$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/X4-eD3XQx2ZQ7lEDJpnNuvWD6Vk.roa File: X4-eD3XQx2ZQ7lEDJpnNuvWD6Vk.roa (raw, json) Hash identifier: QLNlz2/4TUJmzQiGBFmOaSiPjL+4k61Fcmzdd0jK7rU= Subject key identifier: 5F:8F:9E:0F:75:D0:C7:66:50:EE:51:03:26:99:CD:BA:F5:83:E9:59 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1479 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/X4-eD3XQx2ZQ7lEDJpnNuvWD6Vk.roa Signing time: Fri 22 Aug 2025 09:00:28 +0000 ROA not before: Fri 22 Aug 2025 09:00:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 103.36.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5241 (0x1479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5F8F9E0F75D0C76650EE51032699CDBAF583E959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9d:8e:9f:98:f9:f0:75:fb:81:48:7a:c4:c2: c7:47:94:33:e0:d9:f8:b4:bb:7c:33:80:bd:b7:8f: f8:db:f8:e8:0b:1e:79:62:11:9a:c0:6c:bc:36:64: 9e:88:1e:c2:1b:34:d4:53:70:7d:e5:75:88:3e:52: 72:c2:43:87:8f:bc:43:b9:73:30:14:b4:bd:0a:22: bc:f0:58:31:70:73:f9:91:a7:8b:ca:69:43:49:ab: 93:20:ff:28:b0:e6:7c:22:81:fc:11:9b:70:67:ab: 0a:cb:39:83:35:c5:74:78:fd:9b:7b:07:3f:3a:55: 42:3b:b9:ff:dd:f0:9f:16:d5:c5:d4:17:13:f1:6b: 83:b3:d0:d5:24:1c:a7:fe:e3:f2:d4:b2:93:97:d8: e1:c5:1b:09:fe:5f:9c:53:6c:e3:dc:9f:66:4a:9e: 17:2b:32:a7:a0:53:fe:67:e2:d5:ee:46:1a:67:a7: 55:49:9f:56:1b:26:db:43:79:f4:46:d9:05:34:a0: 1e:7d:2e:37:32:3c:91:6c:ae:63:f5:3e:37:fd:ce: ec:85:55:c8:92:2c:7b:ac:32:dc:4f:27:15:5d:db: d3:0a:f0:05:5b:19:d3:00:47:8b:e8:1f:87:c9:f0: 67:bc:b2:24:7d:ff:c7:41:d4:2e:e5:41:d3:d4:3b: 2a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:8F:9E:0F:75:D0:C7:66:50:EE:51:03:26:99:CD:BA:F5:83:E9:59 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/X4-eD3XQx2ZQ7lEDJpnNuvWD6Vk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.36.116.0/22 Signature Algorithm: sha256WithRSAEncryption 11:c8:06:a3:27:11:77:00:81:bd:10:8f:7c:19:99:60:20:e8: 7c:04:9a:09:a3:cd:5d:b0:22:f6:be:bf:3a:38:36:25:9f:77: e8:fd:b8:77:d3:35:e5:dc:40:ed:cc:4c:53:88:8c:04:64:35: dc:83:c8:1e:cf:b4:5f:b6:72:2f:3d:30:0e:76:e1:b7:64:c4: 56:88:51:a1:e1:21:39:87:08:0a:71:df:3d:c8:42:d8:8f:6c: b9:fb:47:0b:35:23:5a:9d:e0:9c:1a:ee:5c:a3:e7:42:bb:dc: ea:d5:f7:24:13:75:5b:f0:9c:f9:3b:85:36:34:9e:88:c3:32: 7e:81:01:89:d9:d8:a5:39:00:81:c0:3e:b4:2f:8d:28:ab:ea: 14:7f:b8:b3:27:f7:02:24:a6:6a:a6:63:3c:1c:7e:07:03:f0: a7:f3:66:d0:fa:b3:b6:76:ba:e5:2a:e9:63:d7:3e:43:2b:c9: cb:63:80:39:26:19:9b:49:8d:28:fc:cb:f4:5b:e3:a8:35:d7: b6:a6:13:72:f9:f7:d3:b2:6c:61:f7:36:de:cf:9a:cd:e0:29: 21:a5:2b:e2:2b:cb:f1:76:e0:c6:2b:ac:8e:dc:a7:46:8a:12: 5c:c5:ff:27:70:50:44:61:05:7a:e8:ae:82:a8:d3:ea:f7:fc: 08:b7:49:44 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVGOEY5RTBGNzVEMEM3 NjY1MEVFNTEwMzI2OTlDREJBRjU4M0U5NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDenY6fmPnwdfuBSHrEwsdHlDPg2fi0u3wzgL23j/jb+OgLHnli EZrAbLw2ZJ6IHsIbNNRTcH3ldYg+UnLCQ4ePvEO5czAUtL0KIrzwWDFwc/mRp4vK aUNJq5Mg/yiw5nwigfwRm3BnqwrLOYM1xXR4/Zt7Bz86VUI7uf/d8J8W1cXUFxPx a4Oz0NUkHKf+4/LUspOX2OHFGwn+X5xTbOPcn2ZKnhcrMqegU/5n4tXuRhpnp1VJ n1YbJttDefRG2QU0oB59LjcyPJFsrmP1Pjf9zuyFVciSLHusMtxPJxVd29MK8AVb GdMAR4voH4fJ8Ge8siR9/8dB1C7lQdPUOyoDAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUX4+eD3XQx2ZQ7lEDJpnNuvWD6VkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1g0LWVEM1hReDJaUTdsRURKcG5OdXZX RDZWay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnJHQwDQYJ KoZIhvcNAQELBQADggEBABHIBqMnEXcAgb0Qj3wZmWAg6HwEmgmjzV2wIva+vzo4 NiWfd+j9uHfTNeXcQO3MTFOIjARkNdyDyB7PtF+2ci89MA524bdkxFaIUaHhITmH CApx3z3IQtiPbLn7Rws1I1qd4Jwa7lyj50K73OrV9yQTdVvwnPk7hTY0nojDMn6B AYnZ2KU5AIHAPrQvjSir6hR/uLMn9wIkpmqmYzwcfgcD8KfzZtD6s7Z2uuUq6WPX PkMryctjgDkmGZtJjSj8y/Rb46g117amE3L599OybGH3Nt7Pms3gKSGlK+Iry/F2 4MYrrI7cp0aKElzF/ydwUERhBXroroKo0+r3/Ai3SUQ= -----END CERTIFICATE-----Generated at Sun Aug 24 14:19:29 2025 by rpki-client