$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ZrxjeWOWdE8sP069zYhdh2H1gcY.roa File: ZrxjeWOWdE8sP069zYhdh2H1gcY.roa (raw, json) Hash identifier: 8JFFkILCr3t7TNfRuxwX48geZ48S4DAV7skkcqlyj/I= Subject key identifier: 66:BC:63:79:63:96:74:4F:2C:3F:4E:BD:CD:88:5D:87:61:F5:81:C6 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E8C Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ZrxjeWOWdE8sP069zYhdh2H1gcY.roa Signing time: Fri 22 Aug 2025 09:03:22 +0000 ROA not before: Fri 22 Aug 2025 09:03:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 61.247.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3724 (0xe8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=66BC63796396744F2C3F4EBDCD885D8761F581C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:59:2a:f6:78:e4:69:79:df:dd:93:e9:22:a9: ff:df:e1:8e:a7:ec:0e:fc:60:6f:d7:c5:39:bb:df: 02:52:19:69:3d:21:72:d0:36:44:f9:d3:a0:aa:4c: bd:72:6d:28:d4:ce:d4:12:14:b9:7b:ef:e3:bf:6f: 7f:9a:48:b3:64:a4:2a:6e:91:6f:bb:8b:8f:80:fa: e8:0c:4f:b8:63:e5:de:69:bf:51:62:06:52:56:c9: 72:c0:e3:fb:88:59:94:93:ac:7b:62:cc:6f:39:d4: e0:8e:27:ff:b8:28:59:a9:58:dc:bd:e7:d2:50:f2: a5:bf:5c:a2:4f:7b:84:5d:af:e6:3e:77:f7:94:c7: a7:1e:99:5c:61:d6:23:74:7d:65:f7:44:23:ed:c0: 7d:70:1d:53:45:25:d0:d0:c7:1c:03:fc:80:67:88: 99:37:6c:f6:ed:cb:52:ff:2a:94:41:01:76:33:3d: b3:a6:cf:2e:3c:db:d9:cb:ec:f9:09:d4:f0:d4:dd: 25:79:54:10:aa:65:1b:c9:cb:ce:2a:e6:0c:f2:6e: 7b:d2:e6:c2:40:37:a0:13:4b:69:d8:a7:60:14:1c: 18:28:7e:e2:63:1b:6c:f3:ae:5c:11:4b:46:01:08: 94:b1:96:0f:ef:b7:4f:7f:c8:d7:74:46:2a:ed:06: 2e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:BC:63:79:63:96:74:4F:2C:3F:4E:BD:CD:88:5D:87:61:F5:81:C6 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ZrxjeWOWdE8sP069zYhdh2H1gcY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.247.165.0/24 Signature Algorithm: sha256WithRSAEncryption b8:bf:3e:f6:2d:de:df:b5:e1:a1:64:07:12:a1:c4:ff:6e:5c: 59:fa:a5:d0:bb:f0:91:89:ec:8b:fd:c4:5a:9f:4c:de:37:b0: 21:f4:fe:24:47:b6:11:96:31:d7:7f:18:c1:f5:02:01:52:54: b5:4e:c2:fe:03:09:32:71:e9:a7:79:6c:fb:97:3c:e9:62:b1: 3f:f2:6d:3c:63:ab:c1:4c:09:af:cf:ed:e6:d2:e0:fc:ab:ed: 44:33:3e:26:67:93:6d:60:c9:fd:19:af:b7:c4:cd:57:50:79: 1a:33:c8:ff:70:c8:10:ab:d4:39:cc:f9:4f:4d:78:db:08:e4: 9e:8f:d8:c7:a8:76:c8:2c:23:2c:e7:be:eb:7b:f3:be:0c:35: ba:0a:d3:ee:27:2a:fd:cb:6b:f7:74:3d:a0:c8:f8:1d:bf:c2: 5e:fe:75:79:0a:70:72:9e:83:c8:78:58:78:e7:b0:99:08:fb: e5:15:70:53:39:ec:e5:ce:ce:80:9e:c7:e1:ac:fd:f2:38:94: f8:de:16:3e:3c:ce:89:60:e2:db:4b:67:06:f3:89:46:60:5c: eb:49:41:b3:aa:b9:2d:b8:3d:92:d3:aa:44:84:85:4a:10:7f: 3b:c2:7c:4c:e3:27:cd:df:be:37:f5:b4:3b:32:24:b4:bb:2a: 33:a7:c4:ed -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDowwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY2QkM2Mzc5NjM5Njc0 NEYyQzNGNEVCRENEODg1RDg3NjFGNTgxQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTWSr2eORped/dk+kiqf/f4Y6n7A78YG/XxTm73wJSGWk9IXLQ NkT506CqTL1ybSjUztQSFLl77+O/b3+aSLNkpCpukW+7i4+A+ugMT7hj5d5pv1Fi BlJWyXLA4/uIWZSTrHtizG851OCOJ/+4KFmpWNy959JQ8qW/XKJPe4Rdr+Y+d/eU x6cemVxh1iN0fWX3RCPtwH1wHVNFJdDQxxwD/IBniJk3bPbty1L/KpRBAXYzPbOm zy4829nL7PkJ1PDU3SV5VBCqZRvJy84q5gzybnvS5sJAN6ATS2nYp2AUHBgofuJj G2zzrlwRS0YBCJSxlg/vt09/yNd0RirtBi7dAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZrxjeWOWdE8sP069zYhdh2H1gcYwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL1pyeGplV09XZEU4c1AwNjl6 WWhkaDJIMWdjWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 96UwDQYJKoZIhvcNAQELBQADggEBALi/PvYt3t+14aFkBxKhxP9uXFn6pdC78JGJ 7Iv9xFqfTN43sCH0/iRHthGWMdd/GMH1AgFSVLVOwv4DCTJx6ad5bPuXPOlisT/y bTxjq8FMCa/P7ebS4Pyr7UQzPiZnk21gyf0Zr7fEzVdQeRozyP9wyBCr1DnM+U9N eNsI5J6P2MeodsgsIyznvut7874MNboK0+4nKv3La/d0PaDI+B2/wl7+dXkKcHKe g8h4WHjnsJkI++UVcFM57OXOzoCex+Gs/fI4lPjeFj48zolg4ttLZwbziUZgXOtJ QbOquS24PZLTqkSEhUoQfzvCfEzjJ83fvjf1tDsyJLS7KjOnxO0= -----END CERTIFICATE-----Generated at Mon Aug 25 01:31:45 2025 by rpki-client