$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Kjv4JgGKjFtolg1YLi4D7Y_xLeE.roa File: Kjv4JgGKjFtolg1YLi4D7Y_xLeE.roa (raw, json) Hash identifier: wUR4y6s0MgZh5cc9mu/d5GM22rdsiXf6MRY7eNKsfnc= Subject key identifier: 2A:3B:F8:26:01:8A:8C:5B:68:96:0D:58:2E:2E:03:ED:8F:F1:2D:E1 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1445 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Kjv4JgGKjFtolg1YLi4D7Y_xLeE.roa Signing time: Fri 22 Aug 2025 09:00:15 +0000 ROA not before: Fri 22 Aug 2025 09:00:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 210.63.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5189 (0x1445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2A3BF826018A8C5B68960D582E2E03ED8FF12DE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f6:87:71:1c:54:90:cd:c0:c9:59:f8:38:7f: 21:98:24:71:ac:dc:e2:15:35:9e:9c:47:f9:7c:1f: 11:f5:4a:63:a8:33:d2:7f:6f:fc:d0:f4:71:32:51: a0:3d:7d:47:dc:ce:65:7f:75:51:28:24:de:3f:3e: 4a:25:24:6c:da:24:e5:70:ed:ac:19:9b:9f:72:37: b5:f7:3d:5f:2c:be:f3:c0:c0:cb:a4:06:7b:0f:c8: 38:7c:e9:3f:2f:62:07:00:ef:4c:0b:65:59:de:2e: 2c:19:f2:08:95:5d:4c:55:ce:8b:8e:c2:1d:7d:74: 8d:c7:da:fc:2c:a3:4d:85:f0:4e:e3:bb:53:eb:80: 7a:e4:5d:51:ef:e0:9f:55:d0:60:fe:95:90:5c:15: 9f:aa:92:45:72:3d:7e:4b:ca:8d:43:6c:90:8c:ab: 2a:04:8a:5e:f5:4a:0b:42:43:64:f5:64:79:a5:fb: 3b:7a:8e:87:6a:28:aa:b3:20:01:e3:64:7e:e6:df: e6:8a:16:2e:b2:1f:c5:13:08:18:54:20:19:2d:e5: 9f:52:9c:51:4b:4d:05:e5:22:91:6e:39:52:07:b2: 48:1e:34:98:12:f9:e8:7b:d8:44:43:17:64:ba:92: c6:9d:f5:b5:92:b7:20:fa:89:12:be:07:83:01:af: ff:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:3B:F8:26:01:8A:8C:5B:68:96:0D:58:2E:2E:03:ED:8F:F1:2D:E1 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Kjv4JgGKjFtolg1YLi4D7Y_xLeE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.208.0/21 Signature Algorithm: sha256WithRSAEncryption 36:1c:0e:f1:05:4b:47:44:a8:6d:10:1a:41:6d:26:c6:7c:bd: f0:99:e1:67:b0:11:2e:af:5d:6b:38:52:f4:84:9f:5d:d5:12: 1f:30:e3:97:49:2d:b6:f4:69:09:9b:3f:2e:27:8d:3e:7d:d8: 95:2e:19:6b:82:ba:17:d9:03:7d:f5:42:8c:d3:ea:93:1c:31: 6c:6c:2d:15:5e:e3:c2:4d:56:11:cc:c7:99:1d:87:de:81:38: d7:3c:88:1e:52:23:75:21:42:69:f8:63:70:46:77:96:7a:ca: d3:74:41:7a:ed:e0:9c:85:81:a7:22:b1:70:1a:58:71:5d:2a: 88:64:2d:ea:9f:01:77:39:74:7d:89:37:6f:f6:60:12:79:8e: ec:b0:c9:09:36:d4:51:69:3b:6c:9e:8c:52:ff:ca:cf:fe:60: d0:d7:37:45:64:b1:36:0d:19:0f:5e:0f:fd:d0:19:16:b9:87: 9f:69:98:4f:61:ed:1b:bd:b6:df:ac:17:47:21:12:e2:bc:91: f8:a1:cc:b5:b7:f9:42:fb:8b:cd:49:6a:21:91:ea:88:53:62: 6b:b7:ac:8e:24:6a:23:1e:54:fd:33:63:c7:6a:0d:80:d7:48: 1b:ab:33:5f:bc:95:f7:d7:21:ca:9f:b3:e4:91:5e:70:87:46: c0:70:b9:f9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFEUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJBM0JGODI2MDE4QThD NUI2ODk2MEQ1ODJFMkUwM0VEOEZGMTJERTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDo9odxHFSQzcDJWfg4fyGYJHGs3OIVNZ6cR/l8HxH1SmOoM9J/ b/zQ9HEyUaA9fUfczmV/dVEoJN4/PkolJGzaJOVw7awZm59yN7X3PV8svvPAwMuk BnsPyDh86T8vYgcA70wLZVneLiwZ8giVXUxVzouOwh19dI3H2vwso02F8E7ju1Pr gHrkXVHv4J9V0GD+lZBcFZ+qkkVyPX5Lyo1DbJCMqyoEil71SgtCQ2T1ZHml+zt6 jodqKKqzIAHjZH7m3+aKFi6yH8UTCBhUIBkt5Z9SnFFLTQXlIpFuOVIHskgeNJgS +eh72ERDF2S6ksad9bWStyD6iRK+B4MBr//pAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUKjv4JgGKjFtolg1YLi4D7Y/xLeEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0tqdjRKZ0dLakZ0b2xnMVlMaTREN1lf eExlRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSP9AwDQYJ KoZIhvcNAQELBQADggEBADYcDvEFS0dEqG0QGkFtJsZ8vfCZ4WewES6vXWs4UvSE n13VEh8w45dJLbb0aQmbPy4njT592JUuGWuCuhfZA331QozT6pMcMWxsLRVe48JN VhHMx5kdh96BONc8iB5SI3UhQmn4Y3BGd5Z6ytN0QXrt4JyFgacisXAaWHFdKohk LeqfAXc5dH2JN2/2YBJ5juywyQk21FFpO2yejFL/ys/+YNDXN0VksTYNGQ9eD/3Q GRa5h59pmE9h7Ru9tt+sF0chEuK8kfihzLW3+UL7i81JaiGR6ohTYmu3rI4kaiMe VP0zY8dqDYDXSBurM1+8lffXIcqfs+SRXnCHRsBwufk= -----END CERTIFICATE-----Generated at Sun Aug 24 14:21:06 2025 by rpki-client