$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/LL4LBrl0kGp0levMIPzyM1H63RY.roa File: LL4LBrl0kGp0levMIPzyM1H63RY.roa (raw, json) Hash identifier: Ef6JqXVNeGvhigKvkWCgJEvuOUjbAVUKK1UZf+cjaIc= Subject key identifier: 2C:BE:0B:06:B9:74:90:6A:74:95:EB:CC:20:FC:F2:33:51:FA:DD:16 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1466 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LL4LBrl0kGp0levMIPzyM1H63RY.roa Signing time: Fri 22 Aug 2025 09:00:22 +0000 ROA not before: Fri 22 Aug 2025 09:00:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 210.202.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5222 (0x1466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2CBE0B06B974906A7495EBCC20FCF23351FADD16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7a:70:0f:a8:23:8b:75:5a:bf:be:a6:c8:90: 78:f3:a5:7e:10:94:da:4a:1d:36:5f:1d:78:e3:d7: d6:6d:5c:7b:be:98:93:6a:92:9e:42:49:d7:87:a2: 0a:45:8a:d6:99:ce:b7:74:f8:8e:98:6e:8c:cf:da: 0b:27:ec:1f:04:29:d6:77:b2:88:b8:74:b3:33:28: 94:ab:30:3d:d8:e3:d4:83:67:fc:85:17:f7:26:7c: 22:06:bc:7e:aa:eb:ba:ca:9d:5a:ba:19:f1:7a:53: 8c:64:8a:0f:39:c8:a3:a4:21:5c:0c:78:04:de:52: 22:0c:f4:e1:38:be:8f:1b:28:a5:a4:d5:d9:34:f2: 09:c6:2c:e2:1e:e5:03:85:e2:0d:73:f2:b8:f3:13: eb:d7:0f:b9:98:32:36:9b:26:2f:38:00:6a:be:3a: 2f:b5:01:53:f9:70:e2:be:7c:1b:a4:d3:94:5f:8d: 70:15:c0:5b:41:49:b0:eb:c6:8b:2c:14:05:cc:e0: c4:bb:3a:63:86:e9:53:7c:90:ca:ae:27:ae:d1:21: f0:1c:88:e8:93:92:1b:d8:4f:52:67:f5:6b:eb:23: b0:6f:e4:bb:f7:45:e2:8c:53:56:8c:60:93:c0:20: 1c:c3:5a:97:90:b8:c0:96:0c:6c:53:7f:4b:cc:3c: 1b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BE:0B:06:B9:74:90:6A:74:95:EB:CC:20:FC:F2:33:51:FA:DD:16 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LL4LBrl0kGp0levMIPzyM1H63RY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.128.0/18 Signature Algorithm: sha256WithRSAEncryption 33:20:52:1c:b2:43:0c:0b:e1:37:51:34:be:e1:90:e1:36:d9: 5b:05:c8:da:43:84:bc:f7:25:b2:a4:b6:27:9c:01:ce:7c:0c: cf:7e:78:4e:ae:fe:13:16:41:90:90:7e:7b:fe:13:b8:1e:54: bd:13:c5:cf:4e:6c:16:f6:75:63:ea:05:bc:2f:40:57:1e:84: b0:b2:c8:38:4f:10:bb:c6:37:82:9f:d1:ce:f6:33:b2:b1:0f: f0:70:8f:f9:51:11:75:c5:27:23:a8:1c:36:6f:5e:3b:fe:ea: f0:74:63:95:f5:c8:69:72:1b:50:18:91:e8:f6:49:61:d9:84: 16:60:db:44:25:15:e3:ac:36:f4:1d:f6:64:f5:86:78:12:02: e8:65:09:d4:be:e1:c6:1c:a5:79:65:be:a4:96:6a:6b:f7:22: a8:ae:3a:69:fa:af:94:22:c6:6d:e0:e7:b6:f6:c6:f9:a9:ad: 2f:95:39:67:35:60:0a:9d:08:a4:52:aa:3e:f6:4c:84:73:d0: f9:97:d2:51:eb:5a:86:25:5a:65:a5:c4:ec:d8:bb:76:33:f7: 82:f6:56:35:4e:86:66:d0:2b:ac:8d:0e:b6:b0:b3:9d:c1:df: f5:26:89:c0:03:be:9a:64:3a:d3:ec:b6:45:bf:d6:66:03:e3: 36:3d:0d:d6 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFGYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJDQkUwQjA2Qjk3NDkw NkE3NDk1RUJDQzIwRkNGMjMzNTFGQUREMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuenAPqCOLdVq/vqbIkHjzpX4QlNpKHTZfHXjj19ZtXHu+mJNq kp5CSdeHogpFitaZzrd0+I6YbozP2gsn7B8EKdZ3soi4dLMzKJSrMD3Y49SDZ/yF F/cmfCIGvH6q67rKnVq6GfF6U4xkig85yKOkIVwMeATeUiIM9OE4vo8bKKWk1dk0 8gnGLOIe5QOF4g1z8rjzE+vXD7mYMjabJi84AGq+Oi+1AVP5cOK+fBuk05RfjXAV wFtBSbDrxossFAXM4MS7OmOG6VN8kMquJ67RIfAciOiTkhvYT1Jn9WvrI7Bv5Lv3 ReKMU1aMYJPAIBzDWpeQuMCWDGxTf0vMPBsrAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQULL4LBrl0kGp0levMIPzyM1H63RYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0xMNExCcmwwa0dwMGxldk1JUHp5TTFI NjNSWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyoAwDQYJ KoZIhvcNAQELBQADggEBADMgUhyyQwwL4TdRNL7hkOE22VsFyNpDhLz3JbKktiec Ac58DM9+eE6u/hMWQZCQfnv+E7geVL0Txc9ObBb2dWPqBbwvQFcehLCyyDhPELvG N4Kf0c72M7KxD/Bwj/lREXXFJyOoHDZvXjv+6vB0Y5X1yGlyG1AYkej2SWHZhBZg 20QlFeOsNvQd9mT1hngSAuhlCdS+4cYcpXllvqSWamv3IqiuOmn6r5Qixm3g57b2 xvmprS+VOWc1YAqdCKRSqj72TIRz0PmX0lHrWoYlWmWlxOzYu3Yz94L2VjVOhmbQ K6yNDraws53B3/UmicADvppkOtPstkW/1mYD4zY9DdY= -----END CERTIFICATE-----Generated at Sun Aug 24 14:20:13 2025 by rpki-client