$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/vBZ5S4xKu8FppQXzMjpNiDzEBZM.roa File: vBZ5S4xKu8FppQXzMjpNiDzEBZM.roa (raw, json) Hash identifier: S9Cn/jnLRG4w7+UxgY/NsuyFDWC7g4vAy+UpEWzu79Y= Subject key identifier: BC:16:79:4B:8C:4A:BB:C1:69:A5:05:F3:32:3A:4D:88:3C:C4:05:93 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0DD7 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/vBZ5S4xKu8FppQXzMjpNiDzEBZM.roa Signing time: Fri 22 Aug 2025 08:52:49 +0000 ROA not before: Fri 22 Aug 2025 08:52:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17416 IP address blocks: 112.213.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3543 (0xdd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Aug 22 08:52:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BC16794B8C4ABBC169A505F3323A4D883CC40593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f1:8f:3c:96:03:1d:9f:f3:54:e7:24:e2:b6: 42:12:b0:fb:02:97:2b:13:db:19:f6:7a:f3:27:9b: f6:4a:ef:45:d8:4b:56:62:7f:ec:3b:c0:4a:8e:07: 4d:44:46:27:f1:53:6a:ec:68:48:56:4b:ac:8f:46: 76:6d:93:d1:ce:4d:a5:ab:3a:02:12:5c:bf:8b:40: 7a:1f:67:51:dc:f0:dd:04:56:79:76:07:64:ee:76: c5:a0:18:6e:bc:9b:3d:5f:d3:95:b2:fe:97:0c:00: a4:87:ee:b3:54:91:12:ae:6e:f2:94:ea:e6:87:21: e8:83:a4:0b:ad:17:69:c9:9b:07:e1:f4:ed:90:e8: 4e:94:53:9a:45:76:b7:ab:92:9e:c3:c7:22:c5:4b: d4:68:83:04:f7:d9:02:42:db:28:8d:2e:a5:fa:a8: 96:4e:a7:ea:2d:68:f6:e4:1c:e1:98:a2:03:3b:53: b5:d7:ff:ca:31:3b:fb:9f:5d:e3:11:b1:4a:5a:63: 9a:88:fa:56:81:da:8f:1e:23:1b:19:4a:70:4b:11: 73:7a:ee:e8:fd:c6:f9:63:79:2d:86:6b:13:fd:ea: 7f:80:17:f2:13:d2:9d:b8:2d:19:3c:2a:38:75:6a: 53:9a:b3:0f:60:12:f8:8f:4f:c9:c3:72:78:e5:97: 9f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:16:79:4B:8C:4A:BB:C1:69:A5:05:F3:32:3A:4D:88:3C:C4:05:93 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/vBZ5S4xKu8FppQXzMjpNiDzEBZM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.213.48.0/20 Signature Algorithm: sha256WithRSAEncryption 84:f2:68:8c:65:f1:1e:a4:e4:eb:1d:1b:75:52:db:db:5f:da: 00:a2:7f:57:a1:a1:74:26:e9:8a:27:a8:48:05:d9:a8:2c:7f: 25:3c:0a:33:94:2e:27:f3:31:64:86:9f:df:d5:3b:fd:9e:d1: 6c:c1:ab:67:1c:ab:44:7a:5c:4a:b3:99:12:7f:57:3d:ef:27: 6f:40:ff:1f:c1:7c:f8:bf:80:7b:30:66:99:20:ef:2e:a8:35: 44:c6:6d:98:37:4a:87:18:d4:85:0a:21:08:b8:52:fd:b2:88: 98:3f:14:0b:34:7b:ad:98:8b:22:fe:78:89:8d:8a:4b:9d:a7: a5:32:57:eb:b6:5a:9a:50:7c:56:15:ea:d3:e9:67:83:91:8a: 68:aa:0b:e3:bb:84:6a:7a:c8:94:3e:cd:69:78:35:7e:5e:bd: 18:e3:98:93:2a:d4:99:e3:cc:e5:4f:f0:ad:f5:a7:40:b8:19: bc:78:ae:b9:59:60:a8:9b:3c:6f:9d:47:b3:48:67:5e:88:04: cc:3a:70:47:57:44:b7:c4:c8:c4:b5:79:76:a3:57:c4:39:90: 22:d1:fa:81:4a:b6:69:81:6e:8b:c1:0b:f2:af:84:28:c4:e5: 45:87:e5:20:f2:86:10:83:a9:03:94:8c:9d:7b:8a:4c:a1:0c: de:bd:31:29 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDdcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA4MjIw ODUyNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJDMTY3OTRCOEM0QUJC QzE2OUE1MDVGMzMyM0E0RDg4M0NDNDA1OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDm8Y88lgMdn/NU5yTitkISsPsClysT2xn2evMnm/ZK70XYS1Zi f+w7wEqOB01ERifxU2rsaEhWS6yPRnZtk9HOTaWrOgISXL+LQHofZ1Hc8N0EVnl2 B2TudsWgGG68mz1f05Wy/pcMAKSH7rNUkRKubvKU6uaHIeiDpAutF2nJmwfh9O2Q 6E6UU5pFdrerkp7DxyLFS9RogwT32QJC2yiNLqX6qJZOp+otaPbkHOGYogM7U7XX /8oxO/ufXeMRsUpaY5qI+laB2o8eIxsZSnBLEXN67uj9xvljeS2GaxP96n+AF/IT 0p24LRk8Kjh1alOasw9gEviPT8nDcnjll58VAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUvBZ5S4xKu8FppQXzMjpNiDzEBZMwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy92Qlo1UzR4S3U4RnBwUVh6TWpw TmlEekVCWk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEcNUw MA0GCSqGSIb3DQEBCwUAA4IBAQCE8miMZfEepOTrHRt1UtvbX9oAon9XoaF0JumK J6hIBdmoLH8lPAozlC4n8zFkhp/f1Tv9ntFswatnHKtEelxKs5kSf1c97ydvQP8f wXz4v4B7MGaZIO8uqDVExm2YN0qHGNSFCiEIuFL9soiYPxQLNHutmIsi/niJjYpL naelMlfrtlqaUHxWFerT6WeDkYpoqgvju4RqesiUPs1peDV+Xr0Y45iTKtSZ48zl T/Ct9adAuBm8eK65WWComzxvnUezSGdeiATMOnBHV0S3xMjEtXl2o1fEOZAi0fqB SrZpgW6LwQvyr4QoxOVFh+Ug8oYQg6kDlIyde4pMoQzevTEp -----END CERTIFICATE-----Generated at Sun Aug 24 07:04:59 2025 by rpki-client