$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/a-34vFk51zoYFLydAL6smF7fNSk.roa File: a-34vFk51zoYFLydAL6smF7fNSk.roa (raw, json) Hash identifier: TChg2MvnqPqUHQJDHWyMTWSu10rYCt64+Vpowcpzx+Q= Subject key identifier: 6B:ED:F8:BC:59:39:D7:3A:18:14:BC:9D:00:BE:AC:98:5E:DF:35:29 Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Certificate serial: 0B23 Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/a-34vFk51zoYFLydAL6smF7fNSk.roa Signing time: Fri 22 Aug 2025 08:44:14 +0000 ROA not before: Fri 22 Aug 2025 08:44:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131671 IP address blocks: 2405:a0c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2851 (0xb23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Validity Not Before: Aug 22 08:44:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6BEDF8BC5939D73A1814BC9D00BEAC985EDF3529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:00:9b:ba:42:37:e9:b7:17:d5:02:a9:bb:6d: 2c:c0:38:f3:2a:54:91:45:09:46:31:de:07:a6:6a: 7a:6c:a3:d2:57:88:1c:42:b9:9f:01:e5:c4:85:22: 2a:a9:af:8a:e9:61:cf:ca:8e:9d:ee:6b:bb:00:2e: e1:85:1e:61:c7:13:0a:de:cc:9b:48:fb:fc:ec:e8: 69:78:64:49:56:94:04:86:ef:e4:c7:99:ed:8a:2d: 41:dc:87:6d:22:19:04:d3:56:ea:9d:d1:f4:4b:f0: 5f:98:79:e9:22:29:2d:9a:e2:81:dd:a4:dc:1b:37: 1a:aa:ab:fd:e2:92:07:6e:ef:92:d7:0e:28:d7:3a: 47:5f:16:4a:f5:3e:41:ca:dc:f8:4f:81:9d:a8:cc: 1d:a4:71:89:21:f5:2c:55:c9:e3:c6:98:f5:11:a2: d5:93:ab:ad:cd:40:37:22:ab:6a:63:d3:42:be:ab: 08:e9:cc:fd:c7:cd:78:cd:dc:2e:2f:98:c3:93:c8: c3:27:4b:0b:dd:87:50:6e:94:d6:7c:bc:9e:13:12: d7:ca:99:21:86:b5:87:eb:a6:b0:ea:8a:42:45:0e: 4f:ff:c3:12:d1:e2:01:56:1d:24:0e:fd:97:54:d6: bb:50:56:28:c0:e6:8e:21:57:c0:70:7a:97:13:ae: 94:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:ED:F8:BC:59:39:D7:3A:18:14:BC:9D:00:BE:AC:98:5E:DF:35:29 X509v3 Authority Key Identifier: keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/a-34vFk51zoYFLydAL6smF7fNSk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a0c0::/32 Signature Algorithm: sha256WithRSAEncryption 9f:1d:8e:a5:9b:3c:b9:c9:ed:19:65:fc:e2:5a:17:2f:f4:8e: 35:35:13:56:39:09:0b:88:6f:ae:3c:22:ae:2f:af:72:a0:dc: 36:8a:e6:0c:b7:bb:07:a9:ae:32:63:20:6b:95:b5:39:10:a2: 0a:de:4c:7c:13:f1:5e:66:8c:a4:e2:ec:44:6e:72:0e:d8:e8: b4:72:81:d6:f8:0a:40:8f:83:75:c7:de:fc:3a:04:0c:fa:8a: 23:9c:6d:bb:9d:ab:0b:9f:07:a2:e5:57:21:a9:07:31:3e:a7: 4a:e1:b8:09:20:13:30:05:f8:9c:20:ab:c2:17:00:8b:13:b0: e4:b9:76:de:72:d6:a5:f2:15:e2:f5:36:b8:83:d0:fb:95:a6: cf:0d:de:a2:db:37:b7:d4:49:15:d7:c3:04:ca:a6:8a:d7:f9: e2:b6:12:70:f3:da:9a:96:2e:d1:b2:4e:af:86:7d:87:5e:ff: fb:53:8a:ee:7a:83:8e:e4:89:58:10:4c:63:12:2b:8b:b3:92: 2c:6f:8a:c1:2d:2c:03:eb:f9:89:6f:df:1f:ce:0e:65:22:d8: b7:f5:eb:a6:87:cb:e4:f6:6e:9a:c4:0f:9e:62:b2:06:18:1e: 8c:98:d6:21:1d:f2:9c:2c:e8:79:59:84:79:49:3c:59:0d:f4: 25:18:0a:57 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICCyMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTlE RUYyQ0Y4MjhGMEQ5QUI2QUQ5NEY0MjYxMzE3NjREMjU0Q0M1QzAeFw0yNTA4MjIw ODQ0MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZCRURGOEJDNTkzOUQ3 M0ExODE0QkM5RDAwQkVBQzk4NUVERjM1MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3AJu6QjfptxfVAqm7bSzAOPMqVJFFCUYx3gemanpso9JXiBxC uZ8B5cSFIiqpr4rpYc/Kjp3ua7sALuGFHmHHEwrezJtI+/zs6Gl4ZElWlASG7+TH me2KLUHch20iGQTTVuqd0fRL8F+YeekiKS2a4oHdpNwbNxqqq/3ikgdu75LXDijX OkdfFkr1PkHK3PhPgZ2ozB2kcYkh9SxVyePGmPURotWTq63NQDciq2pj00K+qwjp zP3HzXjN3C4vmMOTyMMnSwvdh1BulNZ8vJ4TEtfKmSGGtYfrprDqikJFDk//wxLR 4gFWHSQO/ZdU1rtQVijA5o4hV8BwepcTrpRdAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUa+34vFk51zoYFLydAL6smF7fNSkwHwYDVR0jBBgwFoAUWd7yz4KPDZq2rZT0 JhMXZNJUzFwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT WS9XZDd5ejRLUERacTJyWlQwSmhNWFpOSlV6RncuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1dkN3l6NEtQRFpxMnJaVDBKaE1YWk5KVXpGdy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTlRBU1kvYS0zNHZGazUxem9ZRkx5 ZEFMNnNtRjdmTlNrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQFoMAwDQYJKoZIhvcNAQELBQADggEBAJ8djqWbPLnJ7Rll/OJaFy/0jjU1E1Y5 CQuIb648Iq4vr3Kg3DaK5gy3uweprjJjIGuVtTkQogreTHwT8V5mjKTi7ERucg7Y 6LRygdb4CkCPg3XH3vw6BAz6iiOcbbudqwufB6LlVyGpBzE+p0rhuAkgEzAF+Jwg q8IXAIsTsOS5dt5y1qXyFeL1NriD0PuVps8N3qLbN7fUSRXXwwTKporX+eK2EnDz 2pqWLtGyTq+GfYde//tTiu56g47kiVgQTGMSK4uzkixvisEtLAPr+Ylv3x/ODmUi 2Lf166aHy+T2bprED55isgYYHoyY1iEd8pws6HlZhHlJPFkN9CUYClc= -----END CERTIFICATE-----Generated at Sun Aug 24 13:42:16 2025 by rpki-client