$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1i0ZelrAEAqsPbr_A97WIKVNylc.roa File: 1i0ZelrAEAqsPbr_A97WIKVNylc.roa (raw, json) Hash identifier: 6Ut4iFrbvtyDUYXlgx3k8Xv+2hM4ooSdA0nDs1xqjwU= Subject key identifier: D6:2D:19:7A:5A:C0:10:0A:AC:3D:BA:FF:03:DE:D6:20:A5:4D:CA:57 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 138C Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1i0ZelrAEAqsPbr_A97WIKVNylc.roa Signing time: Fri 22 Aug 2025 08:59:24 +0000 ROA not before: Fri 22 Aug 2025 08:59:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 124.218.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5004 (0x138c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D62D197A5AC0100AAC3DBAFF03DED620A54DCA57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:58:7c:66:d1:0e:50:bb:2f:3d:77:a0:7f:de: 84:c1:33:a9:24:27:59:3d:28:41:cd:5b:be:91:b0: dd:19:32:fb:11:52:a2:8f:9a:ac:cd:2a:f0:52:be: c5:e2:61:9d:70:c4:81:12:04:7e:4e:b6:49:1f:62: 53:94:0c:9a:09:8b:65:5c:51:23:af:8a:37:0c:df: a5:96:98:41:7f:b5:94:ca:ae:65:f3:5f:d0:49:17: 01:6c:83:50:aa:c8:05:77:44:7e:e5:8b:b0:c9:20: 43:1f:00:27:c4:0a:a8:de:ad:f1:55:68:35:4f:e9: 61:b2:90:6c:cf:b3:26:1f:94:b3:25:08:a7:0b:9d: a0:af:f2:be:5b:e5:fe:d2:73:78:ce:72:9b:92:05: cb:f2:f3:0c:41:4d:90:7f:a0:ce:6b:4a:a6:80:48: 60:16:a1:53:d1:f4:b2:d9:1e:ca:74:0e:6c:7e:1c: 69:2b:ad:0f:aa:b1:43:45:21:4e:83:38:43:40:87: 6d:be:54:ad:70:d0:0a:92:7f:83:46:e8:73:3c:1f: 02:92:27:ac:92:9e:dc:ea:ee:50:1e:4d:91:03:8f: eb:0e:a3:38:94:61:0e:ac:61:96:e7:85:b0:7b:bf: fe:26:03:5e:76:a9:b2:e7:7d:37:39:9e:3f:59:2b: 7c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:2D:19:7A:5A:C0:10:0A:AC:3D:BA:FF:03:DE:D6:20:A5:4D:CA:57 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1i0ZelrAEAqsPbr_A97WIKVNylc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.174.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:43:85:aa:a8:4e:71:b7:f0:93:db:fb:76:d9:56:ae:cb:0a: a4:76:77:fd:42:0f:90:60:7d:dc:b7:7f:cc:9e:26:e6:9a:1b: f5:e3:5c:3e:2d:45:77:5f:bc:84:4e:5e:5d:e6:a2:00:50:96: c5:08:d5:1f:ba:29:07:c8:5d:56:58:c9:df:55:60:91:64:15: 8c:b3:d0:d8:62:21:c4:8e:e8:8c:c5:e7:87:21:5f:79:f6:ac: eb:dd:9a:66:b0:b2:70:ca:2f:65:5d:47:d3:b9:1d:d7:12:dc: 72:3f:35:0f:8b:2a:55:4f:da:9e:b7:99:1c:e4:e0:d5:9e:4e: e5:01:53:4a:af:c1:26:ca:f2:65:50:3e:56:73:39:70:f4:23: 1a:93:e3:c1:c3:3f:ff:f5:17:85:c7:6b:03:9e:50:e7:45:1b: 0a:bb:d8:f5:e8:3f:66:8c:a9:82:25:33:95:63:5b:ae:34:a1: 7b:a3:ae:12:4f:92:6b:08:83:01:c6:eb:d2:77:d2:d7:52:4c: 1c:5a:d8:3a:09:ba:34:93:1e:13:20:60:04:e6:28:55:c7:23: 41:c4:ac:4a:c7:a0:8d:9e:b0:c4:a8:b9:a6:63:9b:22:91:da: e0:ca:f6:43:70:51:31:59:36:26:78:b6:b9:6b:e8:52:12:c7: 25:dd:8a:2c -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE4wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ2MkQxOTdBNUFDMDEw MEFBQzNEQkFGRjAzREVENjIwQTU0RENBNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIWHxm0Q5Quy89d6B/3oTBM6kkJ1k9KEHNW76RsN0ZMvsRUqKP mqzNKvBSvsXiYZ1wxIESBH5OtkkfYlOUDJoJi2VcUSOvijcM36WWmEF/tZTKrmXz X9BJFwFsg1CqyAV3RH7li7DJIEMfACfECqjerfFVaDVP6WGykGzPsyYflLMlCKcL naCv8r5b5f7Sc3jOcpuSBcvy8wxBTZB/oM5rSqaASGAWoVPR9LLZHsp0Dmx+HGkr rQ+qsUNFIU6DOENAh22+VK1w0AqSf4NG6HM8HwKSJ6ySntzq7lAeTZEDj+sOoziU YQ6sYZbnhbB7v/4mA152qbLnfTc5nj9ZK3zzAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU1i0ZelrAEAqsPbr/A97WIKVNylcwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzFpMFplbHJBRUFxc1Bicl9BOTdXSUtW TnlsYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB82q4wDQYJ KoZIhvcNAQELBQADggEBAB5DhaqoTnG38JPb+3bZVq7LCqR2d/1CD5Bgfdy3f8ye JuaaG/XjXD4tRXdfvIROXl3mogBQlsUI1R+6KQfIXVZYyd9VYJFkFYyz0NhiIcSO 6IzF54chX3n2rOvdmmawsnDKL2VdR9O5HdcS3HI/NQ+LKlVP2p63mRzk4NWeTuUB U0qvwSbK8mVQPlZzOXD0IxqT48HDP//1F4XHawOeUOdFGwq72PXoP2aMqYIlM5Vj W640oXujrhJPkmsIgwHG69J30tdSTBxa2DoJujSTHhMgYATmKFXHI0HErErHoI2e sMSouaZjmyKR2uDK9kNwUTFZNiZ4trlr6FISxyXdiiw= -----END CERTIFICATE-----Generated at Sun Aug 24 13:51:18 2025 by rpki-client