$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/j1LO3FDEhaskQSbeW8Iyr4SePM8.roa File: j1LO3FDEhaskQSbeW8Iyr4SePM8.roa (raw, json) Hash identifier: VNopd3fQYdouKHhnvuDvxKiasezn1OZ/6rMqehRn0uQ= Subject key identifier: 8F:52:CE:DC:50:C4:85:AB:24:41:26:DE:5B:C2:32:AF:84:9E:3C:CF Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0E1E Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/j1LO3FDEhaskQSbeW8Iyr4SePM8.roa Signing time: Fri 22 Aug 2025 08:51:56 +0000 ROA not before: Fri 22 Aug 2025 08:51:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131611 IP address blocks: 2401:1780:1316::/48 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3614 (0xe1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Aug 22 08:51:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8F52CEDC50C485AB244126DE5BC232AF849E3CCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a4:96:71:62:71:74:b7:3b:64:53:68:6e:4c: 41:48:b8:41:e7:eb:b5:94:12:65:59:d2:62:42:a4: 16:9f:9b:fc:1a:76:b5:18:40:35:47:63:cb:74:76: f2:e4:e2:c5:04:75:81:5e:79:f9:0d:4a:5f:11:e6: d6:56:8f:f7:6e:64:81:73:d3:86:e2:12:f8:86:ac: 10:de:fb:10:14:df:99:59:18:6b:2a:60:4e:2a:13: bc:d6:d6:2a:4e:55:bf:72:21:15:c7:3c:d4:19:21: 51:67:9c:b5:63:32:7c:3f:fb:2c:b6:a2:34:30:7b: cc:43:20:72:82:18:b1:07:c0:66:4e:a6:bd:08:4a: 47:44:66:3a:33:53:7d:86:8a:6a:76:c7:5a:15:63: 01:22:a9:38:f5:72:00:56:ba:18:bb:a2:69:45:cc: cd:cf:ed:d8:0b:7b:43:07:42:3a:b3:ad:5e:fa:c8: fc:ff:e8:a9:75:15:b3:9e:1d:66:c9:68:fc:7a:c7: e9:23:ed:e5:f8:bb:5a:e0:c5:6c:3b:42:63:ac:92: 9b:b0:cf:6e:29:a0:08:3e:9c:20:a7:8f:5c:49:cc: 1a:64:71:7b:b8:aa:43:3e:2d:16:ae:32:70:83:fd: b9:64:74:e3:d0:e8:d0:a8:75:1e:a4:c1:b1:7a:72: 15:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:52:CE:DC:50:C4:85:AB:24:41:26:DE:5B:C2:32:AF:84:9E:3C:CF X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/j1LO3FDEhaskQSbeW8Iyr4SePM8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:1780:1316::/48 Signature Algorithm: sha256WithRSAEncryption d8:46:0a:05:93:03:88:81:70:54:cd:9a:6a:81:b1:ef:d2:50: cf:a0:ee:95:1c:54:c2:c8:31:da:40:63:0d:22:d7:78:0b:23: d6:a2:b1:fe:b8:44:57:b1:06:f2:ed:fc:5a:9b:42:63:36:64: f1:39:bc:5e:4a:50:63:dd:32:04:b4:7d:db:63:95:8a:97:4a: 77:ed:0c:b2:12:b1:db:94:cb:34:4c:80:40:8b:54:80:11:01: af:72:ff:c2:cd:07:2e:66:8e:cd:2b:02:32:2a:50:ba:9a:80: bb:34:4e:3d:0a:fd:7b:41:38:52:c4:45:34:33:58:43:20:eb: 80:4b:68:d6:61:fd:34:76:61:f8:94:30:88:aa:1d:38:bd:7b: ff:4a:b9:03:7a:c5:d7:e3:b5:97:03:25:64:c1:26:36:04:88: 14:49:a7:ae:0f:f2:6e:4c:0a:cc:87:10:d5:8c:4c:4a:53:68: a5:86:fc:1a:bb:26:62:a4:73:09:86:27:69:12:30:90:2f:67: c3:0d:f5:53:35:7d:2a:7a:a6:57:5c:ce:04:69:66:fb:ac:91: db:9b:b4:f5:8f:64:69:2f:d9:32:14:2e:ea:81:ca:06:9a:de: de:51:eb:10:8e:c1:e5:4a:59:8d:de:ca:7a:8b:b7:02:1a:ce: fc:63:c0:77 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICDh4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTA4MjIw ODUxNTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhGNTJDRURDNTBDNDg1 QUIyNDQxMjZERTVCQzIzMkFGODQ5RTNDQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNpJZxYnF0tztkU2huTEFIuEHn67WUEmVZ0mJCpBafm/wadrUY QDVHY8t0dvLk4sUEdYFeefkNSl8R5tZWj/duZIFz04biEviGrBDe+xAU35lZGGsq YE4qE7zW1ipOVb9yIRXHPNQZIVFnnLVjMnw/+yy2ojQwe8xDIHKCGLEHwGZOpr0I SkdEZjozU32Gimp2x1oVYwEiqTj1cgBWuhi7omlFzM3P7dgLe0MHQjqzrV76yPz/ 6Kl1FbOeHWbJaPx6x+kj7eX4u1rgxWw7QmOskpuwz24poAg+nCCnj1xJzBpkcXu4 qkM+LRauMnCD/blkdOPQ6NCodR6kwbF6chXlAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUj1LO3FDEhaskQSbeW8Iyr4SePM8wHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9qMUxPM0ZERWhhc2tR U2JlVzhJeXI0U2VQTTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcAJAEXgBMWMA0GCSqGSIb3DQEBCwUAA4IBAQDYRgoFkwOIgXBUzZpqgbHv0lDP oO6VHFTCyDHaQGMNItd4CyPWorH+uERXsQby7fxam0JjNmTxObxeSlBj3TIEtH3b Y5WKl0p37QyyErHblMs0TIBAi1SAEQGvcv/CzQcuZo7NKwIyKlC6moC7NE49Cv17 QThSxEU0M1hDIOuAS2jWYf00dmH4lDCIqh04vXv/SrkDesXX47WXAyVkwSY2BIgU SaeuD/JuTArMhxDVjExKU2ilhvwauyZipHMJhidpEjCQL2fDDfVTNX0qeqZXXM4E aWb7rJHbm7T1j2RpL9kyFC7qgcoGmt7eUesQjsHlSlmN3sp6i7cCGs78Y8B3 -----END CERTIFICATE-----Generated at Sun Aug 24 09:04:25 2025 by rpki-client