$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/7nEAPk0l36qTOO7g9HcDNXVlhq8.roa File: 7nEAPk0l36qTOO7g9HcDNXVlhq8.roa (raw, json) Hash identifier: 5MDkWwmkqx4lCRZ0uMYENr6uovkY0augoD8XPFvbtlk= Subject key identifier: EE:71:00:3E:4D:25:DF:AA:93:38:EE:E0:F4:77:03:35:75:65:86:AF Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1458 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7nEAPk0l36qTOO7g9HcDNXVlhq8.roa Signing time: Fri 22 Aug 2025 09:00:19 +0000 ROA not before: Fri 22 Aug 2025 09:00:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 218.34.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5208 (0x1458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EE71003E4D25DFAA9338EEE0F4770335756586AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7f:5d:20:a6:09:64:01:85:6d:22:74:af:19: 59:f3:59:b1:b2:26:a7:e2:ac:34:f3:2b:85:44:d3: b2:1d:59:52:eb:c0:90:76:77:7e:11:8c:3a:c0:93: 8a:46:d6:bc:8f:df:af:60:e7:16:61:5d:44:ef:a9: 92:bc:06:fc:bc:37:17:fc:7f:79:81:9f:3d:b5:b2: f2:9b:f7:d0:ad:4d:cf:14:fe:d8:59:48:82:f3:59: 15:6f:1e:64:60:9c:87:31:ac:c6:48:d4:3e:c8:b1: cb:4f:6a:44:be:0f:c7:7c:2f:95:03:64:b7:4d:2c: c3:83:e4:30:cc:f0:25:83:1b:2c:9f:d7:58:1b:cb: d6:82:5d:80:3c:10:1f:09:71:a8:d3:b1:25:5f:eb: 83:0e:52:f0:ee:5d:a3:e0:a2:e8:ba:9a:6b:fb:53: 8c:2c:13:3a:73:fc:90:50:11:cd:8a:76:bc:ac:1c: a3:90:e1:fe:f8:c0:44:14:16:54:51:33:0e:be:80: 64:2b:19:42:55:45:ad:79:b0:0c:54:e2:63:27:c5: c4:1a:4d:f1:a1:99:9f:64:06:3f:a1:83:fe:c6:40: d6:b3:9f:59:71:13:74:0a:ef:49:34:37:8b:e5:9d: cc:ff:d3:c2:f8:d6:d7:bc:37:0b:0f:10:f0:06:c3: 6e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:71:00:3E:4D:25:DF:AA:93:38:EE:E0:F4:77:03:35:75:65:86:AF X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7nEAPk0l36qTOO7g9HcDNXVlhq8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.34.108.0/22 Signature Algorithm: sha256WithRSAEncryption 69:e1:6c:2c:ac:ed:77:cc:97:2e:15:35:27:3a:cb:49:40:d3: e7:46:ea:81:03:11:e1:06:ec:78:bf:30:02:0c:ff:ed:74:83: 0d:b5:b7:d5:38:10:0f:0e:7b:65:6c:51:58:d6:53:ec:dd:6d: c9:3d:cc:fa:82:0a:02:d5:ee:5c:7b:e1:31:e4:62:da:52:27: 2b:d0:1a:b2:27:4e:46:d4:97:95:f7:32:37:54:de:39:d4:b4: 1f:e6:f7:2c:a9:10:01:cf:92:a1:f1:1d:f7:2b:52:08:ce:db: 08:04:75:69:84:61:13:78:fc:a4:3b:a4:4f:d9:14:ac:ba:8d: 82:d5:43:6a:dd:73:18:c0:5f:69:d2:39:2e:75:ef:64:d0:e3: 01:4e:97:a9:db:47:7a:a2:e2:6a:4d:21:c8:8c:93:3d:77:52: 5b:4f:06:5e:9c:5b:30:e3:81:0c:b2:27:99:d4:63:6b:52:58: 26:a7:44:c2:18:59:61:52:9b:3c:39:e4:56:93:72:3b:9b:9a: d9:5a:b6:d6:2c:82:65:17:ab:8c:7d:23:3e:4f:d1:67:3f:00: 28:e6:41:05:01:97:d6:00:07:ca:4d:e8:08:8a:8b:46:49:50: 0e:0d:09:54:a4:ee:96:4e:b1:8e:19:76:61:dc:2e:00:f8:de: ee:ef:20:8d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFFgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVFNzEwMDNFNEQyNURG QUE5MzM4RUVFMEY0NzcwMzM1NzU2NTg2QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkf10gpglkAYVtInSvGVnzWbGyJqfirDTzK4VE07IdWVLrwJB2 d34RjDrAk4pG1ryP369g5xZhXUTvqZK8Bvy8Nxf8f3mBnz21svKb99CtTc8U/thZ SILzWRVvHmRgnIcxrMZI1D7IsctPakS+D8d8L5UDZLdNLMOD5DDM8CWDGyyf11gb y9aCXYA8EB8JcajTsSVf64MOUvDuXaPgoui6mmv7U4wsEzpz/JBQEc2KdrysHKOQ 4f74wEQUFlRRMw6+gGQrGUJVRa15sAxU4mMnxcQaTfGhmZ9kBj+hg/7GQNazn1lx E3QK70k0N4vlncz/08L41te8NwsPEPAGw25jAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU7nEAPk0l36qTOO7g9HcDNXVlhq8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzduRUFQazBsMzZxVE9PN2c5SGNETlhW bGhxOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALaImwwDQYJ KoZIhvcNAQELBQADggEBAGnhbCys7XfMly4VNSc6y0lA0+dG6oEDEeEG7Hi/MAIM /+10gw21t9U4EA8Oe2VsUVjWU+zdbck9zPqCCgLV7lx74THkYtpSJyvQGrInTkbU l5X3MjdU3jnUtB/m9yypEAHPkqHxHfcrUgjO2wgEdWmEYRN4/KQ7pE/ZFKy6jYLV Q2rdcxjAX2nSOS5172TQ4wFOl6nbR3qi4mpNIciMkz13UltPBl6cWzDjgQyyJ5nU Y2tSWCanRMIYWWFSmzw55FaTcjubmtlattYsgmUXq4x9Iz5P0Wc/ACjmQQUBl9YA B8pN6AiKi0ZJUA4NCVSk7pZOsY4ZdmHcLgD43u7vII0= -----END CERTIFICATE-----Generated at Sun Aug 24 13:51:14 2025 by rpki-client