$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/lRKCEQ224EsSIqCciXb18MH7Ao4.roa File: lRKCEQ224EsSIqCciXb18MH7Ao4.roa (raw, json) Hash identifier: 741BDSLQdGKBAC4QTbkhsM9gogv+7627RcUDuxQh7rQ= Subject key identifier: 95:12:82:11:0D:B6:E0:4B:12:22:A0:9C:89:76:F5:F0:C1:FB:02:8E Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25 Certificate serial: 0D98 Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/lRKCEQ224EsSIqCciXb18MH7Ao4.roa Signing time: Fri 22 Aug 2025 08:52:51 +0000 ROA not before: Fri 22 Aug 2025 08:52:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10135 IP address blocks: 61.64.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3480 (0xd98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25 Validity Not Before: Aug 22 08:52:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=951282110DB6E04B1222A09C8976F5F0C1FB028E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1c:9f:b2:53:13:6c:0a:46:c3:51:3e:4c:8e: 9c:03:db:84:93:4b:46:19:de:7c:70:35:c3:f0:7b: 7f:1e:47:05:84:d2:ea:af:93:f1:07:7d:4e:7e:d7: b1:bc:54:57:36:2f:a2:98:51:ff:1a:1f:2d:d2:eb: 48:60:cb:55:2c:3d:12:ba:0e:6b:5e:b5:73:74:d5: ba:0b:ec:bd:5f:f6:9a:21:49:7e:60:1a:79:c9:c3: 11:92:42:22:73:cb:fb:2d:03:fd:70:30:f3:af:0e: f8:8e:31:cd:cf:2c:18:6b:8d:18:3a:1a:66:52:62: 98:2c:ef:8c:9e:cf:01:3c:67:16:9a:2d:0a:72:88: e1:94:a6:7a:3d:b5:5d:11:bf:d9:7e:44:68:ac:a3: 49:9f:f4:4f:a4:e2:cd:0f:d5:62:06:af:ad:9f:dc: 19:02:fd:9a:6e:ae:aa:80:c7:d1:18:d2:04:b4:7a: 53:d0:ae:28:7f:e9:f0:82:e1:ad:f7:11:dc:9e:24: 2c:67:b9:29:f5:9e:bf:d4:38:c6:84:f0:f4:8f:ab: 81:36:34:4e:43:2e:e8:af:5c:a0:f0:a9:68:2f:db: 60:51:6f:ea:c9:13:bd:58:f4:5f:6b:8b:77:1b:be: 64:25:19:4b:89:e5:90:ab:a8:63:d6:c2:c8:c4:6f: 62:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:12:82:11:0D:B6:E0:4B:12:22:A0:9C:89:76:F5:F0:C1:FB:02:8E X509v3 Authority Key Identifier: keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/lRKCEQ224EsSIqCciXb18MH7Ao4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.48.0/20 Signature Algorithm: sha256WithRSAEncryption 52:da:dc:71:a9:58:f6:97:f8:e6:c0:de:a0:1b:9d:a2:23:d0: 7f:90:71:3f:7a:ef:7d:3b:4e:79:09:d0:27:8f:6a:16:78:d2: 44:fc:f0:c9:3d:30:dc:af:da:e8:7c:12:85:05:a9:ca:f8:95: bf:a3:e1:68:51:fc:6a:9f:41:eb:46:45:df:f6:16:d7:c9:23: 95:34:27:90:5e:3f:4c:16:85:8e:eb:d1:4d:23:a2:0f:e0:5f: 3f:dc:c2:64:b7:a0:2d:da:cd:75:71:65:10:a8:75:c8:02:a3: af:c6:04:86:db:08:50:6e:26:51:c5:41:5f:0e:4b:9b:2f:dd: 78:e2:79:5b:d5:51:39:06:e3:b1:6c:fc:47:86:98:3d:8c:82: 09:14:8e:99:6a:f7:3c:3b:15:b5:77:c2:1d:49:5a:44:65:26: 6d:a6:d1:18:85:9e:ac:44:72:62:6d:00:7b:6e:a2:f1:2b:13: 65:36:8a:31:6d:a5:ee:45:ae:a3:93:11:ad:1e:e3:e0:7e:04: 90:74:b2:82:74:9c:dd:64:fa:8c:69:70:44:57:cf:c3:13:48: 4b:8d:4d:ed:c6:98:81:29:73:77:56:5e:e4:25:ca:9e:ba:d9: ec:58:2a:ae:32:e3:b5:3f:99:0d:31:f1:db:55:45:1b:13:a4: 8b:e6:6e:3a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDZgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yNTA4MjIw ODUyNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk1MTI4MjExMERCNkUw NEIxMjIyQTA5Qzg5NzZGNUYwQzFGQjAyOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRHJ+yUxNsCkbDUT5MjpwD24STS0YZ3nxwNcPwe38eRwWE0uqv k/EHfU5+17G8VFc2L6KYUf8aHy3S60hgy1UsPRK6DmtetXN01boL7L1f9pohSX5g GnnJwxGSQiJzy/stA/1wMPOvDviOMc3PLBhrjRg6GmZSYpgs74yezwE8ZxaaLQpy iOGUpno9tV0Rv9l+RGiso0mf9E+k4s0P1WIGr62f3BkC/ZpurqqAx9EY0gS0elPQ rih/6fCC4a33EdyeJCxnuSn1nr/UOMaE8PSPq4E2NE5DLuivXKDwqWgv22BRb+rJ E71Y9F9ri3cbvmQlGUuJ5ZCrqGPWwsjEb2IBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUlRKCEQ224EsSIqCciXb18MH7Ao4wHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvbFJLQ0VRMjI0RXNTSXFD Y2lYYjE4TUg3QW80LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD1AMDANBgkqhkiG9w0BAQsFAAOCAQEAUtrccalY9pf45sDeoBudoiPQf5BxP3rv fTtOeQnQJ49qFnjSRPzwyT0w3K/a6HwShQWpyviVv6PhaFH8ap9B60ZF3/YW18kj lTQnkF4/TBaFjuvRTSOiD+BfP9zCZLegLdrNdXFlEKh1yAKjr8YEhtsIUG4mUcVB Xw5Lmy/deOJ5W9VROQbjsWz8R4aYPYyCCRSOmWr3PDsVtXfCHUlaRGUmbabRGIWe rERyYm0Ae26i8SsTZTaKMW2l7kWuo5MRrR7j4H4EkHSygnSc3WT6jGlwRFfPwxNI S41N7caYgSlzd1Ze5CXKnrrZ7FgqrjLjtT+ZDTHx21VFGxOki+ZuOg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:33:39 2025 by rpki-client