$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/J3TM6e4WAjJbi8tvmwpYxq0FfQ0.roa File: J3TM6e4WAjJbi8tvmwpYxq0FfQ0.roa (raw, json) Hash identifier: pBkIDVM10P2l9WyJ/gmwPqWzsiWgEOgGv72DRSkl92Y= Subject key identifier: 27:74:CC:E9:EE:16:02:32:5B:8B:CB:6F:9B:0A:58:C6:AD:05:7D:0D Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13A9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/J3TM6e4WAjJbi8tvmwpYxq0FfQ0.roa Signing time: Fri 22 Aug 2025 08:59:34 +0000 ROA not before: Fri 22 Aug 2025 08:59:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9674 IP address blocks: 39.12.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5033 (0x13a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2774CCE9EE1602325B8BCB6F9B0A58C6AD057D0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:80:e8:d5:a6:f5:ac:51:63:d7:77:03:cd:27: 13:81:17:4e:5d:f2:47:d2:09:27:f5:e1:a3:98:27: dd:7e:28:b3:f4:ae:b1:4f:03:e9:b9:f9:18:56:99: 21:44:c2:ce:f6:bc:70:ee:18:cc:f6:fc:93:e8:a1: 03:d2:67:a3:23:b9:a8:4c:1d:cc:13:26:d5:d0:c9: d8:1e:43:6f:58:c8:ce:45:04:6f:fd:e0:ef:d7:01: 39:9e:e6:82:01:7c:1e:47:60:44:15:75:0d:28:b1: 4e:1e:b9:f7:d5:b6:57:f8:e4:31:3e:4f:a9:aa:c5: 83:57:91:8b:5b:17:bf:07:a3:14:88:33:3c:ca:c3: 68:c4:84:bc:5b:1e:ad:6a:d5:78:98:b7:ec:a6:b2: 06:5f:d7:52:d1:44:9d:bb:5c:08:eb:40:fc:7a:11: e3:5c:9b:b8:02:bd:f4:b3:e6:8d:3e:f3:50:63:00: 35:77:86:66:15:75:3a:95:0f:76:88:aa:b5:fd:d1: 20:79:11:cc:ac:0d:27:15:59:53:0a:68:9d:48:c4: ac:f6:98:a5:67:31:c9:00:bb:9e:c4:80:96:e9:bb: d7:5d:3f:45:61:a1:4f:df:43:72:ba:36:2f:a8:73: a2:2b:49:f9:96:d4:c6:f8:b1:3a:3e:57:24:9f:e6: bd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:74:CC:E9:EE:16:02:32:5B:8B:CB:6F:9B:0A:58:C6:AD:05:7D:0D X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/J3TM6e4WAjJbi8tvmwpYxq0FfQ0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.12.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2c:27:a7:0d:de:21:26:e3:68:05:98:a1:af:9f:dd:21:16:27: 5c:78:23:7d:9a:22:87:cd:48:73:db:1f:60:f6:44:e4:9d:38: 84:fb:81:f3:cb:87:f5:74:69:06:31:2e:40:2d:1a:67:4d:04: ce:3d:a7:17:6f:43:04:e9:02:a4:7f:6d:78:14:5d:e6:b0:3d: 5e:a0:4d:b5:a1:cb:3f:c4:32:0e:eb:15:9b:d2:06:06:46:b1: 51:0d:e6:06:d7:3a:3f:8f:7c:75:a3:44:9a:d1:a9:29:ce:83: 6a:fe:92:0b:7b:41:b1:05:d3:a3:2d:58:6d:1c:a1:57:d0:11: 42:3a:54:db:9f:c4:f5:ce:9d:d8:7c:e9:ac:ce:51:6b:0d:65: e1:5c:89:ce:fb:49:90:46:c0:3c:40:90:1a:56:81:5d:0c:a1: 63:e9:51:14:0a:6b:de:3e:7a:5a:d7:f5:6a:81:44:49:26:05: ea:18:f8:bb:48:fd:7d:36:a5:35:81:4d:36:e7:9f:e1:9a:ea: b8:2e:4e:61:9f:bf:01:0e:44:93:e9:76:ef:52:5a:e1:a9:8b: 45:f0:8f:52:7b:5b:0f:4f:3b:ef:f2:d2:c5:3d:c1:bc:46:32: 78:0f:54:61:39:9c:00:c2:6c:f1:71:c5:98:d5:f4:4a:8d:94: a2:f9:19:ff -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICE6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3NzRDQ0U5RUUxNjAy MzI1QjhCQ0I2RjlCMEE1OEM2QUQwNTdEMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7gOjVpvWsUWPXdwPNJxOBF05d8kfSCSf14aOYJ91+KLP0rrFP A+m5+RhWmSFEws72vHDuGMz2/JPooQPSZ6MjuahMHcwTJtXQydgeQ29YyM5FBG/9 4O/XATme5oIBfB5HYEQVdQ0osU4euffVtlf45DE+T6mqxYNXkYtbF78HoxSIMzzK w2jEhLxbHq1q1XiYt+ymsgZf11LRRJ27XAjrQPx6EeNcm7gCvfSz5o0+81BjADV3 hmYVdTqVD3aIqrX90SB5EcysDScVWVMKaJ1IxKz2mKVnMckAu57EgJbpu9ddP0Vh oU/fQ3K6Ni+oc6IrSfmW1Mb4sTo+VySf5r2vAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUJ3TM6e4WAjJbi8tvmwpYxq0FfQ0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0ozVE02ZTRXQWpKYmk4dHZtd3BZeHEw RmZRMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwInDDANBgkq hkiG9w0BAQsFAAOCAQEALCenDd4hJuNoBZihr5/dIRYnXHgjfZoih81Ic9sfYPZE 5J04hPuB88uH9XRpBjEuQC0aZ00Ezj2nF29DBOkCpH9teBRd5rA9XqBNtaHLP8Qy DusVm9IGBkaxUQ3mBtc6P498daNEmtGpKc6Dav6SC3tBsQXToy1YbRyhV9ARQjpU 25/E9c6d2HzprM5Raw1l4VyJzvtJkEbAPECQGlaBXQyhY+lRFApr3j56Wtf1aoFE SSYF6hj4u0j9fTalNYFNNuef4ZrquC5OYZ+/AQ5Ek+l271Ja4amLRfCPUntbD087 7/LSxT3BvEYyeA9UYTmcAMJs8XHFmNX0So2UovkZ/w== -----END CERTIFICATE-----Generated at Sun Aug 24 14:20:12 2025 by rpki-client