$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/DwUcI536U20OQln2lw7aDcOo56M.roa File: DwUcI536U20OQln2lw7aDcOo56M.roa (raw, json) Hash identifier: Yz1G8ljBhnlO2/A6HrDIqO6Hwb3Ov8m56/JvCZWdFLg= Subject key identifier: 0F:05:1C:23:9D:FA:53:6D:0E:42:59:F6:97:0E:DA:0D:C3:A8:E7:A3 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1414 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/DwUcI536U20OQln2lw7aDcOo56M.roa Signing time: Fri 22 Aug 2025 09:00:03 +0000 ROA not before: Fri 22 Aug 2025 09:00:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 218.34.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5140 (0x1414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0F051C239DFA536D0E4259F6970EDA0DC3A8E7A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0a:68:e7:f2:20:24:ad:22:3e:36:f4:9d:13: fa:b0:71:22:c8:3f:ca:14:bc:5e:38:2e:b9:4b:29: 5c:e8:58:38:ca:66:b7:84:29:2b:ec:31:a5:a0:dd: 77:16:c6:97:e7:83:30:98:e9:f9:db:fb:bc:fe:26: f4:06:b5:ae:9f:a9:b5:c2:13:8d:a5:96:9a:0f:e6: 8d:a2:4b:5b:2b:35:11:cf:c6:64:a6:00:ea:ff:33: 72:3c:40:ab:b5:82:76:45:e4:06:08:b7:7f:fe:1c: fe:a7:5e:1a:69:55:20:df:98:dd:a1:09:ab:aa:63: e1:50:a1:53:e7:10:63:cc:ce:ee:7c:33:d3:6f:d6: e9:5d:04:17:0f:0d:2a:ee:76:5f:19:b6:1c:fe:55: 8e:6d:01:ee:6e:41:08:b7:ea:b3:37:53:d4:0d:ea: bf:b6:2a:4f:cd:6b:72:27:90:cd:8e:df:eb:76:ae: 34:aa:00:fa:49:af:e0:6b:ac:d1:f6:24:af:93:66: c4:8d:6d:49:0f:6f:e1:a9:c6:64:c6:6c:d7:52:ba: b2:93:0e:51:36:22:8a:77:2a:01:e2:11:e0:1d:50: 5a:35:e1:b5:77:bb:53:ae:37:08:9a:ba:ae:96:2b: 08:fd:21:bf:9d:f0:ad:fa:18:b4:c4:ca:de:02:63: 8a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:05:1C:23:9D:FA:53:6D:0E:42:59:F6:97:0E:DA:0D:C3:A8:E7:A3 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/DwUcI536U20OQln2lw7aDcOo56M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.34.106.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:df:15:97:4c:4c:58:7c:08:ed:0f:08:ce:20:38:a7:ec:72: b5:24:b2:56:67:c1:8c:a1:87:43:cb:92:5d:92:54:1a:cc:7f: d4:78:7e:9d:94:df:5f:54:6a:e3:e3:90:fa:fe:89:6b:61:f4: 6b:d1:b0:07:d9:33:f9:9e:9f:7a:4d:34:b3:fd:2f:d8:02:fe: 68:31:83:4c:f3:66:b4:84:34:80:72:16:75:3c:0e:b3:c8:72: 5a:16:25:61:d6:df:f4:df:72:74:b9:74:6a:41:a7:ab:b4:12: 28:7a:7b:a9:33:9f:e7:15:32:15:65:ce:c6:c8:d1:ec:48:f2: 73:eb:58:cc:48:75:e2:4a:c9:1e:b9:38:2d:a6:f8:8f:e4:51: 71:5c:e3:d1:0e:8b:4c:48:2d:89:4d:a7:6b:2b:44:01:95:87: cb:06:9c:95:9e:4f:d3:29:69:4c:30:20:c0:49:40:e4:e7:6b: 16:c7:52:9d:1c:6e:83:7e:d7:df:26:74:15:4e:f6:ef:93:85: 82:77:c5:24:cc:09:77:5b:73:19:1b:f7:e0:a3:74:6a:a9:9b: 58:9c:50:6e:22:cf:c7:f2:b4:e9:c7:8f:ce:63:08:63:02:21: b7:bc:6f:04:a4:f8:35:0e:d8:40:0b:72:59:7d:3d:e4:bb:42: 3c:35:d6:1c -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBGMDUxQzIzOURGQTUz NkQwRTQyNTlGNjk3MEVEQTBEQzNBOEU3QTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqCmjn8iAkrSI+NvSdE/qwcSLIP8oUvF44LrlLKVzoWDjKZreE KSvsMaWg3XcWxpfngzCY6fnb+7z+JvQGta6fqbXCE42llpoP5o2iS1srNRHPxmSm AOr/M3I8QKu1gnZF5AYIt3/+HP6nXhppVSDfmN2hCauqY+FQoVPnEGPMzu58M9Nv 1uldBBcPDSrudl8Zthz+VY5tAe5uQQi36rM3U9QN6r+2Kk/Na3InkM2O3+t2rjSq APpJr+BrrNH2JK+TZsSNbUkPb+GpxmTGbNdSurKTDlE2Iop3KgHiEeAdUFo14bV3 u1OuNwiauq6WKwj9Ib+d8K36GLTEyt4CY4pFAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUDwUcI536U20OQln2lw7aDcOo56MwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0R3VWNJNTM2VTIwT1FsbjJsdzdhRGNP bzU2TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHaImowDQYJ KoZIhvcNAQELBQADggEBACvfFZdMTFh8CO0PCM4gOKfscrUkslZnwYyhh0PLkl2S VBrMf9R4fp2U319UauPjkPr+iWth9GvRsAfZM/men3pNNLP9L9gC/mgxg0zzZrSE NIByFnU8DrPIcloWJWHW3/TfcnS5dGpBp6u0Eih6e6kzn+cVMhVlzsbI0exI8nPr WMxIdeJKyR65OC2m+I/kUXFc49EOi0xILYlNp2srRAGVh8sGnJWeT9MpaUwwIMBJ QOTnaxbHUp0cboN+198mdBVO9u+ThYJ3xSTMCXdbcxkb9+CjdGqpm1icUG4iz8fy tOnHj85jCGMCIbe8bwSk+DUO2EALcll9PeS7Qjw11hw= -----END CERTIFICATE-----Generated at Sun Aug 24 13:52:45 2025 by rpki-client