GMT Not After : Sep 25 15:30:20 2026 GMT Subject: CN=8E086BCF02077DB10EB2899372CCA7E1702FEF87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ab:ff:a9:68:35:db:9d:7c:d9:1b:75:46:df: 1a:5a:f8:77:03:c7:7a:63:4d:d8:44:eb:11:21:f7: 57:f5:83:0c:54:38:93:9c:da:d5:ca:5d:06:6c:c4: 30:2a:9c:a8:3b:cc:7e:af:26:5a:1d:7b:5a:5e:3f: ce:66:ef:e7:0d:a5:a8:fa:6d:e0:e5:27:8c:b2:18: 58:8c:84:b4:b2:f7:ca:84:fe:80:cd:44:95:36:37: 55:2c:1f:af:c3:b1:18:ac:5d:14:43:2e:a4:3a:39: 74:6c:d7:12:28:e4:64:48:0d:b7:5d:4e:59:35:6d: d0:44:f1:71:a6:4d:88:54:d8:37:85:3c:9e:23:6e: 89:2d:bd:80:1d:33:27:aa:e1:0c:53:fa:8d:82:ba: 4a:bf:2c:c3:a6:97:36:b7:2b:6a:d0:92:95:62:44: 73:41:f6:2d:5a:e7:11:de:79:07:e5:af:7a:ad:0d: 5a:c9:01:5a:15:f6:e3:b0:02:50:9c:6a:6f:ce:67: 4f:8b:b0:60:88:5d:a9:e0:93:e3:d4:ed:37:aa:fc: 21:2d:7e:11:e7:ab:14:46:66:b1:65:4b:ed:c5:c5: 58:90:67:be:ac:6b:4c:c3:d6:29:f0:74:18:7f:2a: 13:18:e1:a4:fc:64:2d:ad:30:a5:30:bb:ce:6a:eb: 0d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:08:6B:CF:02:07:7D:B1:0E:B2:89:93:72:CC:A7:E1:70:2F:EF:87 X509v3 Authority Key Identifier: keyid:F9:13:CB:7A:44:A5:7D:08:93:D3:4D:8F:E9:DB:1E:77:EF:E6:AB:1C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/jghrzwIHfbEOsomTcsyn4XAv74c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.1.234.0/23 Signature Algorithm: sha256WithRSAEncryption 97:b0:85:e4:b9:59:21:15:44:c7:6a:b4:81:3d:f5:99:a2:ba: 89:11:0b:4d:65:51:42:46:d5:49:7b:00:b6:2d:eb:39:26:66: c0:4c:d4:c6:ba:ed:64:b6:05:4d:f2:98:d3:63:88:60:04:cf: b9:09:ff:70:db:fb:5b:d9:3c:33:68:42:aa:28:50:63:2c:c4: 80:80:e0:a1:7e:2e:67:3d:32:47:7e:a9:89:14:41:69:e4:13: d0:87:53:83:60:7b:79:b7:85:2b:64:dc:50:54:eb:d2:32:a0: 87:e5:f3:47:36:c8:bd:c8:9d:10:9a:ae:c9:1d:ec:35:10:9b: 25:15:80:cc:36:0f:2c:82:d0:22:e6:b1:fd:07:ac:a2:19:a1: 52:43:6f:0c:f0:85:28:31:72:b8:1b:a6:51:61:05:37:64:6c: c9:50:1b:b4:fc:84:24:bd:82:c9:19:f6:d7:04:0c:2f:91:e1: 0d:32:ff:f0:04:8d:79:b8:5c:8b:af:dc:76:c9:90:c4:b9:d4: 6f:35:75:eb:34:bc:c4:e0:56:79:2f:14:d9:b1:1b:d2:7c:bd: 9f:b8:ab:e9:79:79:82:b5:d9:aa:9c:c3:04:b0:19:7b:9e:73: ea:12:ef:74:8a:58:12:31:c0:12:b9:b8:61:99:00:c9:98:0e: ca:f1:f7:2a -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOTEz Q0I3QTQ0QTU3RDA4OTNEMzREOEZFOURCMUU3N0VGRTZBQjFDMB4XDTI1MTAwMzA3 MDUyM1oXDTI2MDkyNTE1MzAyMFowMzExMC8GA1UEAxMoOEUwODZCQ0YwMjA3N0RC MTBFQjI4OTkzNzJDQ0E3RTE3MDJGRUY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANar/6loNdudfNkbdUbfGlr4dwPHemNN2ETrESH3V/WDDFQ4k5za 1cpdBmzEMCqcqDvMfq8mWh17Wl4/zmbv5w2lqPpt4OUnjLIYWIyEtLL3yoT+gM1E lTY3VSwfr8OxGKxdFEMupDo5dGzXEijkZEgNt11OWTVt0ETxcaZNiFTYN4U8niNu iS29gB0zJ6rhDFP6jYK6Sr8sw6aXNrcratCSlWJEc0H2LVrnEd55B+Wveq0NWskB WhX247ACUJxqb85nT4uwYIhdqeCT49TtN6r8IS1+EeerFEZmsWVL7cXFWJBnvqxr TMPWKfB0GH8qExjhpPxkLa0wpTC7zmrrDX0CAwEAAaOCAeowggHmMB0GA1UdDgQW BBSOCGvPAgd9sQ6yiZNyzKfhcC/vhzAfBgNVHSMEGDAWgBT5E8t6RKV9CJPTTY/p 2x537+arHDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQUZVLy1S UExla1NsZlFpVDAwMlA2ZHNlZC1fbXF4dy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev LVJQTGVrU2xmUWlUMDAyUDZkc2VkLV9tcXh3LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvREFGVS9qZ2hyendJSGZiRU9zb21UY3N5bjRY QXY3NGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0gHqMA0G CSqGSIb3DQEBCwUAA4IBAQCXsIXkuVkhFUTHarSBPfWZorqJEQtNZVFCRtVJewC2 Les5JmbATNTGuu1ktgVN8pjTY4hgBM+5Cf9w2/tb2TwzaEKqKFBjLMSAgOChfi5n PTJHfqmJFEFp5BPQh1ODYHt5t4UrZNxQVOvSMqCH5fNHNsi9yJ0Qmq7JHew1EJsl FYDMNg8sgtAi5rH9B6yiGaFSQ28M8IUoMXK4G6ZRYQU3ZGzJUBu0/IQkvYLJGfbX BAwvkeENMv/wBI15uFyLr9x2yZDEudRvNXXrNLzE4FZ5LxTZsRvSfL2fuKvpeXmC tdmqnMMEsBl7nnPqEu90ilgSMcASubhhmQDJmA7K8fcq -----END CERTIFICATE-----Generated at Mon Oct 20 15:27:01 2025 by rpki-client