$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/SIRDTlunUvTXcgbGwK6uPD3URtU.roa File: SIRDTlunUvTXcgbGwK6uPD3URtU.roa (raw, json) Hash identifier: TyTNV0bbIBNslEeRzIMKj6Nt0GF5p5XzXat3PiXdhZI= Subject key identifier: 48:84:43:4E:5B:A7:52:F4:D7:72:06:C6:C0:AE:AE:3C:3D:D4:46:D5 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13F2 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SIRDTlunUvTXcgbGwK6uPD3URtU.roa Signing time: Fri 22 Aug 2025 08:59:55 +0000 ROA not before: Fri 22 Aug 2025 08:59:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 60.244.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5106 (0x13f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4884434E5BA752F4D77206C6C0AEAE3C3DD446D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:63:53:21:89:40:5f:76:a3:30:3b:ca:2e:bc: 16:19:4c:c3:22:0a:35:a1:cd:c9:0e:ea:14:a3:c4: f5:af:12:f0:7f:49:df:65:af:ea:67:ac:32:87:ca: 55:16:b8:bc:f7:b4:cb:72:e0:e2:d9:75:cb:0c:b7: da:3b:7f:96:c9:38:13:05:c4:a4:0d:f9:3c:41:53: 1b:4b:9a:f6:5f:e3:ba:21:94:fa:17:3e:2a:64:79: cc:f6:82:80:2e:cb:5a:7f:62:1b:1a:b3:85:9b:5e: 13:4c:ad:5a:38:41:9d:88:c1:94:75:4d:61:c0:d9: 23:a0:00:fc:c6:0d:c6:fe:cb:9e:7a:cf:02:b5:06: c3:1b:22:1d:c2:a7:b2:67:ff:25:4b:2d:e0:7e:cd: f3:38:89:18:7f:ff:41:e3:73:27:93:88:cc:e0:6b: 9a:fc:e1:e5:4c:a9:4a:ff:d1:54:5b:b3:f5:1e:5b: 60:fa:50:db:92:25:78:44:fd:4b:1d:33:34:2f:d3: 3e:c0:96:80:94:45:e9:2e:5f:71:24:7f:bb:ed:1c: 35:6b:ca:e5:52:f6:85:24:4b:79:b9:41:86:2a:95: 9e:4e:ac:87:07:3f:9a:00:5c:9b:a5:de:70:b9:fd: 64:71:65:ee:4a:3c:70:4c:40:6e:7e:61:35:86:dc: 5a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:84:43:4E:5B:A7:52:F4:D7:72:06:C6:C0:AE:AE:3C:3D:D4:46:D5 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SIRDTlunUvTXcgbGwK6uPD3URtU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.0.0/17 Signature Algorithm: sha256WithRSAEncryption a3:e4:dd:d2:7c:37:cc:9e:25:7a:3d:21:b5:10:cf:d8:37:6e: d4:f9:cd:b2:2e:64:fe:7e:48:6f:b7:07:81:9e:18:af:72:2a: 6a:c0:a7:a3:2d:46:57:88:cb:b9:8f:83:71:b8:9c:7e:2c:84: 5a:73:ad:fc:3c:c4:6e:6d:ea:8a:e3:f3:1a:06:6a:45:a5:f2: ab:f1:71:71:b9:13:c9:7a:0b:c7:4d:b5:f0:16:8f:99:8a:a2: e3:22:09:ff:64:12:4e:b7:26:c1:77:14:07:a1:93:d5:cd:8b: 90:2e:28:5d:26:da:d0:1d:01:62:63:f0:10:dc:46:b8:e1:54: 9c:12:8d:21:53:7c:5d:4c:a4:e0:8c:67:6e:66:d0:38:01:09: b1:b6:bd:10:6b:b2:07:c2:df:94:c9:e6:3a:32:91:d6:ee:06: 09:a6:ec:96:0c:4c:ed:80:43:ff:44:46:2b:78:b9:2d:6e:43: a1:9c:9f:cf:cf:ae:20:01:99:c3:d2:2e:7d:11:50:3f:f6:bc: b7:3a:57:2c:a8:de:5f:3a:4c:98:03:5f:a3:d8:38:c7:9e:64: 63:cf:22:ef:36:02:29:fc:fd:71:95:6c:bf:fe:26:3a:85:b2: 4e:96:71:72:db:2d:d6:c2:17:35:ff:6a:9b:eb:44:bb:cf:bf: cf:b5:97:10 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE/IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ4ODQ0MzRFNUJBNzUy RjRENzcyMDZDNkMwQUVBRTNDM0RENDQ2RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjY1MhiUBfdqMwO8ouvBYZTMMiCjWhzckO6hSjxPWvEvB/Sd9l r+pnrDKHylUWuLz3tMty4OLZdcsMt9o7f5bJOBMFxKQN+TxBUxtLmvZf47ohlPoX Pipkecz2goAuy1p/Yhsas4WbXhNMrVo4QZ2IwZR1TWHA2SOgAPzGDcb+y556zwK1 BsMbIh3Cp7Jn/yVLLeB+zfM4iRh//0HjcyeTiMzga5r84eVMqUr/0VRbs/UeW2D6 UNuSJXhE/UsdMzQv0z7AloCURekuX3Ekf7vtHDVryuVS9oUkS3m5QYYqlZ5OrIcH P5oAXJul3nC5/WRxZe5KPHBMQG5+YTWG3FoTAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUSIRDTlunUvTXcgbGwK6uPD3URtUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1NJUkRUbHVuVXZUWGNnYkd3SzZ1UEQz VVJ0VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc89AAwDQYJ KoZIhvcNAQELBQADggEBAKPk3dJ8N8yeJXo9IbUQz9g3btT5zbIuZP5+SG+3B4Ge GK9yKmrAp6MtRleIy7mPg3G4nH4shFpzrfw8xG5t6orj8xoGakWl8qvxcXG5E8l6 C8dNtfAWj5mKouMiCf9kEk63JsF3FAehk9XNi5AuKF0m2tAdAWJj8BDcRrjhVJwS jSFTfF1MpOCMZ25m0DgBCbG2vRBrsgfC35TJ5joykdbuBgmm7JYMTO2AQ/9ERit4 uS1uQ6Gcn8/PriABmcPSLn0RUD/2vLc6Vyyo3l86TJgDX6PYOMeeZGPPIu82Ain8 /XGVbL/+JjqFsk6WcXLbLdbCFzX/apvrRLvPv8+1lxA= -----END CERTIFICATE-----Generated at Sun Aug 24 14:21:40 2025 by rpki-client