$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_HS2oWEqhjZY6ZWTHeYOe96Lxms.roa File: _HS2oWEqhjZY6ZWTHeYOe96Lxms.roa (raw, json) Hash identifier: yllf2fIg9Th8+NAqn0UfMT0iApUIIXNcRYvAHvBGOQU= Subject key identifier: FC:74:B6:A1:61:2A:86:36:58:E9:95:93:1D:E6:0E:7B:DE:8B:C6:6B Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1382 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_HS2oWEqhjZY6ZWTHeYOe96Lxms.roa Signing time: Fri 22 Aug 2025 08:59:22 +0000 ROA not before: Fri 22 Aug 2025 08:59:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24154 IP address blocks: 2404:0:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4994 (0x1382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FC74B6A1612A863658E995931DE60E7BDE8BC66B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5e:93:a7:9f:e3:de:f5:7b:c7:34:3c:c9:07: 3d:85:37:7c:bd:79:17:38:6a:af:81:4e:65:61:8c: c9:ac:16:cd:41:a7:27:3d:3f:9d:46:e1:53:fd:57: 8d:84:5e:79:fd:5b:0e:c2:01:02:c5:b1:27:ed:49: ca:7a:38:58:59:66:9e:ab:cc:4e:0e:94:ea:3e:17: 01:6d:62:86:12:81:53:2c:c2:53:85:68:6b:d4:0a: 3d:5c:cf:a6:87:89:73:1c:04:b1:a1:82:3a:4b:9e: 5b:69:d9:a0:7f:2b:8b:99:92:a5:4a:23:6b:b8:35: 8c:4b:49:37:ba:e8:6f:95:76:d6:54:da:08:03:3f: 96:b2:bf:c4:d7:de:e0:02:03:0d:6e:49:aa:7f:c2: 53:75:59:89:24:14:af:62:db:4e:21:51:e9:41:c7: cb:41:99:ea:73:e9:d1:2e:52:ea:05:7c:fd:a9:56: 09:e6:02:b7:36:4d:5e:7f:99:ef:06:58:f0:2e:13: 4d:f8:f3:15:cf:b9:5b:ee:2d:f8:d9:55:70:dc:9e: 79:1e:19:17:d6:3f:42:95:42:e2:ea:9d:dd:ff:35: f1:a5:d2:c0:0e:ad:cb:95:c0:80:ad:05:44:ef:72: 7b:dd:ce:bd:d3:ac:f2:7f:6c:02:92:ad:cc:b2:dd: 93:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:74:B6:A1:61:2A:86:36:58:E9:95:93:1D:E6:0E:7B:DE:8B:C6:6B X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_HS2oWEqhjZY6ZWTHeYOe96Lxms.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:5000::/36 Signature Algorithm: sha256WithRSAEncryption 1c:5b:9b:29:6a:2e:a4:9b:07:18:61:53:a6:2b:55:fc:e5:d1: 82:17:e5:74:b0:45:f2:21:9e:78:c1:83:b8:63:a9:a1:5b:34: 36:70:1e:9e:c7:b7:e3:a2:1d:a5:80:58:da:ff:81:2e:d6:8e: fc:3a:63:43:75:77:be:9c:5a:79:3a:95:fb:70:cb:e7:4f:42: 46:66:42:f3:3d:99:5e:c9:36:6b:b3:58:26:40:84:ab:4f:9c: e0:a9:e2:6a:0d:12:32:b4:75:57:07:89:1d:a8:29:a8:5c:ee: 32:d1:97:10:53:d6:8f:2b:98:ad:29:5a:cf:bf:bd:14:44:65: ce:3e:cf:89:50:e6:ef:3d:67:8d:4f:10:82:7a:d1:fa:35:f2: 0f:11:95:c1:b3:9d:30:0e:36:36:e2:f7:26:1c:be:ce:6b:56: f8:5b:43:e5:44:be:1d:39:96:1b:57:be:b5:a4:e5:ff:a4:eb: df:64:42:7b:c8:92:21:be:6d:cb:66:1f:20:d8:9d:b1:cc:29: 15:9d:58:97:f2:cd:12:eb:68:66:5f:f7:a8:8e:4b:fd:58:92: 48:ac:f4:ed:77:a7:4f:35:4b:69:58:8b:ad:82:33:ee:d6:20: bb:43:dd:e5:49:b6:a1:0a:92:cd:a1:64:c5:87:27:0c:b7:50: 10:5a:29:74 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE4IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZDNzRCNkExNjEyQTg2 MzY1OEU5OTU5MzFERTYwRTdCREU4QkM2NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfXpOnn+Pe9XvHNDzJBz2FN3y9eRc4aq+BTmVhjMmsFs1Bpyc9 P51G4VP9V42EXnn9Ww7CAQLFsSftScp6OFhZZp6rzE4OlOo+FwFtYoYSgVMswlOF aGvUCj1cz6aHiXMcBLGhgjpLnltp2aB/K4uZkqVKI2u4NYxLSTe66G+VdtZU2ggD P5ayv8TX3uACAw1uSap/wlN1WYkkFK9i204hUelBx8tBmepz6dEuUuoFfP2pVgnm Arc2TV5/me8GWPAuE0348xXPuVvuLfjZVXDcnnkeGRfWP0KVQuLqnd3/NfGl0sAO rcuVwICtBUTvcnvdzr3TrPJ/bAKSrcyy3ZOdAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU/HS2oWEqhjZY6ZWTHeYOe96LxmswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL19IUzJvV0VxaGpaWTZaV1RIZVlPZTk2 THhtcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAUDAN BgkqhkiG9w0BAQsFAAOCAQEAHFubKWoupJsHGGFTpitV/OXRghfldLBF8iGeeMGD uGOpoVs0NnAense346IdpYBY2v+BLtaO/DpjQ3V3vpxaeTqV+3DL509CRmZC8z2Z Xsk2a7NYJkCEq0+c4Kniag0SMrR1VweJHagpqFzuMtGXEFPWjyuYrSlaz7+9FERl zj7PiVDm7z1njU8QgnrR+jXyDxGVwbOdMA42NuL3Jhy+zmtW+FtD5US+HTmWG1e+ taTl/6Tr32RCe8iSIb5ty2YfINidscwpFZ1Yl/LNEutoZl/3qI5L/ViSSKz07Xen TzVLaViLrYIz7tYgu0Pd5Um2oQqSzaFkxYcnDLdQEFopdA== -----END CERTIFICATE-----Generated at Sun Aug 24 14:19:30 2025 by rpki-client