$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/jBzvOmqRrdf1UKuorkuF-hy_PJE.roa File: jBzvOmqRrdf1UKuorkuF-hy_PJE.roa (raw, json) Hash identifier: Wbfvd+Oh1P34/yX4pm32UxwGbL6G1mtd08VHV1zZ5Q8= Subject key identifier: 8C:1C:EF:3A:6A:91:AD:D7:F5:50:AB:A8:AE:4B:85:FA:1C:BF:3C:91 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0DD3 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/jBzvOmqRrdf1UKuorkuF-hy_PJE.roa Signing time: Fri 22 Aug 2025 08:52:48 +0000 ROA not before: Fri 22 Aug 2025 08:52:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 136173 IP address blocks: 43.224.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3539 (0xdd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Aug 22 08:52:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8C1CEF3A6A91ADD7F550ABA8AE4B85FA1CBF3C91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ba:c4:3a:a8:30:35:40:33:c0:fc:78:71:68: c7:f1:74:65:75:84:46:ee:17:0d:53:c4:ed:e0:69: 30:46:8b:52:35:4a:f7:f5:45:51:46:05:ad:f1:42: ab:ca:ac:8b:24:41:71:83:69:24:d7:42:8f:5d:49: b3:b7:f2:c3:72:53:b6:66:34:94:f4:fe:03:de:ad: f7:a6:cb:07:6e:73:77:e9:10:97:5f:fb:59:bc:f7: f6:1d:5f:13:40:79:19:c6:45:c0:2f:fd:dd:a7:26: 52:68:f4:53:50:18:cd:e5:0d:4a:c4:db:a2:5f:8d: d8:03:fe:6b:f3:95:11:98:1a:bd:5f:ab:2a:62:16: 26:fb:f5:7a:bd:8e:e9:9b:d6:75:49:a0:3f:e4:d1: dc:db:f8:1a:b3:69:d0:93:c5:ef:6e:db:51:fb:e4: 18:b2:97:ae:95:a5:25:73:29:8a:4a:70:91:a3:76: f3:2d:7b:3b:fe:5d:4f:be:e9:78:3a:32:db:2b:60: 26:44:b7:47:00:8d:f4:6f:b2:5d:a9:8a:5a:9b:25: c8:60:f1:44:0b:cd:0e:a3:33:60:94:d4:33:c7:60: 3c:e6:6f:93:3d:9a:17:08:51:00:50:36:a2:31:49: 27:98:bc:3c:2d:db:bc:c5:63:17:c8:0b:a9:18:64: 97:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:1C:EF:3A:6A:91:AD:D7:F5:50:AB:A8:AE:4B:85:FA:1C:BF:3C:91 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/jBzvOmqRrdf1UKuorkuF-hy_PJE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.224.23.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:1d:93:47:39:f0:3f:29:15:52:75:f3:29:06:d5:05:63:a7: 33:94:29:33:39:af:59:71:61:09:22:07:1a:77:18:c7:dc:92: 6e:31:33:35:54:06:83:2a:1a:9c:c4:dd:73:d8:d3:e6:35:46: fe:a1:95:e0:c9:d9:81:76:85:9c:64:5c:64:08:ec:a1:71:f7: 2e:82:46:22:09:50:b3:b1:89:8e:c0:57:34:0f:13:a5:39:31: c2:14:d9:94:b1:37:f8:df:0f:a1:43:f1:ad:68:bf:70:8d:bb: c9:a6:c5:84:2f:7b:77:1c:97:4e:f3:2a:a9:39:0f:1e:67:ad: ff:5b:14:1b:0b:bc:9b:26:c7:1b:2f:8e:7b:4d:cd:ac:d6:85: 9c:f9:09:1f:b2:0e:9e:96:42:b5:be:97:8c:54:f3:df:11:82: 61:f4:8a:cf:75:aa:84:bd:82:73:f2:3b:2c:63:77:1f:42:49: 59:1b:a0:44:13:a7:48:c4:06:8a:12:9c:ba:c0:e6:12:f2:2b: 9e:a0:72:7c:1c:a0:db:0b:57:5f:80:14:34:79:fe:e7:d3:62: 05:3d:49:af:f2:11:f7:5a:63:6c:30:db:6a:f5:64:d4:37:ad: 30:ff:fd:79:80:d9:81:7c:cf:24:40:66:11:3a:f4:d3:d4:da: b5:82:70:f5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDdMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA4MjIw ODUyNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhDMUNFRjNBNkE5MUFE RDdGNTUwQUJBOEFFNEI4NUZBMUNCRjNDOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+usQ6qDA1QDPA/HhxaMfxdGV1hEbuFw1TxO3gaTBGi1I1Svf1 RVFGBa3xQqvKrIskQXGDaSTXQo9dSbO38sNyU7ZmNJT0/gPerfemywduc3fpEJdf +1m89/YdXxNAeRnGRcAv/d2nJlJo9FNQGM3lDUrE26JfjdgD/mvzlRGYGr1fqypi Fib79Xq9jumb1nVJoD/k0dzb+BqzadCTxe9u21H75Biyl66VpSVzKYpKcJGjdvMt ezv+XU++6Xg6MtsrYCZEt0cAjfRvsl2pilqbJchg8UQLzQ6jM2CU1DPHYDzmb5M9 mhcIUQBQNqIxSSeYvDwt27zFYxfIC6kYZJcRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUjBzvOmqRrdf1UKuorkuF+hy/PJEwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9qQnp2T21xUnJkZjFVS3Vvcmt1 Ri1oeV9QSkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK+AX MA0GCSqGSIb3DQEBCwUAA4IBAQA6HZNHOfA/KRVSdfMpBtUFY6czlCkzOa9ZcWEJ IgcadxjH3JJuMTM1VAaDKhqcxN1z2NPmNUb+oZXgydmBdoWcZFxkCOyhcfcugkYi CVCzsYmOwFc0DxOlOTHCFNmUsTf43w+hQ/GtaL9wjbvJpsWEL3t3HJdO8yqpOQ8e Z63/WxQbC7ybJscbL457Tc2s1oWc+Qkfsg6elkK1vpeMVPPfEYJh9IrPdaqEvYJz 8jssY3cfQklZG6BEE6dIxAaKEpy6wOYS8iueoHJ8HKDbC1dfgBQ0ef7n02IFPUmv 8hH3WmNsMNtq9WTUN60w//15gNmBfM8kQGYROvTT1Nq1gnD1 -----END CERTIFICATE-----Generated at Sun Aug 24 07:04:41 2025 by rpki-client