$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/8ULzrtNkXkHW-Iw46kmdX2NlGC4.roa File: 8ULzrtNkXkHW-Iw46kmdX2NlGC4.roa (raw, json) Hash identifier: ZYVXMoJedcDYl1+rIXkGXB1yUHSuu3TtytB0y6WVR/w= Subject key identifier: F1:42:F3:AE:D3:64:5E:41:D6:F8:8C:38:EA:49:9D:5F:63:65:18:2E Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1467 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8ULzrtNkXkHW-Iw46kmdX2NlGC4.roa Signing time: Fri 22 Aug 2025 09:00:22 +0000 ROA not before: Fri 22 Aug 2025 09:00:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 124.219.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5223 (0x1467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F142F3AED3645E41D6F88C38EA499D5F6365182E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:58:8b:6c:1b:87:f4:ae:d9:45:a6:4a:09:6c: 3c:b4:21:8f:43:ef:ff:ac:7a:55:33:8f:05:3c:a2: 3d:c0:1b:e9:3d:aa:e8:1e:0e:e3:15:60:14:e9:a4: 43:a6:98:6c:ba:f9:0a:b2:92:0f:ca:c9:04:8c:46: 1e:26:14:0d:0f:74:00:b4:6b:8e:d6:d3:f4:fe:db: 0c:b8:3d:51:c1:ca:b6:c4:b1:a2:8d:b2:55:91:a9: d0:6e:ee:85:b2:60:a4:5a:71:98:3b:73:ac:98:9f: 4a:f1:f7:c1:d9:19:6d:29:b9:3a:49:37:fa:fc:25: 9a:fb:2a:01:98:a7:e6:61:d5:1a:97:f7:2d:fd:c4: 87:7b:8a:7b:f5:c0:d2:91:db:c5:a7:f3:fc:0f:20: b9:79:f2:96:e1:92:52:2a:9c:13:3b:29:17:c7:00: b2:52:c0:6c:19:89:05:d1:90:24:10:b1:23:d6:a7: 8d:35:6d:5b:f5:8d:be:76:3b:8e:dd:d9:1f:f1:15: 38:a4:25:d9:64:e0:24:39:ec:7a:0e:0c:12:f9:94: 76:69:9d:c1:fc:4e:89:77:21:90:cc:85:d4:e2:84: c6:b6:cf:29:1f:a4:64:e0:82:dc:5d:94:84:e4:fd: 57:5d:d9:36:ee:b4:22:6a:fd:be:ed:d8:4c:88:6b: 65:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:42:F3:AE:D3:64:5E:41:D6:F8:8C:38:EA:49:9D:5F:63:65:18:2E X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8ULzrtNkXkHW-Iw46kmdX2NlGC4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.219.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1d:45:84:af:eb:62:cb:ff:f5:c3:16:a2:24:f8:8b:78:1d:e0: a1:bb:dd:ab:ff:f9:f8:79:90:80:83:9b:1d:d9:c5:40:00:2f: 17:28:9e:5d:50:d6:ca:ba:ea:70:46:56:ba:98:f1:29:67:81: 3d:6a:47:6b:03:26:24:49:eb:f5:30:b4:75:ce:54:61:c0:7a: 20:fd:37:46:de:62:ac:91:00:3d:06:46:2d:ee:4d:8a:1f:1c: cb:63:e8:5b:ec:e5:97:7f:75:1c:7c:08:fb:b9:25:eb:04:a7: f0:7e:da:3e:27:ee:93:06:dc:0c:eb:93:90:02:fa:c7:52:66: 12:9f:e5:ea:12:53:21:cb:ba:59:ad:36:0c:91:00:d8:d3:d4: e0:dd:35:65:77:c7:41:07:59:98:6d:7d:da:59:af:e8:0b:d7: 6d:61:d0:50:1c:63:8c:22:e0:e8:80:16:01:f5:6d:85:d5:27: ec:de:c7:f1:a8:ae:77:a4:97:7d:d9:df:d8:a0:dc:df:f3:1d: ec:49:fd:61:ab:c7:d5:da:44:1f:ee:17:d8:12:fe:6d:65:a3: 45:a3:0e:4c:0b:6f:be:3e:2c:82:13:57:cd:34:e9:5d:0c:71: c4:64:bd:15:24:2a:21:91:e4:df:73:dc:e5:12:d6:42:b6:30: 59:5e:bc:d2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFGcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYxNDJGM0FFRDM2NDVF NDFENkY4OEMzOEVBNDk5RDVGNjM2NTE4MkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD4WItsG4f0rtlFpkoJbDy0IY9D7/+selUzjwU8oj3AG+k9quge DuMVYBTppEOmmGy6+Qqykg/KyQSMRh4mFA0PdAC0a47W0/T+2wy4PVHByrbEsaKN slWRqdBu7oWyYKRacZg7c6yYn0rx98HZGW0puTpJN/r8JZr7KgGYp+Zh1RqX9y39 xId7inv1wNKR28Wn8/wPILl58pbhklIqnBM7KRfHALJSwGwZiQXRkCQQsSPWp401 bVv1jb52O47d2R/xFTikJdlk4CQ57HoODBL5lHZpncH8Tol3IZDMhdTihMa2zykf pGTggtxdlITk/Vdd2TbutCJq/b7t2EyIa2WVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU8ULzrtNkXkHW+Iw46kmdX2NlGC4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzhVTHpydE5rWGtIVy1JdzQ2a21kWDJO bEdDNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd82wAwDQYJ KoZIhvcNAQELBQADggEBAB1FhK/rYsv/9cMWoiT4i3gd4KG73av/+fh5kICDmx3Z xUAALxconl1Q1sq66nBGVrqY8SlngT1qR2sDJiRJ6/UwtHXOVGHAeiD9N0beYqyR AD0GRi3uTYofHMtj6Fvs5Zd/dRx8CPu5JesEp/B+2j4n7pMG3Azrk5AC+sdSZhKf 5eoSUyHLulmtNgyRANjT1ODdNWV3x0EHWZhtfdpZr+gL121h0FAcY4wi4OiAFgH1 bYXVJ+zex/Gornekl33Z39ig3N/zHexJ/WGrx9XaRB/uF9gS/m1lo0WjDkwLb74+ LIITV8006V0MccRkvRUkKiGR5N9z3OUS1kK2MFlevNI= -----END CERTIFICATE-----Generated at Sun Aug 24 14:15:03 2025 by rpki-client