$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Zp5wQgjV1JuNCRyAjOgGyMledbY.roa File: Zp5wQgjV1JuNCRyAjOgGyMledbY.roa (raw, json) Hash identifier: H8BXYvwhUnuzquk74BRmIKxSjMFCwD9TQIwKpgZFcuk= Subject key identifier: 66:9E:70:42:08:D5:D4:9B:8D:09:1C:80:8C:E8:06:C8:C9:5E:75:B6 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 14B9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Zp5wQgjV1JuNCRyAjOgGyMledbY.roa Signing time: Mon 22 Sep 2025 01:11:10 +0000 ROA not before: Mon 22 Sep 2025 01:11:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 210.85.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 09:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5305 (0x14b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 22 01:11:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=669E704208D5D49B8D091C808CE806C8C95E75B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:99:43:46:b3:42:22:b3:8c:b9:8a:e7:0c:7e: b6:64:84:7a:35:cb:8a:69:1e:44:eb:4c:de:05:ab: b4:c1:e7:80:8a:22:46:02:64:11:5c:77:eb:65:52: 86:e9:17:af:2f:46:11:58:eb:19:56:21:3b:f5:1b: 59:65:a1:85:62:31:61:42:07:e1:f8:22:0c:70:80: c3:6d:6d:bf:d3:c6:df:45:f8:68:2b:14:fd:43:db: e8:2a:33:d1:70:45:52:b3:b8:8e:03:76:53:73:76: 77:01:41:c1:49:dc:a4:ab:1a:50:2a:3f:a3:59:4d: 1d:b1:5b:d2:56:1a:9a:1b:4c:cd:64:1b:22:6a:e4: e5:db:e6:cd:cb:5e:70:e8:40:9b:11:c5:19:2d:ac: 43:6e:c7:d7:84:13:8d:f1:cf:c2:71:13:36:18:03: c9:d4:37:79:f1:8c:18:ce:4e:d1:bb:8d:7a:87:a8: 07:bb:39:37:4c:59:47:c1:f4:9d:28:9c:5f:c8:83: ec:5f:3b:8e:4e:d3:51:58:24:e9:44:7a:30:9c:32: 60:9d:f7:97:54:76:11:d5:af:39:54:e7:16:cd:7a: 01:09:02:14:6b:55:b3:c1:c9:7e:46:e2:b1:54:5e: 0e:7e:d6:2e:fa:8e:fb:5a:a4:13:bb:29:88:0a:0d: 08:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:9E:70:42:08:D5:D4:9B:8D:09:1C:80:8C:E8:06:C8:C9:5E:75:B6 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Zp5wQgjV1JuNCRyAjOgGyMledbY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.85.16.0/20 Signature Algorithm: sha256WithRSAEncryption a4:73:7c:1b:e2:95:6e:3e:21:9d:67:60:ab:51:e9:b9:c7:4c: d2:00:d0:44:3f:c4:8a:99:9d:68:b6:f4:cf:b8:b5:21:1b:a2: d3:3f:09:f6:aa:9a:3e:5e:2c:8c:dd:25:34:10:8b:8b:77:60: 5c:c6:45:69:e8:dd:dc:1a:8c:b3:de:8d:2d:eb:49:a9:e9:b5: 34:6c:da:b4:ca:9f:2d:44:cf:f1:72:31:ca:cc:33:1c:cd:56: f7:d0:4c:f9:f0:e5:77:96:3b:15:93:a3:df:a6:19:8f:11:a1: c5:a5:51:9e:19:f5:84:f4:aa:5c:e9:8a:84:04:ee:d0:8c:db: f7:04:bb:1e:83:98:9a:f0:82:e8:f0:a2:b3:dc:d2:9c:95:c6: db:f3:09:04:bb:a2:fb:92:35:5a:95:c7:00:e4:4b:dd:70:a0: 0b:1a:16:eb:e9:c0:56:96:ef:0a:6b:07:c0:6c:8f:94:3a:fd: 3a:b8:2b:f6:6d:b9:1c:4c:c5:ff:0f:69:c0:a9:d6:4f:0d:4b: b0:1a:68:a7:87:7e:7a:cf:6c:bb:c5:3d:54:ee:1f:cd:a6:d3: 18:a9:b4:9a:6f:6c:dc:d7:78:64:42:f1:d0:3f:e2:e3:26:c7: 6c:8b:91:11:d0:e1:1f:27:15:b6:50:01:7d:75:0f:d6:70:62: 42:65:88:6d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFLkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA5MjIw MTExMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY2OUU3MDQyMDhENUQ0 OUI4RDA5MUM4MDhDRTgwNkM4Qzk1RTc1QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1mUNGs0Iis4y5iucMfrZkhHo1y4ppHkTrTN4Fq7TB54CKIkYC ZBFcd+tlUobpF68vRhFY6xlWITv1G1lloYViMWFCB+H4IgxwgMNtbb/Txt9F+Ggr FP1D2+gqM9FwRVKzuI4DdlNzdncBQcFJ3KSrGlAqP6NZTR2xW9JWGpobTM1kGyJq 5OXb5s3LXnDoQJsRxRktrENux9eEE43xz8JxEzYYA8nUN3nxjBjOTtG7jXqHqAe7 OTdMWUfB9J0onF/Ig+xfO45O01FYJOlEejCcMmCd95dUdhHVrzlU5xbNegEJAhRr VbPByX5G4rFUXg5+1i76jvtapBO7KYgKDQg3AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUZp5wQgjV1JuNCRyAjOgGyMledbYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1pwNXdRZ2pWMUp1TkNSeUFqT2dHeU1s ZWRiWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATSVRAwDQYJ KoZIhvcNAQELBQADggEBAKRzfBvilW4+IZ1nYKtR6bnHTNIA0EQ/xIqZnWi29M+4 tSEbotM/Cfaqmj5eLIzdJTQQi4t3YFzGRWno3dwajLPejS3rSanptTRs2rTKny1E z/FyMcrMMxzNVvfQTPnw5XeWOxWTo9+mGY8RocWlUZ4Z9YT0qlzpioQE7tCM2/cE ux6DmJrwgujworPc0pyVxtvzCQS7ovuSNVqVxwDkS91woAsaFuvpwFaW7wprB8Bs j5Q6/Tq4K/ZtuRxMxf8PacCp1k8NS7AaaKeHfnrPbLvFPVTuH82m0xiptJpvbNzX eGRC8dA/4uMmx2yLkRHQ4R8nFbZQAX11D9ZwYkJliG0= -----END CERTIFICATE-----Generated at Mon Oct 20 05:45:51 2025 by rpki-client