$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ETIME/R_tY-XNyO6ZpJ-xQLo6hScW-J74.roa File: R_tY-XNyO6ZpJ-xQLo6hScW-J74.roa (raw, json) Hash identifier: gp057ggEsUHYQmkif/z5oO0FEi7EhCUxvJxGKlboZLk= Subject key identifier: 47:FB:58:F9:73:72:3B:A6:69:27:EC:50:2E:8E:A1:49:C5:BE:27:BE Certificate issuer: /CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F Certificate serial: 050E Authority key identifier: E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/R_tY-XNyO6ZpJ-xQLo6hScW-J74.roa Signing time: Fri 22 Aug 2025 08:58:57 +0000 ROA not before: Fri 22 Aug 2025 08:58:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38042 IP address blocks: 103.158.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1294 (0x50e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F Validity Not Before: Aug 22 08:58:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=47FB58F973723BA66927EC502E8EA149C5BE27BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:69:c8:c9:68:e2:81:aa:69:b5:61:65:fd:38: 14:fe:68:ef:dd:a3:33:bf:cd:94:fd:fd:9a:de:5d: b5:00:db:5a:fa:24:08:f4:d9:52:ca:86:05:3c:99: e3:4b:51:5d:61:db:58:a4:ae:a3:cc:25:66:fd:1c: 66:59:7e:59:a0:af:8b:be:36:9e:5d:f5:6c:4f:5a: ca:1e:7c:f8:97:22:0f:5e:53:af:da:27:c7:1b:91: a6:73:3e:6d:a1:60:eb:e1:67:2b:0b:aa:44:46:0e: 62:4c:e6:5c:39:76:0d:f5:a6:ab:70:12:aa:56:96: 46:4c:0c:3d:00:bd:bb:27:eb:af:4f:59:4a:1a:ae: 4d:92:f0:8f:53:8d:c1:f9:c9:58:7c:05:bc:3e:92: 41:8e:a8:9f:bd:ea:c1:5e:d7:dc:51:fc:30:41:77: 4f:77:f4:82:5b:40:f1:91:c4:d3:5c:06:c9:a4:4c: d1:43:f6:bd:5d:3f:31:c1:76:d8:b2:30:a4:a6:dc: 9d:f6:71:a8:ee:a2:c6:8c:16:46:b8:ce:bb:4b:d9: 58:e3:0e:61:33:68:a3:f0:bd:8e:30:e2:21:cb:2c: 89:94:c5:2c:59:a8:fc:38:ff:5d:ad:5a:2c:3e:1e: b2:b2:32:85:3d:ef:32:5c:fb:6a:b7:60:89:a3:0d: 87:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FB:58:F9:73:72:3B:A6:69:27:EC:50:2E:8E:A1:49:C5:BE:27:BE X509v3 Authority Key Identifier: keyid:E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/R_tY-XNyO6ZpJ-xQLo6hScW-J74.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.158.228.0/23 Signature Algorithm: sha256WithRSAEncryption 66:1a:f4:de:a7:83:94:59:f4:2e:38:a4:3c:14:b2:fd:8d:e8: bd:c5:99:f0:e6:08:9b:3d:b5:13:43:a3:d1:3f:5d:49:ef:2d: 06:08:68:3d:98:a7:05:c7:10:03:14:a3:4a:13:0a:29:2d:71: 3e:16:e0:5f:29:77:8d:96:35:7d:1e:a5:7f:d2:78:b3:ca:f8: a8:1c:0c:3d:30:d5:8b:83:09:eb:4c:76:4c:8b:fd:9b:1a:c3: 74:33:2c:8e:6f:e2:fa:35:96:a5:d4:35:17:80:3f:10:d1:43: 03:2d:ea:09:8c:49:62:e7:ad:1f:33:5a:18:b3:b7:09:81:b0: ab:f6:99:9e:08:e1:9d:5e:2b:9d:7a:5a:af:84:fb:2b:9c:75: bc:3e:bb:53:8a:bb:61:b2:92:c2:f0:e6:a7:a0:2e:85:e8:06: 44:da:c8:6f:02:0e:02:ad:45:20:6b:1b:ea:80:cb:32:ea:c6: 57:3f:2e:7d:1f:ff:16:6a:20:f9:84:d1:7b:76:86:c1:32:18: 3f:02:43:d6:75:65:d2:9f:67:89:29:33:01:bd:7a:0e:ab:2c: 02:81:dd:8f:21:cd:d3:24:73:b5:66:e8:8a:74:32:1b:92:39: 8f:ff:97:33:f1:bc:5f:6b:bd:e5:0d:54:56:6f:18:1c:48:ec: f7:63:95:21 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTBF QTg4NUE3RTY5NzFDOTkzNDI3NzdFN0REREJBNjVEMEVCMTMxRjAeFw0yNTA4MjIw ODU4NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ3RkI1OEY5NzM3MjNC QTY2OTI3RUM1MDJFOEVBMTQ5QzVCRTI3QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgacjJaOKBqmm1YWX9OBT+aO/dozO/zZT9/ZreXbUA21r6JAj0 2VLKhgU8meNLUV1h21ikrqPMJWb9HGZZflmgr4u+Np5d9WxPWsoefPiXIg9eU6/a J8cbkaZzPm2hYOvhZysLqkRGDmJM5lw5dg31pqtwEqpWlkZMDD0Avbsn669PWUoa rk2S8I9TjcH5yVh8Bbw+kkGOqJ+96sFe19xR/DBBd0939IJbQPGRxNNcBsmkTNFD 9r1dPzHBdtiyMKSm3J32cajuosaMFka4zrtL2VjjDmEzaKPwvY4w4iHLLImUxSxZ qPw4/12tWiw+HrKyMoU97zJc+2q3YImjDYeBAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUR/tY+XNyO6ZpJ+xQLo6hScW+J74wHwYDVR0jBBgwFoAU4OqIWn5pccmTQnd+ fd26ZdDrEx8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVRJTUUv NE9xSVduNXBjY21UUW5kLWZkMjZaZERyRXg4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80T3FJV241cGNjbVRRbmQtZmQyNlpkRHJFeDguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FVElNRS9SX3RZLVhOeU82WnBKLXhRTG82 aFNjVy1KNzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ57k MA0GCSqGSIb3DQEBCwUAA4IBAQBmGvTep4OUWfQuOKQ8FLL9jei9xZnw5gibPbUT Q6PRP11J7y0GCGg9mKcFxxADFKNKEwopLXE+FuBfKXeNljV9HqV/0nizyvioHAw9 MNWLgwnrTHZMi/2bGsN0MyyOb+L6NZal1DUXgD8Q0UMDLeoJjEli560fM1oYs7cJ gbCr9pmeCOGdXiudelqvhPsrnHW8PrtTirthspLC8OanoC6F6AZE2shvAg4CrUUg axvqgMsy6sZXPy59H/8WaiD5hNF7dobBMhg/AkPWdWXSn2eJKTMBvXoOqywCgd2P Ic3TJHO1ZuiKdDIbkjmP/5cz8bxfa73lDVRWbxgcSOz3Y5Uh -----END CERTIFICATE-----Generated at Tue Oct 21 00:11:35 2025 by rpki-client