$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/0WRaL5_FL0gREwobExy15IkSfjA.roa File: 0WRaL5_FL0gREwobExy15IkSfjA.roa (raw, json) Hash identifier: n65rFFtHkeOKbRbhFbsz1Sk1noQJHr7pgfMgN+cU/rk= Subject key identifier: D1:64:5A:2F:9F:C5:2F:48:11:13:0A:1B:13:1C:B5:E4:89:12:7E:30 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 1084 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/0WRaL5_FL0gREwobExy15IkSfjA.roa Signing time: Fri 22 Aug 2025 08:57:51 +0000 ROA not before: Fri 22 Aug 2025 08:57:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24168 IP address blocks: 103.136.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4228 (0x1084) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 22 08:57:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D1645A2F9FC52F4811130A1B131CB5E489127E30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ec:15:6e:4c:88:8a:48:65:ff:b1:6b:0f:f1: ea:b3:a6:f5:b8:5e:5a:76:da:18:e8:f4:e6:08:4b: 64:44:b8:4a:23:20:01:af:a0:7e:20:e1:ae:08:15: 16:6f:c2:90:46:da:90:99:5d:8d:8a:05:19:0f:c2: b1:1b:d2:06:89:8f:7c:08:21:e3:dc:3a:04:4a:de: e4:17:37:d1:a2:85:c0:d0:d1:c4:c7:39:eb:42:d6: 7d:58:a6:41:61:92:4c:2a:fa:c5:be:c0:31:83:bb: 87:78:4c:8c:f2:97:ab:02:4d:5d:68:fe:97:5e:e6: 14:96:a9:ee:f7:2d:55:52:e8:68:ca:c3:bc:0d:db: c2:ea:b4:70:c7:44:22:d4:fd:98:fb:ab:b7:62:ea: ef:7d:d8:61:2d:c1:6f:3d:05:07:57:9a:48:3b:b9: 10:a3:d9:95:52:75:02:13:4d:da:fc:9b:f0:3c:75: e0:ca:8c:24:74:71:83:c2:53:e4:9e:e3:e6:c7:47: 93:94:33:69:b0:49:68:93:aa:ee:16:ea:96:d9:0c: 99:45:d2:9f:21:21:5a:b4:fa:12:74:4b:62:2a:7a: 3a:56:5f:94:49:d0:8a:40:b0:52:46:6b:41:69:8e: a1:0a:51:b6:f9:26:0a:af:c5:7a:be:cc:d2:78:c8: 46:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:64:5A:2F:9F:C5:2F:48:11:13:0A:1B:13:1C:B5:E4:89:12:7E:30 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/0WRaL5_FL0gREwobExy15IkSfjA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption a8:41:d0:fd:b3:8b:e1:3f:17:b0:06:49:73:f7:6b:bf:c9:24: 6b:db:f3:ce:ec:3f:69:4a:89:e6:ed:05:1e:bc:38:6e:aa:29: 14:a5:e6:7f:79:61:e6:ee:17:ea:43:fc:0e:32:04:59:bc:e0: 99:16:23:53:e4:46:ec:11:60:de:d8:78:85:0e:12:67:d0:ac: 25:84:11:27:27:ff:ca:5a:ca:3c:e4:95:b1:dc:bc:7f:9a:81: 66:54:25:15:a2:b0:5f:ce:df:96:a1:0d:1f:bc:76:60:f1:e8: 0d:9f:65:b7:fe:83:f9:88:df:93:af:08:ba:51:72:b9:97:d1: f6:04:b6:74:6f:96:46:20:04:0a:9a:03:16:ee:04:06:0d:07: 41:97:b3:19:30:04:10:f4:f7:1c:ad:e8:97:49:67:b2:9f:93: d3:30:0c:41:65:a5:69:1f:85:6d:33:d1:41:3d:77:42:5d:0a: df:4f:54:b8:ab:d1:16:7f:2b:29:15:ee:77:50:cc:3e:d9:1b: 2d:9e:c5:b4:14:c5:6b:76:34:b6:35:85:5f:ef:e6:87:0f:ab: 5f:8e:2b:cf:dd:f1:fb:c9:26:7d:1d:05:f9:3c:8f:d9:be:08: d2:f0:0d:25:18:d2:f3:8e:d6:fe:cd:65:45:d7:8f:2f:9a:c4: 56:b2:f4:92 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEIQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTA4MjIw ODU3NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQxNjQ1QTJGOUZDNTJG NDgxMTEzMEExQjEzMUNCNUU0ODkxMjdFMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB7BVuTIiKSGX/sWsP8eqzpvW4Xlp22hjo9OYIS2REuEojIAGv oH4g4a4IFRZvwpBG2pCZXY2KBRkPwrEb0gaJj3wIIePcOgRK3uQXN9GihcDQ0cTH OetC1n1YpkFhkkwq+sW+wDGDu4d4TIzyl6sCTV1o/pde5hSWqe73LVVS6GjKw7wN 28LqtHDHRCLU/Zj7q7di6u992GEtwW89BQdXmkg7uRCj2ZVSdQITTdr8m/A8deDK jCR0cYPCU+Se4+bHR5OUM2mwSWiTqu4W6pbZDJlF0p8hIVq0+hJ0S2IqejpWX5RJ 0IpAsFJGa0FpjqEKUbb5JgqvxXq+zNJ4yEZpAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU0WRaL5/FL0gREwobExy15IkSfjAwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzBXUmFMNV9GTDBnUkV3b2JFeHkxNUlr U2ZqQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ KoZIhvcNAQELBQADggEBAKhB0P2zi+E/F7AGSXP3a7/JJGvb887sP2lKiebtBR68 OG6qKRSl5n95YebuF+pD/A4yBFm84JkWI1PkRuwRYN7YeIUOEmfQrCWEEScn/8pa yjzklbHcvH+agWZUJRWisF/O35ahDR+8dmDx6A2fZbf+g/mI35OvCLpRcrmX0fYE tnRvlkYgBAqaAxbuBAYNB0GXsxkwBBD09xyt6JdJZ7Kfk9MwDEFlpWkfhW0z0UE9 d0JdCt9PVLir0RZ/KykV7ndQzD7ZGy2exbQUxWt2NLY1hV/v5ocPq1+OK8/d8fvJ Jn0dBfk8j9m+CNLwDSUY0vOO1v7NZUXXjy+axFay9JI= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:08 2025 by rpki-client