$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/FSk_AyMQap-Q8K-w-nIQRZrXyAI.roa File: FSk_AyMQap-Q8K-w-nIQRZrXyAI.roa (raw, json) Hash identifier: TiCPEUzyccI4kHj9c1PJH3etJBL22Wz7/Z5TlXLynjU= Subject key identifier: 15:29:3F:03:23:10:6A:9F:90:F0:AF:B0:FA:72:10:45:9A:D7:C8:02 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13C4 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/FSk_AyMQap-Q8K-w-nIQRZrXyAI.roa Signing time: Fri 22 Aug 2025 08:59:41 +0000 ROA not before: Fri 22 Aug 2025 08:59:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 210.85.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5060 (0x13c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=15293F0323106A9F90F0AFB0FA7210459AD7C802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c1:1c:7f:69:9d:84:9b:7a:f4:f3:31:f9:66: 2b:b8:69:6d:58:fc:72:c9:95:a0:d5:20:5f:9b:5f: 80:35:75:86:d9:db:36:2e:17:23:b5:7d:d2:4a:d0: 00:5b:d3:e3:d1:7c:55:ac:38:0f:b5:6a:8a:fd:64: 67:80:6b:37:14:d0:45:5e:40:75:85:80:30:06:72: 90:01:bc:b6:45:28:39:94:a3:2e:fc:42:c0:38:e2: a1:46:e3:43:c9:d4:d5:e9:35:d4:d5:78:0b:c7:9b: 3d:8b:fd:7c:d9:67:a7:8d:d3:1b:d0:fc:5c:6c:5a: b9:36:b8:b6:64:52:c0:f1:8e:b0:3a:03:ca:33:cc: 5c:25:33:88:b7:97:23:94:c8:d3:fd:f5:f3:5c:96: 8b:ad:37:7a:d7:13:7e:07:20:03:64:9a:de:54:0b: 2d:0e:53:6f:88:2c:10:89:df:dd:82:c0:76:9b:af: ba:a7:66:a0:60:7a:05:31:77:0b:06:7e:d2:e1:08: dc:c0:be:27:4e:c1:a8:b5:71:21:07:e6:d5:2c:f6: 32:76:fd:8d:b1:88:92:7c:04:ee:8a:20:0b:37:ed: 40:ac:44:79:0c:ef:5a:9e:fc:fe:47:5f:1f:54:fa: ec:f7:cf:31:fa:e7:eb:5e:58:94:50:60:e4:61:58: a1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:29:3F:03:23:10:6A:9F:90:F0:AF:B0:FA:72:10:45:9A:D7:C8:02 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/FSk_AyMQap-Q8K-w-nIQRZrXyAI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.85.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:e7:24:8c:e0:2a:db:15:b7:f0:80:12:2f:0c:b9:4e:40:08: 70:0c:49:95:24:c1:6a:64:45:04:17:2d:fe:4e:a8:56:c5:23: 1b:2d:6c:ab:46:4a:06:bf:f4:a5:76:85:06:76:5c:eb:63:9b: 04:6c:6d:5b:26:2f:4f:49:a1:b2:98:de:44:73:16:1f:f0:48: 39:91:9b:d6:ee:fe:76:c6:70:97:a1:26:3b:d2:05:82:63:71: 56:7b:e7:a0:83:ee:18:12:f4:1a:d5:db:53:5d:14:86:69:70: 08:c5:78:92:5b:1a:67:98:84:71:2e:1f:17:f2:2f:b5:ab:44: ea:ab:21:2a:14:fd:64:61:f4:87:37:79:ac:ac:2e:5d:b8:e8: 58:a5:a4:e0:81:ac:a4:15:bc:0e:5d:55:70:b0:a4:e6:06:d7: fe:4c:88:81:99:fa:0d:27:e6:99:a0:92:58:3c:fc:d0:06:cb: 42:cc:04:fe:63:58:c4:bd:be:55:c9:f6:00:bf:a9:bf:2d:10: 08:f1:69:f0:27:17:2a:b9:c7:dc:25:30:03:81:1f:bf:e7:12: 73:de:74:2d:9b:1d:7b:8f:24:36:7a:6d:14:b1:22:09:8b:f8: 2b:05:36:e1:52:6c:a0:79:3d:8f:66:70:c0:68:29:cf:47:ea: 0b:28:88:88 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICE8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE1MjkzRjAzMjMxMDZB OUY5MEYwQUZCMEZBNzIxMDQ1OUFEN0M4MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDwRx/aZ2Em3r08zH5Ziu4aW1Y/HLJlaDVIF+bX4A1dYbZ2zYu FyO1fdJK0ABb0+PRfFWsOA+1aor9ZGeAazcU0EVeQHWFgDAGcpABvLZFKDmUoy78 QsA44qFG40PJ1NXpNdTVeAvHmz2L/XzZZ6eN0xvQ/FxsWrk2uLZkUsDxjrA6A8oz zFwlM4i3lyOUyNP99fNcloutN3rXE34HIANkmt5UCy0OU2+ILBCJ392CwHabr7qn ZqBgegUxdwsGftLhCNzAvidOwai1cSEH5tUs9jJ2/Y2xiJJ8BO6KIAs37UCsRHkM 71qe/P5HXx9U+uz3zzH65+teWJRQYORhWKGNAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUFSk/AyMQap+Q8K+w+nIQRZrXyAIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0ZTa19BeU1RYXAtUThLLXctbklRUlpy WHlBSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSVTANBgkq hkiG9w0BAQsFAAOCAQEAquckjOAq2xW38IASLwy5TkAIcAxJlSTBamRFBBct/k6o VsUjGy1sq0ZKBr/0pXaFBnZc62ObBGxtWyYvT0mhspjeRHMWH/BIOZGb1u7+dsZw l6EmO9IFgmNxVnvnoIPuGBL0GtXbU10UhmlwCMV4klsaZ5iEcS4fF/IvtatE6qsh KhT9ZGH0hzd5rKwuXbjoWKWk4IGspBW8Dl1VcLCk5gbX/kyIgZn6DSfmmaCSWDz8 0AbLQswE/mNYxL2+Vcn2AL+pvy0QCPFp8CcXKrnH3CUwA4Efv+cSc950LZsde48k NnptFLEiCYv4KwU24VJsoHk9j2ZwwGgpz0fqCyiIiA== -----END CERTIFICATE-----Generated at Sun Aug 24 14:19:28 2025 by rpki-client