$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/cC20E0NL171e4n47Br_fcUFYvVU.roa File: cC20E0NL171e4n47Br_fcUFYvVU.roa (raw, json) Hash identifier: NSsfmTRzpWF2N/EpTwhwUp6jvVEvTpANOZxR9UuE7PE= Subject key identifier: 70:2D:B4:13:43:4B:D7:BD:5E:E2:7E:3B:06:BF:DF:71:41:58:BD:55 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13DD Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/cC20E0NL171e4n47Br_fcUFYvVU.roa Signing time: Fri 22 Aug 2025 08:59:49 +0000 ROA not before: Fri 22 Aug 2025 08:59:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 223.22.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5085 (0x13dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=702DB413434BD7BD5EE27E3B06BFDF714158BD55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:66:f5:01:69:c6:2b:a9:8f:d8:b0:6c:32:94: d8:ae:a9:47:9d:83:e6:98:e8:85:fa:11:fe:3a:e6: 1a:fc:5d:6c:1c:04:8d:c8:18:d9:87:7b:6d:f9:d9: 88:d1:e5:aa:23:82:00:1e:b8:53:d7:c5:41:41:66: b0:e1:b7:c7:d8:d1:36:a7:25:90:15:ff:3e:03:fd: b0:34:89:5a:96:46:d7:7b:62:28:64:7c:9f:f0:16: 05:52:75:29:d2:5d:60:d2:66:99:12:c5:13:64:23: 68:cc:ce:d2:15:49:19:27:5c:f1:d2:91:91:15:15: 7b:78:cb:8f:d1:83:fc:16:76:52:b7:38:83:1c:4a: 6e:c8:9e:90:c2:58:18:a6:95:da:07:7c:86:83:51: 95:ba:32:e9:08:06:f1:f0:3c:da:9e:dd:2e:70:7a: ec:4b:d1:94:fd:7a:28:4e:d7:14:9d:1f:07:80:5f: 31:83:e7:9c:09:1b:93:a4:0c:0e:ec:cc:27:bf:80: 06:16:64:b8:87:9a:2c:1c:a9:b2:7d:89:9c:12:0e: 27:8f:a5:af:fe:3d:55:15:84:25:3c:a3:bd:ad:c7: 62:23:16:33:cb:cf:c3:6d:30:e0:9b:8b:46:c9:da: e2:eb:ad:0f:e8:7a:a9:68:83:bd:2b:20:c0:61:86: f6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2D:B4:13:43:4B:D7:BD:5E:E2:7E:3B:06:BF:DF:71:41:58:BD:55 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/cC20E0NL171e4n47Br_fcUFYvVU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.22.0.0/15 Signature Algorithm: sha256WithRSAEncryption 4e:87:ed:60:fd:4a:2a:f0:3c:26:03:6e:63:9b:d6:54:3b:49: 84:c2:53:e2:80:a0:8d:0d:f0:3e:cc:55:f8:bf:79:c9:ab:e4: d6:de:ba:1d:e8:82:ca:90:44:c6:a6:24:40:b8:56:e2:cc:f3: 44:35:b9:fd:df:73:b8:2b:bb:ca:5e:ac:36:10:31:b7:1f:b8: 2d:77:a6:8a:7a:2a:bf:4b:37:67:36:a0:c9:df:f1:b2:26:ec: 9c:de:f5:24:15:a0:29:d0:30:28:6b:16:e7:07:1f:1f:8a:6f: 1f:15:fa:5a:95:a8:34:2f:90:1a:1a:7f:d8:ef:dd:7f:3a:99: 33:e0:1e:be:ce:c9:ca:94:f4:4f:22:ea:f0:dd:62:71:44:5e: d3:51:d7:db:fb:6a:e8:58:b1:31:55:0a:fd:f9:7d:b4:d2:5c: 28:6f:f5:23:64:54:c6:31:2a:e1:5c:c2:08:2c:a3:b4:20:55: e6:17:fe:28:8b:39:19:a8:1d:16:63:d7:e7:26:bc:d4:3c:c2: a4:33:e1:c4:87:db:87:4f:76:66:e4:19:be:cf:8f:5f:19:00: 1f:58:ab:8a:6e:07:c8:05:cd:b3:5b:b0:f2:1a:8a:1a:05:59: d9:26:85:c6:72:39:62:ea:71:f5:73:e3:60:06:08:77:96:54: a7:e7:8f:50 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICE90wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcwMkRCNDEzNDM0QkQ3 QkQ1RUUyN0UzQjA2QkZERjcxNDE1OEJENTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpZvUBacYrqY/YsGwylNiuqUedg+aY6IX6Ef465hr8XWwcBI3I GNmHe2352YjR5aojggAeuFPXxUFBZrDht8fY0TanJZAV/z4D/bA0iVqWRtd7Yihk fJ/wFgVSdSnSXWDSZpkSxRNkI2jMztIVSRknXPHSkZEVFXt4y4/Rg/wWdlK3OIMc Sm7InpDCWBimldoHfIaDUZW6MukIBvHwPNqe3S5weuxL0ZT9eihO1xSdHweAXzGD 55wJG5OkDA7szCe/gAYWZLiHmiwcqbJ9iZwSDiePpa/+PVUVhCU8o72tx2IjFjPL z8NtMOCbi0bJ2uLrrQ/oeqlog70rIMBhhvajAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUcC20E0NL171e4n47Br/fcUFYvVUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2NDMjBFME5MMTcxZTRuNDdCcl9mY1VG WXZWVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwHfFjANBgkq hkiG9w0BAQsFAAOCAQEAToftYP1KKvA8JgNuY5vWVDtJhMJT4oCgjQ3wPsxV+L95 yavk1t66HeiCypBExqYkQLhW4szzRDW5/d9zuCu7yl6sNhAxtx+4LXeminoqv0s3 Zzagyd/xsibsnN71JBWgKdAwKGsW5wcfH4pvHxX6WpWoNC+QGhp/2O/dfzqZM+Ae vs7JypT0TyLq8N1icURe01HX2/tq6FixMVUK/fl9tNJcKG/1I2RUxjEq4VzCCCyj tCBV5hf+KIs5GagdFmPX5ya81DzCpDPhxIfbh092ZuQZvs+PXxkAH1irim4HyAXN s1uw8hqKGgVZ2SaFxnI5Yupx9XPjYAYId5ZUp+ePUA== -----END CERTIFICATE-----Generated at Sun Aug 24 14:24:44 2025 by rpki-client