$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/43I79_TjHFmrCPknJkHL79ndk2w.roa File: 43I79_TjHFmrCPknJkHL79ndk2w.roa (raw, json) Hash identifier: 1PdHBu05RcWVsts+6smHqKkMzUMSg3V8Gf+CQT2V/ks= Subject key identifier: E3:72:3B:F7:F4:E3:1C:59:AB:08:F9:27:26:41:CB:EF:D9:DD:93:6C Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E79 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/43I79_TjHFmrCPknJkHL79ndk2w.roa Signing time: Fri 22 Aug 2025 09:03:18 +0000 ROA not before: Fri 22 Aug 2025 09:03:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 61.56.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3705 (0xe79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E3723BF7F4E31C59AB08F9272641CBEFD9DD936C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4f:ed:33:be:0b:6f:18:b3:95:a5:f5:92:3d: 34:e7:5a:96:fe:a2:25:2a:d5:b3:9e:44:b4:e0:85: c1:5a:0d:42:e2:8e:f8:df:43:94:03:37:8d:59:36: ff:a9:76:9e:bb:a3:c6:9a:f2:1f:96:3a:db:bf:8c: 2c:54:d5:d2:62:18:64:e6:46:67:e2:c8:0e:6e:0f: 58:c1:1a:23:36:38:fc:a6:32:9f:d3:e6:40:c5:80: de:cf:4a:8a:1b:ce:93:82:4f:6a:67:72:d8:45:8f: 9c:ae:3f:53:f4:0b:57:1d:db:ea:e1:06:fd:24:29: 75:f0:40:ba:1c:49:cf:df:dd:a5:3d:8a:c7:7f:dc: 1f:a1:d0:9c:4e:67:cc:84:ae:3f:20:f2:eb:e9:98: cc:7b:b0:2c:5e:a9:b7:32:d9:e0:a5:73:cf:14:38: d8:0b:bb:ad:c8:14:bf:e4:30:74:c9:cd:83:37:30: f4:18:12:2c:4f:21:ad:8d:43:13:21:93:de:e8:83: d7:6a:4a:3e:6e:2c:d2:fc:92:54:1a:e2:e5:2b:d3: 29:af:e0:8a:fa:d5:b7:c9:1b:73:58:f7:0a:b3:fe: f1:20:5a:e4:8c:9e:98:a8:44:ca:0d:70:02:11:18: 8c:93:e7:5f:2e:91:72:8e:7b:5c:d5:36:ad:eb:30: 38:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:72:3B:F7:F4:E3:1C:59:AB:08:F9:27:26:41:CB:EF:D9:DD:93:6C X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/43I79_TjHFmrCPknJkHL79ndk2w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.72.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:ce:41:ce:76:9f:16:3b:f1:b9:84:86:99:7f:c3:3a:38:39: a7:01:66:02:7a:f2:78:ce:85:e4:04:c6:44:79:ec:b7:c2:16: 5b:8c:2e:10:14:a1:c0:46:39:c5:2a:c5:92:8f:3d:a2:fd:4d: 84:ed:c2:53:57:42:1f:fc:d4:4f:6e:65:2f:1f:1c:06:57:bd: e5:5f:aa:6d:8b:0a:a5:0a:26:18:f2:a2:e9:30:dd:bc:26:98: d0:b5:7d:84:92:e5:7f:15:3d:91:29:27:56:24:65:d5:44:bf: f6:c6:73:c9:a0:41:61:47:65:2e:d5:4c:16:3b:be:b4:66:a2: d8:1f:f4:aa:1b:5f:15:7e:f2:eb:53:c4:0a:91:47:9c:60:d6: bb:de:25:4b:14:23:d1:20:2c:ff:b1:51:6f:a1:cd:d3:b0:75: 6d:6f:61:e1:a4:eb:68:3d:2c:14:c7:c6:81:6d:af:19:2a:87: 28:56:5d:9a:a5:6c:61:c8:b1:95:c4:72:22:62:e0:10:c5:c2: 3a:c6:e4:ab:77:11:07:24:9f:10:df:62:50:27:61:43:64:4d: b1:05:b5:d1:b4:9c:eb:a0:09:fc:41:8c:9e:db:3e:69:33:cf: a0:9f:60:0c:62:c2:e9:cd:fd:98:b5:a0:e6:51:06:ee:58:cc: 5e:fa:42:18 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDnkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzNzIzQkY3RjRFMzFD NTlBQjA4RjkyNzI2NDFDQkVGRDlERDkzNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9T+0zvgtvGLOVpfWSPTTnWpb+oiUq1bOeRLTghcFaDULijvjf Q5QDN41ZNv+pdp67o8aa8h+WOtu/jCxU1dJiGGTmRmfiyA5uD1jBGiM2OPymMp/T 5kDFgN7PSoobzpOCT2pncthFj5yuP1P0C1cd2+rhBv0kKXXwQLocSc/f3aU9isd/ 3B+h0JxOZ8yErj8g8uvpmMx7sCxeqbcy2eClc88UONgLu63IFL/kMHTJzYM3MPQY EixPIa2NQxMhk97og9dqSj5uLNL8klQa4uUr0ymv4Ir61bfJG3NY9wqz/vEgWuSM npioRMoNcAIRGIyT518ukXKOe1zVNq3rMDhpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU43I79/TjHFmrCPknJkHL79ndk2wwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzQzSTc5X1RqSEZtckNQa25K a0hMNzluZGsydy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OEgwDQYJKoZIhvcNAQELBQADggEBAD7OQc52nxY78bmEhpl/wzo4OacBZgJ68njO heQExkR57LfCFluMLhAUocBGOcUqxZKPPaL9TYTtwlNXQh/81E9uZS8fHAZXveVf qm2LCqUKJhjyoukw3bwmmNC1fYSS5X8VPZEpJ1YkZdVEv/bGc8mgQWFHZS7VTBY7 vrRmotgf9KobXxV+8utTxAqRR5xg1rveJUsUI9EgLP+xUW+hzdOwdW1vYeGk62g9 LBTHxoFtrxkqhyhWXZqlbGHIsZXEciJi4BDFwjrG5Kt3EQcknxDfYlAnYUNkTbEF tdG0nOugCfxBjJ7bPmkzz6CfYAxiwunN/Zi1oOZRBu5YzF76Qhg= -----END CERTIFICATE-----Generated at Mon Aug 25 01:31:39 2025 by rpki-client