$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/7xCrTSANGEayujpwf6-RfBPxNyo.roa File: 7xCrTSANGEayujpwf6-RfBPxNyo.roa (raw, json) Hash identifier: HISUYxoeryqLLczCqGpvaK0kxk/4fUlSOCkkNou9ySw= Subject key identifier: EF:10:AB:4D:20:0D:18:46:B2:BA:3A:70:7F:AF:91:7C:13:F1:37:2A Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1440 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7xCrTSANGEayujpwf6-RfBPxNyo.roa Signing time: Fri 22 Aug 2025 09:00:13 +0000 ROA not before: Fri 22 Aug 2025 09:00:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 222.157.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5184 (0x1440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EF10AB4D200D1846B2BA3A707FAF917C13F1372A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:42:f5:90:cc:7d:ab:0e:9a:bf:2f:ac:52:9d: 7d:62:c0:3d:86:cc:d3:95:8c:2e:a5:75:9c:b1:17: ba:52:04:ff:b4:41:34:cb:d6:61:b3:79:3e:13:42: 23:eb:1d:49:41:78:0d:7a:31:8a:13:71:b1:15:7f: 40:0a:e0:16:a9:cd:4b:a8:64:31:db:55:34:6c:f4: fd:6f:84:2c:65:13:72:b6:ae:ad:d1:76:80:fb:64: 50:7e:6c:39:2c:69:87:b9:f4:24:2e:d5:60:03:0b: 64:d9:66:de:eb:51:1d:2a:a3:82:df:3b:07:07:74: f2:d5:97:11:01:87:de:1f:66:54:dd:01:70:f4:6c: 99:d0:0b:c1:22:58:d3:22:73:4b:b1:49:d3:0e:96: 3d:b6:cc:d2:01:65:90:04:7b:48:ce:ad:e9:63:ec: 68:72:1e:cb:1f:c8:b5:64:0f:f6:8a:25:d5:0b:af: 21:f3:1d:66:ec:92:d5:79:9b:0b:bc:fa:55:ca:e8: 43:c1:a1:44:5e:90:b3:65:90:4b:6e:ce:02:40:6d: 66:45:3c:c5:52:f6:dc:ad:75:dd:6f:46:24:fc:7d: c1:7d:ff:e9:a4:ea:4a:6c:88:e6:94:61:23:14:3e: 88:aa:c6:8b:8b:0d:09:95:36:f3:f0:cf:a2:4f:a7: 60:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:10:AB:4D:20:0D:18:46:B2:BA:3A:70:7F:AF:91:7C:13:F1:37:2A X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7xCrTSANGEayujpwf6-RfBPxNyo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:36:29:1b:5f:c5:1e:c1:09:da:cf:30:8d:c0:ce:1b:54:70: c8:76:59:18:38:78:1b:1e:8a:90:3d:95:96:35:0e:0c:61:73: 60:34:25:e7:fa:49:99:af:cd:d4:3e:67:5a:b1:bd:8e:af:75: b0:70:60:11:ce:7c:17:4b:9f:3f:bd:ef:40:21:f6:ff:9c:af: 27:f6:1b:d0:aa:76:cd:0b:8b:55:ba:96:75:9a:2f:03:17:ac: 25:a8:89:4b:81:8a:c3:54:f8:d4:a1:08:4a:80:05:cb:52:28: ac:4b:1c:83:41:9b:39:6e:3e:a2:09:57:91:ed:df:50:a0:25: 30:53:88:f8:08:a0:38:a0:d3:70:11:78:6e:fc:84:60:24:bc: 48:04:d9:14:fe:ac:e4:7c:96:61:67:1b:c9:7a:10:d7:2f:98: e8:a6:96:8e:e8:26:fc:4b:7e:a6:c6:7d:64:c5:fe:1d:b8:b4: 37:fe:4f:51:0a:b0:3f:1a:78:f9:45:8b:4d:9a:90:31:1a:4f: fe:d8:8f:d5:8f:ff:a7:e1:f5:cd:54:fd:04:bc:5a:c0:88:d8: d2:53:39:b9:56:8c:fb:dd:65:7c:eb:99:3b:d8:14:44:38:c3: 45:58:cf:ee:e5:cd:e2:29:c8:97:db:6b:eb:c6:35:8b:a5:4a: e4:3e:2b:8a -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICFEAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVGMTBBQjREMjAwRDE4 NDZCMkJBM0E3MDdGQUY5MTdDMTNGMTM3MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2QvWQzH2rDpq/L6xSnX1iwD2GzNOVjC6ldZyxF7pSBP+0QTTL 1mGzeT4TQiPrHUlBeA16MYoTcbEVf0AK4BapzUuoZDHbVTRs9P1vhCxlE3K2rq3R doD7ZFB+bDksaYe59CQu1WADC2TZZt7rUR0qo4LfOwcHdPLVlxEBh94fZlTdAXD0 bJnQC8EiWNMic0uxSdMOlj22zNIBZZAEe0jOrelj7GhyHssfyLVkD/aKJdULryHz HWbsktV5mwu8+lXK6EPBoURekLNlkEtuzgJAbWZFPMVS9tytdd1vRiT8fcF9/+mk 6kpsiOaUYSMUPoiqxouLDQmVNvPwz6JPp2BRAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU7xCrTSANGEayujpwf6+RfBPxNyowHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzd4Q3JUU0FOR0VheXVqcHdmNi1SZkJQ eE55by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDenTANBgkq hkiG9w0BAQsFAAOCAQEAgTYpG1/FHsEJ2s8wjcDOG1RwyHZZGDh4Gx6KkD2VljUO DGFzYDQl5/pJma/N1D5nWrG9jq91sHBgEc58F0ufP73vQCH2/5yvJ/Yb0Kp2zQuL VbqWdZovAxesJaiJS4GKw1T41KEISoAFy1IorEscg0GbOW4+oglXke3fUKAlMFOI +AigOKDTcBF4bvyEYCS8SATZFP6s5HyWYWcbyXoQ1y+Y6KaWjugm/Et+psZ9ZMX+ Hbi0N/5PUQqwPxp4+UWLTZqQMRpP/tiP1Y//p+H1zVT9BLxawIjY0lM5uVaM+91l fOuZO9gURDjDRVjP7uXN4inIl9tr68Y1i6VK5D4rig== -----END CERTIFICATE-----Generated at Sun Aug 24 14:21:40 2025 by rpki-client