$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/FKzctayPz2P8ufH8sMPZQXzSkzc.roa File: FKzctayPz2P8ufH8sMPZQXzSkzc.roa (raw, json) Hash identifier: jSCPVyJHmXjeYbLOHc6U8MKjFhfaXCuBd0Z+SMhzBqU= Subject key identifier: 14:AC:DC:B5:AC:8F:CF:63:FC:B9:F1:FC:B0:C3:D9:41:7C:D2:93:37 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13C9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/FKzctayPz2P8ufH8sMPZQXzSkzc.roa Signing time: Fri 22 Aug 2025 08:59:43 +0000 ROA not before: Fri 22 Aug 2025 08:59:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24154 IP address blocks: 210.202.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5065 (0x13c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=14ACDCB5AC8FCF63FCB9F1FCB0C3D9417CD29337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:81:85:38:0b:61:ab:8c:d3:61:1c:ff:6e:94: 1f:77:72:75:34:64:40:43:3c:96:d5:53:7f:2a:20: 34:5a:29:78:8d:89:15:d8:74:91:f7:78:a3:a3:ef: 5e:7c:7c:4f:30:7a:c8:9a:fb:23:29:8d:75:0e:5d: 78:ee:e4:d0:75:80:38:71:2d:62:98:e3:91:07:19: ab:d1:fe:bd:84:3f:54:42:6c:6b:d4:2a:05:9f:36: 88:9b:c4:7a:2e:59:43:48:ab:39:8d:54:47:38:54: cf:9c:d9:51:9d:ba:c8:72:d5:ee:8c:ee:90:ea:83: 3f:a6:b6:d7:b6:b6:0e:e4:ab:97:4f:32:d7:1f:1a: a2:15:b8:03:7e:10:82:6d:aa:6c:be:fb:30:e2:df: f5:fd:49:34:43:73:65:a4:c9:5c:35:66:ed:20:13: 5c:01:7c:82:de:11:f1:f0:bd:cb:bf:7e:a2:95:e0: 5f:7f:e8:f0:87:d6:1a:82:18:ed:76:dd:3a:07:aa: 2e:a3:d4:e4:6a:1b:dd:f5:b0:30:57:1c:24:e5:78: 62:7f:1d:60:0e:13:ae:5f:ed:a6:7e:5f:e3:a2:fa: f5:66:59:99:b8:64:82:d0:5d:f6:4a:0e:0f:ad:8e: 27:9f:4c:f5:92:e9:12:dc:d1:ac:9f:48:86:c7:b0: fe:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AC:DC:B5:AC:8F:CF:63:FC:B9:F1:FC:B0:C3:D9:41:7C:D2:93:37 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/FKzctayPz2P8ufH8sMPZQXzSkzc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.32.0/20 Signature Algorithm: sha256WithRSAEncryption 29:3e:db:9a:e7:2a:fd:31:4f:71:ae:dd:c1:7b:38:63:54:03: ff:0f:16:b3:3d:cf:06:29:96:7b:ab:3d:3a:90:af:b2:1b:30: 4b:8f:ee:f6:e0:1e:d5:75:71:08:6b:2e:4d:83:d0:0c:6f:38: d6:08:2a:0d:8a:3a:7e:13:bc:e5:88:2a:69:f3:f1:67:c5:70: f2:e8:c5:ee:7e:e1:d2:1a:21:1c:c8:4f:68:85:a4:d0:db:d9: 62:54:5a:e7:c6:d3:fc:51:b2:e8:b2:ce:51:93:0c:1b:92:9f: f8:1a:ce:07:3c:ef:57:c0:77:85:93:93:cd:ba:7d:bc:2c:ef: 8c:75:ec:d3:93:b4:e5:5f:08:c9:a8:e2:e9:35:b8:80:46:f6: 5d:a4:a7:5d:d6:ab:29:44:86:45:fe:44:d6:b9:97:e4:8d:5a: fc:11:d2:9d:ca:c5:7e:41:44:21:b7:cf:b1:6a:3e:52:3e:8b: ca:3d:f0:50:b2:01:6f:ae:a4:76:cf:9e:4e:e3:d6:1e:a0:40: 2d:42:23:ef:3d:c8:79:c6:8f:d1:33:c7:cd:f9:a9:87:72:17: 28:e1:68:a2:48:96:3e:9d:5d:7c:1a:bb:88:ae:1d:8c:5f:f8: 7c:75:25:b4:d7:7e:bd:05:0c:e1:e6:1c:b0:db:1e:f1:6a:73: 22:56:47:2a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE0QUNEQ0I1QUM4RkNG NjNGQ0I5RjFGQ0IwQzNEOTQxN0NEMjkzMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZgYU4C2GrjNNhHP9ulB93cnU0ZEBDPJbVU38qIDRaKXiNiRXY dJH3eKOj7158fE8wesia+yMpjXUOXXju5NB1gDhxLWKY45EHGavR/r2EP1RCbGvU KgWfNoibxHouWUNIqzmNVEc4VM+c2VGdushy1e6M7pDqgz+mtte2tg7kq5dPMtcf GqIVuAN+EIJtqmy++zDi3/X9STRDc2WkyVw1Zu0gE1wBfILeEfHwvcu/fqKV4F9/ 6PCH1hqCGO123ToHqi6j1ORqG931sDBXHCTleGJ/HWAOE65f7aZ+X+Oi+vVmWZm4 ZILQXfZKDg+tjiefTPWS6RLc0ayfSIbHsP5LAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUFKzctayPz2P8ufH8sMPZQXzSkzcwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0ZLemN0YXlQejJQOHVmSDhzTVBaUVh6 U2t6Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATSyiAwDQYJ KoZIhvcNAQELBQADggEBACk+25rnKv0xT3Gu3cF7OGNUA/8PFrM9zwYplnurPTqQ r7IbMEuP7vbgHtV1cQhrLk2D0AxvONYIKg2KOn4TvOWIKmnz8WfFcPLoxe5+4dIa IRzIT2iFpNDb2WJUWufG0/xRsuiyzlGTDBuSn/gazgc871fAd4WTk826fbws74x1 7NOTtOVfCMmo4uk1uIBG9l2kp13WqylEhkX+RNa5l+SNWvwR0p3KxX5BRCG3z7Fq PlI+i8o98FCyAW+upHbPnk7j1h6gQC1CI+89yHnGj9Ezx835qYdyFyjhaKJIlj6d XXwau4iuHYxf+Hx1JbTXfr0FDOHmHLDbHvFqcyJWRyo= -----END CERTIFICATE-----Generated at Sun Aug 24 14:16:33 2025 by rpki-client