$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/FcedMacqkhBbyS1PYTJvRVdQhYg.roa File: FcedMacqkhBbyS1PYTJvRVdQhYg.roa (raw, json) Hash identifier: vBJzxVCDJ4wt08gTBp7CULYwB8Oj8RCKXlBRkt7xWCA= Subject key identifier: 15:C7:9D:31:A7:2A:92:10:5B:C9:2D:4F:61:32:6F:45:57:50:85:88 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E7A Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/FcedMacqkhBbyS1PYTJvRVdQhYg.roa Signing time: Fri 22 Aug 2025 09:03:18 +0000 ROA not before: Fri 22 Aug 2025 09:03:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 61.247.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3706 (0xe7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=15C79D31A72A92105BC92D4F61326F4557508588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:25:15:4d:98:91:a5:60:bc:4f:64:6d:17:14: b6:80:b7:21:88:43:8d:da:5d:e2:a5:23:37:da:a2: 76:c5:38:d2:e4:08:f4:8b:2c:56:c0:ac:9d:1c:ee: 72:06:6f:2b:f8:82:28:27:c7:18:93:ee:50:bd:cb: 56:70:f6:ba:55:28:ca:1a:ea:18:bd:6b:b9:e8:2f: 1c:63:59:01:28:db:5f:00:10:0e:0f:ad:bc:5e:44: ac:e4:3e:b0:06:cd:3f:b8:95:e4:9d:dd:03:5d:61: 7d:b3:30:53:d6:b7:e6:9d:50:68:0d:c6:33:0a:0c: 9e:1d:99:46:34:dc:01:b1:45:f2:4b:aa:17:6c:03: 20:52:e3:33:c9:50:be:98:00:70:ca:44:b3:af:85: 68:55:29:12:18:3b:57:d7:a2:24:87:8b:26:98:99: ef:a4:bd:f8:6a:f7:46:6c:c6:39:12:34:1d:4c:8e: 1f:72:ff:fc:4d:9f:28:b1:25:2f:eb:ed:30:9a:78: ff:1f:af:13:25:02:56:0b:0e:8e:9a:1c:db:ea:b0: c0:e2:28:af:e7:36:96:f4:1b:81:da:62:f9:31:98: ee:b7:ff:31:36:9d:62:68:85:5c:31:7e:1a:31:80: 15:91:42:de:bb:6d:99:7d:e1:23:81:22:3a:13:20: c6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C7:9D:31:A7:2A:92:10:5B:C9:2D:4F:61:32:6F:45:57:50:85:88 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/FcedMacqkhBbyS1PYTJvRVdQhYg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.247.160.0/20 Signature Algorithm: sha256WithRSAEncryption 2d:00:84:5d:64:33:5f:38:3e:6b:fe:40:40:eb:1f:2f:d1:48: f2:e7:0a:43:dc:df:17:ca:17:14:b6:6f:74:fe:0a:17:c6:65: 17:8b:e2:48:e4:cc:94:68:6d:b8:1c:61:98:28:b0:0b:31:bd: 65:f9:bc:8d:88:dc:23:51:c0:26:39:0f:58:35:68:d1:be:f9: fe:27:9c:78:a1:13:a8:bf:ad:97:e7:b0:97:c2:08:bd:af:4e: 19:13:cb:34:e9:e6:41:4c:52:bc:04:d2:db:f0:08:44:3e:d2: 25:4a:af:0c:5a:4b:52:aa:9d:ac:38:5f:de:5b:76:d3:c9:57: ab:02:fa:da:a6:db:25:9c:4f:2a:54:a3:7b:e0:d6:80:b9:8c: ef:3b:c7:62:ea:a5:54:5d:ba:9d:dc:17:a6:97:9f:7a:20:6b: 81:30:61:dc:d7:c0:0d:4a:26:e9:a4:80:2d:c3:c1:ba:9b:cc: 77:fe:26:83:f3:7f:bf:92:13:50:d5:39:ca:0a:b9:9c:4f:74: a9:cb:94:cc:1a:f9:cb:6e:26:e3:8b:ac:d0:c4:41:42:0b:d6: 25:c9:e3:a3:76:33:dd:af:72:f3:87:62:7f:86:a0:ee:b5:08: ce:fd:e0:e4:9c:9f:86:56:80:0e:c5:b3:f5:f5:8b:47:6b:d8: 22:61:9d:32 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE1Qzc5RDMxQTcyQTky MTA1QkM5MkQ0RjYxMzI2RjQ1NTc1MDg1ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJJRVNmJGlYLxPZG0XFLaAtyGIQ43aXeKlIzfaonbFONLkCPSL LFbArJ0c7nIGbyv4gignxxiT7lC9y1Zw9rpVKMoa6hi9a7noLxxjWQEo218AEA4P rbxeRKzkPrAGzT+4leSd3QNdYX2zMFPWt+adUGgNxjMKDJ4dmUY03AGxRfJLqhds AyBS4zPJUL6YAHDKRLOvhWhVKRIYO1fXoiSHiyaYme+kvfhq90ZsxjkSNB1Mjh9y //xNnyixJS/r7TCaeP8frxMlAlYLDo6aHNvqsMDiKK/nNpb0G4HaYvkxmO63/zE2 nWJohVwxfhoxgBWRQt67bZl94SOBIjoTIMbfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFcedMacqkhBbyS1PYTJvRVdQhYgwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0ZjZWRNYWNxa2hCYnlTMVBZ VEp2UlZkUWhZZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 96AwDQYJKoZIhvcNAQELBQADggEBAC0AhF1kM184Pmv+QEDrHy/RSPLnCkPc3xfK FxS2b3T+ChfGZReL4kjkzJRobbgcYZgosAsxvWX5vI2I3CNRwCY5D1g1aNG++f4n nHihE6i/rZfnsJfCCL2vThkTyzTp5kFMUrwE0tvwCEQ+0iVKrwxaS1Kqnaw4X95b dtPJV6sC+tqm2yWcTypUo3vg1oC5jO87x2LqpVRdup3cF6aXn3oga4EwYdzXwA1K JumkgC3DwbqbzHf+JoPzf7+SE1DVOcoKuZxPdKnLlMwa+ctuJuOLrNDEQUIL1iXJ 46N2M92vcvOHYn+GoO61CM794OScn4ZWgA7Fs/X1i0dr2CJhnTI= -----END CERTIFICATE-----Generated at Mon Aug 25 01:23:31 2025 by rpki-client