$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/TkLUkH0jefXEqeHQyVCvx6SjJ_0.roa File: TkLUkH0jefXEqeHQyVCvx6SjJ_0.roa (raw, json) Hash identifier: o3kotdCcCvd3+cPtq5iQUm3BIQXR1yVpibxhRe/mT+0= Subject key identifier: 4E:42:D4:90:7D:23:79:F5:C4:A9:E1:D0:C9:50:AF:C7:A4:A3:27:FD Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1437 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TkLUkH0jefXEqeHQyVCvx6SjJ_0.roa Signing time: Fri 22 Aug 2025 09:00:10 +0000 ROA not before: Fri 22 Aug 2025 09:00:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18412 IP address blocks: 2401:e180:8960::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5175 (0x1437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4E42D4907D2379F5C4A9E1D0C950AFC7A4A327FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:fa:9a:1c:25:f5:fe:de:f1:a0:79:69:44:32: 22:82:49:a1:21:4b:51:60:b3:97:bb:65:49:a5:f2: b3:f7:44:e1:60:7e:25:7f:aa:9e:78:74:63:05:06: f8:f5:de:f3:5c:6e:c7:03:2a:53:3a:fb:7d:1d:9d: 8b:a9:26:3e:b8:88:79:f5:63:46:a5:95:7d:ad:c5: 74:1d:b3:83:00:6e:74:20:76:5d:6a:0e:f8:aa:68: ac:eb:cf:3c:5e:15:39:a8:ca:4e:97:a4:ed:99:33: b5:a6:39:c1:19:a5:23:ec:78:a6:87:5c:11:33:e1: 7a:64:9c:fc:1d:15:18:3c:13:7e:6a:1c:ce:f0:27: 13:fc:2a:01:3a:a1:fd:aa:0d:0e:43:89:98:52:60: 46:12:23:46:a0:97:ac:2b:28:a5:8f:02:b4:b1:d9: 99:49:a7:32:d4:1b:39:d7:c4:54:c2:60:50:d7:35: f7:2c:dd:06:cf:a1:b5:b1:f6:af:37:b9:b9:12:0f: be:c0:bc:32:89:bd:14:dc:40:52:e5:68:c2:c7:4b: b5:95:40:a3:d5:1e:c1:f2:91:02:e6:73:be:1d:71: 18:02:bc:75:df:9e:10:84:98:10:ec:19:29:3a:3d: 09:37:39:b4:df:ec:c4:35:a6:97:de:37:6c:19:ba: a3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:42:D4:90:7D:23:79:F5:C4:A9:E1:D0:C9:50:AF:C7:A4:A3:27:FD X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TkLUkH0jefXEqeHQyVCvx6SjJ_0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180:8960::/44 Signature Algorithm: sha256WithRSAEncryption a3:43:dc:2d:21:8b:02:5b:57:8b:52:de:83:32:38:cd:41:86: b0:27:f7:03:8b:b5:bf:4d:51:17:d7:2a:76:f1:1f:9a:bc:72: 9e:0e:44:40:12:fd:69:ec:d2:cb:2f:48:22:5a:9d:d1:df:60: 76:4b:8f:69:73:2f:dc:1a:62:53:a5:3c:41:d5:40:d1:99:31: d2:a3:5a:75:26:5b:3e:e1:0f:25:59:d5:77:72:55:70:ae:af: 2b:30:2e:13:d0:eb:ce:76:e2:ec:2d:61:7f:c5:e4:01:01:9a: 65:21:fa:51:f2:60:80:ab:2c:bf:99:ce:a7:61:62:e6:a2:24: 6d:58:b3:8b:a4:a9:8f:7c:1b:9c:f5:9c:d1:1c:da:f5:e1:06: 80:a8:91:70:c3:3f:97:cb:15:76:ec:69:22:de:5c:f2:35:b9: 36:b0:6a:bd:a5:1f:e1:81:24:88:76:4e:40:6b:72:70:c8:ca: 4f:79:2a:35:ef:73:2d:8c:5b:de:d5:4f:a7:0c:81:36:11:db: 8d:6a:57:89:73:d0:52:85:fc:8c:09:a9:cf:eb:19:2d:2a:c7: a0:33:65:75:cb:a7:38:b3:fc:0d:d7:c3:5c:04:47:57:11:8c: 5a:fd:6c:2b:6e:20:bf:67:42:65:64:a3:de:65:fa:a8:74:b9: 7f:5f:cd:21 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICFDcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRFNDJENDkwN0QyMzc5 RjVDNEE5RTFEMEM5NTBBRkM3QTRBMzI3RkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDs+pocJfX+3vGgeWlEMiKCSaEhS1Fgs5e7ZUml8rP3ROFgfiV/ qp54dGMFBvj13vNcbscDKlM6+30dnYupJj64iHn1Y0allX2txXQds4MAbnQgdl1q DviqaKzrzzxeFTmoyk6XpO2ZM7WmOcEZpSPseKaHXBEz4XpknPwdFRg8E35qHM7w JxP8KgE6of2qDQ5DiZhSYEYSI0agl6wrKKWPArSx2ZlJpzLUGznXxFTCYFDXNfcs 3QbPobWx9q83ubkSD77AvDKJvRTcQFLlaMLHS7WVQKPVHsHykQLmc74dcRgCvHXf nhCEmBDsGSk6PQk3ObTf7MQ1ppfeN2wZuqObAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUTkLUkH0jefXEqeHQyVCvx6SjJ/0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1RrTFVrSDBqZWZYRXFlSFF5VkN2eDZT akpfMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAiWAw DQYJKoZIhvcNAQELBQADggEBAKND3C0hiwJbV4tS3oMyOM1BhrAn9wOLtb9NURfX KnbxH5q8cp4OREAS/Wns0ssvSCJandHfYHZLj2lzL9waYlOlPEHVQNGZMdKjWnUm Wz7hDyVZ1XdyVXCuryswLhPQ68524uwtYX/F5AEBmmUh+lHyYICrLL+ZzqdhYuai JG1Ys4ukqY98G5z1nNEc2vXhBoCokXDDP5fLFXbsaSLeXPI1uTawar2lH+GBJIh2 TkBrcnDIyk95KjXvcy2MW97VT6cMgTYR241qV4lz0FKF/IwJqc/rGS0qx6AzZXXL pziz/A3Xw1wER1cRjFr9bCtuIL9nQmVko95l+qh0uX9fzSE= -----END CERTIFICATE-----Generated at Sun Aug 24 14:22:49 2025 by rpki-client