$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/guBwqqUKAFImd4i151IIXMppnjA.roa File: guBwqqUKAFImd4i151IIXMppnjA.roa (raw, json) Hash identifier: v1a7ihBG+DZ2a6/yOE+cKQPn+FtVgpwMf5CHjlylN5I= Subject key identifier: 82:E0:70:AA:A5:0A:00:52:26:77:88:B5:E7:52:08:5C:CA:69:9E:30 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1472 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/guBwqqUKAFImd4i151IIXMppnjA.roa Signing time: Fri 22 Aug 2025 09:00:26 +0000 ROA not before: Fri 22 Aug 2025 09:00:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24154 IP address blocks: 210.200.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5234 (0x1472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=82E070AAA50A0052267788B5E752085CCA699E30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e0:bf:fc:70:3a:0e:96:78:39:01:d0:fc:fa: 63:a7:33:64:d1:2d:7d:cb:6b:97:86:8d:b5:84:ec: 35:45:de:f6:60:71:7c:16:38:94:0f:29:80:a1:76: c4:79:50:77:6e:e8:6d:ea:d6:c9:85:9a:b4:dc:69: 1b:16:a9:65:38:f9:90:7e:75:9d:71:9e:97:f5:5f: 4a:3b:54:6d:d4:04:1f:11:fb:b5:b4:8d:cb:1a:07: 30:dc:cd:f6:b4:4d:44:4e:3a:61:f5:e5:2a:1c:e4: ed:2a:5b:88:6d:b4:fd:bc:fa:7b:50:88:f8:e4:22: 4d:04:ce:35:48:ed:18:35:cb:33:1a:7f:c9:b7:44: 1c:45:31:80:5c:e6:ed:74:72:a0:12:5e:d6:7d:dd: 33:58:64:08:d9:23:1c:eb:b2:f6:ac:c7:4d:f8:6e: 49:bb:1c:ee:26:08:f2:d1:58:62:1b:50:43:5f:f8: 1c:f5:2c:39:d3:34:25:19:96:9a:af:14:7e:16:85: d7:d9:d1:ae:b7:f5:cd:c4:dc:cc:e0:77:0e:d4:d1: 41:86:3d:2b:aa:2e:24:2a:00:4d:ff:11:13:68:b9: c5:a1:23:75:9f:94:8c:46:df:eb:81:35:0d:b1:5b: e2:01:18:b9:76:90:8a:7a:d9:68:9e:fb:30:7c:7e: b5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E0:70:AA:A5:0A:00:52:26:77:88:B5:E7:52:08:5C:CA:69:9E:30 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/guBwqqUKAFImd4i151IIXMppnjA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.85.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:1f:96:11:e7:04:5c:8b:4b:43:3d:14:26:8a:9b:67:20:b3: d0:93:dc:bc:aa:a7:a1:35:9c:31:d0:f0:3c:b1:16:a5:1a:f9: 34:55:59:0b:43:f0:23:29:e7:93:90:a0:f0:b5:bf:49:6e:bd: 25:85:fd:fa:ab:e3:36:3f:5a:fc:97:42:96:de:98:75:dd:6e: 78:ae:61:7d:3f:41:2b:bb:bd:e5:1b:2c:fc:95:b5:95:4f:28: fd:92:a4:21:41:f0:8a:33:e9:92:33:a5:86:05:1d:62:f5:b5: 5f:d0:17:72:b3:90:6c:8c:6b:72:6d:82:18:79:89:4d:94:45: c8:bc:58:51:99:75:64:d6:8f:54:56:34:2a:8c:2e:f1:71:bd: f4:be:4d:c1:7a:27:19:92:30:d1:0b:1c:66:a5:53:e7:99:dc: 0c:ed:92:43:bf:8f:c2:bf:e1:5c:91:bb:f4:6b:75:6d:22:ad: 84:ef:57:61:90:ae:0e:66:dc:3c:71:7b:cb:eb:44:24:3e:4d: d1:63:d2:0d:32:9e:db:3e:83:43:f3:9f:35:b3:54:57:83:13: 02:98:fb:4a:20:21:cf:af:f4:b8:7d:d8:7f:62:51:2c:8c:70: fe:e0:2c:ad:ce:ec:90:c4:16:de:1a:a0:62:a4:dc:6e:87:bc: 5f:b0:4c:27 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFHIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgyRTA3MEFBQTUwQTAw NTIyNjc3ODhCNUU3NTIwODVDQ0E2OTlFMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/4L/8cDoOlng5AdD8+mOnM2TRLX3La5eGjbWE7DVF3vZgcXwW OJQPKYChdsR5UHdu6G3q1smFmrTcaRsWqWU4+ZB+dZ1xnpf1X0o7VG3UBB8R+7W0 jcsaBzDczfa0TUROOmH15Soc5O0qW4httP28+ntQiPjkIk0EzjVI7Rg1yzMaf8m3 RBxFMYBc5u10cqASXtZ93TNYZAjZIxzrsvasx034bkm7HO4mCPLRWGIbUENf+Bz1 LDnTNCUZlpqvFH4WhdfZ0a639c3E3Mzgdw7U0UGGPSuqLiQqAE3/ERNoucWhI3Wf lIxG3+uBNQ2xW+IBGLl2kIp62Wie+zB8frWtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUguBwqqUKAFImd4i151IIXMppnjAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2d1QndxcVVLQUZJbWQ0aTE1MUlJWE1w cG5qQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSyFUwDQYJ KoZIhvcNAQELBQADggEBAEwflhHnBFyLS0M9FCaKm2cgs9CT3Lyqp6E1nDHQ8Dyx FqUa+TRVWQtD8CMp55OQoPC1v0luvSWF/fqr4zY/WvyXQpbemHXdbniuYX0/QSu7 veUbLPyVtZVPKP2SpCFB8Ioz6ZIzpYYFHWL1tV/QF3KzkGyMa3Jtghh5iU2URci8 WFGZdWTWj1RWNCqMLvFxvfS+TcF6JxmSMNELHGalU+eZ3AztkkO/j8K/4VyRu/Rr dW0irYTvV2GQrg5m3Dxxe8vrRCQ+TdFj0g0ynts+g0PznzWzVFeDEwKY+0ogIc+v 9Lh92H9iUSyMcP7gLK3O7JDEFt4aoGKk3G6HvF+wTCc= -----END CERTIFICATE-----Generated at Sun Aug 24 14:16:32 2025 by rpki-client