$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/AGRj98l4oRSdU91t73DPjpiSZRo.roa File: AGRj98l4oRSdU91t73DPjpiSZRo.roa (raw, json) Hash identifier: DZSQ8yzXJQCZR557hi8GYwj8iv5SDVupsS3fjOPvE64= Subject key identifier: 00:64:63:F7:C9:78:A1:14:9D:53:DD:6D:EF:70:CF:8E:98:92:65:1A Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13A5 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AGRj98l4oRSdU91t73DPjpiSZRo.roa Signing time: Fri 22 Aug 2025 08:59:32 +0000 ROA not before: Fri 22 Aug 2025 08:59:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 124.218.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5029 (0x13a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=006463F7C978A1149D53DD6DEF70CF8E9892651A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:78:03:d4:e7:54:fc:7b:36:a7:7f:7c:6a:7d: 26:6e:cf:0c:43:a5:8c:7b:f2:d3:56:6d:19:87:67: 5b:f2:f3:ed:52:b1:65:4e:18:1f:26:4a:91:15:1c: f1:0c:32:e9:dc:97:25:77:d2:da:bf:04:06:aa:0b: f1:1c:20:b1:58:53:39:74:d0:e1:bb:78:d0:ac:f4: 6f:42:ee:35:60:aa:24:87:6a:74:b9:36:f1:5b:ff: 1b:b9:f4:97:b6:75:6c:04:32:4a:b1:f3:28:7b:03: 19:ac:50:e0:9e:4c:15:f3:eb:77:29:94:ef:c8:bd: b0:e7:8f:3e:f0:6b:fb:5c:77:ec:9d:94:62:f9:7b: cf:45:21:3a:13:d9:2f:87:7a:69:50:22:aa:0b:07: 8f:22:2b:04:77:84:81:90:40:2a:85:5f:7d:9e:0e: 72:6c:d4:b0:3b:e2:2c:97:87:cd:df:4e:c4:80:88: 17:79:fa:1d:87:0a:1e:3a:db:33:37:00:11:f0:5d: 57:2f:46:24:dc:16:51:fa:34:e3:e8:aa:54:98:81: 6f:58:ba:24:3b:5f:0e:52:88:f7:78:5a:94:de:a0: 02:f7:73:d3:f3:e3:06:d5:ab:65:2d:df:d8:b0:03: 64:e1:85:d5:ee:26:1f:b2:a1:ae:4d:63:20:f8:7d: 88:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:64:63:F7:C9:78:A1:14:9D:53:DD:6D:EF:70:CF:8E:98:92:65:1A X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AGRj98l4oRSdU91t73DPjpiSZRo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.128.0/18 Signature Algorithm: sha256WithRSAEncryption 3c:d3:cc:3f:0c:2d:df:88:ce:a4:94:45:32:a1:37:6f:61:fb: 52:e1:86:c1:74:01:b3:bc:a1:96:47:c9:fb:1e:10:f6:7f:a2: 4e:8a:a8:a5:2a:86:7f:0e:24:fd:16:d5:84:cc:8e:97:9c:2f: 2d:f6:f0:51:37:a6:d3:53:cd:9b:51:a9:a6:c0:1d:e3:c8:82: 7b:29:66:2a:b4:06:93:e6:0e:ba:2b:ec:1b:d1:09:67:d9:44: d6:d0:44:f3:61:2e:e6:b9:65:bd:01:f4:3a:44:fb:83:8e:ca: ed:d1:c1:c3:53:a8:20:c8:53:eb:b0:f5:75:8c:43:c9:6b:97: cf:db:5f:15:d0:60:e5:b6:30:3e:d0:09:f3:fa:66:2c:78:da: 34:f5:08:ab:cd:99:db:21:a3:58:4c:11:43:db:d6:e3:52:bf: 9c:41:0f:4b:da:2f:35:b0:26:d2:88:4a:a9:d4:0e:65:7a:b5: c5:87:32:88:08:34:13:08:c3:43:98:e7:80:dc:67:82:42:ed: ce:60:36:2d:61:55:92:ab:44:54:4c:f4:24:31:d8:e5:2c:49: 5b:6f:07:98:7b:94:15:3b:63:d1:68:7b:32:f2:5e:a6:48:a2: 01:27:a6:a6:88:24:8a:e3:d0:e9:87:50:72:53:ee:cc:29:dd: 77:6c:c1:d0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE6UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAwNjQ2M0Y3Qzk3OEEx MTQ5RDUzREQ2REVGNzBDRjhFOTg5MjY1MUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdeAPU51T8ezanf3xqfSZuzwxDpYx78tNWbRmHZ1vy8+1SsWVO GB8mSpEVHPEMMunclyV30tq/BAaqC/EcILFYUzl00OG7eNCs9G9C7jVgqiSHanS5 NvFb/xu59Je2dWwEMkqx8yh7AxmsUOCeTBXz63cplO/IvbDnjz7wa/tcd+ydlGL5 e89FIToT2S+HemlQIqoLB48iKwR3hIGQQCqFX32eDnJs1LA74iyXh83fTsSAiBd5 +h2HCh462zM3ABHwXVcvRiTcFlH6NOPoqlSYgW9YuiQ7Xw5SiPd4WpTeoAL3c9Pz 4wbVq2Ut39iwA2ThhdXuJh+yoa5NYyD4fYjrAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUAGRj98l4oRSdU91t73DPjpiSZRowHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0FHUmo5OGw0b1JTZFU5MXQ3M0RQanBp U1pSby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ82oAwDQYJ KoZIhvcNAQELBQADggEBADzTzD8MLd+IzqSURTKhN29h+1LhhsF0AbO8oZZHyfse EPZ/ok6KqKUqhn8OJP0W1YTMjpecLy328FE3ptNTzZtRqabAHePIgnspZiq0BpPm Dror7BvRCWfZRNbQRPNhLua5Zb0B9DpE+4OOyu3RwcNTqCDIU+uw9XWMQ8lrl8/b XxXQYOW2MD7QCfP6Zix42jT1CKvNmdsho1hMEUPb1uNSv5xBD0vaLzWwJtKISqnU DmV6tcWHMogINBMIw0OY54DcZ4JC7c5gNi1hVZKrRFRM9CQx2OUsSVtvB5h7lBU7 Y9FoezLyXqZIogEnpqaIJIrj0OmHUHJT7swp3XdswdA= -----END CERTIFICATE-----Generated at Sun Aug 24 13:52:12 2025 by rpki-client