$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_3nzXPWaBpji0vyV2vM_zlTif_0.roa File: _3nzXPWaBpji0vyV2vM_zlTif_0.roa (raw, json) Hash identifier: RWm7hj47VKdNWNy37dwj5b2VQ4toQZ0vlTV9gveZ0H8= Subject key identifier: FF:79:F3:5C:F5:9A:06:98:E2:D2:FC:95:DA:F3:3F:CE:54:E2:7F:FD Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1452 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_3nzXPWaBpji0vyV2vM_zlTif_0.roa Signing time: Fri 22 Aug 2025 09:00:18 +0000 ROA not before: Fri 22 Aug 2025 09:00:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 103.36.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5202 (0x1452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FF79F35CF59A0698E2D2FC95DAF33FCE54E27FFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f2:7c:bd:23:ea:1c:b4:f4:65:ae:e1:df:0e: 95:36:7b:3c:19:8a:ca:7a:9c:27:27:59:35:19:4b: c8:dc:64:05:d4:0e:bf:89:eb:62:a4:bc:57:3d:31: 7f:17:21:95:8b:c3:9a:0e:65:12:d9:7a:d8:79:8f: 99:04:f7:44:fd:c9:02:6f:8d:ee:63:f8:be:90:07: 1d:f9:21:eb:d4:6b:47:5f:15:b6:f7:14:43:9a:73: 04:7a:73:36:5f:4c:31:ce:bb:60:18:6c:cb:d8:d1: ff:3c:e2:1a:56:27:16:9b:9f:4b:38:9d:99:b2:df: 0c:85:72:2a:ac:fe:5d:a6:c2:fd:8d:d6:5e:c0:a1: 16:75:e9:93:d9:71:5c:6a:51:69:d1:1c:3b:14:6f: e1:69:d5:d7:07:02:af:07:8a:f4:ed:c8:83:a7:9b: 60:c9:b3:c3:98:3d:17:1b:f7:5f:1b:1c:dd:fc:ad: 4a:6f:c2:27:37:af:d0:a5:87:11:1b:9b:5c:0b:20: 18:40:32:71:0f:d1:8b:7b:5e:b8:0d:3a:0c:b8:1c: c9:d4:9b:96:6f:24:c3:9f:4c:c9:14:97:21:ff:83: 6e:0f:ff:36:c7:ee:7b:ef:5f:cd:a0:b7:da:43:94: 9b:d8:d4:26:b3:da:c4:b2:e0:86:98:12:31:67:bc: 51:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:79:F3:5C:F5:9A:06:98:E2:D2:FC:95:DA:F3:3F:CE:54:E2:7F:FD X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_3nzXPWaBpji0vyV2vM_zlTif_0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.36.116.0/22 Signature Algorithm: sha256WithRSAEncryption bb:69:ac:3a:2b:c2:dd:47:c8:bc:f6:7d:d9:3c:80:56:75:e7: 12:b6:c4:5b:9c:fb:b4:fb:6a:46:c2:d2:1d:a0:bf:72:50:51: 3c:d5:a6:d7:76:f3:c1:d4:dc:38:a7:b2:80:06:53:4a:a8:10: fd:83:4b:0e:4d:eb:69:a2:bb:20:a4:a9:56:b2:4e:4e:b1:e8: 11:37:08:b2:10:c9:9c:d2:14:37:ec:56:45:69:88:f9:ba:47: 80:ea:e2:24:5c:84:77:92:ee:d3:f0:59:a8:5d:f5:3c:37:7a: b1:f5:16:92:d2:d6:ee:94:69:4a:5e:76:59:89:9c:c7:db:84: 43:5a:57:f5:9f:7b:94:a3:58:80:39:6d:f7:40:74:34:a4:bd: 5d:3e:aa:be:07:8d:36:0b:2b:8e:27:1a:72:8d:d5:0c:05:92: b2:e7:72:66:a8:28:d0:d3:00:a7:e9:e3:96:e6:28:81:58:bc: 68:75:b9:6f:f7:39:20:fd:e0:e1:b7:e9:46:a7:e6:fd:cc:55: 86:2a:9a:9f:78:19:e0:af:db:4d:cf:50:9f:32:ca:af:a1:9c: 2f:36:f8:fc:cb:de:af:2e:1b:37:2f:67:ec:a0:09:d2:c4:a1: 31:04:6d:1b:dc:7a:2d:6e:ed:97:c8:6a:e5:25:8c:05:46:d8: 00:f9:87:67 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFFIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZGNzlGMzVDRjU5QTA2 OThFMkQyRkM5NURBRjMzRkNFNTRFMjdGRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDd8ny9I+octPRlruHfDpU2ezwZisp6nCcnWTUZS8jcZAXUDr+J 62KkvFc9MX8XIZWLw5oOZRLZeth5j5kE90T9yQJvje5j+L6QBx35IevUa0dfFbb3 FEOacwR6czZfTDHOu2AYbMvY0f884hpWJxabn0s4nZmy3wyFciqs/l2mwv2N1l7A oRZ16ZPZcVxqUWnRHDsUb+Fp1dcHAq8HivTtyIOnm2DJs8OYPRcb918bHN38rUpv wic3r9ClhxEbm1wLIBhAMnEP0Yt7XrgNOgy4HMnUm5ZvJMOfTMkUlyH/g24P/zbH 7nvvX82gt9pDlJvY1Caz2sSy4IaYEjFnvFGDAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU/3nzXPWaBpji0vyV2vM/zlTif/0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL18zbnpYUFdhQnBqaTB2eVYydk1femxU aWZfMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnJHQwDQYJ KoZIhvcNAQELBQADggEBALtprDorwt1HyLz2fdk8gFZ15xK2xFuc+7T7akbC0h2g v3JQUTzVptd288HU3DinsoAGU0qoEP2DSw5N62miuyCkqVayTk6x6BE3CLIQyZzS FDfsVkVpiPm6R4Dq4iRchHeS7tPwWahd9Tw3erH1FpLS1u6UaUpedlmJnMfbhENa V/Wfe5SjWIA5bfdAdDSkvV0+qr4HjTYLK44nGnKN1QwFkrLncmaoKNDTAKfp45bm KIFYvGh1uW/3OSD94OG36Uan5v3MVYYqmp94GeCv203PUJ8yyq+hnC82+PzL3q8u GzcvZ+ygCdLEoTEEbRvcei1u7ZfIauUljAVG2AD5h2c= -----END CERTIFICATE-----Generated at Sun Aug 24 14:22:50 2025 by rpki-client