$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Ooim6tYmEZ30xEXpNptjR0FBxRA.roa File: Ooim6tYmEZ30xEXpNptjR0FBxRA.roa (raw, json) Hash identifier: ev4ZgHbY4RwJmRLANSyOTx4xp1BaDq5leUq+svz1FA0= Subject key identifier: 3A:88:A6:EA:D6:26:11:9D:F4:C4:45:E9:36:9B:63:47:41:41:C5:10 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 141E Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Ooim6tYmEZ30xEXpNptjR0FBxRA.roa Signing time: Fri 22 Aug 2025 09:00:06 +0000 ROA not before: Fri 22 Aug 2025 09:00:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 210.63.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5150 (0x141e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3A88A6EAD626119DF4C445E9369B63474141C510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e3:08:03:26:95:3c:be:da:59:a5:a4:7a:66: 1c:00:c3:fc:5b:64:7a:fa:9e:b4:0f:a5:b8:97:ba: bc:f6:ea:ba:29:99:38:5a:c3:60:d4:0f:df:5d:1a: 83:34:ed:81:44:75:71:09:c7:52:3b:18:e2:73:ba: 08:bc:a9:9e:71:c9:f8:bc:2d:45:a0:ab:e6:01:02: 59:1b:25:e9:ba:e0:7e:98:af:73:8f:9d:a5:76:11: 9a:3b:60:01:dc:18:67:aa:52:78:ae:e4:b0:23:3c: bc:de:c3:51:7e:50:3e:33:46:b2:fa:ae:31:33:b7: 12:39:c8:3c:b2:78:25:7d:35:db:08:42:a0:df:79: 81:da:eb:fb:fc:e9:82:d4:b6:61:43:26:c2:bf:68: e7:c7:e6:a7:44:88:dd:fa:f1:c8:ec:66:15:a0:2f: f3:7c:db:20:5c:ff:5c:6f:d9:92:d9:e5:19:45:56: f0:de:79:03:52:2d:95:66:20:f0:9b:97:99:65:9e: b5:85:6d:86:db:39:79:12:85:84:6b:0e:ec:a9:5b: c3:bc:58:30:32:e6:63:35:8d:e2:30:4b:f5:14:6d: 1c:ad:4f:71:7e:87:12:b9:de:95:34:e5:9d:89:47: b9:7d:56:9f:3e:89:de:01:31:1b:45:ee:a6:ca:a6: e5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:88:A6:EA:D6:26:11:9D:F4:C4:45:E9:36:9B:63:47:41:41:C5:10 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Ooim6tYmEZ30xEXpNptjR0FBxRA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.192.0/19 Signature Algorithm: sha256WithRSAEncryption 17:ce:3d:f0:fd:a7:13:57:1d:08:62:ed:70:30:5c:0c:ef:8e: 37:37:d1:e3:bd:2c:e9:1b:55:1f:4d:f0:90:25:86:ad:45:f6: 2f:04:8e:82:71:be:b3:c7:58:2e:8b:90:83:bb:6a:72:f4:56: c4:78:0f:da:9b:7b:69:37:4a:56:98:0a:d4:0d:2a:30:bc:91: 8d:a6:ca:ff:66:ce:0e:ec:70:af:c5:19:c9:be:8a:31:20:a3: b6:ad:07:2f:a8:c3:79:03:78:55:9a:3e:7b:1b:ab:59:b0:8a: 0b:10:da:11:6e:55:39:53:77:7d:08:02:0e:fb:cd:33:28:21: c1:27:af:14:6a:c4:28:e1:45:05:1f:a4:ad:27:77:93:96:47: 6a:12:4d:ba:65:46:47:8a:06:bd:b1:9a:c8:98:aa:2e:0e:38: f2:74:08:bf:62:0e:a6:d0:bd:02:48:8e:89:f1:06:43:a7:53: 35:1f:6c:eb:49:03:7a:71:54:83:54:72:8b:a6:ac:00:d8:fd: ad:02:bf:87:84:94:71:2a:db:d0:cd:22:0d:96:fa:f9:df:80: 7f:de:b7:0f:84:57:07:b8:25:12:db:3a:6e:8a:91:b0:99:e0: 55:f3:9b:b0:44:cb:c6:ac:f1:c2:84:2e:76:b6:09:65:c2:97: e0:9c:45:21 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFB4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNBODhBNkVBRDYyNjEx OURGNEM0NDVFOTM2OUI2MzQ3NDE0MUM1MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz4wgDJpU8vtpZpaR6ZhwAw/xbZHr6nrQPpbiXurz26ropmTha w2DUD99dGoM07YFEdXEJx1I7GOJzugi8qZ5xyfi8LUWgq+YBAlkbJem64H6Yr3OP naV2EZo7YAHcGGeqUniu5LAjPLzew1F+UD4zRrL6rjEztxI5yDyyeCV9NdsIQqDf eYHa6/v86YLUtmFDJsK/aOfH5qdEiN368cjsZhWgL/N82yBc/1xv2ZLZ5RlFVvDe eQNSLZVmIPCbl5llnrWFbYbbOXkShYRrDuypW8O8WDAy5mM1jeIwS/UUbRytT3F+ hxK53pU05Z2JR7l9Vp8+id4BMRtF7qbKpuWXAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUOoim6tYmEZ30xEXpNptjR0FBxRAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL09vaW02dFltRVozMHhFWHBOcHRqUjBG QnhSQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXSP8AwDQYJ KoZIhvcNAQELBQADggEBABfOPfD9pxNXHQhi7XAwXAzvjjc30eO9LOkbVR9N8JAl hq1F9i8EjoJxvrPHWC6LkIO7anL0VsR4D9qbe2k3SlaYCtQNKjC8kY2myv9mzg7s cK/FGcm+ijEgo7atBy+ow3kDeFWaPnsbq1mwigsQ2hFuVTlTd30IAg77zTMoIcEn rxRqxCjhRQUfpK0nd5OWR2oSTbplRkeKBr2xmsiYqi4OOPJ0CL9iDqbQvQJIjonx BkOnUzUfbOtJA3pxVINUcoumrADY/a0Cv4eElHEq29DNIg2W+vnfgH/etw+EVwe4 JRLbOm6KkbCZ4FXzm7BEy8as8cKELna2CWXCl+CcRSE= -----END CERTIFICATE-----Generated at Sun Aug 24 14:16:33 2025 by rpki-client