$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/_0M3N120tqk6divbB4k_8TyqIPQ.roa File: _0M3N120tqk6divbB4k_8TyqIPQ.roa (raw, json) Hash identifier: P52CagfkvyL4UzAZ/zladA1uTZZvdW7BOHVwW+cfzYI= Subject key identifier: FF:43:37:37:5D:B4:B6:A9:3A:76:2B:DB:07:89:3F:F1:3C:AA:20:F4 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E82 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/_0M3N120tqk6divbB4k_8TyqIPQ.roa Signing time: Fri 22 Aug 2025 09:03:20 +0000 ROA not before: Fri 22 Aug 2025 09:03:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 61.56.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3714 (0xe82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FF4337375DB4B6A93A762BDB07893FF13CAA20F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:45:95:07:b2:9a:25:88:7a:f1:b9:55:bc:23: 3c:f7:0c:40:1e:26:f0:fb:d6:e8:27:7f:57:55:e1: 17:26:51:47:fb:ab:e8:b5:e4:80:14:c1:96:3e:ea: 9d:53:a0:2b:49:b8:59:71:f1:7d:ee:30:7a:ca:21: a3:3f:03:f2:04:72:9e:4f:38:aa:68:e5:4e:0c:bd: b2:24:16:75:52:d9:85:7a:7e:88:5a:72:fb:60:49: 3b:ac:60:99:4d:d3:73:42:d1:f7:1f:2d:b5:4c:31: 36:b1:13:96:82:c7:ae:6e:a7:ec:55:40:c5:52:f6: d1:de:c8:79:20:2e:b1:d6:ce:93:12:a1:89:9c:f5: ba:66:16:f0:47:6a:a1:49:5c:99:c8:d8:ff:c3:c7: cc:25:65:66:58:98:4f:e5:8d:65:07:28:20:aa:65: 21:c7:d3:94:6f:41:10:16:98:d5:50:86:b2:4f:1d: 42:9e:c7:e4:72:8e:17:8c:11:dd:69:39:d7:1a:dd: 82:1d:cc:1f:72:45:da:97:93:21:7c:f9:c1:30:2e: dc:01:a2:5e:78:7e:37:57:18:10:32:e3:01:1e:9b: 9c:a8:b8:08:65:35:e7:4a:a8:19:aa:9a:c7:a1:b8: 55:03:6d:ed:eb:74:ea:e0:d0:cf:07:e1:1c:6d:bf: 10:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:43:37:37:5D:B4:B6:A9:3A:76:2B:DB:07:89:3F:F1:3C:AA:20:F4 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/_0M3N120tqk6divbB4k_8TyqIPQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/20 Signature Algorithm: sha256WithRSAEncryption 64:cb:91:e1:e6:cc:74:a9:e7:91:a2:b9:e4:6f:6a:76:c8:b4: 95:ea:a4:8b:8a:19:b8:e2:a8:3b:4b:83:b0:31:e6:53:95:e7: 1b:fb:59:66:1d:30:23:27:82:37:68:a0:27:63:c5:7e:62:34: 98:dc:fd:48:1d:80:a7:fe:0a:5d:27:98:0d:64:69:d5:84:97: ea:12:ec:67:da:8e:82:cd:79:21:17:0f:89:3b:22:e0:c9:8b: 70:a4:d1:f1:03:57:85:f3:25:9a:99:00:df:4c:12:ab:67:18: 86:0f:a8:aa:ea:d9:f1:87:8b:e7:6b:c0:85:85:3f:55:d5:af: b9:fc:68:10:ef:5c:67:66:81:80:42:3e:36:a3:41:bb:56:9f: ed:d5:ae:bf:1c:c9:c7:aa:7c:81:77:bb:97:8a:8b:9d:11:e6: 01:36:72:10:66:3f:7e:77:05:2f:ff:eb:44:3d:ce:c7:95:13: d9:b5:af:e1:79:9a:f7:dd:d3:20:1f:5b:5a:0b:9d:6b:d0:fb: 77:1a:af:29:96:6d:76:01:f0:8e:cb:39:cd:fd:54:f3:71:ca: ca:33:16:cc:a5:72:c3:12:66:13:c5:c3:82:97:e6:18:ec:1d: 1b:d9:a9:61:bd:7e:dc:bc:62:09:17:29:16:84:29:80:b9:52: 8a:94:4c:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDoIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZGNDMzNzM3NURCNEI2 QTkzQTc2MkJEQjA3ODkzRkYxM0NBQTIwRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDORZUHspoliHrxuVW8Izz3DEAeJvD71ugnf1dV4RcmUUf7q+i1 5IAUwZY+6p1ToCtJuFlx8X3uMHrKIaM/A/IEcp5POKpo5U4MvbIkFnVS2YV6foha cvtgSTusYJlN03NC0fcfLbVMMTaxE5aCx65up+xVQMVS9tHeyHkgLrHWzpMSoYmc 9bpmFvBHaqFJXJnI2P/Dx8wlZWZYmE/ljWUHKCCqZSHH05RvQRAWmNVQhrJPHUKe x+RyjheMEd1pOdca3YIdzB9yRdqXkyF8+cEwLtwBol54fjdXGBAy4wEem5youAhl NedKqBmqmsehuFUDbe3rdOrg0M8H4RxtvxDfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/0M3N120tqk6divbB4k/8TyqIPQwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL18wTTNOMTIwdHFrNmRpdmJC NGtfOFR5cUlQUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OFAwDQYJKoZIhvcNAQELBQADggEBAGTLkeHmzHSp55GiueRvanbItJXqpIuKGbji qDtLg7Ax5lOV5xv7WWYdMCMngjdooCdjxX5iNJjc/UgdgKf+Cl0nmA1kadWEl+oS 7GfajoLNeSEXD4k7IuDJi3Ck0fEDV4XzJZqZAN9MEqtnGIYPqKrq2fGHi+drwIWF P1XVr7n8aBDvXGdmgYBCPjajQbtWn+3Vrr8cyceqfIF3u5eKi50R5gE2chBmP353 BS//60Q9zseVE9m1r+F5mvfd0yAfW1oLnWvQ+3carymWbXYB8I7LOc39VPNxysoz FsylcsMSZhPFw4KX5hjsHRvZqWG9fty8YgkXKRaEKYC5UoqUTNk= -----END CERTIFICATE-----Generated at Mon Aug 25 01:28:37 2025 by rpki-client