$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/mjj3EaWQm9qPTZrMjCBbvMF9tf4.roa File: mjj3EaWQm9qPTZrMjCBbvMF9tf4.roa (raw, json) Hash identifier: piqMf/LpLUUo6ib3OklPKCoXhb/ydUDmX7UkgjiVZEU= Subject key identifier: 9A:38:F7:11:A5:90:9B:DA:8F:4D:9A:CC:8C:20:5B:BC:C1:7D:B5:FE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13B4 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mjj3EaWQm9qPTZrMjCBbvMF9tf4.roa Signing time: Fri 22 Aug 2025 08:59:37 +0000 ROA not before: Fri 22 Aug 2025 08:59:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9674 IP address blocks: 118.231.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5044 (0x13b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9A38F711A5909BDA8F4D9ACC8C205BBCC17DB5FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c5:a6:5c:24:12:f9:05:74:37:09:54:f2:25: ca:7b:ee:b5:79:fc:c4:60:bf:4c:b4:f7:2e:c4:74: bb:64:b6:39:5d:d1:1b:6d:d3:da:51:8c:88:07:2c: df:94:d3:2d:e3:b4:09:04:ed:4a:23:42:8c:45:fc: df:3d:89:2a:6c:84:75:70:19:8b:e7:aa:69:46:95: dc:6a:8c:8c:b9:b5:ed:bd:34:15:b4:d5:cc:39:f1: dc:e1:a0:28:08:f0:94:89:e4:00:7d:73:a4:1e:56: 13:da:44:4d:fa:58:bb:e4:5c:43:15:1f:47:68:72: 70:4e:98:ea:2e:2b:84:06:8a:1b:57:2b:c5:60:5c: 5c:e7:6d:a8:64:4f:5c:11:34:1f:98:cc:39:25:a9: ed:dd:14:7c:c3:18:12:30:67:9d:75:29:08:81:41: 8f:ac:8e:b7:9e:43:32:16:02:97:fc:63:8c:86:d8: 65:83:32:1b:64:27:d5:f2:7c:2a:5e:e6:96:c8:11: f3:38:a3:61:83:dd:65:e6:2b:97:71:bd:48:49:5e: 35:20:95:55:5b:78:da:f3:7d:65:d8:d7:d8:d3:cd: 67:3a:20:8d:58:da:40:26:f6:85:09:d1:ca:62:fb: b9:f5:c9:d0:7e:9d:99:d3:5c:73:87:e4:e4:b3:9d: 8d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:38:F7:11:A5:90:9B:DA:8F:4D:9A:CC:8C:20:5B:BC:C1:7D:B5:FE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mjj3EaWQm9qPTZrMjCBbvMF9tf4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.231.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:83:14:e8:13:19:27:20:68:28:78:13:b9:ff:91:18:29:1b: 88:c3:64:14:6c:f3:3a:af:ff:03:1f:44:d5:4f:a1:f4:e9:3a: 91:01:06:8b:88:2f:4c:f1:79:bb:2e:3e:93:9c:86:c2:bb:7a: 96:f8:89:49:1e:82:82:b7:42:08:ea:08:38:ef:65:2a:d2:a9: 11:4a:3d:a4:5f:b6:b7:39:97:1b:d8:fd:a3:50:60:73:46:4b: 76:d3:97:51:20:e3:72:20:d9:e2:c8:92:a5:b3:08:99:92:de: bb:d2:21:3b:01:9f:47:5d:8e:9a:df:d0:6f:d9:e9:6f:1d:de: a4:81:f5:bf:99:0f:18:69:c1:9f:b2:3b:6e:e0:63:d0:b0:95: cb:67:05:66:ed:86:53:b7:2b:92:20:08:f4:39:bd:03:35:a9: fd:a2:02:63:9b:ec:7e:a5:38:36:03:0e:54:6f:0c:98:07:45: 71:9d:56:70:48:8a:c6:38:91:de:cd:de:e0:b8:88:58:79:39: dd:e4:92:38:71:78:86:89:82:2e:cf:7b:9c:a4:4c:87:64:db: e2:94:d7:a7:a3:3f:b7:0a:c4:13:12:f9:6c:a0:71:f1:e4:f9: 1a:d2:b6:f3:05:fd:24:e5:e6:09:8d:38:3c:33:10:65:a1:c3: 33:b1:38:8f -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICE7QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlBMzhGNzExQTU5MDlC REE4RjREOUFDQzhDMjA1QkJDQzE3REI1RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwxaZcJBL5BXQ3CVTyJcp77rV5/MRgv0y09y7EdLtktjld0Rtt 09pRjIgHLN+U0y3jtAkE7UojQoxF/N89iSpshHVwGYvnqmlGldxqjIy5te29NBW0 1cw58dzhoCgI8JSJ5AB9c6QeVhPaRE36WLvkXEMVH0docnBOmOouK4QGihtXK8Vg XFznbahkT1wRNB+YzDklqe3dFHzDGBIwZ511KQiBQY+sjreeQzIWApf8Y4yG2GWD MhtkJ9XyfCpe5pbIEfM4o2GD3WXmK5dxvUhJXjUglVVbeNrzfWXY19jTzWc6II1Y 2kAm9oUJ0cpi+7n1ydB+nZnTXHOH5OSznY0NAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUmjj3EaWQm9qPTZrMjCBbvMF9tf4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL21qajNFYVdRbTlxUFRack1qQ0Jidk1G OXRmNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB25zANBgkq hkiG9w0BAQsFAAOCAQEAPoMU6BMZJyBoKHgTuf+RGCkbiMNkFGzzOq//Ax9E1U+h 9Ok6kQEGi4gvTPF5uy4+k5yGwrt6lviJSR6CgrdCCOoIOO9lKtKpEUo9pF+2tzmX G9j9o1Bgc0ZLdtOXUSDjciDZ4siSpbMImZLeu9IhOwGfR12Omt/Qb9npbx3epIH1 v5kPGGnBn7I7buBj0LCVy2cFZu2GU7crkiAI9Dm9AzWp/aICY5vsfqU4NgMOVG8M mAdFcZ1WcEiKxjiR3s3e4LiIWHk53eSSOHF4homCLs97nKRMh2Tb4pTXp6M/twrE ExL5bKBx8eT5GtK28wX9JOXmCY04PDMQZaHDM7E4jw== -----END CERTIFICATE-----Generated at Sun Aug 24 14:24:45 2025 by rpki-client