$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/2pOMt-J74A1WWbTnz_hRaqV-ZDA.roa File: 2pOMt-J74A1WWbTnz_hRaqV-ZDA.roa (raw, json) Hash identifier: FHukgApwDnr6YZ7WgNRhMTEb6Y3KDNvx9n4LovmvWIk= Subject key identifier: DA:93:8C:B7:E2:7B:E0:0D:56:59:B4:E7:CF:F8:51:6A:A5:7E:64:30 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1464 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/2pOMt-J74A1WWbTnz_hRaqV-ZDA.roa Signing time: Fri 22 Aug 2025 09:00:22 +0000 ROA not before: Fri 22 Aug 2025 09:00:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 218.187.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5220 (0x1464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DA938CB7E27BE00D5659B4E7CFF8516AA57E6430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e5:02:ba:0c:a0:4c:e4:21:56:f5:85:7f:e6: 0d:8f:79:3f:3e:b7:f2:14:e6:c9:f5:8a:bd:23:ee: 18:9f:4e:e5:a8:54:e8:ab:a5:78:64:43:21:b8:82: d8:f6:ad:18:69:12:b1:e1:3e:6b:8c:37:62:6a:31: 86:18:51:20:3d:86:70:61:98:df:46:92:7d:cd:de: 98:38:e2:75:a6:3c:5a:31:00:60:29:8a:22:2a:e2: c7:66:d2:01:2f:c0:bc:b2:cf:07:21:92:b9:97:15: 69:f3:f3:0d:ce:26:e0:b6:3f:6b:4b:e4:ad:c8:44: cf:6a:49:b8:97:40:5a:3f:c8:f3:28:43:b3:33:5f: 9c:91:7d:c1:4b:cb:90:db:1f:b3:38:c9:74:c9:b4: a3:70:07:e8:8f:d4:b0:5a:0b:7b:80:19:20:7a:ca: 61:95:72:d9:8a:2a:e0:8e:3c:b8:99:39:da:0b:b4: 56:73:dc:75:0b:90:71:6c:a0:de:1f:d8:91:df:d1: b2:b3:bb:85:30:7b:04:4f:8f:7c:bc:81:7e:77:c7: 9b:64:a9:64:57:6e:c1:6c:a5:16:48:63:a0:c4:07: 36:01:13:5d:a4:3c:f9:79:58:00:23:6f:e7:52:00: c6:69:3c:f5:7a:4e:5b:9e:3c:9e:77:e1:9d:41:c7: 12:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:93:8C:B7:E2:7B:E0:0D:56:59:B4:E7:CF:F8:51:6A:A5:7E:64:30 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/2pOMt-J74A1WWbTnz_hRaqV-ZDA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.187.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:98:c8:1f:10:b8:63:5e:00:61:80:cf:9e:45:fc:95:61:68: 45:98:dc:73:ba:09:9d:58:74:5e:c2:79:3d:7d:19:5a:38:4d: d3:51:19:7e:67:05:f0:9a:10:99:49:9e:a4:a4:9c:b7:7e:71: da:f3:30:11:5c:43:1f:68:b5:4e:ab:b8:84:fe:6d:17:64:06: c1:f1:f8:53:b7:eb:3a:f2:4a:65:97:6e:4c:20:34:15:d5:5d: 36:cf:ac:8f:75:6e:fd:63:29:56:8f:70:81:71:da:02:3b:8b: 0d:30:8c:02:95:08:7d:c4:f2:4c:0c:29:29:78:05:d9:81:37: cf:8c:ed:3f:16:5a:f5:c2:f1:cd:aa:0c:12:26:2e:b1:0e:54: ad:20:3c:c1:56:99:ad:a7:91:96:e8:92:14:fb:92:aa:ce:50: 20:15:19:2d:6e:06:a9:8f:e7:78:11:72:b3:d4:dc:0e:77:b0: b6:d1:86:ed:77:e0:8c:4d:d8:4f:c1:6b:98:f2:c1:f2:ba:dc: c2:a0:ba:ba:ea:76:ff:cd:11:16:e7:83:6e:7a:96:cb:5e:87: 14:eb:62:f2:e2:1b:3e:d9:d1:02:d5:dd:98:d8:5d:57:1f:8b: 86:8c:e7:af:71:49:0d:55:66:a0:de:14:f1:ce:fe:10:0b:ae: 91:af:ae:1e -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICFGQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERBOTM4Q0I3RTI3QkUw MEQ1NjU5QjRFN0NGRjg1MTZBQTU3RTY0MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb5QK6DKBM5CFW9YV/5g2PeT8+t/IU5sn1ir0j7hifTuWoVOir pXhkQyG4gtj2rRhpErHhPmuMN2JqMYYYUSA9hnBhmN9Gkn3N3pg44nWmPFoxAGAp iiIq4sdm0gEvwLyyzwchkrmXFWnz8w3OJuC2P2tL5K3IRM9qSbiXQFo/yPMoQ7Mz X5yRfcFLy5DbH7M4yXTJtKNwB+iP1LBaC3uAGSB6ymGVctmKKuCOPLiZOdoLtFZz 3HULkHFsoN4f2JHf0bKzu4UwewRPj3y8gX53x5tkqWRXbsFspRZIY6DEBzYBE12k PPl5WAAjb+dSAMZpPPV6TluePJ534Z1BxxJ/AgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU2pOMt+J74A1WWbTnz/hRaqV+ZDAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzJwT010LUo3NEExV1diVG56X2hSYXFW LVpEQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDauzANBgkq hkiG9w0BAQsFAAOCAQEAmpjIHxC4Y14AYYDPnkX8lWFoRZjcc7oJnVh0XsJ5PX0Z WjhN01EZfmcF8JoQmUmepKSct35x2vMwEVxDH2i1Tqu4hP5tF2QGwfH4U7frOvJK ZZduTCA0FdVdNs+sj3Vu/WMpVo9wgXHaAjuLDTCMApUIfcTyTAwpKXgF2YE3z4zt PxZa9cLxzaoMEiYusQ5UrSA8wVaZraeRluiSFPuSqs5QIBUZLW4GqY/neBFys9Tc DnewttGG7XfgjE3YT8FrmPLB8rrcwqC6uup2/80RFueDbnqWy16HFOti8uIbPtnR AtXdmNhdVx+Lhoznr3FJDVVmoN4U8c7+EAuuka+uHg== -----END CERTIFICATE-----Generated at Sun Aug 24 14:19:30 2025 by rpki-client