$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/JALGYLJ6AkQm1cvnFYrxD7pcxmk.roa File: JALGYLJ6AkQm1cvnFYrxD7pcxmk.roa (raw, json) Hash identifier: UD75Um7/WTwP/MMP6A6q5U+QUZ29oRGHdrcPpWaOzxE= Subject key identifier: 24:02:C6:60:B2:7A:02:44:26:D5:CB:E7:15:8A:F1:0F:BA:5C:C6:69 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E89 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/JALGYLJ6AkQm1cvnFYrxD7pcxmk.roa Signing time: Fri 22 Aug 2025 09:03:22 +0000 ROA not before: Fri 22 Aug 2025 09:03:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 61.56.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3721 (0xe89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2402C660B27A024426D5CBE7158AF10FBA5CC669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0b:73:d3:90:21:62:97:b5:44:40:e6:b3:f8: 33:4c:21:0a:31:34:40:4f:fc:de:f2:0c:82:7b:4e: 78:d8:77:7d:56:f9:df:f5:81:35:4b:bb:0c:dd:cf: 1d:80:b1:6d:e1:e2:1a:bc:be:7a:9d:25:3c:5f:ed: 6c:99:89:5c:be:6f:dc:10:b6:b4:13:19:55:92:f3: fa:64:c2:b0:51:fd:07:2a:1a:0a:dc:7e:17:56:fa: 33:2c:b7:f4:a2:a5:61:0f:c3:44:d3:b0:66:09:22: 92:1d:1e:02:c5:b8:61:55:b8:8d:dd:2e:00:a4:98: 14:b0:31:2d:5d:93:73:b0:2b:a8:45:d9:25:ea:6e: ba:ea:7e:53:bd:7b:a9:5c:d9:ad:f9:90:c8:f4:17: 6a:57:0b:1a:d2:93:64:7f:36:a8:e8:e7:b1:a2:4a: 33:dd:c2:1b:90:4e:05:25:aa:92:a6:52:79:e5:ec: c9:93:74:d3:0f:0a:a6:04:07:ff:a5:f8:08:60:09: 37:20:b6:5a:35:ae:af:29:ed:32:d5:a8:ef:17:ab: 96:cc:66:9d:ac:25:10:40:56:17:99:bf:45:d9:4d: 3a:c3:67:21:98:b7:12:72:43:66:14:20:e6:e0:34: 57:a9:f4:70:bc:ac:78:a6:c4:b0:b2:f2:16:2d:ed: cb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:02:C6:60:B2:7A:02:44:26:D5:CB:E7:15:8A:F1:0F:BA:5C:C6:69 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/JALGYLJ6AkQm1cvnFYrxD7pcxmk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.64.0/21 Signature Algorithm: sha256WithRSAEncryption 01:88:97:0c:66:71:d2:94:ef:0a:10:09:eb:f3:9c:89:f9:04: 7d:fa:d1:90:19:8e:b6:f8:75:d1:52:bf:5e:2a:40:4d:d1:bc: a2:6d:74:c9:16:99:40:f8:62:e8:f9:1c:ca:d2:29:ce:bd:ee: 54:f1:1e:88:bc:9e:3d:0e:1e:93:21:8f:85:38:55:35:c9:45: 18:33:2e:d6:d1:1f:b0:3f:d4:7a:93:91:a7:7a:77:b3:ca:08: 79:cb:f9:9d:e1:1d:a5:af:ec:d7:60:2e:2b:d8:27:4a:82:d2: 16:e7:28:60:5c:12:48:ce:0f:52:53:4a:00:2c:d7:a7:19:c7: 1b:e1:06:2a:99:e3:62:e2:43:de:10:7e:fd:3b:de:8b:30:89: 15:41:44:1f:8c:37:e1:b6:c5:87:26:74:54:a2:88:63:fc:9a: dc:42:4d:c9:74:c4:59:ff:ac:46:c4:1e:f2:04:7b:54:e9:b9: 18:69:56:22:e2:47:da:01:26:4b:d4:29:80:74:30:6e:47:3e: ac:3f:f3:a6:b7:1a:c3:47:79:67:7e:30:ad:ce:1b:ba:4f:fa: 0a:f6:00:b3:1b:1e:73:48:a6:19:aa:ed:36:a4:d4:b9:ce:f7: ca:8f:ef:c4:6f:e3:91:b4:f2:7d:f8:ac:c7:e7:cf:7a:68:68: fa:6d:55:88 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDokwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI0MDJDNjYwQjI3QTAy NDQyNkQ1Q0JFNzE1OEFGMTBGQkE1Q0M2NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXC3PTkCFil7VEQOaz+DNMIQoxNEBP/N7yDIJ7TnjYd31W+d/1 gTVLuwzdzx2AsW3h4hq8vnqdJTxf7WyZiVy+b9wQtrQTGVWS8/pkwrBR/QcqGgrc fhdW+jMst/SipWEPw0TTsGYJIpIdHgLFuGFVuI3dLgCkmBSwMS1dk3OwK6hF2SXq brrqflO9e6lc2a35kMj0F2pXCxrSk2R/Nqjo57GiSjPdwhuQTgUlqpKmUnnl7MmT dNMPCqYEB/+l+AhgCTcgtlo1rq8p7TLVqO8Xq5bMZp2sJRBAVheZv0XZTTrDZyGY txJyQ2YUIObgNFep9HC8rHimxLCy8hYt7cvxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJALGYLJ6AkQm1cvnFYrxD7pcxmkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0pBTEdZTEo2QWtRbTFjdm5G WXJ4RDdwY3htay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OEAwDQYJKoZIhvcNAQELBQADggEBAAGIlwxmcdKU7woQCevznIn5BH360ZAZjrb4 ddFSv14qQE3RvKJtdMkWmUD4Yuj5HMrSKc697lTxHoi8nj0OHpMhj4U4VTXJRRgz LtbRH7A/1HqTkad6d7PKCHnL+Z3hHaWv7NdgLivYJ0qC0hbnKGBcEkjOD1JTSgAs 16cZxxvhBiqZ42LiQ94Qfv073oswiRVBRB+MN+G2xYcmdFSiiGP8mtxCTcl0xFn/ rEbEHvIEe1TpuRhpViLiR9oBJkvUKYB0MG5HPqw/86a3GsNHeWd+MK3OG7pP+gr2 ALMbHnNIphmq7Tak1LnO98qP78Rv45G08n34rMfnz3poaPptVYg= -----END CERTIFICATE-----Generated at Mon Aug 25 01:26:08 2025 by rpki-client