$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/mPTJJ_AP0EN589-eHaMWGHc5JHI.roa File: mPTJJ_AP0EN589-eHaMWGHc5JHI.roa (raw, json) Hash identifier: Wbd1266Zj9BlwpfJBMlqjPfgmz0pomGJWjHnumiT1Cc= Subject key identifier: 98:F4:C9:27:F0:0F:D0:43:79:F3:DF:9E:1D:A3:16:18:77:39:24:72 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1449 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mPTJJ_AP0EN589-eHaMWGHc5JHI.roa Signing time: Fri 22 Aug 2025 09:00:16 +0000 ROA not before: Fri 22 Aug 2025 09:00:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 210.200.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5193 (0x1449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=98F4C927F00FD04379F3DF9E1DA3161877392472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:46:8a:5f:81:bc:9e:44:4f:6f:e6:97:49:7d: 1a:fd:ac:98:87:c9:5a:f8:72:0a:15:b9:65:c3:61: f4:c4:0b:82:2f:58:9a:14:4b:40:bf:f6:6b:1a:48: f3:32:16:89:6a:74:f9:53:8d:bc:c5:9f:24:f9:b2: 53:dd:0e:d3:26:43:70:f9:86:09:31:11:73:67:88: 40:d0:da:a9:1c:bc:0d:94:e7:fd:1d:1a:c3:9a:13: 71:43:38:da:26:18:66:be:2b:ab:44:77:e5:48:6e: b2:23:3f:c6:44:ee:fe:61:cf:7d:9e:27:c0:49:40: a6:5a:47:a3:6d:a9:8d:2a:81:2c:fc:65:5e:77:4e: 88:6f:05:9e:cd:8f:45:eb:98:c4:82:ea:d7:28:60: 70:d7:b4:e0:65:8c:fd:10:40:ac:30:51:e2:b0:42: cc:2f:a7:11:dd:7e:b3:a6:f9:ca:ab:e3:c4:61:64: 75:8a:1f:86:13:1b:4b:e3:76:c3:57:98:ad:92:fc: 03:58:87:a5:e2:c1:94:88:74:c2:ee:96:ad:74:3c: a9:24:11:ba:52:dd:68:99:57:4a:94:51:28:60:bb: 12:e6:82:23:d5:dc:74:c6:00:81:33:46:0e:58:97: 52:10:b3:33:13:0c:40:43:8d:53:83:6d:f2:c0:3a: 51:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F4:C9:27:F0:0F:D0:43:79:F3:DF:9E:1D:A3:16:18:77:39:24:72 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mPTJJ_AP0EN589-eHaMWGHc5JHI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.64.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:b8:ec:7d:58:92:2c:24:82:09:c4:7e:3d:a6:79:85:b2:90: 8f:97:6b:e6:4a:f6:08:d2:24:f1:a5:1a:f6:5b:d4:8e:cc:3f: 39:7c:96:70:4d:59:0a:d7:d9:1a:20:ea:d3:29:6d:6b:27:04: 04:91:77:89:8e:5c:a7:87:fb:06:33:a9:72:7c:fb:3b:7e:7e: 94:49:dc:05:3e:1a:2a:0e:d2:5c:cf:66:c4:30:f0:48:4b:3f: 8f:5e:8e:4c:ba:e5:36:9b:22:a7:ef:bd:f3:d1:85:99:f7:bd: 96:20:6d:62:0b:24:da:ed:2f:d0:16:15:61:42:2e:81:f9:2a: 5c:37:e4:ba:7b:9c:28:9b:bf:71:eb:35:2f:c7:cf:19:d4:b6: e1:64:db:15:50:88:a8:9d:b3:b9:3e:49:03:e7:93:7b:00:bb: 47:56:70:4a:61:b3:cc:03:d7:55:9b:87:4a:55:8c:f8:ad:9d: e2:0c:6f:b0:1a:4a:bf:63:f1:73:6c:5c:07:2f:17:63:20:97: ee:2a:35:a7:af:ad:ad:81:3e:fc:cb:10:c7:73:bd:e4:a3:a1: e5:61:c0:b7:6c:07:2c:a1:08:5f:2d:13:67:72:85:15:f3:8c: bc:7a:a6:8c:ab:ef:90:53:09:b5:1c:55:73:7f:de:fb:b3:55: 82:ef:be:5d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFEkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk4RjRDOTI3RjAwRkQw NDM3OUYzREY5RTFEQTMxNjE4NzczOTI0NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfRopfgbyeRE9v5pdJfRr9rJiHyVr4cgoVuWXDYfTEC4IvWJoU S0C/9msaSPMyFolqdPlTjbzFnyT5slPdDtMmQ3D5hgkxEXNniEDQ2qkcvA2U5/0d GsOaE3FDONomGGa+K6tEd+VIbrIjP8ZE7v5hz32eJ8BJQKZaR6NtqY0qgSz8ZV53 TohvBZ7Nj0XrmMSC6tcoYHDXtOBljP0QQKwwUeKwQswvpxHdfrOm+cqr48RhZHWK H4YTG0vjdsNXmK2S/ANYh6XiwZSIdMLulq10PKkkEbpS3WiZV0qUUShguxLmgiPV 3HTGAIEzRg5Yl1IQszMTDEBDjVODbfLAOlE7AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUmPTJJ/AP0EN589+eHaMWGHc5JHIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL21QVEpKX0FQMEVONTg5LWVIYU1XR0hj NUpISS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyEAwDQYJ KoZIhvcNAQELBQADggEBAC647H1YkiwkggnEfj2meYWykI+Xa+ZK9gjSJPGlGvZb 1I7MPzl8lnBNWQrX2Rog6tMpbWsnBASRd4mOXKeH+wYzqXJ8+zt+fpRJ3AU+GioO 0lzPZsQw8EhLP49ejky65TabIqfvvfPRhZn3vZYgbWILJNrtL9AWFWFCLoH5Klw3 5Lp7nCibv3HrNS/HzxnUtuFk2xVQiKids7k+SQPnk3sAu0dWcEphs8wD11Wbh0pV jPitneIMb7AaSr9j8XNsXAcvF2Mgl+4qNaevra2BPvzLEMdzveSjoeVhwLdsByyh CF8tE2dyhRXzjLx6poyr75BTCbUcVXN/3vuzVYLvvl0= -----END CERTIFICATE-----Generated at Sun Aug 24 14:22:50 2025 by rpki-client