$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/nFMc7BPzG6G0up25vfXXKgFm_bA.roa File: nFMc7BPzG6G0up25vfXXKgFm_bA.roa (raw, json) Hash identifier: f9DS/162DnSzgJuW3bxl+9sfaJK6+gUIKRUVxo0777k= Subject key identifier: 9C:53:1C:EC:13:F3:1B:A1:B4:BA:9D:B9:BD:F5:D7:2A:01:66:FD:B0 Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0DB7 Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/nFMc7BPzG6G0up25vfXXKgFm_bA.roa Signing time: Fri 22 Aug 2025 08:56:05 +0000 ROA not before: Fri 22 Aug 2025 08:56:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18411 IP address blocks: 119.30.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3511 (0xdb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Aug 22 08:56:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9C531CEC13F31BA1B4BA9DB9BDF5D72A0166FDB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:45:c3:bd:cc:6f:8c:dc:1d:86:c6:20:4f:37: e7:f7:64:1a:15:04:8d:ea:2b:77:9d:85:80:96:ba: 57:e0:9b:f7:e7:c7:d1:e2:6f:2b:9a:d1:6d:1d:e7: ae:c2:1c:93:be:52:c1:41:d1:cc:0b:2b:2a:5d:63: c6:84:1d:c2:77:0c:82:7c:94:b9:4a:88:6e:04:d2: 0f:47:9a:93:c3:72:44:82:5e:83:bc:78:2a:21:68: 76:5f:a6:7a:4b:cd:8e:73:f6:44:48:b1:6a:8a:c2: e4:af:a4:ea:96:57:88:d4:9e:d2:ce:51:3b:86:2c: 6e:4c:8b:53:43:7d:a0:c6:84:dc:6f:45:27:42:8b: 17:42:22:42:32:fc:a6:98:38:d2:f1:bf:4b:e1:d3: 99:0d:91:55:ce:bd:c2:04:eb:84:18:49:8f:2b:89: f7:69:b9:e2:51:4d:f5:a0:2e:41:ac:6b:f6:2c:69: a1:73:db:ea:bf:b8:b7:2c:12:e8:b7:00:a0:40:b8: 78:0d:68:1f:4b:8a:b9:a2:ed:1f:0a:56:b5:6f:5b: fc:02:49:a7:08:76:fa:8e:0c:19:b9:d1:ca:f4:20: 4b:af:19:29:1d:39:a2:2a:7d:26:cc:54:34:ae:49: 63:49:3e:2a:40:00:d2:83:52:6d:9e:e6:7c:2e:04: d9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:53:1C:EC:13:F3:1B:A1:B4:BA:9D:B9:BD:F5:D7:2A:01:66:FD:B0 X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/nFMc7BPzG6G0up25vfXXKgFm_bA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.30.16.0/20 Signature Algorithm: sha256WithRSAEncryption 37:6d:6d:45:55:da:3b:5a:da:23:d6:78:86:43:31:e6:70:3a: 46:60:d0:ae:af:88:d6:3b:35:01:a6:80:42:12:ef:d4:f6:b2: 5c:ac:ad:71:5a:60:31:90:1f:85:8c:26:9c:29:2b:a5:5d:e5: f8:7c:20:6a:6b:ac:1f:ea:5c:8a:60:9d:30:da:d3:d1:d0:04: 80:05:ce:ee:c6:f3:65:00:d5:0d:32:8f:b3:a0:a3:49:95:d2: e2:71:b9:e8:88:1f:47:1a:0a:18:be:07:06:1b:b7:a8:4c:57: 3c:44:fa:51:9a:21:c7:2c:11:3c:b7:ab:ed:62:1e:60:a2:a3: d9:53:23:81:12:c0:21:32:06:8a:21:e5:99:50:c4:43:d7:f7: ac:5d:29:23:36:cd:c8:5d:3a:2d:a7:24:37:c9:58:94:34:b8: 69:dd:c3:b5:0e:22:c6:e4:ce:71:ef:b9:95:93:80:95:65:64: e3:29:24:0f:c3:50:b1:23:95:9a:e1:3a:88:c6:37:c1:c9:1e: 00:5b:96:2a:93:8d:e3:32:42:55:20:6d:3a:c1:51:8a:ff:e3: 9a:eb:e8:9c:e9:a6:a0:82:90:04:59:b4:cc:9a:3d:e9:e8:75: 97:c8:19:14:10:12:f3:9b:9b:3f:28:44:4d:b3:45:bf:a4:3b: 18:40:64:9b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNTA4MjIw ODU2MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlDNTMxQ0VDMTNGMzFC QTFCNEJBOURCOUJERjVENzJBMDE2NkZEQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMRcO9zG+M3B2GxiBPN+f3ZBoVBI3qK3edhYCWulfgm/fnx9Hi byua0W0d567CHJO+UsFB0cwLKypdY8aEHcJ3DIJ8lLlKiG4E0g9HmpPDckSCXoO8 eCohaHZfpnpLzY5z9kRIsWqKwuSvpOqWV4jUntLOUTuGLG5Mi1NDfaDGhNxvRSdC ixdCIkIy/KaYONLxv0vh05kNkVXOvcIE64QYSY8rifdpueJRTfWgLkGsa/YsaaFz 2+q/uLcsEui3AKBAuHgNaB9Lirmi7R8KVrVvW/wCSacIdvqODBm50cr0IEuvGSkd OaIqfSbMVDSuSWNJPipAANKDUm2e5nwuBNl7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUnFMc7BPzG6G0up25vfXXKgFm/bAwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9uRk1jN0JQekc2RzB1cDI1dmZY WEtnRm1fYkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdx4Q MA0GCSqGSIb3DQEBCwUAA4IBAQA3bW1FVdo7Wtoj1niGQzHmcDpGYNCur4jWOzUB poBCEu/U9rJcrK1xWmAxkB+FjCacKSulXeX4fCBqa6wf6lyKYJ0w2tPR0ASABc7u xvNlANUNMo+zoKNJldLicbnoiB9HGgoYvgcGG7eoTFc8RPpRmiHHLBE8t6vtYh5g oqPZUyOBEsAhMgaKIeWZUMRD1/esXSkjNs3IXTotpyQ3yViUNLhp3cO1DiLG5M5x 77mVk4CVZWTjKSQPw1CxI5Wa4TqIxjfByR4AW5Yqk43jMkJVIG06wVGK/+Oa6+ic 6aaggpAEWbTMmj3p6HWXyBkUEBLzm5s/KERNs0W/pDsYQGSb -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:42 2025 by rpki-client