$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/mE3sWxVoTEobP7fDdr2_PCOzzmo.roa File: mE3sWxVoTEobP7fDdr2_PCOzzmo.roa (raw, json) Hash identifier: O5WUgrzh9i0l7jJWEk7k0JBHRxp4jv7E31OdTTX2RG0= Subject key identifier: 98:4D:EC:5B:15:68:4C:4A:1B:3F:B7:C3:76:BD:BF:3C:23:B3:CE:6A Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F Certificate serial: 0D84 Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mE3sWxVoTEobP7fDdr2_PCOzzmo.roa Signing time: Fri 22 Aug 2025 08:56:01 +0000 ROA not before: Fri 22 Aug 2025 08:56:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131601 IP address blocks: 103.252.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F Validity Not Before: Aug 22 08:56:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=984DEC5B15684C4A1B3FB7C376BDBF3C23B3CE6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3e:8e:9a:cd:46:84:7b:ee:49:cc:b9:d6:5d: 68:89:b5:c5:27:a8:5e:08:dd:78:05:e6:30:4a:87: db:e9:26:7f:ee:4c:03:16:bd:6e:37:b7:c1:d1:b8: f1:96:1e:a4:c1:49:51:2c:46:50:4e:7d:f2:d4:81: 90:99:b3:21:15:b3:22:56:87:53:90:dc:d1:41:d3: a3:50:07:3f:09:71:cb:fc:01:7f:c8:00:28:32:29: 79:c5:a7:21:9c:14:b5:99:ca:38:8f:5f:41:25:8c: 0c:d1:e8:c5:a9:9f:3a:4c:6a:9a:62:11:b0:ec:97: 3c:e5:be:1b:76:75:5e:d5:fc:ac:62:8b:35:72:8b: cf:19:3c:45:7c:8e:55:4b:dd:5c:ff:7c:bb:8f:ee: 95:c4:93:10:54:b8:36:35:1a:d4:c4:85:05:e4:3c: 04:e8:77:d2:01:2f:17:02:0b:6b:97:36:77:00:67: 78:80:86:be:8e:c8:6e:95:b7:43:41:8d:87:c3:a0: af:b9:fd:8e:ec:87:be:97:66:c7:f8:1a:9e:99:04: fc:b6:7c:1b:77:b2:d8:ae:fd:6c:41:90:f3:fd:a5: a1:63:94:2f:74:a2:bf:fd:c4:45:76:64:b6:bb:30: 5b:ec:67:74:f3:6d:ad:a0:b9:9f:4b:40:09:ad:54: e3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4D:EC:5B:15:68:4C:4A:1B:3F:B7:C3:76:BD:BF:3C:23:B3:CE:6A X509v3 Authority Key Identifier: keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mE3sWxVoTEobP7fDdr2_PCOzzmo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.252.196.0/22 Signature Algorithm: sha256WithRSAEncryption b5:35:56:07:e8:75:c4:16:89:3a:92:26:2d:98:4d:5a:24:d0: 86:b8:3d:c3:24:a1:ff:0c:dc:6d:50:cc:96:6c:91:1c:ce:d3: 8e:81:6b:3e:22:dc:4f:ee:78:c6:42:98:6b:be:2b:36:71:d2: 7d:03:a5:fd:4f:a1:e2:15:6f:2f:84:9d:7b:c1:68:ea:fb:90: ee:15:ba:99:74:98:f7:47:76:3a:96:32:46:83:c4:da:b1:14: 5f:f7:28:c4:d5:d7:ec:e5:ce:98:2f:29:91:be:0a:e2:bf:5d: d5:4d:90:96:e9:88:a4:da:73:e0:9f:4c:41:bd:fa:f2:f6:58: 26:b6:78:35:e2:7d:25:11:d1:c6:8a:a5:49:53:c1:9c:ed:b9: 70:9b:0a:a3:17:c8:4b:f7:8d:15:26:3f:c9:2a:f9:5a:be:00: 20:ec:f7:50:7e:df:48:19:96:52:49:36:a3:aa:5b:3b:8c:22: 68:10:79:bb:18:4f:cc:e6:0b:d4:0a:64:1f:4b:37:b3:02:25: d1:94:8c:39:46:d6:a8:ed:a4:68:73:dc:46:9c:b6:a9:57:28: ac:4a:c6:4b:6a:1a:dd:42:7a:f8:e4:8c:2e:06:bb:ec:54:c0: 61:99:66:bb:6f:ef:50:62:9b:76:cc:a6:70:47:f3:ce:bb:c9: 5a:d6:49:ef -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUIw NjJENzRDN0Y1MTJGMDRBRTYwOTU1QzU0NTZGQzE5NzU1MzM3RjAeFw0yNTA4MjIw ODU2MDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk4NERFQzVCMTU2ODRD NEExQjNGQjdDMzc2QkRCRjNDMjNCM0NFNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmPo6azUaEe+5JzLnWXWiJtcUnqF4I3XgF5jBKh9vpJn/uTAMW vW43t8HRuPGWHqTBSVEsRlBOffLUgZCZsyEVsyJWh1OQ3NFB06NQBz8Jccv8AX/I ACgyKXnFpyGcFLWZyjiPX0EljAzR6MWpnzpMappiEbDslzzlvht2dV7V/KxiizVy i88ZPEV8jlVL3Vz/fLuP7pXEkxBUuDY1GtTEhQXkPATod9IBLxcCC2uXNncAZ3iA hr6OyG6Vt0NBjYfDoK+5/Y7sh76XZsf4Gp6ZBPy2fBt3stiu/WxBkPP9paFjlC90 or/9xEV2ZLa7MFvsZ3Tzba2guZ9LQAmtVONVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUmE3sWxVoTEobP7fDdr2/PCOzzmowHwYDVR0jBBgwFoAUmwYtdMf1EvBK5glV xUVvwZdVM38wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRENUL213 WXRkTWYxRXZCSzVnbFZ4VVZ2d1pkVk0zOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bXdZdGRNZjFFdkJLNWdsVnhVVnZ3WmRWTTM4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRENUL21FM3NXeFZvVEVvYlA3ZkRkcjJfUENP enptby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn/MQwDQYJ KoZIhvcNAQELBQADggEBALU1VgfodcQWiTqSJi2YTVok0Ia4PcMkof8M3G1QzJZs kRzO046Baz4i3E/ueMZCmGu+KzZx0n0Dpf1PoeIVby+EnXvBaOr7kO4Vupl0mPdH djqWMkaDxNqxFF/3KMTV1+zlzpgvKZG+CuK/XdVNkJbpiKTac+CfTEG9+vL2WCa2 eDXifSUR0caKpUlTwZztuXCbCqMXyEv3jRUmP8kq+Vq+ACDs91B+30gZllJJNqOq WzuMImgQebsYT8zmC9QKZB9LN7MCJdGUjDlG1qjtpGhz3EactqlXKKxKxktqGt1C evjkjC4Gu+xUwGGZZrtv71Bim3bMpnBH8867yVrWSe8= -----END CERTIFICATE-----Generated at Mon Aug 25 02:09:16 2025 by rpki-client