$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/DyXc2dTBmcOAT6HW8oDfc2LmXdk.roa File: DyXc2dTBmcOAT6HW8oDfc2LmXdk.roa (raw, json) Hash identifier: 506pFitue1Gnu2aTs8qAyn1aRVC49XYpapAd/jUIhhA= Subject key identifier: 0F:25:DC:D9:D4:C1:99:C3:80:4F:A1:D6:F2:80:DF:73:62:E6:5D:D9 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 143B Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/DyXc2dTBmcOAT6HW8oDfc2LmXdk.roa Signing time: Fri 22 Aug 2025 09:00:11 +0000 ROA not before: Fri 22 Aug 2025 09:00:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 218.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5179 (0x143b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0F25DCD9D4C199C3804FA1D6F280DF7362E65DD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:74:71:46:5c:69:e8:6e:d7:a4:2f:66:5d:04: bc:18:6e:55:da:a0:24:6a:3c:07:07:28:75:50:4b: a9:dc:93:d0:aa:3b:0c:06:56:4b:be:df:a7:5c:68: 44:ba:6b:fd:99:01:0e:b3:b2:dc:96:b6:4b:27:d6: f2:05:f3:39:a7:6a:ff:cf:6e:e0:0a:9c:12:ab:4a: 45:e6:38:11:72:72:ad:ad:58:1e:5b:46:7d:03:a6: da:71:c2:90:5d:bd:11:91:6f:91:b2:b4:f3:5c:b9: 1d:d4:67:5b:42:98:d9:ca:6e:92:5e:5b:9e:3d:dd: e9:96:0f:bd:1d:11:ae:3a:7d:95:0a:ec:02:be:e1: 52:74:04:9f:25:09:65:c6:32:b4:e8:38:30:b4:2b: f9:fa:7c:bd:49:53:9f:18:8a:b8:45:1d:25:bb:bb: 34:ca:ab:20:1c:e1:0e:3e:55:98:6f:d0:3c:b4:21: dd:9a:ff:55:e7:46:f2:70:54:34:f0:bd:a9:e3:37: 71:52:d7:c9:ed:b7:55:09:aa:bd:68:ec:5d:98:d0: 75:02:ec:9e:13:e5:54:8f:ed:61:8c:a6:e1:37:e4: 3f:8c:50:43:d2:f2:ff:e2:bc:36:77:b8:a6:8b:7e: 4e:01:34:a2:f9:ba:f0:13:9e:6f:ea:d2:a6:23:c1: 0a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:25:DC:D9:D4:C1:99:C3:80:4F:A1:D6:F2:80:DF:73:62:E6:5D:D9 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/DyXc2dTBmcOAT6HW8oDfc2LmXdk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0c:88:43:59:1b:14:77:d3:f8:6d:b2:d7:59:9a:80:1a:da:c4: a0:19:86:94:17:fa:95:42:b6:ca:57:1b:14:e7:8a:07:d0:c9: 6c:40:e6:1c:3f:09:1c:5d:57:6d:d0:b8:01:02:58:7c:f3:4d: 63:e8:4d:55:8c:87:7a:86:87:cc:90:f2:6b:7b:67:29:33:7a: 21:74:b2:be:37:5b:6f:7a:06:10:07:96:1b:64:2b:2b:3c:92: e3:fd:23:69:fe:a8:64:83:81:46:b7:05:0e:21:a5:e8:96:28: c0:8b:55:38:ee:54:cb:49:fb:cd:f0:7d:6b:89:23:b8:57:25: a2:95:63:6f:cd:db:63:f7:9a:72:da:bb:02:70:3f:30:0f:c2: 4e:f5:11:78:4a:a4:a6:9b:59:c4:bc:5a:8d:2c:ec:03:96:c3: f7:13:32:c4:4f:ae:b5:16:57:0c:aa:50:c2:98:84:ea:83:81: e3:86:f8:c0:d6:51:6b:2f:a0:a7:e4:8e:3b:d9:22:86:90:a9: b3:b4:90:cc:11:6a:98:3d:00:97:f8:90:d0:60:8e:1a:69:b9: 91:a9:b8:bd:0c:a0:4a:2f:6d:09:98:ca:d6:2b:7c:99:ef:98: e6:e0:96:7c:6f:12:21:86:af:19:0d:7b:0f:87:71:ae:c8:a0: c2:45:98:27 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICFDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBGMjVEQ0Q5RDRDMTk5 QzM4MDRGQTFENkYyODBERjczNjJFNjVERDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBdHFGXGnobtekL2ZdBLwYblXaoCRqPAcHKHVQS6nck9CqOwwG Vku+36dcaES6a/2ZAQ6zstyWtksn1vIF8zmnav/PbuAKnBKrSkXmOBFycq2tWB5b Rn0DptpxwpBdvRGRb5GytPNcuR3UZ1tCmNnKbpJeW5493emWD70dEa46fZUK7AK+ 4VJ0BJ8lCWXGMrToODC0K/n6fL1JU58YirhFHSW7uzTKqyAc4Q4+VZhv0Dy0Id2a /1XnRvJwVDTwvanjN3FS18ntt1UJqr1o7F2Y0HUC7J4T5VSP7WGMpuE35D+MUEPS 8v/ivDZ3uKaLfk4BNKL5uvATnm/q0qYjwQoZAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUDyXc2dTBmcOAT6HW8oDfc2LmXdkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0R5WGMyZFRCbWNPQVQ2SFc4b0RmYzJM bVhkay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDaIzANBgkq hkiG9w0BAQsFAAOCAQEADIhDWRsUd9P4bbLXWZqAGtrEoBmGlBf6lUK2ylcbFOeK B9DJbEDmHD8JHF1XbdC4AQJYfPNNY+hNVYyHeoaHzJDya3tnKTN6IXSyvjdbb3oG EAeWG2QrKzyS4/0jaf6oZIOBRrcFDiGl6JYowItVOO5Uy0n7zfB9a4kjuFclopVj b83bY/eactq7AnA/MA/CTvUReEqkpptZxLxajSzsA5bD9xMyxE+utRZXDKpQwpiE 6oOB44b4wNZRay+gp+SOO9kihpCps7SQzBFqmD0Al/iQ0GCOGmm5kam4vQygSi9t CZjK1it8me+Y5uCWfG8SIYavGQ17D4dxrsigwkWYJw== -----END CERTIFICATE-----Generated at Sun Aug 24 14:15:04 2025 by rpki-client