$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/oatEHHpIA47GsCTDxpz3_6Yyyak.roa File: oatEHHpIA47GsCTDxpz3_6Yyyak.roa (raw, json) Hash identifier: 1scLizT4jE1FPmu+qWXWPi2v2zVmISSFCEVk9UJNiIw= Subject key identifier: A1:AB:44:1C:7A:48:03:8E:C6:B0:24:C3:C6:9C:F7:FF:A6:32:C9:A9 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0D89 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/oatEHHpIA47GsCTDxpz3_6Yyyak.roa Signing time: Fri 06 Jun 2025 09:22:46 +0000 ROA not before: Fri 06 Jun 2025 09:22:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38136 IP address blocks: 43.224.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 21:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3465 (0xd89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Jun 6 09:22:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A1AB441C7A48038EC6B024C3C69CF7FFA632C9A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d5:3e:7c:72:d9:fc:e1:7f:7c:29:82:a9:59: e7:a9:0c:2c:39:b4:56:4e:36:84:d6:7b:93:ac:ab: f8:59:72:42:48:b4:0b:23:fe:0b:0a:72:bf:3a:b6: 7d:07:6a:af:26:ba:1d:6f:f3:8b:5c:9a:b4:e4:5d: b0:ba:bb:38:96:58:fb:37:2f:29:75:ca:b2:25:27: 87:67:da:7d:a8:8d:d9:63:dd:1b:cd:57:8d:8a:ca: b2:d9:e0:dc:9d:85:48:c5:e9:63:b0:c8:2d:d2:f1: e6:25:7f:79:d4:f7:25:52:43:75:c6:35:5d:1f:2f: 1e:84:bf:e4:ac:9b:42:2e:01:5f:78:81:3a:36:50: 51:23:cf:a1:d2:f7:9c:ef:2d:6d:6e:85:8e:14:ce: d4:e0:a9:1c:24:da:6e:c4:15:0c:26:f9:50:a5:62: 32:5a:f6:8e:56:b3:8e:be:7d:1f:5e:ad:09:e8:f0: 97:3c:ce:ef:62:65:9d:cd:cd:5d:45:78:53:32:40: 76:ee:3b:ff:45:ff:70:39:68:26:b9:75:5f:37:83: 1c:b0:a2:bc:c7:4d:f9:c6:97:06:19:ad:9f:78:32: ef:01:77:a3:14:84:e2:96:1f:13:12:71:2d:0d:e0: 0c:96:bd:25:04:b6:e5:1d:62:79:df:5f:a5:2a:04: a2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AB:44:1C:7A:48:03:8E:C6:B0:24:C3:C6:9C:F7:FF:A6:32:C9:A9 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/oatEHHpIA47GsCTDxpz3_6Yyyak.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.224.22.0/24 Signature Algorithm: sha256WithRSAEncryption 06:dc:00:2e:4d:42:c7:fc:68:39:cf:bc:b0:e3:67:84:22:06: 49:8a:d8:8e:d8:61:ce:db:d8:fa:12:a1:59:49:df:10:cc:f6: 6f:50:ab:24:93:f5:38:bd:f1:5f:48:6c:9f:a3:ff:80:7b:17: ee:a1:c0:e8:df:50:e2:40:24:cd:bd:96:f0:30:05:cf:c8:18: 34:87:39:f9:51:2c:5c:dc:11:b7:04:b3:14:1f:8f:d9:87:ad: f6:1e:69:40:24:a9:d4:a8:40:50:83:aa:8f:94:9c:20:5f:8d: 93:0c:b3:5c:ba:17:ff:34:a2:80:f7:fc:f9:d3:fb:31:01:1a: 0d:70:05:18:c1:56:e9:7c:f7:31:34:4b:fd:34:8c:1a:3e:fc: 71:0d:16:42:a1:14:67:23:2f:a1:37:a8:df:04:50:c4:63:28: c3:b4:c0:2b:a1:dd:5a:df:48:fc:f0:37:2f:bb:5d:c6:cc:cd: 2e:a3:08:a0:20:e1:64:35:ea:79:83:de:4a:69:c0:7a:4b:36: 6d:89:22:95:f3:f9:3b:4d:e2:99:98:ec:48:2f:17:9b:52:4e: 45:bc:a8:77:75:25:93:d3:dc:ac:ce:71:bd:a0:10:91:6b:57: 36:a8:cf:4e:75:c1:45:3c:f4:0c:db:73:58:f7:4c:6e:78:e9: 74:78:8f:8b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA2MDYw OTIyNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEExQUI0NDFDN0E0ODAz OEVDNkIwMjRDM0M2OUNGN0ZGQTYzMkM5QTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR1T58ctn84X98KYKpWeepDCw5tFZONoTWe5Osq/hZckJItAsj /gsKcr86tn0Haq8muh1v84tcmrTkXbC6uziWWPs3Lyl1yrIlJ4dn2n2ojdlj3RvN V42KyrLZ4NydhUjF6WOwyC3S8eYlf3nU9yVSQ3XGNV0fLx6Ev+Ssm0IuAV94gTo2 UFEjz6HS95zvLW1uhY4UztTgqRwk2m7EFQwm+VClYjJa9o5Ws46+fR9erQno8Jc8 zu9iZZ3NzV1FeFMyQHbuO/9F/3A5aCa5dV83gxyworzHTfnGlwYZrZ94Mu8Bd6MU hOKWHxMScS0N4AyWvSUEtuUdYnnfX6UqBKI1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUoatEHHpIA47GsCTDxpz3/6YyyakwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9vYXRFSEhwSUE0N0dzQ1REeHB6 M182WXl5YWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK+AW MA0GCSqGSIb3DQEBCwUAA4IBAQAG3AAuTULH/Gg5z7yw42eEIgZJitiO2GHO29j6 EqFZSd8QzPZvUKskk/U4vfFfSGyfo/+AexfuocDo31DiQCTNvZbwMAXPyBg0hzn5 USxc3BG3BLMUH4/Zh632HmlAJKnUqEBQg6qPlJwgX42TDLNcuhf/NKKA9/z50/sx ARoNcAUYwVbpfPcxNEv9NIwaPvxxDRZCoRRnIy+hN6jfBFDEYyjDtMArod1a30j8 8Dcvu13GzM0uowigIOFkNep5g95KacB6SzZtiSKV8/k7TeKZmOxILxebUk5FvKh3 dSWT09ysznG9oBCRa1c2qM9OdcFFPPQM23NY90xueOl0eI+L -----END CERTIFICATE-----Generated at Thu Jul 3 18:41:28 2025 by rpki-client