$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/YAkT6GLlIDch0a1dI8NiiSHzuxE.roa File: YAkT6GLlIDch0a1dI8NiiSHzuxE.roa (raw, json) Hash identifier: G45yaVd1+Gm5PWtvOHNF88hg8KUj345aYGbgbkcozAI= Subject key identifier: 60:09:13:E8:62:E5:20:37:21:D1:AD:5D:23:C3:62:89:21:F3:BB:11 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 139F Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YAkT6GLlIDch0a1dI8NiiSHzuxE.roa Signing time: Fri 22 Aug 2025 08:59:30 +0000 ROA not before: Fri 22 Aug 2025 08:59:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 210.201.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5023 (0x139f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=600913E862E5203721D1AD5D23C3628921F3BB11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:83:4c:a3:ae:fd:a8:ac:a0:ca:8d:03:65:44: 32:6c:d3:00:28:58:3d:4f:d0:fc:87:dc:11:63:1a: f0:1a:2c:78:6e:6e:d0:5d:db:36:84:fa:46:da:c2: f4:ec:25:b0:c6:f2:14:5d:31:f7:84:f8:a4:48:ba: 76:e6:f3:af:d9:0f:ac:00:ec:e5:39:fd:50:f4:c7: ab:5f:9c:0d:6d:b3:68:7b:b8:31:e0:19:76:4c:d6: e0:c2:ef:dc:63:3c:19:f9:ec:bc:bf:54:76:15:5b: 86:8a:49:46:40:35:48:38:3d:78:14:cc:eb:aa:34: 61:cc:f7:b5:76:75:35:97:2c:15:d4:97:2c:27:e8: cb:20:8d:49:a8:55:0f:22:b3:68:34:be:e4:ea:2d: 17:0c:47:c7:67:0d:d8:3f:d6:42:f7:f3:f5:04:7b: 20:a6:b5:2f:fc:5c:cb:8f:c2:7b:e8:50:de:43:a9: 0e:27:40:3f:64:c5:92:9b:ce:b2:9f:8d:dd:17:51: f2:96:0b:05:85:3e:5d:dc:58:6f:a0:98:fb:57:46: ae:1c:6a:35:45:4a:d7:cf:2c:12:18:f7:ba:d6:f0: 2f:ea:60:d7:36:50:08:6e:d4:f6:55:cb:70:19:84: c6:62:83:7d:19:ce:21:3a:59:32:5b:be:79:c3:3e: 6d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:09:13:E8:62:E5:20:37:21:D1:AD:5D:23:C3:62:89:21:F3:BB:11 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YAkT6GLlIDch0a1dI8NiiSHzuxE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.78.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:40:32:db:f5:8a:fc:e8:04:2a:80:da:34:0a:79:7a:ab:97: c0:bc:a2:ef:90:0e:20:6b:54:04:26:51:74:9d:40:73:a6:3d: 0e:e8:a4:6d:b4:3a:31:b1:2d:47:5d:56:db:76:74:cf:b0:9d: b4:7a:1a:c3:7e:38:d0:7e:25:d5:7b:84:47:df:3f:13:04:31: 37:ff:66:04:85:f1:7a:cf:43:03:5d:2d:51:8a:bd:d7:c7:7f: 9e:a7:2a:25:bd:52:c8:a6:98:0d:6e:ee:33:ea:b3:77:69:15: 7d:9a:09:c2:23:f5:6c:b3:17:aa:5e:3c:1e:5d:ec:b7:07:31: b3:df:90:7b:1a:94:87:e8:d2:5c:74:81:f0:5c:43:74:6a:da: 98:75:db:e9:17:b0:65:e8:e3:56:f5:52:ad:90:e1:3f:97:1b: 8e:56:77:20:df:af:84:b3:6c:73:ba:eb:7b:89:f6:bf:1d:32: 49:1f:67:83:2e:86:f2:82:04:c1:7b:87:2c:27:ca:05:58:20: 22:3d:bd:1f:61:84:ce:5c:4e:57:75:20:5f:4e:61:a5:7c:75: 3d:36:54:35:46:63:22:5b:0f:97:fe:f8:9c:97:1e:fc:07:0a: 57:4e:c1:74:aa:8b:2c:a0:8e:fc:48:45:97:59:01:c4:2d:6e: a5:1b:fd:3a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE58wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYwMDkxM0U4NjJFNTIw MzcyMUQxQUQ1RDIzQzM2Mjg5MjFGM0JCMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeg0yjrv2orKDKjQNlRDJs0wAoWD1P0PyH3BFjGvAaLHhubtBd 2zaE+kbawvTsJbDG8hRdMfeE+KRIunbm86/ZD6wA7OU5/VD0x6tfnA1ts2h7uDHg GXZM1uDC79xjPBn57Ly/VHYVW4aKSUZANUg4PXgUzOuqNGHM97V2dTWXLBXUlywn 6MsgjUmoVQ8is2g0vuTqLRcMR8dnDdg/1kL38/UEeyCmtS/8XMuPwnvoUN5DqQ4n QD9kxZKbzrKfjd0XUfKWCwWFPl3cWG+gmPtXRq4cajVFStfPLBIY97rW8C/qYNc2 UAhu1PZVy3AZhMZig30ZziE6WTJbvnnDPm25AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUYAkT6GLlIDch0a1dI8NiiSHzuxEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1lBa1Q2R0xsSURjaDBhMWRJOE5paVNI enV4RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSyU4wDQYJ KoZIhvcNAQELBQADggEBAD1AMtv1ivzoBCqA2jQKeXqrl8C8ou+QDiBrVAQmUXSd QHOmPQ7opG20OjGxLUddVtt2dM+wnbR6GsN+ONB+JdV7hEffPxMEMTf/ZgSF8XrP QwNdLVGKvdfHf56nKiW9UsimmA1u7jPqs3dpFX2aCcIj9WyzF6pePB5d7LcHMbPf kHsalIfo0lx0gfBcQ3Rq2ph12+kXsGXo41b1Uq2Q4T+XG45WdyDfr4SzbHO663uJ 9r8dMkkfZ4MuhvKCBMF7hywnygVYICI9vR9hhM5cTld1IF9OYaV8dT02VDVGYyJb D5f++JyXHvwHCldOwXSqiyygjvxIRZdZAcQtbqUb/To= -----END CERTIFICATE-----Generated at Sun Aug 24 14:21:41 2025 by rpki-client