$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/Sx5VGL26x27bdDCetos-vMRB2Vg.roa File: Sx5VGL26x27bdDCetos-vMRB2Vg.roa (raw, json) Hash identifier: XnHR5Vw//t56xZA4ZHQCZ9Nf9xiF2NPVKkkG9CJ1YBY= Subject key identifier: 4B:1E:55:18:BD:BA:C7:6E:DB:74:30:9E:B6:8B:3E:BC:C4:41:D9:58 Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0DB3 Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/Sx5VGL26x27bdDCetos-vMRB2Vg.roa Signing time: Fri 22 Aug 2025 08:56:04 +0000 ROA not before: Fri 22 Aug 2025 08:56:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18411 IP address blocks: 119.30.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3507 (0xdb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Aug 22 08:56:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4B1E5518BDBAC76EDB74309EB68B3EBCC441D958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b8:59:ef:b7:8c:78:cb:41:1d:2f:ff:02:7c: 12:8c:aa:bd:6b:52:93:cd:c5:ca:08:e9:24:ec:8a: dc:09:38:47:6c:30:40:b7:0f:65:1f:df:45:51:b9: 79:16:7d:8f:fa:7b:62:68:e3:4c:e2:15:86:38:fe: 13:48:39:f1:18:85:71:71:5c:7e:e6:47:7c:7b:17: e5:01:8a:0e:22:50:c3:4b:ce:18:a0:96:64:f9:9f: 9a:92:49:f9:de:27:a4:31:5a:9f:6a:7e:24:7d:62: a4:4c:c0:bd:1e:94:ab:76:14:d2:84:72:fb:3f:93: 55:49:7d:7b:44:e4:53:d7:2e:d2:80:9f:06:5d:f5: 3f:66:f0:1b:33:2a:63:e0:ff:f0:7c:90:68:80:b6: f4:e3:96:de:9b:08:6d:13:59:bb:f0:a5:c0:7b:3f: ac:33:3e:25:07:0d:d5:ba:80:eb:6b:46:c4:f5:58: 81:a0:9b:d6:00:7d:ab:ff:0a:8f:e0:c7:2d:e1:fa: 03:99:1b:cc:65:7a:a5:5b:4a:cb:37:cb:d9:2b:78: c7:59:71:f9:97:29:27:67:a1:68:29:1a:12:2c:fb: 99:1f:bd:68:7b:16:34:76:99:9c:33:3b:65:01:4d: 41:ba:9a:11:7f:9b:7d:c4:13:1f:40:06:fb:d3:42: 73:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1E:55:18:BD:BA:C7:6E:DB:74:30:9E:B6:8B:3E:BC:C4:41:D9:58 X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/Sx5VGL26x27bdDCetos-vMRB2Vg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.30.16.0/20 Signature Algorithm: sha256WithRSAEncryption 91:5b:bd:41:a3:f1:7b:b2:85:b6:68:cc:1a:3c:0b:2a:28:2b: 1e:50:a0:16:cb:44:4b:48:54:82:36:f0:a7:c8:87:86:c3:52: 35:17:de:c3:23:9d:39:62:f2:f2:23:60:c9:70:ed:9d:26:25: d3:ce:1e:7c:68:ab:77:37:43:63:41:80:69:c8:eb:17:65:f8: b9:65:7a:b1:e0:0a:78:05:40:c8:a8:a7:d1:9d:f7:15:ac:9f: 37:62:5a:b5:18:0f:87:ef:a4:a6:87:ef:19:07:a2:b7:bd:17: 7f:37:62:25:d0:a4:cc:2d:7b:aa:f2:b4:22:a5:a0:88:79:ae: e5:6b:a2:7d:e8:51:09:37:cb:28:20:45:cd:6c:36:f9:e5:64: c0:fd:bf:bf:46:44:0b:59:db:f3:09:8b:73:1a:fd:fb:c0:08: bf:16:27:67:84:da:29:d2:fb:67:60:1c:55:b9:89:40:98:fa: ed:df:9d:b4:91:36:82:23:22:2b:2a:9b:f8:cc:e6:e7:74:80: 79:6c:35:04:a2:54:cb:db:6b:28:a4:c1:67:6e:98:68:b4:c7: 8d:e9:75:e9:48:05:c8:3b:bd:3d:52:05:14:41:6b:5e:c9:52: dc:f2:62:9c:09:a5:3f:9c:6f:2b:91:8a:92:30:de:ab:60:8e: 11:3a:92:77 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDbMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNTA4MjIw ODU2MDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRCMUU1NTE4QkRCQUM3 NkVEQjc0MzA5RUI2OEIzRUJDQzQ0MUQ5NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQuFnvt4x4y0EdL/8CfBKMqr1rUpPNxcoI6STsitwJOEdsMEC3 D2Uf30VRuXkWfY/6e2Jo40ziFYY4/hNIOfEYhXFxXH7mR3x7F+UBig4iUMNLzhig lmT5n5qSSfneJ6QxWp9qfiR9YqRMwL0elKt2FNKEcvs/k1VJfXtE5FPXLtKAnwZd 9T9m8BszKmPg//B8kGiAtvTjlt6bCG0TWbvwpcB7P6wzPiUHDdW6gOtrRsT1WIGg m9YAfav/Co/gxy3h+gOZG8xleqVbSss3y9kreMdZcfmXKSdnoWgpGhIs+5kfvWh7 FjR2mZwzO2UBTUG6mhF/m33EEx9ABvvTQnM1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUSx5VGL26x27bdDCetos+vMRB2VgwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9TeDVWR0wyNngyN2JkRENldG9z LXZNUkIyVmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdx4Q MA0GCSqGSIb3DQEBCwUAA4IBAQCRW71Bo/F7soW2aMwaPAsqKCseUKAWy0RLSFSC NvCnyIeGw1I1F97DI505YvLyI2DJcO2dJiXTzh58aKt3N0NjQYBpyOsXZfi5ZXqx 4Ap4BUDIqKfRnfcVrJ83Ylq1GA+H76Smh+8ZB6K3vRd/N2Il0KTMLXuq8rQipaCI ea7la6J96FEJN8soIEXNbDb55WTA/b+/RkQLWdvzCYtzGv37wAi/FidnhNop0vtn YBxVuYlAmPrt3520kTaCIyIrKpv4zObndIB5bDUEolTL22sopMFnbphotMeN6XXp SAXIO709UgUUQWteyVLc8mKcCaU/nG8rkYqSMN6rYI4ROpJ3 -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:18 2025 by rpki-client