$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/91S3TftnutFmIP1qB387g6IiKr8.roa File: 91S3TftnutFmIP1qB387g6IiKr8.roa (raw, json) Hash identifier: 5ezcr4PQ8nga2e/+iUHOzTllVGC3P5TFTIzywRriJjM= Subject key identifier: F7:54:B7:4D:FB:67:BA:D1:66:20:FD:6A:07:7F:3B:83:A2:22:2A:BF Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0DFC Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/91S3TftnutFmIP1qB387g6IiKr8.roa Signing time: Tue 14 Oct 2025 07:56:23 +0000 ROA not before: Tue 14 Oct 2025 07:56:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131646 IP address blocks: 43.224.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3580 (0xdfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Oct 14 07:56:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F754B74DFB67BAD16620FD6A077F3B83A2222ABF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8a:e4:fb:f6:0b:68:8c:46:a4:54:9a:9c:ba: b8:59:e6:41:96:e8:87:33:46:2c:55:d8:33:62:27: a7:9c:a7:95:ba:ec:0f:78:b8:3f:0f:e6:be:85:2c: a6:d2:c0:7f:b8:70:ff:f6:9f:6a:84:1f:c5:1b:55: 7c:dd:d6:d2:47:09:30:b1:a1:72:99:18:7d:16:d2: b7:f5:9e:68:e2:5c:77:2b:3e:53:a2:a2:81:b1:8f: 69:7a:4b:73:c0:c2:00:97:d4:b2:60:dc:8f:82:81: 9e:3b:db:3f:1c:ed:63:6d:3b:06:7d:8b:68:5c:a6: 0b:72:3f:6a:d5:c3:d7:b1:bf:f2:b1:b5:89:e8:40: 22:85:53:a3:d9:70:27:27:1b:d0:1e:b8:59:7d:82: 09:b4:be:0d:4b:01:19:65:f0:73:28:96:e5:5a:7e: 16:12:90:7f:16:12:c0:02:f5:c9:10:ac:4b:64:59: f7:48:fd:bc:29:31:37:ad:dc:ff:16:7c:ca:27:ba: bf:28:fb:53:26:96:e3:15:85:fa:5b:43:26:1e:88: 3e:96:f2:d2:16:45:da:88:05:3c:46:98:29:40:a0: 1a:c9:73:4b:5c:98:ac:45:d3:08:bc:c8:3a:a3:23: a0:90:9d:b5:ff:5d:a1:d1:04:be:39:f9:ea:49:df: 3b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:54:B7:4D:FB:67:BA:D1:66:20:FD:6A:07:7F:3B:83:A2:22:2A:BF X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/91S3TftnutFmIP1qB387g6IiKr8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.224.23.0/24 Signature Algorithm: sha256WithRSAEncryption 11:14:58:a1:24:4c:5e:d2:24:53:87:57:bf:6f:e3:4b:61:f8: 35:58:f7:5b:33:38:d3:b7:c4:00:c4:52:b7:af:57:fa:38:7e: 18:e0:a1:f8:50:b4:3d:d3:cf:1c:df:11:3d:6e:28:40:0a:6e: 82:28:f3:0b:16:10:7b:7d:5e:ad:b7:e9:6e:6e:24:f0:d4:c8: 78:10:33:ab:3c:3d:18:f8:d1:4f:b8:74:d8:d4:2e:93:6f:57: ec:19:75:39:54:40:9c:d2:b4:29:60:26:42:e9:21:0f:4b:b9: ee:14:34:e4:c3:31:1c:a6:88:c1:fb:94:9d:31:f2:de:d8:e1: 4c:ed:d9:48:6e:f7:c9:42:fb:44:93:1f:8c:6a:dd:de:44:61: 54:06:3f:c6:ac:88:3a:43:94:64:da:b2:57:2b:61:07:54:7d: 4f:03:df:b1:53:ce:d7:b3:44:0a:a9:84:32:3e:0f:1b:37:16: 69:9d:7e:ea:08:01:80:8b:7d:95:c5:46:cb:73:c7:26:db:ea: 2e:69:18:71:c6:5a:af:ff:4d:db:7a:2e:b7:87:44:bc:db:58: 3c:4f:80:a5:59:46:6f:fe:fb:6b:7d:c5:ff:da:6f:50:7c:37: 10:37:74:2d:0e:87:48:b4:b5:85:98:c8:fe:ad:9c:ab:46:e4: e6:d0:76:ab -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDfwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTEwMTQw NzU2MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY3NTRCNzRERkI2N0JB RDE2NjIwRkQ2QTA3N0YzQjgzQTIyMjJBQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaiuT79gtojEakVJqcurhZ5kGW6IczRixV2DNiJ6ecp5W67A94 uD8P5r6FLKbSwH+4cP/2n2qEH8UbVXzd1tJHCTCxoXKZGH0W0rf1nmjiXHcrPlOi ooGxj2l6S3PAwgCX1LJg3I+CgZ472z8c7WNtOwZ9i2hcpgtyP2rVw9exv/KxtYno QCKFU6PZcCcnG9AeuFl9ggm0vg1LARll8HMoluVafhYSkH8WEsAC9ckQrEtkWfdI /bwpMTet3P8WfMonur8o+1MmluMVhfpbQyYeiD6W8tIWRdqIBTxGmClAoBrJc0tc mKxF0wi8yDqjI6CQnbX/XaHRBL45+epJ3zsHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU91S3TftnutFmIP1qB387g6IiKr8wHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy85MVMzVGZ0bnV0Rm1JUDFxQjM4 N2c2SWlLcjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK+AX MA0GCSqGSIb3DQEBCwUAA4IBAQARFFihJExe0iRTh1e/b+NLYfg1WPdbMzjTt8QA xFK3r1f6OH4Y4KH4ULQ9088c3xE9bihACm6CKPMLFhB7fV6tt+lubiTw1Mh4EDOr PD0Y+NFPuHTY1C6Tb1fsGXU5VECc0rQpYCZC6SEPS7nuFDTkwzEcpojB+5SdMfLe 2OFM7dlIbvfJQvtEkx+Mat3eRGFUBj/GrIg6Q5Rk2rJXK2EHVH1PA9+xU87Xs0QK qYQyPg8bNxZpnX7qCAGAi32VxUbLc8cm2+ouaRhxxlqv/03bei63h0S821g8T4Cl WUZv/vtrfcX/2m9QfDcQN3QtDodItLWFmMj+rZyrRuTm0Har -----END CERTIFICATE-----Generated at Mon Oct 20 16:22:22 2025 by rpki-client