$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Fv5j2oT1EYM4N_tBBVw6r5esuTU.roa File: Fv5j2oT1EYM4N_tBBVw6r5esuTU.roa (raw, json) Hash identifier: xRv+aai/lA57/CcW6tMExqd6RXPp2m5qMvgDhUilIyE= Subject key identifier: 16:FE:63:DA:84:F5:11:83:38:37:FB:41:05:5C:3A:AF:97:AC:B9:35 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13BA Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Fv5j2oT1EYM4N_tBBVw6r5esuTU.roa Signing time: Fri 22 Aug 2025 08:59:39 +0000 ROA not before: Fri 22 Aug 2025 08:59:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 210.202.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5050 (0x13ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=16FE63DA84F511833837FB41055C3AAF97ACB935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:51:a0:33:d6:36:06:06:b9:c5:62:1e:0a:56: 31:e1:85:6a:4d:a9:b2:98:db:cf:17:1f:3a:d9:f5: c4:43:b2:f8:b5:f0:14:5f:e2:fe:c8:d5:fb:51:6e: 3a:7a:90:e5:ef:d5:4e:be:1e:98:b8:fc:7b:5a:88: 60:7e:ac:77:ac:74:46:40:a2:d3:9e:17:ab:a0:4d: 1c:80:84:6e:2a:5b:23:ab:50:c3:6c:8d:da:97:2a: 67:5c:48:23:ff:1c:2a:0c:59:e8:74:1a:b6:67:9e: c2:2a:17:0a:71:59:d2:00:59:38:73:ba:5c:98:81: ff:35:a1:7c:b7:01:1e:0f:0f:99:c8:48:87:34:fb: 49:2b:c9:e9:39:3d:b3:5a:8b:4d:4d:b3:60:bb:d7: 60:bb:21:f2:ec:b6:5c:d0:2c:06:ee:91:86:78:c3: 75:85:bb:42:61:f5:b6:00:cf:99:0c:8f:2f:7a:b2: f6:0f:68:83:4f:67:48:e6:48:7e:c8:2e:d9:21:08: d3:e4:bd:01:b9:ae:fc:28:68:b9:50:68:aa:05:34: 58:81:61:81:6b:18:33:6a:49:ab:29:c2:da:43:f3: 1c:49:14:e1:c5:04:b8:63:94:f0:7f:21:f4:7d:d0: a7:72:11:23:62:f7:f5:e4:01:db:6e:35:dc:68:d4: 94:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:FE:63:DA:84:F5:11:83:38:37:FB:41:05:5C:3A:AF:97:AC:B9:35 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Fv5j2oT1EYM4N_tBBVw6r5esuTU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.192.0/18 Signature Algorithm: sha256WithRSAEncryption 41:70:06:e3:47:15:a4:25:77:6f:d5:89:7e:4c:31:2f:64:73: 34:7c:b5:08:c2:09:06:d3:7d:dc:8d:11:12:a5:ec:f8:a4:b6: 59:46:62:d2:c7:e6:02:61:a6:cb:11:63:20:e2:75:86:c6:f5: 32:7b:ab:1a:47:43:7e:9f:41:60:03:1b:6f:2b:4a:7d:0c:74: 56:06:81:07:3c:29:a4:57:e1:92:64:42:01:e0:10:53:17:b0: 69:3b:19:6e:60:0c:98:1b:56:6d:98:a0:07:78:0c:51:2f:0c: 55:d2:d4:db:f0:f7:a5:83:32:37:51:b9:56:6a:e6:d5:b7:07: f2:75:80:8c:78:14:bc:b2:ef:1d:fb:d6:b3:23:76:85:5f:8c: b3:19:a4:df:aa:a9:1c:0a:64:af:87:40:a0:2f:cf:ad:b5:aa: b1:b0:6e:59:06:ce:70:36:2c:f1:82:9b:01:18:c4:4a:8a:fe: f3:b6:71:66:df:1a:70:e6:5a:62:a9:90:3e:33:6c:15:26:36: 44:5e:94:e1:09:e2:64:c4:87:40:bd:0f:95:38:eb:df:5b:38: 31:be:ce:4b:1c:6c:ea:43:27:f4:8b:6a:e4:b9:07:ed:b9:c1: 2c:fa:eb:09:d8:0c:b2:37:62:9a:28:85:8c:0a:48:01:47:59: 25:6a:c9:9e -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE7owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE2RkU2M0RBODRGNTEx ODMzODM3RkI0MTA1NUMzQUFGOTdBQ0I5MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcUaAz1jYGBrnFYh4KVjHhhWpNqbKY288XHzrZ9cRDsvi18BRf 4v7I1ftRbjp6kOXv1U6+Hpi4/HtaiGB+rHesdEZAotOeF6ugTRyAhG4qWyOrUMNs jdqXKmdcSCP/HCoMWeh0GrZnnsIqFwpxWdIAWThzulyYgf81oXy3AR4PD5nISIc0 +0kryek5PbNai01Ns2C712C7IfLstlzQLAbukYZ4w3WFu0Jh9bYAz5kMjy96svYP aINPZ0jmSH7ILtkhCNPkvQG5rvwoaLlQaKoFNFiBYYFrGDNqSaspwtpD8xxJFOHF BLhjlPB/IfR90KdyESNi9/XkAdtuNdxo1JRLAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUFv5j2oT1EYM4N/tBBVw6r5esuTUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0Z2NWoyb1QxRVlNNE5fdEJCVnc2cjVl c3VUVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSysAwDQYJ KoZIhvcNAQELBQADggEBAEFwBuNHFaQld2/ViX5MMS9kczR8tQjCCQbTfdyNERKl 7PiktllGYtLH5gJhpssRYyDidYbG9TJ7qxpHQ36fQWADG28rSn0MdFYGgQc8KaRX 4ZJkQgHgEFMXsGk7GW5gDJgbVm2YoAd4DFEvDFXS1Nvw96WDMjdRuVZq5tW3B/J1 gIx4FLyy7x371rMjdoVfjLMZpN+qqRwKZK+HQKAvz621qrGwblkGznA2LPGCmwEY xEqK/vO2cWbfGnDmWmKpkD4zbBUmNkRelOEJ4mTEh0C9D5U4699bODG+zkscbOpD J/SLauS5B+25wSz66wnYDLI3YpoohYwKSAFHWSVqyZ4= -----END CERTIFICATE-----Generated at Sun Aug 24 14:22:50 2025 by rpki-client