$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/kx4EvzzHOK_cpqGUDQ_iZWaVC8c.roa File: kx4EvzzHOK_cpqGUDQ_iZWaVC8c.roa (raw, json) Hash identifier: 2/4LsSvEvir3bPcWs401DAnynxAufDLi0vQchew4Cm0= Subject key identifier: 93:1E:04:BF:3C:C7:38:AF:DC:A6:A1:94:0D:0F:E2:65:66:95:0B:C7 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0DD2 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/kx4EvzzHOK_cpqGUDQ_iZWaVC8c.roa Signing time: Fri 22 Aug 2025 08:52:48 +0000 ROA not before: Fri 22 Aug 2025 08:52:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 204677 IP address blocks: 43.224.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3538 (0xdd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Aug 22 08:52:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=931E04BF3CC738AFDCA6A1940D0FE26566950BC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:3c:8a:5d:b0:d0:74:91:78:df:45:2a:53: 3e:5b:e7:25:f0:c0:ff:39:28:ea:7e:bf:62:f4:5b: 35:74:81:64:19:02:b0:88:4b:49:76:60:b4:98:6e: dd:77:cb:dc:1b:c2:91:7c:29:87:54:4c:e6:96:1c: 73:3e:04:25:bd:91:8d:c2:a6:a2:70:2e:25:55:54: 3f:f1:c7:af:e8:83:19:ad:ed:cb:81:49:b2:2a:3e: 1e:54:b5:a4:c0:a9:43:62:3e:81:cd:dc:8d:56:94: 7d:a9:3f:c4:ec:1b:8e:d4:9d:ce:1b:88:96:72:16: a4:88:6f:e3:0c:ad:3c:83:13:51:8f:6c:d2:d6:99: 27:0b:9a:2d:80:e6:75:47:43:df:f8:7b:6b:31:99: 6b:2f:f3:44:04:4c:f0:1f:c0:50:9f:5d:90:db:44: bf:5b:62:58:6b:c1:b4:2b:c2:19:19:96:cd:97:e2: bd:4f:5e:d9:7c:86:7e:3d:96:96:6e:13:c5:b3:3e: b6:a6:f1:57:87:b3:b4:38:5b:de:24:12:ff:8e:37: 58:64:e0:5a:0d:1a:cb:9a:1e:16:d2:e4:17:cc:dd: e3:e3:4b:8d:00:ad:bd:9c:55:a8:a5:2d:d9:cf:0a: aa:a3:59:a9:d8:de:a1:95:1c:50:3f:81:82:a7:13: b4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:1E:04:BF:3C:C7:38:AF:DC:A6:A1:94:0D:0F:E2:65:66:95:0B:C7 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/kx4EvzzHOK_cpqGUDQ_iZWaVC8c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.224.22.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:cf:42:f7:33:1b:e8:a0:b9:a6:39:95:fc:6d:f6:87:89:d2: 36:6c:08:8b:b6:f3:9a:8d:74:dc:46:e9:20:76:23:4e:65:bd: f2:02:e8:00:fd:f2:c4:66:70:67:eb:c4:76:08:18:0e:3b:47: b0:4f:06:2a:32:c5:42:60:e6:2e:f2:f4:64:5f:bd:23:90:af: d7:0a:6e:ae:2a:67:23:3f:cf:23:14:4f:27:ab:00:1b:36:1f: c4:f4:d5:76:ba:85:57:9e:cc:63:ad:3d:3c:1e:10:6e:4d:ff: 40:df:5c:96:a4:37:b8:78:b8:cc:73:ea:78:f9:d9:88:cf:58: d6:6f:81:b1:f6:4c:d3:b7:b9:2e:0d:b4:03:68:5e:96:28:f6: 12:68:fd:30:e5:5f:02:54:64:ee:f9:53:b9:82:23:4d:50:f0: fd:98:a1:b5:a7:59:d5:44:80:af:47:9e:1d:95:9d:85:94:5f: 00:cf:d2:5d:31:6a:0c:44:fd:a1:aa:59:92:a4:25:90:d7:a9: 5f:8c:1b:45:8f:26:ff:07:b6:91:17:0b:e1:e6:08:fa:63:a1: 62:1c:bb:cb:bb:9e:f5:03:1b:5b:3b:59:6d:4b:d6:8e:4b:37: 2b:ef:f8:2a:fd:8b:cf:b2:3f:bb:2a:5d:cf:0a:63:8f:64:1d: cb:da:32:2d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDdIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA4MjIw ODUyNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkzMUUwNEJGM0NDNzM4 QUZEQ0E2QTE5NDBEMEZFMjY1NjY5NTBCQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyQDyKXbDQdJF430UqUz5b5yXwwP85KOp+v2L0WzV0gWQZArCI S0l2YLSYbt13y9wbwpF8KYdUTOaWHHM+BCW9kY3CpqJwLiVVVD/xx6/ogxmt7cuB SbIqPh5UtaTAqUNiPoHN3I1WlH2pP8TsG47Unc4biJZyFqSIb+MMrTyDE1GPbNLW mScLmi2A5nVHQ9/4e2sxmWsv80QETPAfwFCfXZDbRL9bYlhrwbQrwhkZls2X4r1P Xtl8hn49lpZuE8WzPram8VeHs7Q4W94kEv+ON1hk4FoNGsuaHhbS5BfM3ePjS40A rb2cVailLdnPCqqjWanY3qGVHFA/gYKnE7R3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUkx4EvzzHOK/cpqGUDQ/iZWaVC8cwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9reDRFdnp6SE9LX2NwcUdVRFFf aVpXYVZDOGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK+AW MA0GCSqGSIb3DQEBCwUAA4IBAQB/z0L3MxvooLmmOZX8bfaHidI2bAiLtvOajXTc RukgdiNOZb3yAugA/fLEZnBn68R2CBgOO0ewTwYqMsVCYOYu8vRkX70jkK/XCm6u KmcjP88jFE8nqwAbNh/E9NV2uoVXnsxjrT08HhBuTf9A31yWpDe4eLjMc+p4+dmI z1jWb4Gx9kzTt7kuDbQDaF6WKPYSaP0w5V8CVGTu+VO5giNNUPD9mKG1p1nVRICv R54dlZ2FlF8Az9JdMWoMRP2hqlmSpCWQ16lfjBtFjyb/B7aRFwvh5gj6Y6FiHLvL u571AxtbO1ltS9aOSzcr7/gq/YvPsj+7Kl3PCmOPZB3L2jIt -----END CERTIFICATE-----Generated at Sun Aug 24 11:05:41 2025 by rpki-client