$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/OO9ECKU-BkdT783HT4X3bDaD-ME.roa File: OO9ECKU-BkdT783HT4X3bDaD-ME.roa (raw, json) Hash identifier: U2uDCd4gHb9iGIlvKD9grQ/VBrVp/LRJr+1r5Apomhw= Subject key identifier: 38:EF:44:08:A5:3E:06:47:53:EF:CD:C7:4F:85:F7:6C:36:83:F8:C1 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13F4 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OO9ECKU-BkdT783HT4X3bDaD-ME.roa Signing time: Fri 22 Aug 2025 08:59:55 +0000 ROA not before: Fri 22 Aug 2025 08:59:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18412 IP address blocks: 2401:e180:8c00::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5108 (0x13f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=38EF4408A53E064753EFCDC74F85F76C3683F8C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:70:f9:94:7e:b5:39:65:6d:3b:d1:e5:37:46: c3:8d:67:93:61:2f:3f:5e:d3:15:45:12:44:ab:e4: 5f:97:c1:70:c2:5c:0b:40:3b:81:9b:46:ad:0e:4e: 26:e1:03:69:42:55:87:b0:d0:53:41:23:84:3f:e3: 44:2d:28:ea:88:d6:c7:e6:48:5d:19:a9:94:bf:d0: d0:61:86:08:1f:8f:69:54:3a:2f:d8:e6:f4:64:cd: 86:9e:b7:58:82:d8:9b:db:36:ea:04:55:1e:f7:06: 9d:fb:6c:c9:7a:a3:9a:8b:f4:d8:1e:66:a6:95:af: b2:55:8c:38:61:4f:5c:b0:c9:15:b6:08:20:fb:5f: 23:03:b8:67:fe:31:68:a5:2a:88:63:46:f9:8d:b0: 44:50:a4:99:c5:a1:c8:bc:e4:aa:6a:50:86:53:64: 32:b5:fd:4a:65:72:22:b9:f1:b8:3f:bc:cb:a9:ad: 48:19:6c:53:27:55:b5:87:1e:f5:ae:f3:d9:a1:19: 75:6e:79:55:2e:68:3e:24:5b:98:20:db:2d:d7:76: 24:cd:52:fa:92:22:9b:db:5d:18:43:b7:b7:fe:4f: 5e:0e:d7:c9:63:62:2a:18:56:b5:3b:9a:e8:65:b5: 37:98:eb:bd:c6:80:02:37:37:09:20:c4:25:41:6d: b6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:EF:44:08:A5:3E:06:47:53:EF:CD:C7:4F:85:F7:6C:36:83:F8:C1 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OO9ECKU-BkdT783HT4X3bDaD-ME.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180:8c00::/44 Signature Algorithm: sha256WithRSAEncryption 4c:f8:15:9d:96:9c:02:2e:b6:b6:0d:ac:be:ad:35:8b:78:e5: 03:f1:4a:b0:22:a3:29:22:bc:e5:75:3a:d6:5f:21:9a:87:e5: 9d:e6:69:e1:ee:51:f6:bb:2e:84:b5:6a:06:f8:57:9d:7f:14: 78:2b:d3:0c:e0:45:92:4a:00:fc:2c:ab:7d:41:17:f8:2d:bc: f5:40:a8:65:57:bf:36:93:8d:e0:b2:20:33:a3:7f:00:22:4b: 15:84:65:3c:ba:64:c1:34:9a:08:88:2c:88:03:e0:8f:a4:e3: 13:e0:65:30:c6:b4:de:fd:1c:17:28:67:33:94:68:37:38:d6: 32:42:23:f3:0e:8f:ff:ad:5d:2a:47:69:9b:cd:47:03:da:33: 6e:f6:dc:f5:e1:56:a5:34:ba:ca:d1:1c:ea:f6:a5:dc:c6:50: 09:de:e4:0c:11:93:0f:08:e9:18:26:97:90:3c:c8:ca:00:eb: 44:19:6e:01:d6:7a:2c:df:af:d2:22:0c:a7:e8:d9:36:ce:b0: bb:45:f6:79:fc:b6:ef:54:48:f2:1e:90:b2:68:d8:57:4f:5d: a3:53:ee:f0:a9:63:3e:b1:90:ec:28:f9:de:d1:ed:79:0d:93: 0f:4c:1f:e4:c2:b3:23:4c:54:d8:9b:42:c6:91:38:21:82:af: 7e:5c:21:79 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICE/QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM4RUY0NDA4QTUzRTA2 NDc1M0VGQ0RDNzRGODVGNzZDMzY4M0Y4QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD7cPmUfrU5ZW070eU3RsONZ5NhLz9e0xVFEkSr5F+XwXDCXAtA O4GbRq0OTibhA2lCVYew0FNBI4Q/40QtKOqI1sfmSF0ZqZS/0NBhhggfj2lUOi/Y 5vRkzYaet1iC2JvbNuoEVR73Bp37bMl6o5qL9NgeZqaVr7JVjDhhT1ywyRW2CCD7 XyMDuGf+MWilKohjRvmNsERQpJnFoci85KpqUIZTZDK1/UplciK58bg/vMuprUgZ bFMnVbWHHvWu89mhGXVueVUuaD4kW5gg2y3XdiTNUvqSIpvbXRhDt7f+T14O18lj YioYVrU7muhltTeY673GgAI3NwkgxCVBbbYVAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUOO9ECKU+BkdT783HT4X3bDaD+MEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL09POUVDS1UtQmtkVDc4M0hUNFgzYkRh RC1NRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAjAAw DQYJKoZIhvcNAQELBQADggEBAEz4FZ2WnAIutrYNrL6tNYt45QPxSrAioykivOV1 OtZfIZqH5Z3maeHuUfa7LoS1agb4V51/FHgr0wzgRZJKAPwsq31BF/gtvPVAqGVX vzaTjeCyIDOjfwAiSxWEZTy6ZME0mgiILIgD4I+k4xPgZTDGtN79HBcoZzOUaDc4 1jJCI/MOj/+tXSpHaZvNRwPaM2723PXhVqU0usrRHOr2pdzGUAne5AwRkw8I6Rgm l5A8yMoA60QZbgHWeizfr9IiDKfo2TbOsLtF9nn8tu9USPIekLJo2FdPXaNT7vCp Yz6xkOwo+d7R7XkNkw9MH+TCsyNMVNibQsaROCGCr35cIXk= -----END CERTIFICATE-----Generated at Sun Aug 24 14:14:39 2025 by rpki-client