$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/rdynvpc7L5PxuXFZYLeP_1xMbhk.roa File: rdynvpc7L5PxuXFZYLeP_1xMbhk.roa (raw, json) Hash identifier: OlM+PcqVLvkOU0WnIl8F6nZSw+Ule3NLPBLVX57QAjE= Subject key identifier: AD:DC:A7:BE:97:3B:2F:93:F1:B9:71:59:60:B7:8F:FF:5C:4C:6E:19 Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 039A Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/rdynvpc7L5PxuXFZYLeP_1xMbhk.roa Signing time: Fri 22 Aug 2025 08:52:21 +0000 ROA not before: Fri 22 Aug 2025 08:52:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18041 IP address blocks: 2406:ee40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Aug 22 08:52:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ADDCA7BE973B2F93F1B9715960B78FFF5C4C6E19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:2a:ae:b2:b9:95:dd:8f:8f:af:64:fd:57:d6: e3:a6:d9:e5:e1:d9:40:c1:b8:e2:dd:ba:de:42:b1: c0:3a:ec:ec:02:f7:31:3c:f5:18:c9:72:ba:86:55: 45:9f:4c:49:41:f7:80:e3:b7:d5:ad:5f:f8:ea:98: 2e:f1:89:10:e5:23:8d:07:82:57:68:21:f7:24:a5: f5:05:d0:c1:5e:25:b4:a5:52:2d:0a:28:05:f4:4d: 81:20:ca:b4:ad:08:ee:e2:f6:2f:e6:62:af:aa:af: d1:48:cc:03:b9:9a:db:a3:b3:67:29:16:8c:b9:d0: 19:64:b0:11:3f:77:f0:f9:e5:f1:e5:75:05:a5:a6: 21:e4:fa:87:9a:0d:67:b3:15:b5:75:40:a3:cd:a0: 8f:da:0f:fc:5b:0c:df:44:a2:fb:e6:6f:cb:c8:e2: f6:50:f4:55:8d:6f:7d:31:c5:f8:60:25:ed:79:bf: c4:42:f8:10:67:3f:ec:c0:74:bd:ed:0d:1b:62:92: 8e:d6:5c:91:08:af:25:7f:43:d0:98:f4:4a:94:13: 0d:95:6a:25:96:a0:a8:78:a2:20:1f:39:3a:09:34: ca:bb:80:01:9a:67:98:61:a2:b5:81:b1:f9:21:a0: 7c:7a:5d:21:1b:f0:46:f0:24:74:46:ef:bb:1a:cc: ab:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:DC:A7:BE:97:3B:2F:93:F1:B9:71:59:60:B7:8F:FF:5C:4C:6E:19 X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/rdynvpc7L5PxuXFZYLeP_1xMbhk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:ee40::/32 Signature Algorithm: sha256WithRSAEncryption 59:50:e2:43:12:fd:c0:00:b6:71:2a:78:d4:eb:33:a8:c4:f0: 11:5e:f9:da:a6:75:0f:b5:dc:1b:e2:d4:5c:9f:9e:99:d5:59: b6:27:07:d7:97:89:b7:ee:84:47:f2:0b:d6:97:e7:36:25:ca: 1d:35:95:bb:07:c5:8d:d2:5e:95:fa:4a:e3:2c:5d:12:63:8b: 3b:50:a7:c3:d8:72:22:45:c7:c4:64:73:43:d5:43:f8:26:c3: dc:32:b7:59:ad:db:15:a4:ab:4f:f0:c9:a1:a4:35:4b:82:81: 91:ab:f6:b0:1c:43:fa:0b:4b:b9:30:30:7c:9c:79:78:d4:e7: 1f:3e:25:66:0b:42:23:e5:2a:02:7e:e0:74:17:40:fd:3e:9f: 8b:2b:9a:02:53:ca:d2:79:4f:e0:29:2b:f3:ae:41:7b:47:88: bb:2e:4d:6c:28:8e:d8:2e:e8:64:4c:1f:6a:7f:fb:1a:8a:13: a9:b9:16:4e:ae:9d:e7:01:3d:86:9d:30:33:38:fc:2f:41:2b: 82:52:85:b7:b8:ff:c7:92:04:26:59:3a:6a:61:f5:44:11:5e: a6:2b:f7:74:fc:9f:85:6d:28:e9:a0:47:69:eb:5a:96:ca:ec: ad:b4:82:50:90:32:32:b1:7e:59:c6:11:39:54:07:ba:35:65: 13:6a:a0:d4 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICA5owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yNTA4MjIw ODUyMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFERENBN0JFOTczQjJG OTNGMUI5NzE1OTYwQjc4RkZGNUM0QzZFMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1Kq6yuZXdj4+vZP1X1uOm2eXh2UDBuOLdut5CscA67OwC9zE8 9RjJcrqGVUWfTElB94Djt9WtX/jqmC7xiRDlI40HgldoIfckpfUF0MFeJbSlUi0K KAX0TYEgyrStCO7i9i/mYq+qr9FIzAO5mtujs2cpFoy50BlksBE/d/D55fHldQWl piHk+oeaDWezFbV1QKPNoI/aD/xbDN9Eovvmb8vI4vZQ9FWNb30xxfhgJe15v8RC +BBnP+zAdL3tDRtiko7WXJEIryV/Q9CY9EqUEw2VaiWWoKh4oiAfOToJNMq7gAGa Z5hhorWBsfkhoHx6XSEb8EbwJHRG77sazKurAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUrdynvpc7L5PxuXFZYLeP/1xMbhkwHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy9yZHludnBjN0w1UHh1 WEZaWUxlUF8xeE1iaGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAbuQDANBgkqhkiG9w0BAQsFAAOCAQEAWVDiQxL9wAC2cSp41OszqMTwEV75 2qZ1D7XcG+LUXJ+emdVZticH15eJt+6ER/IL1pfnNiXKHTWVuwfFjdJelfpK4yxd EmOLO1Cnw9hyIkXHxGRzQ9VD+CbD3DK3Wa3bFaSrT/DJoaQ1S4KBkav2sBxD+gtL uTAwfJx5eNTnHz4lZgtCI+UqAn7gdBdA/T6fiyuaAlPK0nlP4Ckr865Be0eIuy5N bCiO2C7oZEwfan/7GooTqbkWTq6d5wE9hp0wMzj8L0ErglKFt7j/x5IEJlk6amH1 RBFepiv3dPyfhW0o6aBHaetalsrsrbSCUJAyMrF+WcYROVQHujVlE2qg1A== -----END CERTIFICATE-----Generated at Sun Aug 24 05:34:03 2025 by rpki-client