$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Z3xz7_XuLtI_lblK3Qp6gIifkm4.roa File: Z3xz7_XuLtI_lblK3Qp6gIifkm4.roa (raw, json) Hash identifier: eEufI3ANbY20kdd3iNz5gieHEFF2MH/bVbLVPYRi/DA= Subject key identifier: 67:7C:73:EF:F5:EE:2E:D2:3F:95:B9:4A:DD:0A:7A:80:88:9F:92:6E Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E77 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Z3xz7_XuLtI_lblK3Qp6gIifkm4.roa Signing time: Fri 22 Aug 2025 09:03:17 +0000 ROA not before: Fri 22 Aug 2025 09:03:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 2403:ee00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3703 (0xe77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=677C73EFF5EE2ED23F95B94ADD0A7A80889F926E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1a:bb:87:23:d6:b8:e1:29:49:de:5b:ba:3c: 03:7b:6e:cd:6d:1a:19:a6:b2:2c:7a:7e:f6:a8:85: de:2c:c6:7c:70:0e:bc:f2:74:1e:10:d9:f6:45:95: d0:2c:11:c3:37:7a:b5:c0:71:7b:5c:e7:cf:56:cf: d8:bb:b2:d8:c9:c0:65:e7:32:8b:bf:a0:fd:dd:8f: 7b:ae:db:74:d9:af:07:94:79:53:f2:f1:b4:31:37: 54:ad:f3:87:19:70:ed:51:a4:14:b1:a9:e7:b8:94: dc:86:84:06:cb:33:5a:9e:4f:51:f8:b4:63:1e:09: 90:08:3f:d4:a3:d0:2a:85:05:52:10:0e:7c:e9:04: 55:6a:51:13:f9:5e:11:9f:d9:98:dd:85:de:1d:01: 4c:41:07:89:79:d0:b3:50:4b:87:22:75:8e:83:c4: bc:a0:fd:4f:56:00:ba:75:99:e4:f6:22:bb:98:d8: 7b:a8:ac:9e:be:7d:e2:d3:0f:d7:3e:48:c0:b6:03: 9c:91:b2:cc:78:5d:a1:e8:93:23:0f:a2:21:72:e5: 31:5f:08:57:28:41:76:27:87:ec:d6:75:6c:e8:44: 20:ae:f9:58:35:8e:93:ca:a6:52:46:d3:d7:0d:48: a4:51:ba:ef:03:ff:db:a0:b8:18:3a:94:62:eb:be: e9:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:7C:73:EF:F5:EE:2E:D2:3F:95:B9:4A:DD:0A:7A:80:88:9F:92:6E X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Z3xz7_XuLtI_lblK3Qp6gIifkm4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:ee00::/32 Signature Algorithm: sha256WithRSAEncryption 51:6c:e1:04:25:c3:69:f2:ba:08:31:79:4f:f4:20:a6:93:92: b9:df:a3:a5:11:37:d1:22:fe:ed:e6:9a:82:ac:6c:46:3f:c8: e5:27:3a:24:da:17:69:13:49:bc:30:c1:8d:a7:99:ee:11:5a: ee:44:35:75:e7:e5:53:d8:02:08:c7:46:fb:53:1f:b8:11:95: dc:86:93:ee:c0:c3:0e:f4:25:10:04:b7:59:1c:55:be:4d:bc: 59:19:e3:3b:27:bf:7d:70:f1:f9:9c:bd:39:72:0a:f1:37:e7: 99:62:9f:71:6e:f9:5c:37:e8:97:7d:0a:ba:6b:85:9e:bc:a3: bd:63:02:2a:de:a7:f4:aa:fa:b3:a4:33:5d:0b:0d:d2:46:a9: 93:8a:b9:a9:ce:78:d1:5e:c1:39:f3:06:03:d2:84:13:11:64: 30:b5:e6:6b:17:6a:67:0e:93:17:e1:73:05:93:bc:47:f2:7c: d0:50:c1:55:8a:f4:40:bb:a3:aa:7b:a4:93:c7:9f:9c:0f:3f: e8:fe:ac:86:b9:09:9c:a8:ab:a0:bb:99:f3:ba:96:f7:99:d7: 27:61:7d:23:1b:2a:72:0e:1f:81:47:bb:e2:71:9a:e5:70:11: 03:9b:fa:b2:3f:c3:ad:7e:0d:3c:f1:38:60:ab:d0:8a:bd:5c: 62:b4:5e:88 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDncwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY3N0M3M0VGRjVFRTJF RDIzRjk1Qjk0QUREMEE3QTgwODg5RjkyNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAGruHI9a44SlJ3lu6PAN7bs1tGhmmsix6fvaohd4sxnxwDrzy dB4Q2fZFldAsEcM3erXAcXtc589Wz9i7stjJwGXnMou/oP3dj3uu23TZrweUeVPy 8bQxN1St84cZcO1RpBSxqee4lNyGhAbLM1qeT1H4tGMeCZAIP9Sj0CqFBVIQDnzp BFVqURP5XhGf2Zjdhd4dAUxBB4l50LNQS4cidY6DxLyg/U9WALp1meT2IruY2Huo rJ6+feLTD9c+SMC2A5yRssx4XaHokyMPoiFy5TFfCFcoQXYnh+zWdWzoRCCu+Vg1 jpPKplJG09cNSKRRuu8D/9uguBg6lGLrvulzAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUZ3xz7/XuLtI/lblK3Qp6gIifkm4wHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL1ozeHo3X1h1THRJX2xibEsz UXA2Z0lpZmttNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk A+4AMA0GCSqGSIb3DQEBCwUAA4IBAQBRbOEEJcNp8roIMXlP9CCmk5K536OlETfR Iv7t5pqCrGxGP8jlJzok2hdpE0m8MMGNp5nuEVruRDV15+VT2AIIx0b7Ux+4EZXc hpPuwMMO9CUQBLdZHFW+TbxZGeM7J799cPH5nL05cgrxN+eZYp9xbvlcN+iXfQq6 a4WevKO9YwIq3qf0qvqzpDNdCw3SRqmTirmpznjRXsE58wYD0oQTEWQwteZrF2pn DpMX4XMFk7xH8nzQUMFVivRAu6Oqe6STx5+cDz/o/qyGuQmcqKugu5nzupb3mdcn YX0jGypyDh+BR7vicZrlcBEDm/qyP8Otfg088Thgq9CKvVxitF6I -----END CERTIFICATE-----Generated at Mon Aug 25 01:31:31 2025 by rpki-client