$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/fjAUCJNzthTwsTAWyOaTVcB4q2s.roa File: fjAUCJNzthTwsTAWyOaTVcB4q2s.roa (raw, json) Hash identifier: X3TFE5J2DR7FL24kLcQctjPCBDbGQegRM/QYxMIR+1o= Subject key identifier: 7E:30:14:08:93:73:B6:14:F0:B1:30:16:C8:E6:93:55:C0:78:AB:6B Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E7C Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/fjAUCJNzthTwsTAWyOaTVcB4q2s.roa Signing time: Fri 22 Aug 2025 09:03:19 +0000 ROA not before: Fri 22 Aug 2025 09:03:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 61.56.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3708 (0xe7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7E3014089373B614F0B13016C8E69355C078AB6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cf:95:6d:9b:ef:4d:1a:c1:cf:03:82:ba:4c: 7e:9f:e6:76:1d:56:17:86:60:b4:7d:cc:14:dc:6c: 10:b4:b5:88:9a:a1:68:2e:91:39:b6:0f:93:cb:2b: 1e:1c:f3:e7:a5:d9:24:0f:24:3e:44:21:40:b2:fa: 18:bf:e4:00:fe:06:d3:be:97:8c:a9:ff:ca:6c:a6: 54:b5:f5:63:9d:b4:8e:10:f5:98:04:b4:62:0f:78: 09:2f:a4:16:01:83:d2:f6:86:2c:f2:90:7a:08:44: 31:dd:ed:48:3e:04:f6:d7:2e:14:b8:8c:d7:61:9f: 60:84:96:87:db:3e:36:f4:04:16:9c:c1:cb:97:85: 12:cf:34:0f:fb:0c:31:5e:0f:02:9c:c9:25:5a:58: 3c:b8:61:57:33:e4:c7:1e:22:39:5c:e4:17:20:c1: f7:3a:c6:48:78:09:e1:a3:67:f9:bf:4e:dd:ad:5a: 5d:04:65:c8:31:ed:ad:51:dc:58:65:9f:e1:2c:32: 95:0e:9b:b9:7a:d7:5c:25:cf:6a:19:34:da:4e:86: fd:5b:1b:27:1a:6b:00:3d:b2:07:02:8d:0f:9e:04: 35:0e:74:99:b9:bc:59:18:aa:82:90:36:26:b1:18: 68:0f:b1:62:da:1e:f8:24:53:f3:9f:07:d3:ce:65: 30:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:30:14:08:93:73:B6:14:F0:B1:30:16:C8:E6:93:55:C0:78:AB:6B X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/fjAUCJNzthTwsTAWyOaTVcB4q2s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/20 Signature Algorithm: sha256WithRSAEncryption b9:0f:50:91:a7:63:b5:1c:4e:bb:0f:b8:e8:c7:a8:21:e8:5e: c2:0c:46:03:fb:5a:c7:13:f2:09:26:65:2f:b9:8d:98:e5:bd: f0:32:01:c0:98:c0:e3:f8:99:8a:f3:05:e6:29:6d:53:c4:5e: 27:10:fe:39:75:5c:31:27:fe:c2:4f:1e:d8:1e:a8:e4:be:2f: 8b:b8:cf:1c:ec:37:3b:8d:8f:81:33:82:01:e4:4a:b2:01:06: 0a:c7:3a:c8:99:47:1a:e4:82:4b:a8:cf:13:cc:1c:f4:c4:4f: a0:a5:3b:72:8e:f6:31:8d:18:f9:84:a8:e5:16:5a:d9:24:be: fc:db:7f:84:34:28:36:4c:96:6e:74:27:64:34:68:6d:51:54: 6e:7a:db:84:01:b6:e2:f5:15:cf:3a:72:59:45:39:cb:9f:df: 44:68:03:23:9e:7e:25:71:1c:2b:84:f3:1a:2d:64:a0:4f:d5: b8:09:36:1b:3b:d1:e4:12:1a:64:89:e0:18:06:91:87:46:de: 10:03:7c:1a:c4:e3:4d:53:8e:14:56:0f:a5:e1:60:2a:be:40: e0:14:aa:20:c8:1e:b4:4f:92:1f:71:e9:7b:2e:86:d7:0a:24: ef:1e:fe:b1:5e:ba:74:c6:82:9e:72:e0:6c:70:92:17:27:43: 07:f1:6f:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDnwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdFMzAxNDA4OTM3M0I2 MTRGMEIxMzAxNkM4RTY5MzU1QzA3OEFCNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuz5Vtm+9NGsHPA4K6TH6f5nYdVheGYLR9zBTcbBC0tYiaoWgu kTm2D5PLKx4c8+el2SQPJD5EIUCy+hi/5AD+BtO+l4yp/8psplS19WOdtI4Q9ZgE tGIPeAkvpBYBg9L2hizykHoIRDHd7Ug+BPbXLhS4jNdhn2CElofbPjb0BBacwcuX hRLPNA/7DDFeDwKcySVaWDy4YVcz5MceIjlc5Bcgwfc6xkh4CeGjZ/m/Tt2tWl0E Zcgx7a1R3Fhln+EsMpUOm7l611wlz2oZNNpOhv1bGycaawA9sgcCjQ+eBDUOdJm5 vFkYqoKQNiaxGGgPsWLaHvgkU/OfB9POZTDVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUfjAUCJNzthTwsTAWyOaTVcB4q2swHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2ZqQVVDSk56dGhUd3NUQVd5 T2FUVmNCNHEycy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OFAwDQYJKoZIhvcNAQELBQADggEBALkPUJGnY7UcTrsPuOjHqCHoXsIMRgP7WscT 8gkmZS+5jZjlvfAyAcCYwOP4mYrzBeYpbVPEXicQ/jl1XDEn/sJPHtgeqOS+L4u4 zxzsNzuNj4EzggHkSrIBBgrHOsiZRxrkgkuozxPMHPTET6ClO3KO9jGNGPmEqOUW Wtkkvvzbf4Q0KDZMlm50J2Q0aG1RVG5624QBtuL1Fc86cllFOcuf30RoAyOefiVx HCuE8xotZKBP1bgJNhs70eQSGmSJ4BgGkYdG3hADfBrE401TjhRWD6XhYCq+QOAU qiDIHrRPkh9x6XsuhtcKJO8e/rFeunTGgp5y4GxwkhcnQwfxb4U= -----END CERTIFICATE-----Generated at Mon Aug 25 01:31:40 2025 by rpki-client