$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_Z3r64abbRIFCjhzU1VjJEUVTE0.roa File: _Z3r64abbRIFCjhzU1VjJEUVTE0.roa (raw, json) Hash identifier: /EUCL4xE4px/NgHHWCCJ661PkR6niE5B5vdHIrh+6Ks= Subject key identifier: FD:9D:EB:EB:86:9B:6D:12:05:0A:38:73:53:55:63:24:45:15:4C:4D Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1497 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_Z3r64abbRIFCjhzU1VjJEUVTE0.roa Signing time: Fri 22 Aug 2025 09:00:35 +0000 ROA not before: Fri 22 Aug 2025 09:00:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 60.244.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5271 (0x1497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FD9DEBEB869B6D12050A38735355632445154C4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:22:58:19:a5:e5:78:34:85:52:aa:ad:48:31: 3c:4d:f5:67:ee:6c:5c:05:8a:95:cd:79:35:4f:57: c3:e4:39:da:83:46:bb:6e:d5:59:46:5e:47:11:82: fa:5f:b0:b3:dd:33:0c:cb:7e:0c:a8:34:be:53:9f: 55:88:84:2e:f1:4e:3a:b3:7d:ab:3c:5b:70:6c:c4: de:90:cf:19:35:a8:ce:77:be:1f:60:13:90:b2:00: 9d:35:5f:c2:fb:63:f0:11:cc:ff:50:a1:b3:8b:99: d1:84:4b:ce:84:fa:0d:81:1f:f0:e1:07:12:23:00: 5f:1e:0f:5b:27:31:b5:d2:34:7d:c7:30:83:4d:21: d2:29:46:79:5a:04:ba:05:c5:b6:30:6f:37:81:2f: db:94:04:ec:e4:6c:82:ba:95:01:4e:18:fd:81:ae: 6b:5c:8b:4d:d1:2f:ab:61:3c:41:a0:a2:59:74:d0: 69:5d:a0:ca:aa:f8:2a:71:52:c3:6a:93:61:ae:a2: 9f:d0:3d:34:a1:eb:79:f2:72:73:8a:fb:27:94:51: ad:b5:92:4f:0a:86:19:66:e0:c5:62:92:24:19:c4: 11:7c:f2:83:34:c4:23:aa:b6:b1:b1:0e:75:d9:fa: ef:c6:95:f1:17:d1:e8:ff:36:35:99:83:a4:08:29: 0f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9D:EB:EB:86:9B:6D:12:05:0A:38:73:53:55:63:24:45:15:4C:4D X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_Z3r64abbRIFCjhzU1VjJEUVTE0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.136.0/21 Signature Algorithm: sha256WithRSAEncryption 35:85:37:02:47:30:f1:05:55:03:ae:51:18:35:19:63:c4:64: 5c:cb:09:61:89:10:80:05:14:8f:2f:2f:b5:8e:ed:a9:a9:dd: 1d:61:06:5e:34:c9:8b:67:93:61:48:d2:6e:eb:66:cb:1f:99: 35:ad:3d:76:3f:62:59:e2:a8:86:ed:99:75:b3:8b:96:a6:e2: 83:0d:98:bd:ad:18:aa:b7:7e:f6:b8:50:0c:9a:8f:e4:33:30: 4a:aa:28:2d:64:c6:d8:4c:0e:9d:4d:81:0e:15:08:e5:50:fa: 81:d9:1c:3a:8e:26:41:70:21:5b:95:58:7f:ab:01:6a:3e:b5: 8f:37:c3:2a:9b:94:67:64:73:2e:08:fe:d2:61:55:88:9a:4c: 30:72:76:3f:32:9a:6f:b9:b4:84:e4:e2:96:35:20:6f:81:d6: af:69:7c:4d:a4:d8:4b:30:ea:b2:26:86:b7:d0:b4:c8:df:51: 7b:b5:50:f9:f8:a5:83:ac:8f:74:6b:14:d8:aa:aa:4e:b3:c6: fc:54:a2:bb:ec:ec:df:68:48:92:f0:a4:1c:17:0f:08:7f:8c: ec:83:67:9f:5a:97:89:ed:95:b9:b8:06:f1:eb:b7:99:47:3a: e8:b7:02:3f:cb:25:7d:c0:dd:09:cf:25:cf:43:87:c4:62:cf: e2:3c:c7:e6 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFJcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZEOURFQkVCODY5QjZE MTIwNTBBMzg3MzUzNTU2MzI0NDUxNTRDNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEIlgZpeV4NIVSqq1IMTxN9WfubFwFipXNeTVPV8PkOdqDRrtu 1VlGXkcRgvpfsLPdMwzLfgyoNL5Tn1WIhC7xTjqzfas8W3BsxN6Qzxk1qM53vh9g E5CyAJ01X8L7Y/ARzP9QobOLmdGES86E+g2BH/DhBxIjAF8eD1snMbXSNH3HMINN IdIpRnlaBLoFxbYwbzeBL9uUBOzkbIK6lQFOGP2Brmtci03RL6thPEGgoll00Gld oMqq+CpxUsNqk2Guop/QPTSh63nycnOK+yeUUa21kk8Khhlm4MVikiQZxBF88oM0 xCOqtrGxDnXZ+u/GlfEX0ej/NjWZg6QIKQ+7AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU/Z3r64abbRIFCjhzU1VjJEUVTE0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL19aM3I2NGFiYlJJRkNqaHpVMVZqSkVV VlRFMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM89IgwDQYJ KoZIhvcNAQELBQADggEBADWFNwJHMPEFVQOuURg1GWPEZFzLCWGJEIAFFI8vL7WO 7amp3R1hBl40yYtnk2FI0m7rZssfmTWtPXY/YlniqIbtmXWzi5am4oMNmL2tGKq3 fva4UAyaj+QzMEqqKC1kxthMDp1NgQ4VCOVQ+oHZHDqOJkFwIVuVWH+rAWo+tY83 wyqblGdkcy4I/tJhVYiaTDBydj8ymm+5tITk4pY1IG+B1q9pfE2k2Esw6rImhrfQ tMjfUXu1UPn4pYOsj3RrFNiqqk6zxvxUorvs7N9oSJLwpBwXDwh/jOyDZ59al4nt lbm4BvHrt5lHOui3Aj/LJX3A3QnPJc9Dh8Riz+I8x+Y= -----END CERTIFICATE-----Generated at Sun Aug 24 13:51:16 2025 by rpki-client