$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ij33GmiPBTbAirmQUfrErN-evn0.roa File: ij33GmiPBTbAirmQUfrErN-evn0.roa (raw, json) Hash identifier: ynliZWYmiogqKNW/ipsbx/DpJkuRllnrbZbKKoizdOU= Subject key identifier: 8A:3D:F7:1A:68:8F:05:36:C0:8A:B9:90:51:FA:C4:AC:DF:9E:BE:7D Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1446 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ij33GmiPBTbAirmQUfrErN-evn0.roa Signing time: Fri 22 Aug 2025 09:00:15 +0000 ROA not before: Fri 22 Aug 2025 09:00:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 210.63.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5190 (0x1446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8A3DF71A688F0536C08AB99051FAC4ACDF9EBE7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:46:07:a4:35:9a:21:48:85:03:f8:06:fb:5b: 39:c2:64:44:01:02:88:4f:fe:3c:28:63:d3:39:20: 30:e4:12:88:8e:e7:fa:dc:27:50:08:44:14:d5:bc: d2:a7:fd:4b:f5:40:2e:b6:31:a3:4f:cf:86:3c:15: 19:4c:94:73:26:3e:7a:98:13:39:4d:7b:d7:3f:b4: 3d:a7:72:6a:69:ea:39:89:b0:c0:91:6e:2e:79:e0: f9:99:36:b9:01:27:38:1b:fb:73:80:35:7e:52:d6: b7:7d:89:e4:c9:ef:12:8d:bb:33:a8:cf:cb:85:7d: be:fc:88:26:45:92:22:cb:d4:28:07:bc:c9:c4:12: 64:8c:d0:04:24:c0:2f:f6:09:cd:90:29:45:41:7b: bd:57:b5:e0:d6:96:21:d7:c9:6c:2e:e8:40:61:2f: e3:43:7f:72:4f:97:70:3b:9d:3a:7b:af:79:ad:e3: 91:0d:96:24:43:43:5d:93:92:69:fb:5a:3e:42:23: b3:7e:1f:7c:a8:44:a0:80:59:01:09:e4:75:ff:2f: e0:d4:37:ec:85:01:3e:7a:8b:7a:54:69:c6:96:2b: 17:45:87:64:5d:cf:bc:0e:0e:8c:99:0c:e3:dd:10: 09:3c:bf:c7:5e:b7:34:e3:1b:a0:6f:90:e0:6f:51: 10:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:3D:F7:1A:68:8F:05:36:C0:8A:B9:90:51:FA:C4:AC:DF:9E:BE:7D X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ij33GmiPBTbAirmQUfrErN-evn0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.224.0/19 Signature Algorithm: sha256WithRSAEncryption 00:ce:3a:0a:ea:5e:45:6f:16:53:f9:53:25:cd:fe:da:ee:01: 0d:5f:ba:22:62:48:23:20:22:d2:01:d8:53:28:7d:6e:21:ac: f5:f0:32:ec:4e:81:e9:72:66:8f:0c:d7:aa:85:af:9b:c1:00: d3:5d:94:9a:96:55:3b:d9:57:92:4d:d6:06:ea:e1:95:5f:c0: 74:92:4b:83:df:03:a9:a5:88:59:ef:77:30:a8:4b:22:a9:8b: 1a:8c:ca:8f:34:ce:6d:37:20:84:17:fc:b2:79:9e:87:c7:95: 9d:22:65:03:57:b0:13:dd:42:f9:34:1f:93:4f:ff:61:3b:c1: 45:27:ba:7a:05:51:d9:94:cc:f8:0a:d5:8a:ca:c8:f3:01:df: 58:b7:d7:44:8d:e9:11:e4:f5:32:ac:07:d3:4d:76:f1:11:9d: 67:7b:c0:f3:1d:85:b7:c7:70:8f:55:6e:72:32:d7:fc:60:a3: dc:c8:35:f7:6b:91:a9:1b:99:f6:6a:9d:b3:f6:29:75:b1:78: b6:bc:1a:cd:a4:ef:6c:6f:b2:b3:52:42:5f:8b:88:10:70:3d: a8:18:5a:e0:1f:75:88:e7:35:7d:1f:0c:12:6f:4b:b5:fd:51: 97:cd:2d:a9:60:69:93:c7:7e:22:9b:67:6f:16:4d:14:b8:98: b6:21:a2:24 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFEYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhBM0RGNzFBNjg4RjA1 MzZDMDhBQjk5MDUxRkFDNEFDREY5RUJFN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrRgekNZohSIUD+Ab7WznCZEQBAohP/jwoY9M5IDDkEoiO5/rc J1AIRBTVvNKn/Uv1QC62MaNPz4Y8FRlMlHMmPnqYEzlNe9c/tD2ncmpp6jmJsMCR bi554PmZNrkBJzgb+3OANX5S1rd9ieTJ7xKNuzOoz8uFfb78iCZFkiLL1CgHvMnE EmSM0AQkwC/2Cc2QKUVBe71XteDWliHXyWwu6EBhL+NDf3JPl3A7nTp7r3mt45EN liRDQ12Tkmn7Wj5CI7N+H3yoRKCAWQEJ5HX/L+DUN+yFAT56i3pUacaWKxdFh2Rd z7wODoyZDOPdEAk8v8detzTjG6BvkOBvURBHAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUij33GmiPBTbAirmQUfrErN+evn0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2lqMzNHbWlQQlRiQWlybVFVZnJFck4t ZXZuMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXSP+AwDQYJ KoZIhvcNAQELBQADggEBAADOOgrqXkVvFlP5UyXN/truAQ1fuiJiSCMgItIB2FMo fW4hrPXwMuxOgelyZo8M16qFr5vBANNdlJqWVTvZV5JN1gbq4ZVfwHSSS4PfA6ml iFnvdzCoSyKpixqMyo80zm03IIQX/LJ5nofHlZ0iZQNXsBPdQvk0H5NP/2E7wUUn unoFUdmUzPgK1YrKyPMB31i310SN6RHk9TKsB9NNdvERnWd7wPMdhbfHcI9VbnIy 1/xgo9zINfdrkakbmfZqnbP2KXWxeLa8Gs2k72xvsrNSQl+LiBBwPagYWuAfdYjn NX0fDBJvS7X9UZfNLalgaZPHfiKbZ28WTRS4mLYhoiQ= -----END CERTIFICATE-----Generated at Sun Aug 24 14:22:50 2025 by rpki-client