$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ddw7pRekIIgRWJf7-Cfw4EFqVeY.roa File: ddw7pRekIIgRWJf7-Cfw4EFqVeY.roa (raw, json) Hash identifier: vaG0UEKQjnyZvGND8DtyxPOM8PuKwGDQwYhNwSxkig8= Subject key identifier: 75:DC:3B:A5:17:A4:20:88:11:58:97:FB:F8:27:F0:E0:41:6A:55:E6 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 146F Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ddw7pRekIIgRWJf7-Cfw4EFqVeY.roa Signing time: Fri 22 Aug 2025 09:00:25 +0000 ROA not before: Fri 22 Aug 2025 09:00:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 210.201.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5231 (0x146f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=75DC3BA517A42088115897FBF827F0E0416A55E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7f:01:85:ab:ec:22:23:43:17:a9:ed:4c:4e: e6:8a:7a:67:35:25:d0:42:20:51:96:dc:3f:9c:e4: 24:07:84:1f:26:c7:b1:60:43:61:a2:9c:f2:11:3e: 1f:03:c8:af:b5:70:14:f6:49:c4:5e:95:4e:e5:f5: e5:59:34:8d:fd:e4:b1:3b:14:f1:4c:ef:53:f6:45: f7:de:4b:fe:a5:a8:ec:25:2f:cc:64:7b:cf:59:5b: e4:f5:bc:8d:5f:c8:3e:f0:8f:9b:8a:90:8a:46:86: f6:de:f3:bf:9e:0b:1c:7e:1d:57:ef:5b:14:8c:85: 4a:da:ce:0c:33:bd:13:53:75:49:12:76:7d:22:60: 62:5f:1b:67:3b:55:b9:ca:b8:27:d8:48:90:c5:ae: 79:a8:34:75:eb:40:37:92:0f:48:26:f1:07:cb:01: 27:c1:78:90:4c:a8:a6:a0:7f:94:99:2d:2b:d3:c8: 8c:b9:01:14:ac:62:74:7b:10:5c:7d:3e:fd:69:97: f3:50:93:d2:a0:2b:77:e3:da:7d:74:14:72:28:c2: 03:54:9c:bd:0f:f1:ff:bf:f3:f6:88:d5:2b:02:28: 91:eb:6e:b9:c8:96:fa:3a:7e:87:9b:e9:0e:b8:13: 0e:0f:f1:3f:11:e1:c8:b1:6c:e3:b6:47:0b:fa:bf: 35:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:DC:3B:A5:17:A4:20:88:11:58:97:FB:F8:27:F0:E0:41:6A:55:E6 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ddw7pRekIIgRWJf7-Cfw4EFqVeY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:e2:8f:03:f4:b7:60:3d:3f:1e:fe:35:0f:81:e9:28:be:c3: e0:17:0b:13:1f:65:a2:c6:24:a8:6a:d2:77:e6:5b:6e:c6:39: 33:40:22:f7:0c:e1:91:45:4b:36:07:82:38:47:91:b4:3b:c3: 95:45:5b:3b:3e:ca:65:15:92:fe:53:35:4e:39:d2:d1:ea:93: c3:c3:98:24:17:41:2d:51:3f:21:45:b8:09:ff:dc:89:13:73: d7:d7:af:46:be:4e:01:11:65:98:76:24:75:22:bc:aa:3c:2b: 83:e6:f1:66:b7:7a:a6:6a:90:8b:d5:4c:66:9d:72:05:61:34: db:3d:ed:71:76:f4:8b:23:10:dd:f6:55:17:b0:bb:c3:ce:30: ae:b3:6a:a1:c3:e5:7e:c4:de:55:48:14:c4:c5:23:47:d8:e5: f2:f6:8b:47:29:f9:bb:04:e2:93:fc:47:ec:6e:0f:67:ac:60: 07:80:d9:45:df:94:35:ae:22:de:44:96:17:10:40:2a:45:3d: 7f:ce:f5:8e:88:6d:52:3c:51:62:85:35:cc:58:d4:c9:ef:94: c8:f8:1b:b9:37:9e:43:df:9f:ed:37:72:7a:13:b3:0d:49:c3: a5:f1:46:a2:1d:24:41:11:ee:9e:0c:34:75:e6:74:01:dc:26: c1:bd:0e:f5 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICFG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc1REMzQkE1MTdBNDIw ODgxMTU4OTdGQkY4MjdGMEUwNDE2QTU1RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXfwGFq+wiI0MXqe1MTuaKemc1JdBCIFGW3D+c5CQHhB8mx7Fg Q2GinPIRPh8DyK+1cBT2ScRelU7l9eVZNI395LE7FPFM71P2RffeS/6lqOwlL8xk e89ZW+T1vI1fyD7wj5uKkIpGhvbe87+eCxx+HVfvWxSMhUrazgwzvRNTdUkSdn0i YGJfG2c7VbnKuCfYSJDFrnmoNHXrQDeSD0gm8QfLASfBeJBMqKagf5SZLSvTyIy5 ARSsYnR7EFx9Pv1pl/NQk9KgK3fj2n10FHIowgNUnL0P8f+/8/aI1SsCKJHrbrnI lvo6foeb6Q64Ew4P8T8R4cixbOO2Rwv6vzVzAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUddw7pRekIIgRWJf7+Cfw4EFqVeYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2RkdzdwUmVrSUlnUldKZjctQ2Z3NEVG cVZlWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSyTANBgkq hkiG9w0BAQsFAAOCAQEAQeKPA/S3YD0/Hv41D4HpKL7D4BcLEx9losYkqGrSd+Zb bsY5M0Ai9wzhkUVLNgeCOEeRtDvDlUVbOz7KZRWS/lM1TjnS0eqTw8OYJBdBLVE/ IUW4Cf/ciRNz19evRr5OARFlmHYkdSK8qjwrg+bxZrd6pmqQi9VMZp1yBWE02z3t cXb0iyMQ3fZVF7C7w84wrrNqocPlfsTeVUgUxMUjR9jl8vaLRyn5uwTik/xH7G4P Z6xgB4DZRd+UNa4i3kSWFxBAKkU9f871johtUjxRYoU1zFjUye+UyPgbuTeeQ9+f 7TdyehOzDUnDpfFGoh0kQRHungw0deZ0Adwmwb0O9Q== -----END CERTIFICATE-----Generated at Sun Aug 24 14:24:04 2025 by rpki-client