$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/etwX6QncGNIdwvmE1-ya2C-GDk8.roa File: etwX6QncGNIdwvmE1-ya2C-GDk8.roa (raw, json) Hash identifier: 2VOutq05YlkBOsl9WgiUW0e6CDCmYd1RltK9BH4giVA= Subject key identifier: 7A:DC:17:E9:09:DC:18:D2:1D:C2:F9:84:D7:EC:9A:D8:2F:86:0E:4F Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0E22 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/etwX6QncGNIdwvmE1-ya2C-GDk8.roa Signing time: Fri 22 Aug 2025 08:51:57 +0000 ROA not before: Fri 22 Aug 2025 08:51:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 2401:1780::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3618 (0xe22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Aug 22 08:51:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7ADC17E909DC18D21DC2F984D7EC9AD82F860E4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8f:ca:48:67:6d:21:25:e5:50:e0:ed:87:b6: 08:f3:fb:f5:a6:31:76:6d:0e:fa:e4:2c:69:37:3f: 25:8e:5a:57:6b:6a:18:5e:96:b3:23:43:9e:a1:08: ce:50:83:db:47:90:fe:92:51:d3:d6:f0:7a:7d:64: 9c:e9:b7:dc:43:97:b6:ff:31:e4:e1:33:31:d8:b1: fa:7f:8c:be:6a:c1:84:31:30:58:c9:70:5a:4b:a5: a6:b7:5d:d2:cb:ef:3f:5d:e7:c4:7f:54:dc:1e:db: cd:f5:b6:f2:34:50:09:03:64:2d:86:2f:9c:49:a3: 9c:ba:6d:f3:44:24:64:38:dd:a3:db:22:ca:da:46: fd:eb:fc:3c:87:c2:17:81:f9:a8:27:a1:85:d3:5f: 90:3e:8b:74:ef:f8:e8:df:c4:7b:38:38:7e:46:09: 5f:7a:fa:7e:b2:3b:3c:e5:cb:d1:10:5a:5e:01:ba: 83:bd:82:07:10:cd:52:d6:b3:b8:b9:85:f9:84:af: 25:19:df:db:12:31:91:8f:7f:f3:b9:e4:2b:1e:54: 55:98:72:cd:f3:96:25:3e:e3:fe:01:b0:fd:d0:04: 56:0b:44:09:b7:3c:81:2a:52:17:c3:5a:5d:53:01: ce:b0:28:27:0e:7b:7f:bf:f0:ad:53:bc:30:80:9a: 43:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:DC:17:E9:09:DC:18:D2:1D:C2:F9:84:D7:EC:9A:D8:2F:86:0E:4F X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/etwX6QncGNIdwvmE1-ya2C-GDk8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:1780::/32 Signature Algorithm: sha256WithRSAEncryption 61:bd:94:7d:cb:51:90:0f:07:90:59:47:f0:41:29:8f:bd:42: 04:8d:5c:5b:6d:2f:7f:7b:65:28:45:fe:00:63:3d:f2:94:ae: fd:4c:11:46:c3:bd:25:7b:92:6c:36:91:b7:f2:93:c5:a9:00: 1d:d0:79:f3:f4:93:22:5b:cc:3f:d5:0c:a1:ed:6d:b7:56:a3: 79:6a:66:fc:df:c2:7a:d5:99:eb:b3:62:51:38:3d:01:27:ba: cd:de:b7:20:4b:2c:1c:18:46:cd:2d:79:5a:3a:09:65:d1:a9: e2:49:d9:c1:6a:4a:75:35:f4:28:23:e7:89:77:fe:7a:62:7b: e9:36:73:f8:ce:67:73:16:18:4b:fc:d6:0c:47:d3:9c:18:4f: 0f:23:38:83:4c:d7:20:a4:b9:cb:1f:97:ad:f2:86:9e:b4:c5: 15:18:29:73:6e:6d:af:50:aa:d9:b5:fd:cb:35:88:74:5a:17: 94:42:77:c4:df:23:87:ee:19:b1:6f:2e:1a:33:13:f7:8c:e1: 60:75:90:7d:db:cc:c6:b4:a7:5e:41:c5:ba:d6:fd:33:2d:16: 3b:85:64:8a:2a:94:83:3a:03:ae:ed:96:f1:8e:8a:12:47:1a: 1b:66:e8:49:80:04:86:75:9b:d2:32:87:ce:9b:ec:15:db:39: 4c:cf:22:b6 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDiIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTA4MjIw ODUxNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdBREMxN0U5MDlEQzE4 RDIxREMyRjk4NEQ3RUM5QUQ4MkY4NjBFNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5j8pIZ20hJeVQ4O2Htgjz+/WmMXZtDvrkLGk3PyWOWldrahhe lrMjQ56hCM5Qg9tHkP6SUdPW8Hp9ZJzpt9xDl7b/MeThMzHYsfp/jL5qwYQxMFjJ cFpLpaa3XdLL7z9d58R/VNwe2831tvI0UAkDZC2GL5xJo5y6bfNEJGQ43aPbIsra Rv3r/DyHwheB+agnoYXTX5A+i3Tv+OjfxHs4OH5GCV96+n6yOzzly9EQWl4BuoO9 ggcQzVLWs7i5hfmEryUZ39sSMZGPf/O55CseVFWYcs3zliU+4/4BsP3QBFYLRAm3 PIEqUhfDWl1TAc6wKCcOe3+/8K1TvDCAmkNfAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUetwX6QncGNIdwvmE1+ya2C+GDk8wHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9ldHdYNlFuY0dOSWR3 dm1FMS15YTJDLUdEazgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAEXgDANBgkqhkiG9w0BAQsFAAOCAQEAYb2UfctRkA8HkFlH8EEpj71CBI1c W20vf3tlKEX+AGM98pSu/UwRRsO9JXuSbDaRt/KTxakAHdB58/STIlvMP9UMoe1t t1ajeWpm/N/CetWZ67NiUTg9ASe6zd63IEssHBhGzS15WjoJZdGp4knZwWpKdTX0 KCPniXf+emJ76TZz+M5ncxYYS/zWDEfTnBhPDyM4g0zXIKS5yx+XrfKGnrTFFRgp c25tr1Cq2bX9yzWIdFoXlEJ3xN8jh+4ZsW8uGjMT94zhYHWQfdvMxrSnXkHFutb9 My0WO4VkiiqUgzoDru2W8Y6KEkcaG2boSYAEhnWb0jKHzpvsFds5TM8itg== -----END CERTIFICATE-----Generated at Sun Aug 24 05:21:57 2025 by rpki-client