$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/4j1WLCbb3eameC5Df7bpcFMSRgs.roa File: 4j1WLCbb3eameC5Df7bpcFMSRgs.roa (raw, json) Hash identifier: 5jJcomGCZDlVeuGJt+XhErg5i6zDKkepBNqtgVuQVy4= Subject key identifier: E2:3D:56:2C:26:DB:DD:E6:A6:78:2E:43:7F:B6:E9:70:53:12:46:0B Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1418 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4j1WLCbb3eameC5Df7bpcFMSRgs.roa Signing time: Fri 22 Aug 2025 09:00:04 +0000 ROA not before: Fri 22 Aug 2025 09:00:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131591 IP address blocks: 101.136.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5144 (0x1418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E23D562C26DBDDE6A6782E437FB6E9705312460B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:d9:a1:3a:7f:2c:75:31:d2:ec:40:77:4e:6c: 4b:c6:4f:4f:98:20:82:37:13:e5:7d:0f:27:c6:41: 12:1f:d1:eb:09:ac:8e:4d:46:d4:3f:2a:06:f2:07: 89:9d:79:40:20:4b:90:d6:47:e2:0c:cc:d8:ab:48: 99:10:6a:3c:f9:ed:0e:46:5c:43:e3:ff:ee:b4:37: d3:65:0a:43:57:05:ff:2a:a2:5f:d6:f3:3d:a4:57: 98:ab:30:14:73:93:38:e6:64:78:f4:5b:b1:f3:df: b5:2f:9c:6a:93:33:30:dc:34:8f:a6:0c:7c:e2:a8: e8:31:e1:c7:27:12:fc:87:53:26:69:2f:41:d8:07: 9c:88:c2:f1:fe:bd:95:74:ad:56:32:57:25:13:89: 26:57:72:bc:bd:91:17:44:5a:5f:05:10:9d:2a:be: d7:b8:96:4c:24:ea:2f:6a:ce:83:2a:04:90:f4:72: 8e:64:ff:3e:ef:96:16:60:c8:d2:12:70:b4:c1:97: 0b:98:0e:5f:d8:55:f8:56:ef:d5:a3:4f:98:79:de: 65:c6:83:d9:bc:2d:17:fd:65:a0:c6:a2:aa:2d:99: 52:1a:e6:3c:7d:16:19:bf:b9:28:17:c7:5b:a4:f4: 2c:eb:94:1f:35:37:b7:49:12:dc:5d:56:09:d6:c0: a0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3D:56:2C:26:DB:DD:E6:A6:78:2E:43:7F:B6:E9:70:53:12:46:0B X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4j1WLCbb3eameC5Df7bpcFMSRgs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.136.0.0/14 Signature Algorithm: sha256WithRSAEncryption bf:37:4b:ef:35:12:5f:77:47:98:7a:50:56:8d:79:01:4d:fe: 94:09:9d:22:8d:4d:38:2b:cf:f0:95:04:ff:6a:63:00:0b:e3: 50:f7:c0:3a:73:7a:e9:f5:0d:5c:8c:7c:02:f5:2f:da:47:c3: b3:4c:d8:04:a9:62:ea:02:db:dd:4a:ce:17:a7:3e:8f:1d:c5: 61:71:37:35:ea:c0:5d:8a:a8:4e:bd:88:13:3e:bc:8c:42:90: be:41:6f:8f:34:79:8f:7f:33:7d:43:08:14:f6:dc:47:75:ad: 20:d6:d8:8e:69:bc:97:28:81:a1:e3:06:39:d9:69:18:b2:2b: f2:32:7e:e8:cd:66:1b:c4:de:34:9c:cc:7b:98:48:50:1e:32: 52:67:f7:63:51:26:80:0f:ea:34:4a:5e:f9:dc:e4:19:1f:1e: 9b:6b:ce:d3:1d:4d:68:91:8f:f4:a4:f6:f7:f9:a8:f9:04:25: 53:71:69:9c:7c:3f:1d:d4:cc:f5:7e:7c:a3:b8:8a:b6:1a:9b: 4a:e1:09:48:c8:09:15:57:69:e5:4d:14:7a:57:58:69:21:de: 0a:13:55:2f:be:29:5d:a4:27:69:8c:aa:81:98:1f:36:4b:b2: b5:3d:32:ca:1f:a0:a5:d0:7f:14:bc:46:f8:2a:e2:a8:6f:c2: c1:d9:f4:de -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICFBgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUyM0Q1NjJDMjZEQkRE RTZBNjc4MkU0MzdGQjZFOTcwNTMxMjQ2MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD32aE6fyx1MdLsQHdObEvGT0+YIII3E+V9DyfGQRIf0esJrI5N RtQ/KgbyB4mdeUAgS5DWR+IMzNirSJkQajz57Q5GXEPj/+60N9NlCkNXBf8qol/W 8z2kV5irMBRzkzjmZHj0W7Hz37UvnGqTMzDcNI+mDHziqOgx4ccnEvyHUyZpL0HY B5yIwvH+vZV0rVYyVyUTiSZXcry9kRdEWl8FEJ0qvte4lkwk6i9qzoMqBJD0co5k /z7vlhZgyNIScLTBlwuYDl/YVfhW79WjT5h53mXGg9m8LRf9ZaDGoqotmVIa5jx9 Fhm/uSgXx1uk9CzrlB81N7dJEtxdVgnWwKBTAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU4j1WLCbb3eameC5Df7bpcFMSRgswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzRqMVdMQ2JiM2VhbWVDNURmN2JwY0ZN U1Jncy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwJliDANBgkq hkiG9w0BAQsFAAOCAQEAvzdL7zUSX3dHmHpQVo15AU3+lAmdIo1NOCvP8JUE/2pj AAvjUPfAOnN66fUNXIx8AvUv2kfDs0zYBKli6gLb3UrOF6c+jx3FYXE3NerAXYqo Tr2IEz68jEKQvkFvjzR5j38zfUMIFPbcR3WtINbYjmm8lyiBoeMGOdlpGLIr8jJ+ 6M1mG8TeNJzMe5hIUB4yUmf3Y1EmgA/qNEpe+dzkGR8em2vO0x1NaJGP9KT29/mo +QQlU3FpnHw/HdTM9X58o7iKthqbSuEJSMgJFVdp5U0UeldYaSHeChNVL74pXaQn aYyqgZgfNkuytT0yyh+gpdB/FLxG+CriqG/Cwdn03g== -----END CERTIFICATE-----Generated at Sun Aug 24 14:15:05 2025 by rpki-client