$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/iex60kzI_4CMIlKtEax2ylckR8Y.roa File: iex60kzI_4CMIlKtEax2ylckR8Y.roa (raw, json) Hash identifier: x0lsm1KUfwzBSch6J6TCUgn6D3CnpDKjKEEVNcT3T38= Subject key identifier: 89:EC:7A:D2:4C:C8:FF:80:8C:22:52:AD:11:AC:76:CA:57:24:47:C6 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1485 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iex60kzI_4CMIlKtEax2ylckR8Y.roa Signing time: Fri 22 Aug 2025 09:00:30 +0000 ROA not before: Fri 22 Aug 2025 09:00:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 2404:0:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5253 (0x1485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=89EC7AD24CC8FF808C2252AD11AC76CA572447C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:97:d2:c2:ef:a6:94:30:8a:5f:b4:56:08:31: fd:3c:ab:ab:ad:36:60:52:fd:f6:c0:bf:ee:7e:b6: 4e:69:fe:23:d5:c2:cc:72:76:fb:7c:58:e0:fd:7a: 27:bc:2e:0d:dd:48:16:3c:9b:d1:35:cf:c0:e9:7b: 4d:79:ad:dc:e9:f0:a0:fe:3b:9c:8a:70:1b:2d:52: cc:bd:73:5f:fc:2f:c2:80:0f:60:ad:98:c9:18:39: c0:b6:d5:b8:ad:a8:0e:1b:2d:52:61:1f:79:9d:0c: 85:8d:aa:81:63:b1:24:5d:1b:4a:68:fc:9c:95:75: dd:d8:d5:3b:cb:e7:1a:a8:50:67:c3:31:dc:cc:f8: 27:3d:d8:4c:88:09:23:cc:d1:39:a4:9f:b7:78:37: 34:4b:63:d7:79:4a:cd:69:c5:67:08:3b:08:e6:42: 57:6d:10:25:ff:64:6e:de:db:0b:1b:51:ba:9a:4e: 8a:8c:43:23:b8:72:39:93:bc:6b:36:7d:d5:27:f1: 5e:88:c4:be:52:de:35:b6:1a:89:df:f7:05:ab:13: 63:a7:86:24:48:3e:0d:4e:07:37:6d:6f:74:c5:e9: 89:4c:4d:7c:77:09:62:74:3c:fb:43:ee:31:d3:2a: f0:d2:2e:f6:e7:c9:12:75:e0:10:e8:c5:60:14:43: 83:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:EC:7A:D2:4C:C8:FF:80:8C:22:52:AD:11:AC:76:CA:57:24:47:C6 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iex60kzI_4CMIlKtEax2ylckR8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:2000::/36 Signature Algorithm: sha256WithRSAEncryption c3:74:72:a5:89:76:12:6c:40:a1:4c:20:5e:5a:c3:62:85:18: a7:ea:21:07:ad:6a:c4:f9:e2:ab:67:18:32:f5:f9:b5:d5:74: ac:51:c9:a7:e5:11:3f:68:08:58:8c:c3:30:21:ae:92:0e:2b: c5:9f:8a:21:6a:f1:78:d5:eb:f1:99:da:7b:1f:f9:53:cb:70: 85:ff:66:a0:63:94:9c:a6:9b:73:4e:4d:db:d8:03:66:d2:78: 19:b2:4d:29:ef:26:5e:81:cf:fa:80:a0:a2:1c:c3:68:5b:94: 17:4e:06:ff:64:89:64:49:6d:6d:36:8a:6d:f4:e9:3c:33:14: 8d:1e:b6:2a:58:56:d1:b4:23:d1:c2:04:71:4d:0e:a4:75:d1: 68:7d:55:17:42:44:2c:0d:33:5e:c2:4c:3a:f5:1c:e4:c9:84: 17:51:3c:1e:da:60:5e:26:07:f6:d0:a9:59:fb:4d:7e:42:33: d5:91:7d:ee:6c:a3:f7:97:da:41:7f:a8:f0:68:33:6d:2f:6d: 62:68:73:23:3f:c7:4b:f6:7d:9e:aa:5f:77:c2:19:d4:f3:af: 65:de:b2:7e:e5:33:83:9c:9d:6c:58:a4:9b:ff:81:b5:a4:cf: f0:0d:e9:fa:7f:69:94:8b:f1:28:bf:0f:84:ca:1d:ce:86:60: f2:94:d2:1f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg5RUM3QUQyNENDOEZG ODA4QzIyNTJBRDExQUM3NkNBNTcyNDQ3QzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDil9LC76aUMIpftFYIMf08q6utNmBS/fbAv+5+tk5p/iPVwsxy dvt8WOD9eie8Lg3dSBY8m9E1z8Dpe015rdzp8KD+O5yKcBstUsy9c1/8L8KAD2Ct mMkYOcC21bitqA4bLVJhH3mdDIWNqoFjsSRdG0po/JyVdd3Y1TvL5xqoUGfDMdzM +Cc92EyICSPM0Tmkn7d4NzRLY9d5Ss1pxWcIOwjmQldtECX/ZG7e2wsbUbqaToqM QyO4cjmTvGs2fdUn8V6IxL5S3jW2Gonf9wWrE2OnhiRIPg1OBzdtb3TF6YlMTXx3 CWJ0PPtD7jHTKvDSLvbnyRJ14BDoxWAUQ4N5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUiex60kzI/4CMIlKtEax2ylckR8YwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2lleDYwa3pJXzRDTUlsS3RFYXgyeWxj a1I4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAIDAN BgkqhkiG9w0BAQsFAAOCAQEAw3RypYl2EmxAoUwgXlrDYoUYp+ohB61qxPniq2cY MvX5tdV0rFHJp+URP2gIWIzDMCGukg4rxZ+KIWrxeNXr8Znaex/5U8twhf9moGOU nKabc05N29gDZtJ4GbJNKe8mXoHP+oCgohzDaFuUF04G/2SJZEltbTaKbfTpPDMU jR62KlhW0bQj0cIEcU0OpHXRaH1VF0JELA0zXsJMOvUc5MmEF1E8HtpgXiYH9tCp WftNfkIz1ZF97myj95faQX+o8GgzbS9tYmhzIz/HS/Z9nqpfd8IZ1POvZd6yfuUz g5ydbFikm/+BtaTP8A3p+n9plIvxKL8PhModzoZg8pTSHw== -----END CERTIFICATE-----Generated at Sun Aug 24 14:23:18 2025 by rpki-client