$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/TkRS4Jnh0XGxx0lWPnt7Ngq-I9E.roa File: TkRS4Jnh0XGxx0lWPnt7Ngq-I9E.roa (raw, json) Hash identifier: 3ZmLA3tltFqrTBpTvVhHwniE9+gnJbTQKEq7pzS1kOE= Subject key identifier: 4E:44:52:E0:99:E1:D1:71:B1:C7:49:56:3E:7B:7B:36:0A:BE:23:D1 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 143E Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TkRS4Jnh0XGxx0lWPnt7Ngq-I9E.roa Signing time: Fri 22 Aug 2025 09:00:13 +0000 ROA not before: Fri 22 Aug 2025 09:00:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 60.244.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5182 (0x143e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4E4452E099E1D171B1C749563E7B7B360ABE23D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f1:24:ba:da:b8:59:d9:23:a9:90:66:d6:85: df:16:86:8d:50:95:1a:4b:62:13:71:ce:a8:c6:81: 02:0e:e3:8b:f9:77:22:c2:02:e5:f0:3b:96:7e:ff: 95:1b:47:c8:2e:8b:4b:a2:a0:2b:a9:27:a5:8c:11: 0e:b4:fa:61:24:84:c2:d4:74:bc:00:74:22:96:a5: 8b:9f:ee:df:6e:2a:6f:e1:9a:81:83:1d:28:dc:e6: ce:e3:61:c6:d1:3b:7a:e1:3e:3d:65:73:1c:fd:b8: 55:4c:42:35:8c:19:b9:2d:86:91:17:cf:d4:16:76: 91:29:6c:85:7a:07:a7:49:c2:b0:6b:1f:92:9f:1c: c0:c6:44:f4:62:b5:9b:3a:5c:af:9c:41:ea:25:4d: af:14:63:58:f3:ba:e6:88:c4:e6:71:3b:ab:72:87: 53:cf:87:68:5b:ab:0f:7a:54:de:a3:17:21:7d:be: 60:d2:bc:2c:b7:5e:89:f0:6d:af:d0:50:07:50:8d: 37:73:b3:09:8c:3b:5e:c6:e9:4d:f0:bc:e1:82:4b: d2:5c:53:0d:a2:78:47:ef:45:7a:cc:11:e5:79:8e: 52:57:82:59:83:50:19:d7:03:dc:d7:08:1e:2d:d4: a0:80:9e:28:85:1e:ef:d7:70:7a:ad:12:78:d4:56: a8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:44:52:E0:99:E1:D1:71:B1:C7:49:56:3E:7B:7B:36:0A:BE:23:D1 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TkRS4Jnh0XGxx0lWPnt7Ngq-I9E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.192.0/18 Signature Algorithm: sha256WithRSAEncryption be:19:5c:76:79:51:7f:a8:28:9d:9b:53:f9:1a:0d:20:40:a9: e6:07:f4:11:78:47:e1:24:b8:42:67:e7:f5:46:ec:a4:e7:40: cc:32:40:f9:7f:c9:ea:0d:cf:a1:52:70:b9:fc:bf:26:93:c6: 19:b2:78:81:7d:4c:96:f7:86:42:22:7b:c7:f1:f7:bb:31:b3: 2c:41:d3:55:e9:5d:42:d3:50:b2:e3:8d:f8:92:78:27:bd:9f: 16:4d:09:53:cb:91:4e:33:28:d3:07:82:9d:85:48:a1:c8:23: 97:04:10:3e:c2:9e:9f:ad:53:c4:ad:20:a0:9a:1f:d8:18:f5: 8e:31:ed:54:95:59:cf:7d:6a:25:be:75:45:ff:31:15:cb:ff: 7a:24:7a:fd:b0:7d:b5:6c:50:2a:80:d0:16:31:6d:18:a8:f1: 20:52:c7:ac:15:89:d0:8d:f7:57:c2:b8:84:b6:52:c1:97:b3: f9:e6:0d:bc:d0:a3:40:a3:d8:da:9f:98:ff:5e:8b:7c:2d:b7: 3a:8f:4e:6c:75:d3:04:b8:85:34:03:00:89:45:7d:fc:05:7b: 47:a5:77:4f:12:98:c5:1f:c3:b4:af:e4:82:47:f2:39:48:89: 27:cc:38:eb:81:cd:54:30:75:92:0c:3f:1b:36:ab:51:86:1c: 32:f3:ab:43 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFD4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRFNDQ1MkUwOTlFMUQx NzFCMUM3NDk1NjNFN0I3QjM2MEFCRTIzRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA8SS62rhZ2SOpkGbWhd8Who1QlRpLYhNxzqjGgQIO44v5dyLC AuXwO5Z+/5UbR8gui0uioCupJ6WMEQ60+mEkhMLUdLwAdCKWpYuf7t9uKm/hmoGD HSjc5s7jYcbRO3rhPj1lcxz9uFVMQjWMGbkthpEXz9QWdpEpbIV6B6dJwrBrH5Kf HMDGRPRitZs6XK+cQeolTa8UY1jzuuaIxOZxO6tyh1PPh2hbqw96VN6jFyF9vmDS vCy3Xonwba/QUAdQjTdzswmMO17G6U3wvOGCS9JcUw2ieEfvRXrMEeV5jlJXglmD UBnXA9zXCB4t1KCAniiFHu/XcHqtEnjUVqgDAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUTkRS4Jnh0XGxx0lWPnt7Ngq+I9EwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1RrUlM0Sm5oMFhHeHgwbFdQbnQ3Tmdx LUk5RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY89MAwDQYJ KoZIhvcNAQELBQADggEBAL4ZXHZ5UX+oKJ2bU/kaDSBAqeYH9BF4R+EkuEJn5/VG 7KTnQMwyQPl/yeoNz6FScLn8vyaTxhmyeIF9TJb3hkIie8fx97sxsyxB01XpXULT ULLjjfiSeCe9nxZNCVPLkU4zKNMHgp2FSKHII5cEED7Cnp+tU8StIKCaH9gY9Y4x 7VSVWc99aiW+dUX/MRXL/3okev2wfbVsUCqA0BYxbRio8SBSx6wVidCN91fCuIS2 UsGXs/nmDbzQo0Cj2NqfmP9ei3wttzqPTmx10wS4hTQDAIlFffwFe0eld08SmMUf w7Sv5IJH8jlIiSfMOOuBzVQwdZIMPxs2q1GGHDLzq0M= -----END CERTIFICATE-----Generated at Sun Aug 24 14:21:41 2025 by rpki-client