$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/RkJ2WRbokKnQn6tbWuUmYR6sjak.roa File: RkJ2WRbokKnQn6tbWuUmYR6sjak.roa (raw, json) Hash identifier: oV/oh1nTobuDVj/DnPpNSptI2imwj+Z63a00r+F9uGY= Subject key identifier: 46:42:76:59:16:E8:90:A9:D0:9F:AB:5B:5A:E5:26:61:1E:AC:8D:A9 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 143A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RkJ2WRbokKnQn6tbWuUmYR6sjak.roa Signing time: Fri 22 Aug 2025 09:00:11 +0000 ROA not before: Fri 22 Aug 2025 09:00:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 222.250.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5178 (0x143a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4642765916E890A9D09FAB5B5AE526611EAC8DA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f0:83:54:b3:a1:59:80:ca:7c:be:cc:11:4c: f0:4c:9c:0e:ed:db:4a:40:47:0d:9d:eb:fc:c3:7b: 9a:05:ed:e6:ca:74:92:09:a3:a5:0f:e2:e6:fe:a5: 00:1c:e2:48:93:28:ef:86:f8:4e:33:24:d6:20:98: d5:6f:5d:91:d0:37:ec:ac:f6:6c:5c:5a:a0:92:31: 9e:0a:72:b0:59:7e:db:5d:c5:d7:da:95:d6:f7:ab: a5:3c:d8:a1:f5:1a:a1:c3:41:38:5d:e4:b0:65:84: 74:f4:1a:61:8c:4d:dd:79:b5:06:44:5d:92:9f:63: 23:e2:09:46:40:b4:98:eb:18:da:0e:cf:a9:ae:d7: 9e:37:f2:e0:9f:78:57:79:56:fa:dc:3c:c1:5e:1b: ad:9d:a8:80:0c:e1:da:d6:3c:a0:e1:9c:72:60:04: d4:7d:71:df:b6:b2:9c:9e:8c:8c:4d:e7:f0:f7:dd: 8e:70:76:75:17:48:38:ba:9e:cd:ac:3d:63:07:4a: 22:22:96:1c:a0:06:da:64:c3:fb:ac:76:47:36:2f: ca:cd:65:b8:4a:b6:88:97:b2:32:1a:b4:64:9c:c3: c3:60:15:78:23:e5:ab:04:c1:29:57:28:fb:42:a0: d6:e8:7b:55:86:83:73:d9:e7:cd:13:8d:46:2f:48: 09:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:42:76:59:16:E8:90:A9:D0:9F:AB:5B:5A:E5:26:61:1E:AC:8D:A9 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RkJ2WRbokKnQn6tbWuUmYR6sjak.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.250.0.0/18 Signature Algorithm: sha256WithRSAEncryption 5b:8a:89:b1:07:86:73:c3:f4:1c:ec:06:d7:08:16:d1:8b:8e: 17:83:5e:3c:cf:44:6e:03:35:35:56:93:41:84:5c:d3:f8:8f: 4b:b3:fa:d4:e4:e0:b3:a6:0d:3e:99:40:ad:39:30:44:28:3b: bf:d2:a8:c1:76:c0:b2:50:c9:05:02:84:a4:3a:74:69:cc:a2: 2b:71:38:9a:b5:45:7d:a3:f3:12:8e:c1:13:12:0a:36:51:85: 26:f5:f5:cf:25:8f:76:ab:88:79:84:14:b2:43:e4:a0:77:8e: 9a:ee:4d:a8:f1:0d:09:5d:bf:88:1e:ec:d4:28:67:8e:73:e9: 03:f1:22:c2:7d:88:b0:eb:6d:36:52:bd:7d:d7:ab:b0:62:51: 34:d8:73:44:ef:b1:4e:70:ae:b2:6a:b1:d5:ab:d6:37:4b:62: bf:34:66:0f:40:be:34:08:d1:33:af:6f:30:7a:b0:f1:98:83: 99:17:82:2c:f2:be:2b:da:4a:0b:0b:45:0a:41:0e:d8:ed:ec: 41:39:f7:10:02:3c:c2:41:5f:ca:e3:bb:92:5c:35:0a:d9:0f: a1:af:fa:31:9b:31:f1:6f:91:6a:a6:1d:da:3c:a3:80:7e:91: 5b:69:01:15:c9:62:5c:14:9e:8b:f2:fe:e5:bb:ff:85:2a:82: bc:1e:39:ef -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFDowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ2NDI3NjU5MTZFODkw QTlEMDlGQUI1QjVBRTUyNjYxMUVBQzhEQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq8INUs6FZgMp8vswRTPBMnA7t20pARw2d6/zDe5oF7ebKdJIJ o6UP4ub+pQAc4kiTKO+G+E4zJNYgmNVvXZHQN+ys9mxcWqCSMZ4KcrBZfttdxdfa ldb3q6U82KH1GqHDQThd5LBlhHT0GmGMTd15tQZEXZKfYyPiCUZAtJjrGNoOz6mu 15438uCfeFd5VvrcPMFeG62dqIAM4drWPKDhnHJgBNR9cd+2spyejIxN5/D33Y5w dnUXSDi6ns2sPWMHSiIilhygBtpkw/usdkc2L8rNZbhKtoiXsjIatGScw8NgFXgj 5asEwSlXKPtCoNboe1WGg3PZ580TjUYvSAnxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQURkJ2WRbokKnQn6tbWuUmYR6sjakwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1JrSjJXUmJva0tuUW42dGJXdVVtWVI2 c2phay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbe+gAwDQYJ KoZIhvcNAQELBQADggEBAFuKibEHhnPD9BzsBtcIFtGLjheDXjzPRG4DNTVWk0GE XNP4j0uz+tTk4LOmDT6ZQK05MEQoO7/SqMF2wLJQyQUChKQ6dGnMoitxOJq1RX2j 8xKOwRMSCjZRhSb19c8lj3ariHmEFLJD5KB3jpruTajxDQldv4ge7NQoZ45z6QPx IsJ9iLDrbTZSvX3Xq7BiUTTYc0TvsU5wrrJqsdWr1jdLYr80Zg9AvjQI0TOvbzB6 sPGYg5kXgizyvivaSgsLRQpBDtjt7EE59xACPMJBX8rju5JcNQrZD6Gv+jGbMfFv kWqmHdo8o4B+kVtpARXJYlwUnovy/uW7/4UqgrweOe8= -----END CERTIFICATE-----Generated at Sun Aug 24 14:17:20 2025 by rpki-client