$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/m0qZ1At_1L64ewq_XWwmE8yU4s4.roa File: m0qZ1At_1L64ewq_XWwmE8yU4s4.roa (raw, json) Hash identifier: /x8ZcycvfVeJka6GdpI1y175lLWJ6CHPUO6h7IAOTo0= Subject key identifier: 9B:4A:99:D4:0B:7F:D4:BE:B8:7B:0A:BF:5D:6C:26:13:CC:94:E2:CE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1436 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/m0qZ1At_1L64ewq_XWwmE8yU4s4.roa Signing time: Fri 22 Aug 2025 09:00:10 +0000 ROA not before: Fri 22 Aug 2025 09:00:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131584 IP address blocks: 210.203.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5174 (0x1436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9B4A99D40B7FD4BEB87B0ABF5D6C2613CC94E2CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f2:09:49:d2:a3:d2:9c:e3:12:cc:e1:ee:c8: 0e:69:1d:44:10:f3:b6:d6:a0:a1:b0:e0:bf:0e:65: 35:15:c1:26:eb:8b:96:9f:75:f3:23:de:76:e3:69: ed:d4:8a:1e:f3:5d:a9:af:f6:d9:11:b0:95:c5:4c: 05:25:3d:5f:44:eb:0f:80:46:b5:0b:e2:b4:ca:c8: d4:10:a7:67:8a:81:cb:5f:76:81:1b:57:4e:fd:4b: 14:e1:9c:e8:07:8d:0c:c9:44:d2:18:da:45:5d:56: 2e:2e:3d:c9:a9:80:2d:97:4c:92:1b:2e:28:a4:09: fd:e6:d0:70:0e:ae:f4:e7:b2:dc:68:ba:82:ab:f4: c2:c0:81:1d:80:18:20:63:df:e3:19:67:19:54:86: b3:7e:c1:c9:d1:87:4d:e3:a0:a9:cd:22:da:1d:0e: 62:85:b9:bf:f4:35:11:64:fc:ff:38:40:f6:9f:fd: c9:34:11:33:f3:a1:82:1b:e8:1f:0e:ad:36:56:f4: 21:0b:52:8b:d5:6f:9a:73:fc:13:88:82:7f:1a:35: af:18:11:a1:44:35:9e:38:ef:99:ef:49:22:83:25: 89:21:9f:00:9c:e1:b1:02:72:80:f2:8b:c7:4f:6d: f3:fb:62:53:e6:56:f3:51:d2:2b:18:b5:05:c9:10: b1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:4A:99:D4:0B:7F:D4:BE:B8:7B:0A:BF:5D:6C:26:13:CC:94:E2:CE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/m0qZ1At_1L64ewq_XWwmE8yU4s4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.203.48.0/20 Signature Algorithm: sha256WithRSAEncryption 61:c7:7a:72:5a:b7:bc:b8:46:22:f5:d5:be:48:64:91:51:71: 05:ad:42:85:14:77:38:c2:70:de:eb:08:39:d4:b8:61:59:dd: 25:96:b0:25:04:8f:82:46:09:a9:b4:2c:0a:a7:fd:02:12:8c: 22:10:2a:f4:45:f9:91:d1:81:7c:77:8d:12:0e:3a:2f:26:b5: 27:ba:ad:0e:2a:ee:d9:e6:2f:7b:4d:9d:76:20:1a:6b:94:9a: fe:b9:c5:65:59:c7:72:7d:b6:68:cf:3c:8b:3d:13:e9:ab:ca: 22:35:e8:f7:0e:7b:0b:9d:a8:c9:4d:dc:ed:2d:94:cc:a3:ba: 09:b8:d8:0b:58:64:89:f7:ac:f8:ae:9b:3f:27:6f:37:df:45: 92:40:49:e3:13:ce:d3:ea:11:13:09:6b:56:e2:43:dd:a4:fd: 9c:4d:5d:ac:87:6e:5c:96:99:d2:7b:e7:f7:00:ec:38:f0:d3: dd:59:3b:01:68:0a:cc:0e:09:ac:c4:f1:1f:33:c9:5b:ce:47: e8:6e:65:76:75:76:39:5e:6c:3d:1c:42:a9:1f:a9:af:a5:2d: e2:15:95:bd:7c:0b:3a:24:5a:94:be:56:d8:bb:37:57:f5:9f: 50:6a:d4:96:44:b3:74:72:be:a9:02:7e:ee:83:24:fe:c1:18: 53:7f:40:49 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFDYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlCNEE5OUQ0MEI3RkQ0 QkVCODdCMEFCRjVENkMyNjEzQ0M5NEUyQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa8glJ0qPSnOMSzOHuyA5pHUQQ87bWoKGw4L8OZTUVwSbri5af dfMj3nbjae3Uih7zXamv9tkRsJXFTAUlPV9E6w+ARrUL4rTKyNQQp2eKgctfdoEb V079SxThnOgHjQzJRNIY2kVdVi4uPcmpgC2XTJIbLiikCf3m0HAOrvTnstxouoKr 9MLAgR2AGCBj3+MZZxlUhrN+wcnRh03joKnNItodDmKFub/0NRFk/P84QPaf/ck0 ETPzoYIb6B8OrTZW9CELUovVb5pz/BOIgn8aNa8YEaFENZ4475nvSSKDJYkhnwCc 4bECcoDyi8dPbfP7YlPmVvNR0isYtQXJELHbAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUm0qZ1At/1L64ewq/XWwmE8yU4s4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL20wcVoxQXRfMUw2NGV3cV9YV3dtRTh5 VTRzNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATSyzAwDQYJ KoZIhvcNAQELBQADggEBAGHHenJat7y4RiL11b5IZJFRcQWtQoUUdzjCcN7rCDnU uGFZ3SWWsCUEj4JGCam0LAqn/QISjCIQKvRF+ZHRgXx3jRIOOi8mtSe6rQ4q7tnm L3tNnXYgGmuUmv65xWVZx3J9tmjPPIs9E+mryiI16PcOewudqMlN3O0tlMyjugm4 2AtYZIn3rPiumz8nbzffRZJASeMTztPqERMJa1biQ92k/ZxNXayHblyWmdJ75/cA 7Djw091ZOwFoCswOCazE8R8zyVvOR+huZXZ1djlebD0cQqkfqa+lLeIVlb18Czok WpS+Vti7N1f1n1Bq1JZEs3RyvqkCfu6DJP7BGFN/QEk= -----END CERTIFICATE-----Generated at Sun Aug 24 14:20:12 2025 by rpki-client