$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/WykLInFESPem2txR4iYmbTmPt2g.roa File: WykLInFESPem2txR4iYmbTmPt2g.roa (raw, json) Hash identifier: nv7CR/0aPg2B606U15SKbvxInSTgJ5YVmD3RA/q8QNs= Subject key identifier: 5B:29:0B:22:71:44:48:F7:A6:DA:DC:51:E2:26:26:6D:39:8F:B7:68 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 140C Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WykLInFESPem2txR4iYmbTmPt2g.roa Signing time: Fri 22 Aug 2025 09:00:02 +0000 ROA not before: Fri 22 Aug 2025 09:00:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 210.203.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5132 (0x140c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5B290B22714448F7A6DADC51E226266D398FB768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:46:b3:fe:01:f9:6a:f9:f3:ea:6c:02:e8:9a: 8b:27:31:99:1b:a1:4d:36:81:e7:9d:8c:fa:49:24: 0c:c0:73:90:7f:1f:52:6b:f3:54:99:2b:27:29:91: 39:96:06:7d:34:c9:4a:9f:89:3c:0d:ce:7e:ad:9b: 5f:2f:4b:3d:d6:d8:50:8c:f1:dd:43:d5:35:27:ac: 02:f4:4e:34:52:05:eb:87:83:b3:6b:e0:fc:d1:09: ea:6f:71:b9:53:95:26:d7:0b:bb:19:09:95:26:fc: 76:9d:99:89:18:c4:75:d9:17:ee:b3:c1:bf:b9:5d: 03:0c:6e:01:95:4f:f1:b3:3f:eb:f9:61:6e:d9:b8: fc:a2:66:4b:d5:44:06:4a:ab:0c:c4:4e:64:c8:a5: 01:65:ca:a5:dd:8a:5f:5d:e4:40:c2:68:5e:94:a4: 29:0a:b4:89:d3:62:bf:a9:e6:62:22:27:2e:25:b5: 79:2b:10:6a:81:41:82:21:7d:c2:7d:1a:85:d6:70: e7:b1:23:d1:10:4a:ef:61:58:44:08:28:1b:8f:26: 1c:97:fa:76:22:a4:4c:7d:90:35:33:2c:e9:d1:7d: c1:e0:b0:da:4d:87:3a:41:06:e5:8c:b5:32:f1:ea: cc:02:58:cf:ee:67:b2:79:7e:46:ae:17:2c:78:f9: cc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:29:0B:22:71:44:48:F7:A6:DA:DC:51:E2:26:26:6D:39:8F:B7:68 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WykLInFESPem2txR4iYmbTmPt2g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.203.0.0/18 Signature Algorithm: sha256WithRSAEncryption af:12:88:38:aa:4f:54:f2:ac:e3:61:31:c6:f3:46:22:3b:50: a9:aa:9d:02:23:ff:04:33:20:4f:f2:51:93:af:c2:61:88:4a: 2a:d9:4a:3e:e6:3b:42:6b:8e:3f:89:28:4d:47:9d:94:94:28: 27:43:8b:73:e3:c7:71:9b:dc:25:83:2f:19:34:5b:70:bd:9f: c6:f4:ec:a3:47:9f:ca:c4:ed:f4:21:53:60:b7:e6:70:ff:9b: 0e:f3:5b:0a:1c:49:f1:0d:13:ab:73:21:5e:ea:e8:a4:32:f1: 59:11:34:33:59:15:97:37:59:94:9d:a5:be:73:25:9a:9e:13: 56:a1:3d:65:64:a5:4e:70:ac:35:80:8d:25:2e:76:3f:ac:ad: a2:7a:af:eb:ba:56:25:9d:13:7d:19:b2:ab:07:ef:f7:83:3f: 64:f6:cb:f4:d3:30:df:f7:04:79:15:44:8e:73:83:a2:ce:3e: 05:6f:0f:33:ab:04:49:a9:6f:6b:75:95:0a:42:29:70:3c:18: cf:0e:91:36:3b:08:27:51:34:38:c1:79:37:a6:06:a5:79:c1: 88:cf:32:0b:46:59:fd:c8:db:14:a5:be:69:bd:0b:78:f6:01: 07:d5:96:e6:1c:4e:f5:fe:ad:f1:d2:83:06:27:85:0d:db:06: c1:10:5b:9f -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFAwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVCMjkwQjIyNzE0NDQ4 RjdBNkRBREM1MUUyMjYyNjZEMzk4RkI3NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDORrP+Aflq+fPqbALomosnMZkboU02geedjPpJJAzAc5B/H1Jr 81SZKycpkTmWBn00yUqfiTwNzn6tm18vSz3W2FCM8d1D1TUnrAL0TjRSBeuHg7Nr 4PzRCepvcblTlSbXC7sZCZUm/HadmYkYxHXZF+6zwb+5XQMMbgGVT/GzP+v5YW7Z uPyiZkvVRAZKqwzETmTIpQFlyqXdil9d5EDCaF6UpCkKtInTYr+p5mIiJy4ltXkr EGqBQYIhfcJ9GoXWcOexI9EQSu9hWEQIKBuPJhyX+nYipEx9kDUzLOnRfcHgsNpN hzpBBuWMtTLx6swCWM/uZ7J5fkauFyx4+cyvAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUWykLInFESPem2txR4iYmbTmPt2gwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1d5a0xJbkZFU1BlbTJ0eFI0aVltYlRt UHQyZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSywAwDQYJ KoZIhvcNAQELBQADggEBAK8SiDiqT1TyrONhMcbzRiI7UKmqnQIj/wQzIE/yUZOv wmGISirZSj7mO0Jrjj+JKE1HnZSUKCdDi3Pjx3Gb3CWDLxk0W3C9n8b07KNHn8rE 7fQhU2C35nD/mw7zWwocSfENE6tzIV7q6KQy8VkRNDNZFZc3WZSdpb5zJZqeE1ah PWVkpU5wrDWAjSUudj+sraJ6r+u6ViWdE30ZsqsH7/eDP2T2y/TTMN/3BHkVRI5z g6LOPgVvDzOrBEmpb2t1lQpCKXA8GM8OkTY7CCdRNDjBeTemBqV5wYjPMgtGWf3I 2xSlvmm9C3j2AQfVluYcTvX+rfHSgwYnhQ3bBsEQW58= -----END CERTIFICATE-----Generated at Sun Aug 24 14:15:05 2025 by rpki-client