$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/hljJdPzGavADLzNU46GumHJIKvE.roa File: hljJdPzGavADLzNU46GumHJIKvE.roa (raw, json) Hash identifier: K0nPQ+vEa1Mp5GfA8Hzh8fDV1Chh8C7du9aRdIQ2GlY= Subject key identifier: 86:58:C9:74:FC:C6:6A:F0:03:2F:33:54:E3:A1:AE:98:72:48:2A:F1 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1473 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/hljJdPzGavADLzNU46GumHJIKvE.roa Signing time: Fri 22 Aug 2025 09:00:26 +0000 ROA not before: Fri 22 Aug 2025 09:00:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131142 IP address blocks: 2404:0:7000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5235 (0x1473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8658C974FCC66AF0032F3354E3A1AE9872482AF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7a:11:00:0f:dd:26:82:cf:4f:83:cf:89:c6: f0:ac:69:05:d1:1c:ea:24:75:ad:6a:0f:d4:7e:3c: ce:00:1e:f7:68:6e:17:9f:fe:d9:ad:a1:cc:9f:bc: 97:11:b7:36:83:10:2f:4b:0c:f2:f4:49:0d:53:cc: e7:f7:11:d7:02:69:6b:4d:24:ae:4b:0d:ca:3a:9c: 49:f8:01:43:34:dd:cc:22:0c:0e:bf:18:92:5e:55: 34:3f:e3:a9:2f:bd:b8:1f:24:ff:92:38:d8:80:25: 13:c3:69:8e:4f:f3:75:63:9c:df:ac:af:e3:85:fe: b0:42:b7:75:4a:4a:ee:7f:9e:ed:11:ee:59:3f:22: dc:9c:bd:3e:31:19:55:d3:ab:7a:f2:1c:db:22:ed: b6:a5:05:21:ba:85:51:92:17:f5:2a:fb:d0:5d:a1: f4:2d:98:60:13:32:18:c2:30:db:1f:69:48:fd:81: 43:2b:c5:16:b1:14:0e:08:9c:10:d4:eb:bf:72:f6: b9:c9:9f:ae:af:e5:bf:44:1b:a6:7e:fd:3a:84:02: 98:58:ae:c3:22:4f:5b:d4:fb:37:22:29:cc:b6:0b: 31:b4:1f:b5:10:66:26:5d:b3:d5:bc:ab:ef:69:d2: 20:21:d8:da:02:6b:61:f2:8b:bf:fe:2a:58:4b:f8: 8d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:58:C9:74:FC:C6:6A:F0:03:2F:33:54:E3:A1:AE:98:72:48:2A:F1 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/hljJdPzGavADLzNU46GumHJIKvE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:7000::/36 Signature Algorithm: sha256WithRSAEncryption 8c:84:e5:42:3f:b1:87:9b:31:db:4f:43:c0:20:77:dd:9b:b0: 92:34:9c:10:78:80:73:8f:9f:50:7b:3d:99:3e:6d:4e:bd:2b: 44:8f:c6:b5:ab:4b:cd:db:4f:eb:db:cb:84:f3:58:c5:a5:39: ea:9d:41:00:f7:25:3d:af:c6:b2:13:9e:31:e0:2f:aa:8e:90: 8b:22:dc:d2:73:df:ed:1a:d1:76:c1:54:0a:ba:9f:4f:91:61: da:a4:18:bb:10:2f:3a:05:c6:29:6f:9b:c8:fb:4b:ba:16:d8: cc:f1:18:dc:09:32:a2:05:c2:14:cd:e2:39:64:a5:9d:c4:e4: fd:7f:a4:51:86:b7:f2:27:b1:c1:e9:52:8f:4e:ac:b2:ee:e2: 45:6c:c1:59:80:43:30:fe:08:3e:72:43:34:2d:e3:4e:4e:77: be:1c:a3:c4:73:17:90:58:17:28:55:d9:ef:5d:e3:85:3a:4b: e5:30:73:df:b2:0b:52:1d:01:c0:5a:7d:d0:12:51:99:dc:68: 3f:72:aa:93:91:b1:a1:02:08:02:81:5a:2c:1e:52:4c:b1:d2: d6:73:8f:5f:18:b9:f8:8b:c9:0e:e6:75:f6:cf:9a:19:7a:e3: ae:b8:06:9a:59:bc:3e:0d:44:bc:ce:ca:f8:80:e0:05:c5:80: 77:4f:84:50 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg2NThDOTc0RkNDNjZB RjAwMzJGMzM1NEUzQTFBRTk4NzI0ODJBRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMehEAD90mgs9Pg8+JxvCsaQXRHOokda1qD9R+PM4AHvdobhef /tmtocyfvJcRtzaDEC9LDPL0SQ1TzOf3EdcCaWtNJK5LDco6nEn4AUM03cwiDA6/ GJJeVTQ/46kvvbgfJP+SONiAJRPDaY5P83VjnN+sr+OF/rBCt3VKSu5/nu0R7lk/ ItycvT4xGVXTq3ryHNsi7balBSG6hVGSF/Uq+9BdofQtmGATMhjCMNsfaUj9gUMr xRaxFA4InBDU679y9rnJn66v5b9EG6Z+/TqEAphYrsMiT1vU+zciKcy2CzG0H7UQ ZiZds9W8q+9p0iAh2NoCa2Hyi7/+KlhL+I0fAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUhljJdPzGavADLzNU46GumHJIKvEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2hsakpkUHpHYXZBREx6TlU0Nkd1bUhK SUt2RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAcDAN BgkqhkiG9w0BAQsFAAOCAQEAjITlQj+xh5sx209DwCB33ZuwkjScEHiAc4+fUHs9 mT5tTr0rRI/GtatLzdtP69vLhPNYxaU56p1BAPclPa/GshOeMeAvqo6QiyLc0nPf 7RrRdsFUCrqfT5Fh2qQYuxAvOgXGKW+byPtLuhbYzPEY3AkyogXCFM3iOWSlncTk /X+kUYa38iexwelSj06ssu7iRWzBWYBDMP4IPnJDNC3jTk53vhyjxHMXkFgXKFXZ 713jhTpL5TBz37ILUh0BwFp90BJRmdxoP3Kqk5GxoQIIAoFaLB5STLHS1nOPXxi5 +IvJDuZ19s+aGXrjrrgGmlm8Pg1EvM7K+IDgBcWAd0+EUA== -----END CERTIFICATE-----Generated at Sun Aug 24 14:15:05 2025 by rpki-client