$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/E6rUtHN_kWPaMiycMs6KkGgJ0ko.roa File: E6rUtHN_kWPaMiycMs6KkGgJ0ko.roa (raw, json) Hash identifier: PXotYu4aOlktr1reX7+awR+rwwDBphv5laki6ON8P9E= Subject key identifier: 13:AA:D4:B4:73:7F:91:63:DA:32:2C:9C:32:CE:8A:90:68:09:D2:4A Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1474 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/E6rUtHN_kWPaMiycMs6KkGgJ0ko.roa Signing time: Fri 22 Aug 2025 09:00:26 +0000 ROA not before: Fri 22 Aug 2025 09:00:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 210.58.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5236 (0x1474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=13AAD4B4737F9163DA322C9C32CE8A906809D24A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ed:49:d8:d9:91:a0:10:3b:6b:43:07:15:96: dd:a2:91:b0:bf:78:37:4a:de:15:7b:6f:b7:b2:8d: 2b:46:6c:05:04:b2:29:e3:31:3c:7f:ec:7b:62:d9: be:31:30:c1:78:21:31:64:72:80:ac:ee:71:42:18: f0:98:9b:e9:73:89:d4:ad:e6:8b:c7:9f:16:4d:e4: 83:59:6d:67:6c:5d:29:00:96:6e:f4:91:9a:7a:02: 82:bd:54:ea:d9:5b:10:2c:84:e1:4b:f9:f9:37:17: 02:7c:ab:27:35:c1:77:d0:35:c3:ff:60:1c:6a:4f: e8:28:e1:0a:17:f8:a2:2e:68:df:f7:3a:82:b2:27: 22:5e:c8:f2:8b:d8:98:92:70:de:5b:5b:2a:97:40: 69:39:9c:e3:a2:78:b6:58:4a:37:d0:ce:1b:3c:fd: fa:3e:38:8e:eb:59:09:75:fa:46:f4:e6:39:3a:ea: 70:d2:60:98:ce:c2:2d:2b:9c:32:05:6c:7a:53:ca: 0b:3a:bc:b7:96:da:a8:35:87:10:49:8e:d2:c0:68: eb:68:d3:ce:8c:9d:99:99:70:23:35:ac:a7:40:ca: cf:18:d4:fd:be:7e:35:b5:38:46:4e:92:fe:89:16: f0:ba:d1:79:1a:86:0e:bc:5a:10:cd:55:96:da:e5: 8a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:AA:D4:B4:73:7F:91:63:DA:32:2C:9C:32:CE:8A:90:68:09:D2:4A X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/E6rUtHN_kWPaMiycMs6KkGgJ0ko.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9d:30:a2:a8:86:68:a4:ed:ab:9f:e3:15:60:f1:44:d2:c7:ee: 3d:ef:c5:97:7f:d1:0d:fb:5e:1e:89:7b:53:ed:a5:9e:16:f8: dc:df:cc:d3:61:99:2a:9d:f9:1b:b9:46:dc:aa:44:f7:c8:53: 91:49:b0:ab:98:d3:7e:70:53:e3:25:b9:d2:ac:1b:7d:e7:43: 8c:7d:71:d0:b5:5d:03:f5:b5:3d:e6:ed:53:a5:83:0d:3b:f5: 75:51:88:86:c3:57:33:71:f6:a0:36:44:2d:3d:c0:be:2d:53: 5c:38:22:1e:65:3b:67:10:84:55:ce:b7:db:28:19:31:4c:5c: 52:45:df:f8:6c:5a:42:54:c3:25:4d:2c:67:67:f6:89:3a:8a: e7:c7:e5:00:5f:af:d5:d6:a6:56:09:93:45:9b:b3:fc:a6:b9: c6:be:4c:40:8e:21:ad:4c:99:f0:1a:f0:99:3c:97:09:22:d4: cd:3e:3e:bf:4b:70:20:57:33:58:e9:96:1e:18:98:e4:96:9a: 80:a5:1c:21:0a:91:8c:14:7f:dc:59:2d:db:b0:23:93:67:f2: 40:25:8a:ef:06:32:39:31:6d:e4:53:6c:64:54:ad:8c:fd:e9: d8:a7:3f:b9:96:19:7f:89:b3:07:06:70:4d:ed:72:e3:cf:ba: 27:76:96:64 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICFHQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDEzQUFENEI0NzM3Rjkx NjNEQTMyMkM5QzMyQ0U4QTkwNjgwOUQyNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDk7UnY2ZGgEDtrQwcVlt2ikbC/eDdK3hV7b7eyjStGbAUEsinj MTx/7Hti2b4xMMF4ITFkcoCs7nFCGPCYm+lzidSt5ovHnxZN5INZbWdsXSkAlm70 kZp6AoK9VOrZWxAshOFL+fk3FwJ8qyc1wXfQNcP/YBxqT+go4QoX+KIuaN/3OoKy JyJeyPKL2JiScN5bWyqXQGk5nOOieLZYSjfQzhs8/fo+OI7rWQl1+kb05jk66nDS YJjOwi0rnDIFbHpTygs6vLeW2qg1hxBJjtLAaOto086MnZmZcCM1rKdAys8Y1P2+ fjW1OEZOkv6JFvC60Xkahg68WhDNVZba5YpzAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUE6rUtHN/kWPaMiycMs6KkGgJ0kowHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0U2clV0SE5fa1dQYU1peWNNczZLa0dn SjBrby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSOjANBgkq hkiG9w0BAQsFAAOCAQEAnTCiqIZopO2rn+MVYPFE0sfuPe/Fl3/RDfteHol7U+2l nhb43N/M02GZKp35G7lG3KpE98hTkUmwq5jTfnBT4yW50qwbfedDjH1x0LVdA/W1 PebtU6WDDTv1dVGIhsNXM3H2oDZELT3Avi1TXDgiHmU7ZxCEVc632ygZMUxcUkXf +GxaQlTDJU0sZ2f2iTqK58flAF+v1damVgmTRZuz/Ka5xr5MQI4hrUyZ8BrwmTyX CSLUzT4+v0twIFczWOmWHhiY5JaagKUcIQqRjBR/3Fkt27Ajk2fyQCWK7wYyOTFt 5FNsZFStjP3p2Kc/uZYZf4mzBwZwTe1y48+6J3aWZA== -----END CERTIFICATE-----Generated at Sun Aug 24 14:20:12 2025 by rpki-client