$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1iN0ArsAENREh8o5na2Gwcr9nWk.roa File: 1iN0ArsAENREh8o5na2Gwcr9nWk.roa (raw, json) Hash identifier: NDz8Kd2vax8mb5j7BM0nV0huEhD58nPCfpapnfGsdwA= Subject key identifier: D6:23:74:02:BB:00:10:D4:44:87:CA:39:9D:AD:86:C1:CA:FD:9D:69 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 138A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1iN0ArsAENREh8o5na2Gwcr9nWk.roa Signing time: Fri 22 Aug 2025 08:59:24 +0000 ROA not before: Fri 22 Aug 2025 08:59:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 219.91.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5002 (0x138a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D6237402BB0010D44487CA399DAD86C1CAFD9D69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:00:0f:06:b7:4c:48:e7:d5:fd:5a:4e:ac:e4: 77:53:a3:0c:a4:c1:cc:79:85:61:52:b4:26:37:11: 1f:1a:fa:41:70:e5:87:98:61:a0:12:77:64:03:a0: a5:9d:80:39:05:b8:e2:d3:29:99:b1:3f:2f:89:d5: eb:ba:f5:aa:42:b8:54:5b:a5:d0:82:bf:58:c8:18: 84:82:ca:05:0b:36:90:24:a1:ef:c3:ec:20:dc:1b: b6:ac:0f:d5:b4:f0:ad:2b:f6:d0:ab:d2:f8:0d:6b: 7f:32:ba:75:7f:f1:e6:d9:90:ed:64:09:6d:88:2a: a0:e2:87:69:4c:76:36:32:96:40:a0:38:d0:f1:c6: 2b:a1:68:84:76:94:9a:98:ce:0e:cf:df:86:e9:d2: a8:0a:11:cd:54:ae:7d:7f:66:a8:90:06:bf:dd:90: c5:e9:7c:67:23:7b:3c:18:1b:da:dd:e4:3c:02:ae: 9c:da:21:3d:0a:b4:4b:eb:26:4e:33:89:c1:a9:85: 07:82:99:d5:84:f2:ff:2f:9f:c8:91:f4:2c:7d:6d: 31:9b:d8:68:70:e5:32:f6:57:c6:b2:9b:21:4b:40: ad:93:42:c3:7f:71:ee:89:03:95:ed:c0:90:08:90: a7:b5:30:83:26:ef:70:ce:f3:0f:b5:d3:2e:cb:53: eb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:23:74:02:BB:00:10:D4:44:87:CA:39:9D:AD:86:C1:CA:FD:9D:69 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1iN0ArsAENREh8o5na2Gwcr9nWk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.91.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1a:83:30:57:57:bc:35:9e:f5:88:c0:0b:ef:4d:39:fb:60:50: 98:9d:28:f3:5b:29:84:39:a3:a7:42:5b:8e:a1:5d:d1:e1:e5: b2:89:d5:13:17:e9:5b:88:a7:31:b0:14:84:87:d0:ff:2f:a6: 5b:e3:96:97:01:01:4d:ad:be:2d:96:9e:0e:2f:4d:e0:25:67: af:b6:6b:75:e1:8e:d7:1b:2a:74:98:c5:63:41:a4:24:5d:3f: df:76:d4:82:f0:94:a4:97:7a:86:84:62:b3:24:19:f5:92:18: ed:a6:15:2d:c4:de:81:4d:f4:d3:e0:0c:97:28:72:4c:eb:30: c2:47:c8:fd:54:76:c3:8e:6f:4a:e0:a3:8f:92:a7:0c:fe:76: a1:1d:6c:58:39:f2:fe:93:45:09:02:11:b7:b7:f1:d6:0a:2b: bb:26:69:cb:7a:55:97:e5:89:f3:3b:b2:42:ec:1f:63:61:1e: ae:27:fe:49:0d:a3:ca:3a:f7:78:c5:58:c3:ef:6e:aa:01:f7: 99:b6:b1:f3:b3:df:d7:7c:90:1a:71:eb:c0:fe:43:5c:ec:d0: 7e:0a:e6:f2:2a:24:45:04:11:2d:f2:af:05:d2:b4:a7:f7:56: 19:cb:99:17:d1:f9:68:f2:c4:53:6d:1f:cf:99:07:eb:9d:56: d0:70:d6:7b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ2MjM3NDAyQkIwMDEw RDQ0NDg3Q0EzOTlEQUQ4NkMxQ0FGRDlENjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5AA8Gt0xI59X9Wk6s5HdTowykwcx5hWFStCY3ER8a+kFw5YeY YaASd2QDoKWdgDkFuOLTKZmxPy+J1eu69apCuFRbpdCCv1jIGISCygULNpAkoe/D 7CDcG7asD9W08K0r9tCr0vgNa38yunV/8ebZkO1kCW2IKqDih2lMdjYylkCgONDx xiuhaIR2lJqYzg7P34bp0qgKEc1Urn1/ZqiQBr/dkMXpfGcjezwYG9rd5DwCrpza IT0KtEvrJk4zicGphQeCmdWE8v8vn8iR9Cx9bTGb2Ghw5TL2V8aymyFLQK2TQsN/ ce6JA5XtwJAIkKe1MIMm73DO8w+10y7LU+ufAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU1iN0ArsAENREh8o5na2Gwcr9nWkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzFpTjBBcnNBRU5SRWg4bzVuYTJHd2Ny OW5Xay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfbWwAwDQYJ KoZIhvcNAQELBQADggEBABqDMFdXvDWe9YjAC+9NOftgUJidKPNbKYQ5o6dCW46h XdHh5bKJ1RMX6VuIpzGwFISH0P8vplvjlpcBAU2tvi2Wng4vTeAlZ6+2a3Xhjtcb KnSYxWNBpCRdP9921ILwlKSXeoaEYrMkGfWSGO2mFS3E3oFN9NPgDJcockzrMMJH yP1UdsOOb0rgo4+Spwz+dqEdbFg58v6TRQkCEbe38dYKK7smact6VZflifM7skLs H2NhHq4n/kkNo8o693jFWMPvbqoB95m2sfOz39d8kBpx68D+Q1zs0H4K5vIqJEUE ES3yrwXStKf3VhnLmRfR+WjyxFNtH8+ZB+udVtBw1ns= -----END CERTIFICATE-----Generated at Sun Aug 24 14:24:05 2025 by rpki-client