$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Fm3UnLOSh9pEq1nV6cWq47DlUMw.roa File: Fm3UnLOSh9pEq1nV6cWq47DlUMw.roa (raw, json) Hash identifier: fCaW7SXraNQ+h8aZc+TUQlbj2RJ07exodqkzUlKZqB8= Subject key identifier: 16:6D:D4:9C:B3:92:87:DA:44:AB:59:D5:E9:C5:AA:E3:B0:E5:50:CC Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E86 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Fm3UnLOSh9pEq1nV6cWq47DlUMw.roa Signing time: Fri 22 Aug 2025 09:03:21 +0000 ROA not before: Fri 22 Aug 2025 09:03:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 61.56.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3718 (0xe86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=166DD49CB39287DA44AB59D5E9C5AAE3B0E550CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:93:d7:6e:4c:67:86:f6:b3:0e:03:50:61: e7:62:cb:e3:11:3d:cd:d9:16:9b:24:10:d6:72:6d: ed:e4:79:d7:89:50:d5:60:a2:4b:29:b8:91:5d:17: 8a:f1:fd:f6:e8:ac:54:92:59:a0:94:9c:3f:bb:b2: 0d:75:c3:ba:26:2b:57:dc:ed:cc:e1:08:d8:4c:fc: 68:a2:dd:37:5d:b5:a8:60:16:43:55:17:90:5a:74: a7:8d:78:5a:fb:6c:44:5b:47:bd:6d:0d:a6:bc:90: b0:a2:d3:97:fc:5d:18:4d:89:ed:48:95:df:f6:af: b6:c8:f1:6f:3e:e6:34:8e:f8:2b:91:4f:63:10:7f: 98:d5:55:48:04:b3:b4:1a:29:97:62:8f:f2:07:10: 98:41:84:7b:8d:2e:4e:49:f6:94:45:d7:d3:f3:ae: e4:54:a7:97:37:c4:c2:7d:ae:b5:24:81:65:a0:4c: 98:56:ed:52:f0:1a:f9:2d:c4:11:96:ec:67:8d:84: 48:6d:d6:d5:45:f6:16:e2:b5:56:71:b0:06:4e:6c: 34:9e:73:09:14:ce:82:be:84:87:3b:a8:2f:ec:00: a8:de:09:fc:1d:3c:f6:7c:a2:48:01:f6:f9:c6:78: 2e:11:f6:0b:1c:37:e1:21:7c:00:61:a5:92:52:84: 48:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:6D:D4:9C:B3:92:87:DA:44:AB:59:D5:E9:C5:AA:E3:B0:E5:50:CC X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Fm3UnLOSh9pEq1nV6cWq47DlUMw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/21 Signature Algorithm: sha256WithRSAEncryption 30:78:0a:22:2f:01:25:8f:05:3e:03:37:67:4b:91:28:69:57: ca:ea:cf:77:5a:16:06:0c:ae:25:ca:77:aa:2e:2a:de:fa:84: 64:26:95:79:31:82:8f:87:4f:a8:d2:3b:2a:1e:35:83:8d:24: 29:67:40:46:08:84:97:f0:5b:7a:fc:0e:68:6a:fd:30:a1:7a: f7:aa:a5:5a:eb:60:e5:f9:fc:49:e1:f9:52:8d:d2:dc:80:48: b1:98:d9:d7:cc:8f:fa:1c:dd:10:e2:84:b7:d2:0c:dc:b5:20: 63:82:87:08:58:e9:de:a3:17:e2:e8:9a:ba:a5:79:c5:7d:1e: 36:9f:b6:4c:17:5c:79:9c:8b:16:76:e5:53:5c:7a:67:06:fa: 1d:cb:9d:09:49:87:82:e1:45:c4:8a:07:7b:76:7a:5c:a3:61: 93:c7:95:72:1e:9a:de:a6:1c:f9:54:0d:1c:66:bc:53:64:f6: 9f:42:4f:3d:da:4c:b0:1a:fb:12:da:a2:68:2f:27:75:3c:20: 2c:38:df:8f:58:02:c1:8f:5d:a0:e7:39:0b:b4:4b:cc:b8:99: 58:8b:b8:30:1a:25:cc:35:67:64:3b:91:97:d2:9f:44:a6:70: 44:60:18:12:a1:78:99:45:b7:12:c5:74:d6:1b:59:ba:f3:ca: ee:b3:98:77 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE2NkRENDlDQjM5Mjg3 REE0NEFCNTlENUU5QzVBQUUzQjBFNTUwQ0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEl5PXbkxnhvazDgNQYediy+MRPc3ZFpskENZybe3kedeJUNVg okspuJFdF4rx/fborFSSWaCUnD+7sg11w7omK1fc7czhCNhM/Gii3TddtahgFkNV F5BadKeNeFr7bERbR71tDaa8kLCi05f8XRhNie1Ild/2r7bI8W8+5jSO+CuRT2MQ f5jVVUgEs7QaKZdij/IHEJhBhHuNLk5J9pRF19PzruRUp5c3xMJ9rrUkgWWgTJhW 7VLwGvktxBGW7GeNhEht1tVF9hbitVZxsAZObDSecwkUzoK+hIc7qC/sAKjeCfwd PPZ8okgB9vnGeC4R9gscN+EhfABhpZJShEhpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFm3UnLOSh9pEq1nV6cWq47DlUMwwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0ZtM1VuTE9TaDlwRXExblY2 Y1dxNDdEbFVNdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OFAwDQYJKoZIhvcNAQELBQADggEBADB4CiIvASWPBT4DN2dLkShpV8rqz3daFgYM riXKd6ouKt76hGQmlXkxgo+HT6jSOyoeNYONJClnQEYIhJfwW3r8Dmhq/TCheveq pVrrYOX5/Enh+VKN0tyASLGY2dfMj/oc3RDihLfSDNy1IGOChwhY6d6jF+Lomrql ecV9HjaftkwXXHmcixZ25VNcemcG+h3LnQlJh4LhRcSKB3t2elyjYZPHlXIemt6m HPlUDRxmvFNk9p9CTz3aTLAa+xLaomgvJ3U8ICw4349YAsGPXaDnOQu0S8y4mViL uDAaJcw1Z2Q7kZfSn0SmcERgGBKheJlFtxLFdNYbWbrzyu6zmHc= -----END CERTIFICATE-----Generated at Mon Aug 25 01:23:32 2025 by rpki-client