$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/IMz5BtP3ICla7O88GADtz7O1pIQ.roa File: IMz5BtP3ICla7O88GADtz7O1pIQ.roa (raw, json) Hash identifier: HdU83/us6RwkHwd6vyOdIiBtK1KWBq0TaNLhCnfgmYQ= Subject key identifier: 20:CC:F9:06:D3:F7:20:29:5A:EC:EF:3C:18:00:ED:CF:B3:B5:A4:84 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0DD5 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/IMz5BtP3ICla7O88GADtz7O1pIQ.roa Signing time: Fri 22 Aug 2025 08:52:48 +0000 ROA not before: Fri 22 Aug 2025 08:52:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17416 IP address blocks: 211.78.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3541 (0xdd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Aug 22 08:52:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=20CCF906D3F720295AECEF3C1800EDCFB3B5A484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:ea:d5:8f:db:bb:15:67:cd:1e:ba:d1:65: 7a:ff:70:35:2d:aa:0e:02:cd:53:4d:da:e8:d3:78: a3:76:50:69:86:8c:c5:fd:9a:51:88:02:98:5b:9e: f8:a5:d6:e8:c5:7a:5d:be:fd:50:c8:12:34:6e:60: a8:10:5f:32:67:c1:8e:03:4a:ee:77:fb:d1:2d:b1: 79:c1:e8:18:25:4b:3d:13:87:e8:28:e0:52:ce:31: e5:a1:b6:e6:64:76:5e:89:03:f1:aa:e1:7a:cf:d3: ce:b7:40:79:c9:0d:75:4f:b5:b0:68:d4:62:68:e4: cb:90:f8:90:d1:73:47:ec:31:07:47:be:7a:e6:93: 9d:00:a0:f4:42:18:44:e2:c0:2f:31:c1:d9:07:53: 18:ac:94:37:27:3b:c4:23:f7:a7:0d:5b:50:31:5a: 3e:56:32:a3:9d:36:0f:fc:05:53:91:4d:bb:29:f8: e8:a6:2e:66:23:58:ed:cd:a6:be:ce:69:d2:b7:7f: 36:e5:66:0c:4c:ae:81:e8:7a:01:f7:63:87:a7:38: bb:ef:c9:71:57:47:2b:17:8a:2d:a4:6f:56:4b:50: fe:07:42:75:1b:d1:ba:d5:0b:fc:74:85:90:ec:d2: b8:78:76:63:f7:94:7d:b9:22:c4:f2:4b:22:13:61: de:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CC:F9:06:D3:F7:20:29:5A:EC:EF:3C:18:00:ED:CF:B3:B5:A4:84 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/IMz5BtP3ICla7O88GADtz7O1pIQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.80.0/20 Signature Algorithm: sha256WithRSAEncryption 1b:5f:c9:dc:6e:dd:f6:59:75:f6:ea:75:e0:97:a5:c9:14:80: 37:f4:0a:51:9a:66:34:30:89:74:c6:41:c9:7f:12:2f:2e:1b: 84:89:6c:53:6e:78:0f:fa:11:c3:2b:52:2f:22:18:47:74:71: 51:90:fa:df:3b:e4:24:da:67:5d:f3:1b:46:f9:9e:13:a1:f4: d9:b5:f5:e9:50:1d:20:5e:ca:c1:fb:cb:83:85:f5:cf:fd:2d: 9d:2f:fa:dd:08:62:16:f3:c4:e9:86:90:24:1f:70:e2:79:84: 52:d8:5a:13:c8:32:82:71:c9:c5:46:67:ca:5e:ef:98:40:6a: 6f:18:33:2a:e2:1c:e0:1a:68:34:bd:4a:d5:db:4d:52:43:d5: aa:07:7a:aa:09:ec:a3:dd:9c:e6:85:e4:75:58:a5:55:87:6e: 24:4e:2b:d6:5f:95:02:3f:5c:0b:df:ee:72:ee:33:84:48:b3: 30:fd:39:35:87:41:64:64:10:80:e2:ac:66:d1:d2:a9:2e:69: da:2f:94:a5:95:f0:51:17:4d:69:8c:34:e2:94:a4:9a:2e:d4: ce:b6:1b:88:fd:24:07:e2:ed:cd:f4:3b:74:87:27:6c:24:e6: 79:25:d3:47:80:ab:c9:39:c8:c3:ec:c5:51:b8:59:36:b1:e3: f2:9a:1b:b1 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDdUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA4MjIw ODUyNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIwQ0NGOTA2RDNGNzIw Mjk1QUVDRUYzQzE4MDBFRENGQjNCNUE0ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmyurVj9u7FWfNHrrRZXr/cDUtqg4CzVNN2ujTeKN2UGmGjMX9 mlGIAphbnvil1ujFel2+/VDIEjRuYKgQXzJnwY4DSu53+9EtsXnB6BglSz0Th+go 4FLOMeWhtuZkdl6JA/Gq4XrP0863QHnJDXVPtbBo1GJo5MuQ+JDRc0fsMQdHvnrm k50AoPRCGETiwC8xwdkHUxislDcnO8Qj96cNW1AxWj5WMqOdNg/8BVORTbsp+Oim LmYjWO3Npr7OadK3fzblZgxMroHoegH3Y4enOLvvyXFXRysXii2kb1ZLUP4HQnUb 0brVC/x0hZDs0rh4dmP3lH25IsTySyITYd4NAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUIMz5BtP3ICla7O88GADtz7O1pIQwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9JTXo1QnRQM0lDbGE3Tzg4R0FE dHo3TzFwSVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE005Q MA0GCSqGSIb3DQEBCwUAA4IBAQAbX8ncbt32WXX26nXgl6XJFIA39ApRmmY0MIl0 xkHJfxIvLhuEiWxTbngP+hHDK1IvIhhHdHFRkPrfO+Qk2mdd8xtG+Z4TofTZtfXp UB0gXsrB+8uDhfXP/S2dL/rdCGIW88TphpAkH3DieYRS2FoTyDKCccnFRmfKXu+Y QGpvGDMq4hzgGmg0vUrV201SQ9WqB3qqCeyj3ZzmheR1WKVVh24kTivWX5UCP1wL 3+5y7jOESLMw/Tk1h0FkZBCA4qxm0dKpLmnaL5SllfBRF01pjDTilKSaLtTOthuI /SQH4u3N9Dt0hydsJOZ5JdNHgKvJOcjD7MVRuFk2sePymhux -----END CERTIFICATE-----Generated at Sun Aug 24 07:05:15 2025 by rpki-client