$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/e1aXfoNpMAIG5heS8XfxRwpV9Iw.roa File: e1aXfoNpMAIG5heS8XfxRwpV9Iw.roa (raw, json) Hash identifier: Cj8TiOxBKpoqAYnbVCO6sXpcTk7QW7eSqAUvHjOR6L4= Subject key identifier: 7B:56:97:7E:83:69:30:02:06:E6:17:92:F1:77:F1:47:0A:55:F4:8C Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0DCD Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/e1aXfoNpMAIG5heS8XfxRwpV9Iw.roa Signing time: Fri 22 Aug 2025 09:03:16 +0000 ROA not before: Fri 22 Aug 2025 09:03:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 20473 IP address blocks: 2403:a2c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3533 (0xdcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Aug 22 09:03:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7B56977E8369300206E61792F177F1470A55F48C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:05:5f:b1:a1:01:10:94:18:c4:74:af:25:26: 88:7d:6e:d0:7f:43:44:22:a6:27:91:48:f7:bb:e7: 35:15:3d:5c:4d:fa:4d:ab:03:55:fc:8d:9f:6c:ee: 01:a4:fc:36:70:86:69:c4:98:a6:ca:8d:56:b8:37: 15:1b:07:58:42:ff:a8:f4:12:b8:84:7a:44:f7:1f: f6:fa:11:0f:06:9c:4d:eb:aa:94:ee:41:ef:3f:48: b1:e5:ac:ff:6a:95:42:46:88:8c:31:d0:d0:5c:95: 6b:a4:b6:c1:b6:89:af:89:56:4b:6c:a4:73:ec:61: bf:78:4d:c2:08:bb:85:af:a0:6a:b0:f7:bc:46:a1: bf:d3:09:15:ac:b9:0b:13:66:a0:b9:fe:ef:c5:d1: 60:d0:ff:0a:cd:39:dc:62:5b:45:98:35:1a:74:fe: f5:ad:28:6d:16:c2:a3:7f:4a:b6:cb:dc:bd:7d:eb: a4:ca:34:22:ed:c8:0a:6c:cf:68:13:67:52:14:9d: ac:81:ef:9c:c5:b4:90:dc:b2:03:5d:18:ba:83:f0: 5a:e6:c0:ad:38:9d:2e:5d:01:c6:3c:2c:6f:69:ce: 33:91:f0:9d:e7:cb:fc:34:65:dc:63:77:13:2d:f5: ca:ce:40:64:94:86:f2:cf:9d:2e:6c:f1:cf:68:47: c5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:56:97:7E:83:69:30:02:06:E6:17:92:F1:77:F1:47:0A:55:F4:8C X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/e1aXfoNpMAIG5heS8XfxRwpV9Iw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:a2c0::/32 Signature Algorithm: sha256WithRSAEncryption 85:bf:94:76:55:58:d9:f1:d0:a0:81:b7:c3:36:c3:c7:c9:c0: 8d:04:35:25:b4:0b:3d:c5:af:fc:7f:d6:cc:d4:23:af:44:20: d6:06:80:61:27:95:81:e9:55:c8:d1:b6:9b:20:4a:91:3b:c3: 9d:53:34:a0:f5:53:64:c8:1f:36:a0:94:53:d3:02:95:c8:dd: 41:e7:ad:99:03:57:8b:92:8c:f4:e1:40:2b:21:f1:7c:f5:57: 3d:55:8b:00:3b:a2:6b:20:b5:f0:cc:fe:ed:62:42:3b:d3:f5: 8c:4f:af:2b:34:ea:0c:7a:47:b3:29:36:86:e9:64:8a:2e:2f: ce:58:79:d5:d7:ee:82:6c:a7:d6:97:5d:34:94:1b:a2:de:39: df:a8:18:fc:09:36:3c:9f:8c:05:66:60:c8:e5:3d:a2:3e:bd: f1:e7:d2:31:b5:4d:36:32:02:7d:7b:44:2e:34:6d:f2:f2:15: 56:d2:1b:9e:78:0a:23:74:05:39:8b:83:36:b9:49:db:3b:45: 01:70:db:05:23:21:19:9c:ff:d8:50:d0:66:e8:9d:af:37:36: fb:8b:4c:d3:13:19:ac:f6:72:c2:a4:04:a1:4d:bc:9a:bf:ef: 24:2c:1b:d5:a2:0d:48:87:5f:85:e4:05:b8:f8:49:6c:26:dd: d2:0d:f1:f3 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDc0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNTA4MjIw OTAzMTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdCNTY5NzdFODM2OTMw MDIwNkU2MTc5MkYxNzdGMTQ3MEE1NUY0OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGBV+xoQEQlBjEdK8lJoh9btB/Q0QipieRSPe75zUVPVxN+k2r A1X8jZ9s7gGk/DZwhmnEmKbKjVa4NxUbB1hC/6j0EriEekT3H/b6EQ8GnE3rqpTu Qe8/SLHlrP9qlUJGiIwx0NBclWuktsG2ia+JVktspHPsYb94TcIIu4WvoGqw97xG ob/TCRWsuQsTZqC5/u/F0WDQ/wrNOdxiW0WYNRp0/vWtKG0WwqN/SrbL3L1966TK NCLtyApsz2gTZ1IUnayB75zFtJDcsgNdGLqD8FrmwK04nS5dAcY8LG9pzjOR8J3n y/w0ZdxjdxMt9crOQGSUhvLPnS5s8c9oR8UvAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUe1aXfoNpMAIG5heS8XfxRwpV9IwwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vZTFhWGZvTnBNQUlHNWhl UzhYZnhSd3BWOUl3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQDosAwDQYJKoZIhvcNAQELBQADggEBAIW/lHZVWNnx0KCBt8M2w8fJwI0ENSW0 Cz3Fr/x/1szUI69EINYGgGEnlYHpVcjRtpsgSpE7w51TNKD1U2TIHzaglFPTApXI 3UHnrZkDV4uSjPThQCsh8Xz1Vz1ViwA7omsgtfDM/u1iQjvT9YxPrys06gx6R7Mp NobpZIouL85YedXX7oJsp9aXXTSUG6LeOd+oGPwJNjyfjAVmYMjlPaI+vfHn0jG1 TTYyAn17RC40bfLyFVbSG554CiN0BTmLgza5Sds7RQFw2wUjIRmc/9hQ0Gbona83 NvuLTNMTGaz2csKkBKFNvJq/7yQsG9WiDUiHX4XkBbj4SWwm3dIN8fM= -----END CERTIFICATE-----Generated at Sun Aug 24 09:55:40 2025 by rpki-client