$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/LcWPkmCL2XtdWIqK6c9_WjS6mEo.roa File: LcWPkmCL2XtdWIqK6c9_WjS6mEo.roa (raw, json) Hash identifier: CWi3rnSOMsQ8Cc+LR82nyN+ZkWegfF0zchJcakqAxmY= Subject key identifier: 2D:C5:8F:92:60:8B:D9:7B:5D:58:8A:8A:E9:CF:7F:5A:34:BA:98:4A Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E87 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/LcWPkmCL2XtdWIqK6c9_WjS6mEo.roa Signing time: Fri 22 Aug 2025 09:03:21 +0000 ROA not before: Fri 22 Aug 2025 09:03:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 210.67.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3719 (0xe87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2DC58F92608BD97B5D588A8AE9CF7F5A34BA984A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:25:82:76:6e:df:66:c8:55:b2:45:12:b0:1b: 94:02:90:58:39:5e:c5:de:f1:55:a6:5f:d7:15:69: 05:ff:81:9b:8a:96:21:46:fe:ca:bf:68:e8:12:82: 65:3e:fe:5e:34:6e:e2:c7:35:1c:a2:cc:d3:de:2a: 1b:41:82:17:71:2e:fa:15:57:b0:3f:66:13:15:fd: b6:80:80:d3:5b:1c:1b:ab:a4:68:7f:51:a0:b4:ae: 6d:d1:07:72:65:51:6b:01:08:6b:3e:bd:68:de:bb: be:ff:e1:b8:16:cc:91:38:4b:b8:64:5b:f0:e1:a4: 34:93:7c:f7:92:92:a3:3a:36:02:28:70:62:71:fa: bf:9e:00:f9:da:1f:f9:25:5e:29:98:88:71:58:6f: 41:fa:22:d9:f5:62:92:1c:9c:60:2c:44:6c:d7:70: c0:2b:b2:dd:b5:0b:0a:d9:4a:ed:36:95:e1:df:cb: c5:23:2f:b9:74:65:7e:d4:9a:67:39:07:99:0e:10: 33:7e:22:34:7d:45:40:db:92:f1:09:87:10:bb:ec: 96:c9:13:dc:9e:74:6c:1b:af:b4:17:e8:6f:b0:8a: 1f:9c:ba:1b:1f:ca:d8:8a:69:e1:21:79:db:80:53: aa:eb:5b:f1:8d:1e:b1:46:3b:18:7e:c1:7d:c2:fe: b7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C5:8F:92:60:8B:D9:7B:5D:58:8A:8A:E9:CF:7F:5A:34:BA:98:4A X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/LcWPkmCL2XtdWIqK6c9_WjS6mEo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.96.0/20 Signature Algorithm: sha256WithRSAEncryption a8:07:df:a9:7d:fa:5a:ca:57:dd:75:b5:12:b8:03:b1:ed:34: 65:94:42:97:59:03:fa:18:e4:75:9f:f2:2f:c6:32:2b:84:44: 4f:07:58:12:46:ba:70:03:41:e7:75:62:c1:f5:df:bb:3f:4d: e9:c2:21:c5:23:57:e2:56:ca:98:5d:43:d9:01:6f:fc:7b:87: 2f:a7:1b:12:c8:fe:ad:89:2d:07:5d:3a:e0:83:6c:10:2c:50: 56:a9:c8:65:0e:a2:80:d2:90:7b:58:46:de:33:04:b4:03:eb: d4:c4:ee:02:d3:21:7d:69:b2:e9:82:92:ac:c4:7a:0a:ac:5f: 83:de:7d:6e:a9:fc:3e:6c:63:66:6f:7c:da:6a:0b:d9:86:ea: 08:df:6c:34:9d:ee:29:89:7a:21:3a:67:bb:df:fe:e5:b5:72: 8f:bd:9b:19:c9:25:85:bb:6d:a4:20:01:6a:3b:07:71:03:9e: b5:c8:38:1e:15:4b:ee:e8:b4:3b:1b:52:00:fc:78:d7:60:d6: 62:0c:d3:80:8f:69:11:1b:80:6a:4a:b1:fb:c2:fc:ac:b8:bf: 5a:38:f9:f5:12:72:30:7c:03:3c:20:9a:c0:9f:19:84:54:58: 1a:d5:63:f4:d0:43:0b:04:dd:be:e5:55:f5:3b:fe:72:f7:85: 0b:32:5d:b3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJEQzU4RjkyNjA4QkQ5 N0I1RDU4OEE4QUU5Q0Y3RjVBMzRCQTk4NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuJYJ2bt9myFWyRRKwG5QCkFg5XsXe8VWmX9cVaQX/gZuKliFG /sq/aOgSgmU+/l40buLHNRyizNPeKhtBghdxLvoVV7A/ZhMV/baAgNNbHBurpGh/ UaC0rm3RB3JlUWsBCGs+vWjeu77/4bgWzJE4S7hkW/DhpDSTfPeSkqM6NgIocGJx +r+eAPnaH/klXimYiHFYb0H6Itn1YpIcnGAsRGzXcMArst21CwrZSu02leHfy8Uj L7l0ZX7Ummc5B5kOEDN+IjR9RUDbkvEJhxC77JbJE9yedGwbr7QX6G+wih+cuhsf ytiKaeEheduAU6rrW/GNHrFGOxh+wX3C/rf1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULcWPkmCL2XtdWIqK6c9/WjS6mEowHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0xjV1BrbUNMMlh0ZFdJcUs2 YzlfV2pTNm1Fby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATS Q2AwDQYJKoZIhvcNAQELBQADggEBAKgH36l9+lrKV911tRK4A7HtNGWUQpdZA/oY 5HWf8i/GMiuERE8HWBJGunADQed1YsH137s/TenCIcUjV+JWyphdQ9kBb/x7hy+n GxLI/q2JLQddOuCDbBAsUFapyGUOooDSkHtYRt4zBLQD69TE7gLTIX1psumCkqzE egqsX4PefW6p/D5sY2ZvfNpqC9mG6gjfbDSd7imJeiE6Z7vf/uW1co+9mxnJJYW7 baQgAWo7B3EDnrXIOB4VS+7otDsbUgD8eNdg1mIM04CPaREbgGpKsfvC/Ky4v1o4 +fUScjB8AzwgmsCfGYRUWBrVY/TQQwsE3b7lVfU7/nL3hQsyXbM= -----END CERTIFICATE-----Generated at Mon Aug 25 01:26:08 2025 by rpki-client