$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/93q9tutC2ahFAkR9CXh3xtb03kM.roa File: 93q9tutC2ahFAkR9CXh3xtb03kM.roa (raw, json) Hash identifier: Gwkn1zkp7vUXo/7gSdQz6hXV6uKWWR8LvgVt7fEDo3g= Subject key identifier: F7:7A:BD:B6:EB:42:D9:A8:45:02:44:7D:09:78:77:C6:D6:F4:DE:43 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13B1 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/93q9tutC2ahFAkR9CXh3xtb03kM.roa Signing time: Fri 22 Aug 2025 08:59:36 +0000 ROA not before: Fri 22 Aug 2025 08:59:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131591 IP address blocks: 223.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5041 (0x13b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F77ABDB6EB42D9A84502447D097877C6D6F4DE43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:7b:b0:17:52:14:a9:b9:3d:89:77:e5:28:fb: 31:51:ec:33:41:c7:cb:b8:e9:f8:fd:9c:ba:19:82: dc:80:0e:c1:c2:25:e6:0c:df:4d:b3:8f:89:a0:ba: 69:42:15:7f:1a:cd:89:c2:f1:d8:17:af:70:d3:a4: 20:ef:37:3d:44:fb:5f:d5:c5:f1:b0:3c:29:a3:32: 9f:29:b9:77:0d:29:a1:d8:6e:3d:d0:bb:40:5c:31: 03:e6:81:09:56:be:f3:90:dc:53:6f:90:af:9a:07: 0d:09:a4:55:eb:d2:f1:d4:66:2b:1f:4e:5c:df:69: 97:4c:7c:38:17:39:11:f0:4c:c9:28:a6:05:c2:85: f1:a6:76:c0:e0:5a:10:14:4e:f3:2b:4f:fa:57:d6: e2:26:6f:31:45:e9:d3:8a:9a:ca:83:62:a9:78:6d: b6:41:33:5e:2e:16:49:27:2a:d0:df:ec:14:30:61: 20:ae:3f:5b:63:ff:94:bc:f5:4c:f5:8d:3e:78:88: 88:84:9e:f6:3e:b4:9e:9e:f1:c1:1e:71:31:77:fe: d4:b4:80:aa:5e:fc:64:53:a7:4e:9c:05:c3:9e:89: a7:c2:5f:4f:47:f9:78:c9:6a:2c:e1:f6:ad:4c:39: 25:4c:b6:02:f6:e6:ae:8e:c1:c9:5c:b2:d5:9a:89: d9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7A:BD:B6:EB:42:D9:A8:45:02:44:7D:09:78:77:C6:D6:F4:DE:43 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/93q9tutC2ahFAkR9CXh3xtb03kM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 46:da:45:0d:6a:6b:5c:9f:cb:4a:f7:94:1a:39:21:22:68:88: ab:34:c9:42:40:86:8d:c3:74:6b:9e:b4:14:2f:01:be:16:40: b8:96:b5:1c:4d:68:90:a6:2b:d7:f8:28:51:20:79:bf:5f:24: 14:f1:51:8b:af:54:5b:2d:0d:ea:8c:81:f2:6b:fa:33:f9:5d: 37:f7:b4:11:60:18:30:b1:aa:7e:20:cf:8c:14:40:73:32:f8: 55:7f:ce:d2:e4:0e:63:b7:6d:a1:5b:30:d0:39:26:24:20:b1: 74:f1:44:7d:64:04:23:fe:8b:70:eb:c6:76:22:bf:5c:34:d5: 1a:1c:be:22:2b:4f:6d:66:5a:80:61:71:37:7e:c2:c0:4e:90: 3e:0f:df:cd:eb:54:39:05:1c:91:bd:9d:75:79:7f:b6:33:ad: b5:a8:14:9d:84:91:4a:12:0d:8a:4b:3c:aa:7d:fb:44:62:2c: 20:54:ff:1d:58:98:02:fd:30:6b:f9:48:ed:4d:df:d7:37:54: c9:77:87:0f:9b:34:74:c9:f5:14:ac:ef:44:cd:a3:66:66:73: 08:ff:a5:21:47:69:39:91:64:f3:a1:69:11:1b:b5:f5:0b:77: 99:ae:a8:52:50:6a:d3:60:f9:35:dc:3d:0e:8e:94:93:6c:61: cf:4f:47:c5 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICE7EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY3N0FCREI2RUI0MkQ5 QTg0NTAyNDQ3RDA5Nzg3N0M2RDZGNERFNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2e7AXUhSpuT2Jd+Uo+zFR7DNBx8u46fj9nLoZgtyADsHCJeYM 302zj4mgumlCFX8azYnC8dgXr3DTpCDvNz1E+1/VxfGwPCmjMp8puXcNKaHYbj3Q u0BcMQPmgQlWvvOQ3FNvkK+aBw0JpFXr0vHUZisfTlzfaZdMfDgXORHwTMkopgXC hfGmdsDgWhAUTvMrT/pX1uImbzFF6dOKmsqDYql4bbZBM14uFkknKtDf7BQwYSCu P1tj/5S89Uz1jT54iIiEnvY+tJ6e8cEecTF3/tS0gKpe/GRTp06cBcOeiafCX09H +XjJaizh9q1MOSVMtgL25q6OwclcstWaidlPAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU93q9tutC2ahFAkR9CXh3xtb03kMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzkzcTl0dXRDMmFoRkFrUjlDWGgzeHRi MDNrTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDfFjANBgkq hkiG9w0BAQsFAAOCAQEARtpFDWprXJ/LSveUGjkhImiIqzTJQkCGjcN0a560FC8B vhZAuJa1HE1okKYr1/goUSB5v18kFPFRi69UWy0N6oyB8mv6M/ldN/e0EWAYMLGq fiDPjBRAczL4VX/O0uQOY7dtoVsw0DkmJCCxdPFEfWQEI/6LcOvGdiK/XDTVGhy+ IitPbWZagGFxN37CwE6QPg/fzetUOQUckb2ddXl/tjOttagUnYSRShINiks8qn37 RGIsIFT/HViYAv0wa/lI7U3f1zdUyXeHD5s0dMn1FKzvRM2jZmZzCP+lIUdpOZFk 86FpERu19Qt3ma6oUlBq02D5Ndw9Do6Uk2xhz09HxQ== -----END CERTIFICATE-----Generated at Sun Aug 24 14:21:05 2025 by rpki-client