$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/mZbcZ_briZ95bUIC8OTk_jlUyiQ.roa File: mZbcZ_briZ95bUIC8OTk_jlUyiQ.roa (raw, json) Hash identifier: 6BbGlGv4cX5tuJziI1poeiX/nE9dZ6yIxJd265O00S0= Subject key identifier: 99:96:DC:67:F6:EB:89:9F:79:6D:42:02:F0:E4:E4:FE:39:54:CA:24 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1439 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mZbcZ_briZ95bUIC8OTk_jlUyiQ.roa Signing time: Fri 22 Aug 2025 09:00:11 +0000 ROA not before: Fri 22 Aug 2025 09:00:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24154 IP address blocks: 60.244.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5177 (0x1439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9996DC67F6EB899F796D4202F0E4E4FE3954CA24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:99:a1:ce:b7:5e:b8:09:4d:95:e2:ac:5a: 47:e9:cc:28:93:ac:a0:4f:bf:c6:f4:c1:96:e3:ec: b7:65:cb:86:22:b6:e1:8f:73:b5:e0:f3:46:ac:58: 72:04:a9:86:87:57:ee:66:e3:f0:78:a8:8a:ff:42: c7:07:06:79:3a:2f:55:ee:3e:51:87:86:7a:8e:8e: 1a:42:66:7c:7b:00:6f:69:fb:fd:19:d7:9a:61:3d: c6:25:78:cd:29:86:a6:0b:c9:42:23:36:15:e8:84: 47:34:72:2d:8f:9d:a8:2c:9e:59:cb:52:18:c1:ba: 40:d0:b3:13:45:62:b3:d6:39:4a:b0:83:12:3e:01: d0:c8:84:1e:83:75:44:55:bd:b5:29:72:d2:f0:ca: fe:71:79:30:09:03:ce:5f:97:09:40:47:f5:74:2d: 4e:c8:39:21:2d:fc:1a:d9:f6:d8:0a:1c:23:dc:d6: 74:0f:26:87:d8:7f:2a:7e:44:99:9c:58:ed:45:39: 88:66:a4:be:74:c9:3b:2a:be:57:ef:de:10:10:5b: 0e:2d:28:68:9e:00:b5:59:4d:4e:c7:dc:7b:1e:e0: 07:5c:aa:6c:0d:d7:04:27:d7:24:56:4d:1b:92:b2: 18:f3:87:c9:96:50:58:84:24:88:cf:cf:37:0a:b8: 11:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:96:DC:67:F6:EB:89:9F:79:6D:42:02:F0:E4:E4:FE:39:54:CA:24 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mZbcZ_briZ95bUIC8OTk_jlUyiQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.1.0/24 Signature Algorithm: sha256WithRSAEncryption 71:f8:cf:5c:a9:29:77:f5:8f:22:51:92:92:dc:e2:64:22:84: 6b:b0:88:e2:71:53:33:ed:f3:c4:13:85:fb:57:ed:bc:94:28: f5:2a:17:7b:3d:e0:0f:de:e4:02:df:37:4d:b9:1d:4c:f4:ab: f1:19:48:95:b1:1e:38:33:62:59:f7:1d:46:78:4f:dd:cb:2d: ab:b1:8d:93:49:ce:17:66:b7:c5:76:ed:2e:84:2c:3b:b1:71: 97:f3:8a:2c:8c:23:1d:8e:82:a2:56:99:30:01:ef:b2:cc:38: a9:dc:6b:42:2d:7f:11:78:73:2f:6f:3b:2e:1a:17:77:6b:9d: ab:98:db:b4:49:0d:bf:7b:5c:78:01:b8:c5:8b:e5:d6:f5:84: b0:ab:6a:95:4b:05:df:91:f8:3e:71:8c:e8:dc:f7:57:b9:05: 03:2c:64:8a:82:e9:5c:9e:33:85:0b:8e:fb:ec:03:81:9a:00: 52:d3:8b:9d:0e:13:f1:27:15:1b:41:fa:15:3a:ad:e9:3f:70: 3f:41:01:75:d9:f9:80:66:77:6b:ae:c0:9f:f3:3f:0f:34:29: 10:6a:07:81:71:8e:ac:9f:41:73:37:ae:46:67:af:e8:45:b9: db:dd:9a:31:54:a1:ff:e1:1c:41:4c:7a:65:06:fd:fa:82:0e: ad:cb:8c:f7 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFDkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk5OTZEQzY3RjZFQjg5 OUY3OTZENDIwMkYwRTRFNEZFMzk1NENBMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC82ZmhzrdeuAlNleKsWkfpzCiTrKBPv8b0wZbj7Ldly4YituGP c7Xg80asWHIEqYaHV+5m4/B4qIr/QscHBnk6L1XuPlGHhnqOjhpCZnx7AG9p+/0Z 15phPcYleM0phqYLyUIjNhXohEc0ci2PnagsnlnLUhjBukDQsxNFYrPWOUqwgxI+ AdDIhB6DdURVvbUpctLwyv5xeTAJA85flwlAR/V0LU7IOSEt/BrZ9tgKHCPc1nQP JofYfyp+RJmcWO1FOYhmpL50yTsqvlfv3hAQWw4tKGieALVZTU7H3Hse4AdcqmwN 1wQn1yRWTRuSshjzh8mWUFiEJIjPzzcKuBGJAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUmZbcZ/briZ95bUIC8OTk/jlUyiQwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL21aYmNaX2JyaVo5NWJVSUM4T1RrX2ps VXlpUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA89AEwDQYJ KoZIhvcNAQELBQADggEBAHH4z1ypKXf1jyJRkpLc4mQihGuwiOJxUzPt88QThftX 7byUKPUqF3s94A/e5ALfN025HUz0q/EZSJWxHjgzYln3HUZ4T93LLauxjZNJzhdm t8V27S6ELDuxcZfziiyMIx2OgqJWmTAB77LMOKnca0ItfxF4cy9vOy4aF3drnauY 27RJDb97XHgBuMWL5db1hLCrapVLBd+R+D5xjOjc91e5BQMsZIqC6VyeM4ULjvvs A4GaAFLTi50OE/EnFRtB+hU6rek/cD9BAXXZ+YBmd2uuwJ/zPw80KRBqB4Fxjqyf QXM3rkZnr+hFudvdmjFUof/hHEFMemUG/fqCDq3LjPc= -----END CERTIFICATE-----Generated at Sun Aug 24 14:19:30 2025 by rpki-client