$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/IXphPTWfC_3m8sXVbC68w1QVX94.roa File: IXphPTWfC_3m8sXVbC68w1QVX94.roa (raw, json) Hash identifier: r2xdDE+cY70Mmyc0mSkq9kWKKTvPBBLLQGkJkzb3uD0= Subject key identifier: 21:7A:61:3D:35:9F:0B:FD:E6:F2:C5:D5:6C:2E:BC:C3:54:15:5F:DE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13C3 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/IXphPTWfC_3m8sXVbC68w1QVX94.roa Signing time: Fri 22 Aug 2025 08:59:41 +0000 ROA not before: Fri 22 Aug 2025 08:59:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18419 IP address blocks: 218.35.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5059 (0x13c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=217A613D359F0BFDE6F2C5D56C2EBCC354155FDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bc:ff:36:c9:b3:ef:e3:e1:25:e4:34:32:fc: 68:8c:d3:32:91:7d:c9:36:f1:c0:90:ff:7b:34:78: 52:19:f9:c9:7b:db:17:3f:03:b0:cd:d7:0c:4b:ae: 03:aa:66:56:cf:5f:a5:b3:c0:aa:26:e6:fa:22:e7: 85:48:17:93:2a:23:7f:27:4c:e7:0f:ff:00:2b:5c: 8e:1e:99:a5:e9:35:0b:3a:01:26:db:48:f2:83:3c: e9:a7:74:2e:e3:cb:7e:78:d2:52:7a:42:1e:ad:bf: 93:b3:37:ef:09:4a:bc:09:6f:3e:6d:cb:dd:36:e5: a5:d4:33:8a:d4:fa:a0:c5:69:f0:22:62:cf:2c:65: 77:40:3b:15:4d:81:fa:f5:31:d5:b6:74:73:c7:1c: b2:04:a6:f9:b3:25:45:98:50:f0:1a:87:65:41:6f: b0:a4:3f:f2:b0:2e:36:aa:dc:55:01:3e:ae:c6:3d: 5b:a2:a1:a9:18:6f:57:60:48:5a:86:1e:7d:dd:ac: b9:32:ac:87:94:81:5b:a8:ed:66:b4:48:07:5d:0d: a9:d0:dc:45:41:95:bd:09:d4:8d:b3:3d:e5:86:12: d8:7a:97:94:bb:70:7c:2b:be:3a:32:d6:c8:bc:73: fe:26:00:50:bd:a0:17:de:42:fa:03:10:93:4e:a9: 39:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7A:61:3D:35:9F:0B:FD:E6:F2:C5:D5:6C:2E:BC:C3:54:15:5F:DE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/IXphPTWfC_3m8sXVbC68w1QVX94.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.35.128.0/18 Signature Algorithm: sha256WithRSAEncryption 16:d2:73:48:19:01:52:37:7b:b4:56:7e:5e:c4:c3:97:67:de: e3:f1:7e:86:29:6f:a6:61:79:72:f5:d3:1e:db:c7:a8:b3:78: e0:d8:ef:b5:41:e5:56:66:92:90:7f:81:40:f0:25:99:d4:f6: 5e:4c:49:df:ab:c7:68:e4:e7:79:74:1d:8c:04:66:48:f8:99: ab:70:51:53:85:a9:8c:48:78:a5:5a:ef:6c:0f:58:66:0e:0d: 6c:8b:87:17:0e:4f:a4:fe:cd:09:5c:90:50:42:22:66:82:2c: 75:ad:b9:64:69:c8:d8:8b:ed:b5:b4:64:ee:5f:bd:6a:15:c5: 7f:a6:8d:8a:3e:6d:d7:63:87:61:25:73:41:6c:30:d6:81:ff: 45:58:de:b7:57:7c:e6:23:0c:b9:3a:62:d2:9f:54:74:a4:a8: 13:da:d9:87:86:b8:cf:c4:c4:99:84:74:be:97:2a:0b:bc:14: 00:f9:d8:58:a9:3a:f4:7d:86:91:88:d7:5a:e8:8d:fd:d4:bd: 89:5c:90:5d:12:d8:9a:f3:20:78:29:29:db:52:41:ed:96:1f: ad:8b:19:bd:f2:65:2e:b5:39:60:a1:66:5d:03:9a:79:e9:1a: 80:fe:62:a3:fb:83:5a:e7:fd:aa:5e:41:8a:d7:22:92:e1:52: c4:3c:2b:0d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE8MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIxN0E2MTNEMzU5RjBC RkRFNkYyQzVENTZDMkVCQ0MzNTQxNTVGREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0vP82ybPv4+El5DQy/GiM0zKRfck28cCQ/3s0eFIZ+cl72xc/ A7DN1wxLrgOqZlbPX6WzwKom5voi54VIF5MqI38nTOcP/wArXI4emaXpNQs6ASbb SPKDPOmndC7jy3540lJ6Qh6tv5OzN+8JSrwJbz5ty9025aXUM4rU+qDFafAiYs8s ZXdAOxVNgfr1MdW2dHPHHLIEpvmzJUWYUPAah2VBb7CkP/KwLjaq3FUBPq7GPVui oakYb1dgSFqGHn3drLkyrIeUgVuo7Wa0SAddDanQ3EVBlb0J1I2zPeWGEth6l5S7 cHwrvjoy1si8c/4mAFC9oBfeQvoDEJNOqTl5AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUIXphPTWfC/3m8sXVbC68w1QVX94wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0lYcGhQVFdmQ18zbThzWFZiQzY4dzFR Vlg5NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbaI4AwDQYJ KoZIhvcNAQELBQADggEBABbSc0gZAVI3e7RWfl7Ew5dn3uPxfoYpb6ZheXL10x7b x6izeODY77VB5VZmkpB/gUDwJZnU9l5MSd+rx2jk53l0HYwEZkj4matwUVOFqYxI eKVa72wPWGYODWyLhxcOT6T+zQlckFBCImaCLHWtuWRpyNiL7bW0ZO5fvWoVxX+m jYo+bddjh2Elc0FsMNaB/0VY3rdXfOYjDLk6YtKfVHSkqBPa2YeGuM/ExJmEdL6X Kgu8FAD52FipOvR9hpGI11rojf3UvYlckF0S2JrzIHgpKdtSQe2WH62LGb3yZS61 OWChZl0DmnnpGoD+YqP7g1rn/apeQYrXIpLhUsQ8Kw0= -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:15 2025 by rpki-client