$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/38jFlmLiLQKw5lLDmKlJh9Pxy2I.roa File: 38jFlmLiLQKw5lLDmKlJh9Pxy2I.roa (raw, json) Hash identifier: 0cn9ceCF5VrQcZfq22axt9XnFXM5ppwl2HbimdGIDsw= Subject key identifier: DF:C8:C5:96:62:E2:2D:02:B0:E6:52:C3:98:A9:49:87:D3:F1:CB:62 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13F6 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/38jFlmLiLQKw5lLDmKlJh9Pxy2I.roa Signing time: Fri 22 Aug 2025 08:59:56 +0000 ROA not before: Fri 22 Aug 2025 08:59:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24154 IP address blocks: 60.244.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5110 (0x13f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DFC8C59662E22D02B0E652C398A94987D3F1CB62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:98:21:a5:9e:14:16:98:af:dd:f6:2b:54:be: 93:45:1d:85:2f:ab:62:c4:20:90:e1:fe:ce:55:69: d2:68:69:a8:e7:1d:aa:da:ee:34:54:a0:e0:82:bd: 91:70:ef:a6:67:42:42:16:db:4f:fd:9c:a7:b8:58: e8:0e:54:08:d0:76:84:ef:32:f7:31:37:ee:ad:61: e2:f8:16:53:e2:cb:e2:41:f3:c7:c6:c1:03:4a:2b: 0d:e1:34:00:ee:84:b4:74:6c:f7:f2:4c:5d:3e:b8: 5b:98:bc:3f:f4:32:c3:b5:f8:63:2b:eb:fa:b9:86: 44:92:2d:3c:b6:27:39:8f:5a:68:b8:21:00:1a:2a: ac:90:93:51:0a:86:3d:ba:5c:2a:7a:38:1c:0f:22: cd:e6:4c:55:15:13:8e:f3:7a:7c:f7:cf:b2:a3:6d: 36:78:1d:e0:46:e2:5c:10:8c:d7:d9:00:84:12:73: ad:fa:1e:c3:14:5e:74:6a:8e:c4:bb:c6:b3:3c:06: 92:77:20:f5:24:70:47:58:6c:26:2f:4f:54:28:b3: c5:d9:07:26:cc:87:8c:16:0d:9b:9f:93:1e:12:6f: 77:48:8f:cd:3b:28:77:a5:82:74:af:83:8f:ea:05: 23:fc:76:df:8b:c7:5c:5f:6b:72:f1:54:45:ca:1e: d0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:C8:C5:96:62:E2:2D:02:B0:E6:52:C3:98:A9:49:87:D3:F1:CB:62 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/38jFlmLiLQKw5lLDmKlJh9Pxy2I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.0.0/24 Signature Algorithm: sha256WithRSAEncryption 68:17:7f:7d:a9:17:4b:8f:a4:1a:d4:46:d2:8b:cd:af:3b:13: 39:0d:77:6e:42:b2:67:7d:98:24:fb:a5:2c:76:6e:5d:b8:8d: 1e:8d:72:f0:f9:b4:f1:b5:18:7b:39:b2:20:32:8a:c6:58:11: 08:a3:84:3f:8f:b9:13:45:9b:61:e1:bd:4f:39:e4:b9:81:b7: 00:9d:7a:ce:59:1f:5c:ec:b7:c0:18:8c:90:23:96:22:87:64: 2e:73:00:fb:2d:8f:ac:3c:a5:a2:56:53:20:fd:1f:dc:3b:b6: 8b:6d:ae:49:fa:0c:24:70:bd:7c:e0:03:b1:e5:36:4b:16:0b: 30:46:d4:5e:b0:8d:d5:d8:d9:25:3e:73:17:a9:5d:6f:9f:5a: 6f:35:ba:32:e1:74:e4:4b:91:71:27:07:21:04:dd:34:c0:6b: ff:94:68:7f:2e:58:59:70:89:d8:2a:22:c1:d9:7b:c7:d3:5c: 6b:2b:66:9e:e2:c8:44:b6:b9:a5:3a:fc:1d:9f:1d:fc:8d:a0: 4f:6e:b2:70:02:4d:6f:67:e8:4c:70:7b:a9:9b:dd:80:fa:d2: d3:46:31:6d:a4:a9:e2:e5:f9:13:14:d5:c6:e3:45:91:1d:2e: 36:43:c4:ce:f7:bb:18:24:75:5b:7f:93:ff:80:1d:a0:80:07: 02:e7:7e:5d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE/YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERGQzhDNTk2NjJFMjJE MDJCMEU2NTJDMzk4QTk0OTg3RDNGMUNCNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcmCGlnhQWmK/d9itUvpNFHYUvq2LEIJDh/s5VadJoaajnHara 7jRUoOCCvZFw76ZnQkIW20/9nKe4WOgOVAjQdoTvMvcxN+6tYeL4FlPiy+JB88fG wQNKKw3hNADuhLR0bPfyTF0+uFuYvD/0MsO1+GMr6/q5hkSSLTy2JzmPWmi4IQAa KqyQk1EKhj26XCp6OBwPIs3mTFUVE47zenz3z7KjbTZ4HeBG4lwQjNfZAIQSc636 HsMUXnRqjsS7xrM8BpJ3IPUkcEdYbCYvT1Qos8XZBybMh4wWDZufkx4Sb3dIj807 KHelgnSvg4/qBSP8dt+Lx1xfa3LxVEXKHtCnAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU38jFlmLiLQKw5lLDmKlJh9Pxy2IwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzM4akZsbUxpTFFLdzVsTERtS2xKaDlQ eHkySS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA89AAwDQYJ KoZIhvcNAQELBQADggEBAGgXf32pF0uPpBrURtKLza87EzkNd25Csmd9mCT7pSx2 bl24jR6NcvD5tPG1GHs5siAyisZYEQijhD+PuRNFm2HhvU855LmBtwCdes5ZH1zs t8AYjJAjliKHZC5zAPstj6w8paJWUyD9H9w7tottrkn6DCRwvXzgA7HlNksWCzBG 1F6wjdXY2SU+cxepXW+fWm81ujLhdORLkXEnByEE3TTAa/+UaH8uWFlwidgqIsHZ e8fTXGsrZp7iyES2uaU6/B2fHfyNoE9usnACTW9n6Exwe6mb3YD60tNGMW2kqeLl +RMU1cbjRZEdLjZDxM73uxgkdVt/k/+AHaCABwLnfl0= -----END CERTIFICATE-----Generated at Sun Aug 24 14:16:33 2025 by rpki-client