$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/5aHYpROCZEo9wIYQihJ7XzNxzt0.roa File: 5aHYpROCZEo9wIYQihJ7XzNxzt0.roa (raw, json) Hash identifier: ajGK1utJ6Ajn8r4oRaNOl5iDEmMGXofU/HXago00M2Q= Subject key identifier: E5:A1:D8:A5:13:82:64:4A:3D:C0:86:10:8A:12:7B:5F:33:71:CE:DD Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E8E Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/5aHYpROCZEo9wIYQihJ7XzNxzt0.roa Signing time: Fri 22 Aug 2025 09:03:22 +0000 ROA not before: Fri 22 Aug 2025 09:03:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 61.56.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3726 (0xe8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E5A1D8A51382644A3DC086108A127B5F3371CEDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:63:01:31:48:d9:47:2f:90:f4:07:62:70:06: 48:4b:29:d9:20:d2:a0:7b:6b:79:44:21:85:dd:5e: 70:a1:48:e3:77:ca:ef:5d:6a:93:a7:81:81:47:2a: ef:0f:9d:19:00:14:0b:6a:1f:fe:79:85:c2:38:6c: 91:5b:8e:24:76:f8:f7:22:f0:41:3d:d9:6b:58:e7: 16:33:f6:8b:5a:b3:77:e0:96:5a:ae:ba:b3:2f:0b: 65:d8:af:bb:cb:15:02:b9:ae:79:1c:b0:aa:46:e5: 42:18:b2:d2:41:af:af:9b:65:fe:ba:91:f0:60:7a: c1:64:f9:5d:8d:b3:c1:8d:41:f5:20:1a:4c:5b:05: 22:03:6a:0d:ef:38:c5:35:57:44:05:01:5c:87:dc: b0:de:01:12:23:89:c4:cf:32:19:d4:6d:61:85:5f: 4f:9b:3a:56:0c:27:62:72:15:5a:2d:0b:6d:62:e8: ad:e7:16:7d:b9:26:9f:83:88:e7:1f:d3:3e:b6:df: 7b:d6:24:52:eb:55:59:04:a6:de:1e:9c:00:25:0b: 08:77:52:be:e2:7e:d7:d1:e3:55:3a:a5:6d:47:ea: 36:46:63:6e:0a:71:22:10:47:ce:ca:da:cc:36:ce: e5:be:2c:9c:32:cf:9b:99:76:77:6e:d8:31:ef:5a: c8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A1:D8:A5:13:82:64:4A:3D:C0:86:10:8A:12:7B:5F:33:71:CE:DD X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/5aHYpROCZEo9wIYQihJ7XzNxzt0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.65.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:fc:e7:84:01:63:37:e6:e1:a9:e7:c5:df:c9:ec:ff:5c:63: 1e:14:82:2a:49:98:44:68:66:e7:4d:48:11:69:bb:21:f6:9b: 5b:d2:e1:23:78:f7:f7:7b:b1:3a:99:23:42:50:39:03:a0:f0: 1e:36:82:08:1f:74:66:38:4c:b0:63:52:39:3d:f4:15:15:e0: 52:33:6f:f0:88:a4:21:8a:cf:84:e0:68:22:b0:17:12:a5:37: a7:55:f1:99:fb:a0:1a:bc:2a:7d:7c:a9:e7:62:65:03:da:01: 29:b3:20:b0:77:50:03:68:37:dc:e7:1b:17:70:14:43:f3:73: 85:42:b3:eb:c3:77:23:f6:27:53:0c:73:cd:f5:dc:cc:87:26: 52:9e:59:7b:00:3a:42:70:65:52:96:57:4c:ff:d8:b1:3f:3b: b3:dc:3d:07:1a:19:f9:f4:75:42:27:84:c1:67:36:82:e4:00: 6b:5a:e1:40:33:66:39:71:3f:60:64:6e:37:53:36:3b:90:40: c4:5c:a7:23:5f:eb:ec:d9:64:b9:80:c0:81:8e:5e:f5:f2:d5: e1:21:50:78:e0:0d:0f:4b:71:36:3d:94:72:f7:20:42:05:ef: 1a:d3:5f:d1:9c:57:64:85:27:1e:2b:1f:4e:5d:bb:f1:dc:fb: db:9e:b6:1b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDo4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU1QTFEOEE1MTM4MjY0 NEEzREMwODYxMDhBMTI3QjVGMzM3MUNFREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBYwExSNlHL5D0B2JwBkhLKdkg0qB7a3lEIYXdXnChSON3yu9d apOngYFHKu8PnRkAFAtqH/55hcI4bJFbjiR2+Pci8EE92WtY5xYz9otas3fgllqu urMvC2XYr7vLFQK5rnkcsKpG5UIYstJBr6+bZf66kfBgesFk+V2Ns8GNQfUgGkxb BSIDag3vOMU1V0QFAVyH3LDeARIjicTPMhnUbWGFX0+bOlYMJ2JyFVotC21i6K3n Fn25Jp+DiOcf0z6233vWJFLrVVkEpt4enAAlCwh3Ur7iftfR41U6pW1H6jZGY24K cSIQR87K2sw2zuW+LJwyz5uZdndu2DHvWsjBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5aHYpROCZEo9wIYQihJ7XzNxzt0wHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzVhSFlwUk9DWkVvOXdJWVFp aEo3WHpOeHp0MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 OEEwDQYJKoZIhvcNAQELBQADggEBAD/854QBYzfm4annxd/J7P9cYx4UgipJmERo ZudNSBFpuyH2m1vS4SN49/d7sTqZI0JQOQOg8B42gggfdGY4TLBjUjk99BUV4FIz b/CIpCGKz4TgaCKwFxKlN6dV8Zn7oBq8Kn18qediZQPaASmzILB3UANoN9znGxdw FEPzc4VCs+vDdyP2J1MMc8313MyHJlKeWXsAOkJwZVKWV0z/2LE/O7PcPQcaGfn0 dUInhMFnNoLkAGta4UAzZjlxP2BkbjdTNjuQQMRcpyNf6+zZZLmAwIGOXvXy1eEh UHjgDQ9LcTY9lHL3IEIF7xrTX9GcV2SFJx4rH05du/Hc+9ueths= -----END CERTIFICATE-----Generated at Mon Aug 25 01:34:03 2025 by rpki-client