$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/E9NJWw8KbIiaaYRkmjSG1xS5ors.roa File: E9NJWw8KbIiaaYRkmjSG1xS5ors.roa (raw, json) Hash identifier: LDh1E1tkj/TGsgKbmNCvja+8EYIwd5dL2J+M9dcfpvA= Subject key identifier: 13:D3:49:5B:0F:0A:6C:88:9A:69:84:64:9A:34:86:D7:14:B9:A2:BB Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13E8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/E9NJWw8KbIiaaYRkmjSG1xS5ors.roa Signing time: Fri 22 Aug 2025 08:59:52 +0000 ROA not before: Fri 22 Aug 2025 08:59:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 22787 IP address blocks: 210.58.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5096 (0x13e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=13D3495B0F0A6C889A6984649A3486D714B9A2BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:92:a5:d5:05:16:61:fb:2d:81:2e:1b:e8:c5: 1c:9d:48:e8:79:2f:58:10:53:13:02:df:ac:ee:fa: ce:55:31:83:41:3f:94:7e:0c:11:d3:61:b3:64:a6: 3d:b9:3b:e4:77:51:4e:6e:cc:d5:bd:d8:f9:2c:39: c3:a9:fe:bf:5f:27:ca:64:ab:b2:97:93:2b:16:2c: c0:e5:f8:2c:b3:01:c9:dd:34:a3:9d:37:f9:dc:5c: 6b:a3:14:3a:8f:f7:b0:42:a7:d8:a1:e6:d7:97:35: 42:f8:51:d3:45:eb:4a:d5:8a:3e:73:ed:34:1f:3e: 69:7d:45:bd:15:89:79:05:26:65:06:44:fa:c1:f9: f9:c6:8c:d4:02:ef:60:b7:38:55:1d:ae:29:a1:3d: 2a:fa:0e:e3:13:1b:cb:4c:08:08:fe:4d:89:8b:b4: 8b:6a:66:9b:e1:45:0b:5d:40:c8:7f:01:65:18:e8: c5:30:40:e6:23:a4:dc:49:c5:3b:4e:8a:2c:c8:ec: bc:b9:e2:fd:44:bf:b6:ac:3d:80:46:d9:81:5e:55: 4b:24:b0:73:e6:79:dd:89:6c:4f:f0:9d:3d:56:55: 9f:f2:e0:bd:96:37:50:0d:9a:30:ce:a1:20:99:f8: e3:70:14:de:67:fe:3a:b5:d1:98:0a:a8:3d:d5:60: e2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D3:49:5B:0F:0A:6C:88:9A:69:84:64:9A:34:86:D7:14:B9:A2:BB X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/E9NJWw8KbIiaaYRkmjSG1xS5ors.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.91.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:16:c3:07:80:a3:f7:1f:d5:d6:a4:49:83:18:b1:be:df:44: 60:1b:87:d8:e8:91:6a:cf:b3:c5:40:3a:3f:2f:46:a0:d3:23: 97:1a:1b:d9:80:70:fa:f1:df:70:70:62:0a:46:96:b4:27:79: 67:67:b2:f0:25:d2:40:d8:98:30:e3:eb:77:e5:09:e6:e2:4b: 99:44:86:ac:c1:37:22:c7:c8:97:29:94:10:72:a9:7c:69:f4: 88:a1:a8:2f:a6:7a:b9:2b:dc:19:1c:ad:a3:66:01:a8:39:50: fb:28:e6:dc:8f:73:ff:51:bd:87:f5:cc:6e:e0:1f:70:03:dd: 3a:dd:90:7b:65:40:13:44:df:18:77:65:d6:b7:bc:c1:76:8d: 18:10:26:94:5b:89:d3:33:d1:ec:8b:15:23:65:f7:16:3a:2b: 32:ca:31:f3:31:a5:90:a5:32:42:3c:6b:92:cf:f3:43:b7:d1: 3e:55:59:c8:e3:c5:5b:81:f0:30:7e:c3:9a:69:51:30:69:eb: ad:c8:89:0e:70:b0:ba:25:d3:6a:67:4e:24:dd:bb:33:a4:15: 12:39:b8:31:b1:cc:fb:a1:17:06:30:70:b3:33:77:a7:37:74: fc:14:84:ac:e9:bf:49:98:b8:00:77:ab:8a:46:70:79:9e:75: 31:63:1c:a1 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE+gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDEzRDM0OTVCMEYwQTZD ODg5QTY5ODQ2NDlBMzQ4NkQ3MTRCOUEyQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6kqXVBRZh+y2BLhvoxRydSOh5L1gQUxMC36zu+s5VMYNBP5R+ DBHTYbNkpj25O+R3UU5uzNW92PksOcOp/r9fJ8pkq7KXkysWLMDl+CyzAcndNKOd N/ncXGujFDqP97BCp9ih5teXNUL4UdNF60rVij5z7TQfPml9Rb0ViXkFJmUGRPrB +fnGjNQC72C3OFUdrimhPSr6DuMTG8tMCAj+TYmLtItqZpvhRQtdQMh/AWUY6MUw QOYjpNxJxTtOiizI7Ly54v1Ev7asPYBG2YFeVUsksHPmed2JbE/wnT1WVZ/y4L2W N1ANmjDOoSCZ+ONwFN5n/jq10ZgKqD3VYOJJAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUE9NJWw8KbIiaaYRkmjSG1xS5orswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0U5TkpXdzhLYklpYWFZUmttalNHMXhT NW9ycy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSOlswDQYJ KoZIhvcNAQELBQADggEBACwWwweAo/cf1dakSYMYsb7fRGAbh9jokWrPs8VAOj8v RqDTI5caG9mAcPrx33BwYgpGlrQneWdnsvAl0kDYmDDj63flCebiS5lEhqzBNyLH yJcplBByqXxp9IihqC+merkr3BkcraNmAag5UPso5tyPc/9RvYf1zG7gH3AD3Trd kHtlQBNE3xh3Zda3vMF2jRgQJpRbidMz0eyLFSNl9xY6KzLKMfMxpZClMkI8a5LP 80O30T5VWcjjxVuB8DB+w5ppUTBp663IiQ5wsLol02pnTiTduzOkFRI5uDGxzPuh FwYwcLMzd6c3dPwUhKzpv0mYuAB3q4pGcHmedTFjHKE= -----END CERTIFICATE-----Generated at Sun Aug 24 14:22:50 2025 by rpki-client