$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/moGRYjoJy3HSrO024Y3wzYIaoII.roa File: moGRYjoJy3HSrO024Y3wzYIaoII.roa (raw, json) Hash identifier: BJKeHXy3BFRjGVrl18hQG37InQnSWJ3K62Z9wTb09pk= Subject key identifier: 9A:81:91:62:3A:09:CB:71:D2:AC:ED:36:E1:8D:F0:CD:82:1A:A0:82 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1402 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/moGRYjoJy3HSrO024Y3wzYIaoII.roa Signing time: Fri 22 Aug 2025 08:59:59 +0000 ROA not before: Fri 22 Aug 2025 08:59:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 202.178.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5122 (0x1402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9A8191623A09CB71D2ACED36E18DF0CD821AA082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:27:f3:34:cb:bb:3b:e6:60:d9:3d:d8:2e:b4: e2:c6:eb:e0:a9:b6:f7:6f:41:cd:66:19:8a:1f:09: 63:91:a2:4c:36:ed:e9:a2:9c:b0:80:eb:8d:83:a6: d6:69:29:30:d1:42:95:14:03:e6:fc:73:70:dd:5a: 26:6c:1b:4b:b3:6e:e1:d2:52:18:9d:99:ac:22:44: fc:21:a6:34:c8:45:25:d8:59:ef:ad:34:a5:4f:44: 47:d2:74:ec:52:0a:e0:87:b9:54:97:4f:35:32:f8: 1a:ef:6c:03:2b:22:3f:bf:e5:6f:0e:57:4d:b9:07: 7f:5f:3e:e8:ce:01:c1:bd:2d:6e:0a:bb:9a:60:02: 73:80:f1:a8:58:4b:df:46:7e:2e:cd:30:98:83:f6: f3:83:3c:ea:b8:55:4c:b2:84:5a:44:b4:b8:39:d0: 29:d8:01:e4:68:99:ca:cc:81:0b:bd:b7:24:0d:41: 9d:07:56:09:db:96:27:d4:e6:ff:45:a7:bb:50:b3: 5b:43:67:7d:c4:79:71:41:69:22:60:08:33:cc:d7: 60:9f:c6:69:0d:d0:5a:c4:67:ab:27:2f:b8:a9:37: 08:79:24:37:00:15:0e:3a:28:b9:07:97:3b:20:e1: a4:35:b8:a0:ba:fc:8b:07:18:ef:e7:6b:bb:f5:d7: 10:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:81:91:62:3A:09:CB:71:D2:AC:ED:36:E1:8D:F0:CD:82:1A:A0:82 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/moGRYjoJy3HSrO024Y3wzYIaoII.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.178.128.0/17 Signature Algorithm: sha256WithRSAEncryption 34:7f:8c:a8:d4:f2:61:66:d3:87:75:db:8b:4f:24:fb:84:32: ba:68:5f:42:7c:e9:fd:6b:c3:3d:e2:c7:e3:62:63:fc:e6:41: 33:0e:ef:48:b8:fa:96:5a:d5:8d:41:35:55:34:19:08:de:a6: eb:53:5b:8a:a0:a0:e0:49:60:6f:d8:fb:6d:06:47:29:8f:c7: 71:f4:df:e8:b8:01:21:85:5e:55:7e:5e:b7:c2:e3:34:ac:d4: 57:44:56:95:85:4a:18:0c:a8:12:fa:16:6b:0f:f6:0e:b8:5b: 97:42:1c:59:84:24:0c:5b:1b:aa:8e:9b:0b:6e:72:1f:b0:76: 4f:2d:ef:70:10:39:fc:1a:80:5e:eb:c9:26:d6:43:5d:cd:9e: 14:73:6d:07:13:49:66:28:13:42:23:5a:98:9a:29:5e:b9:c3: 40:9d:ab:2f:ec:ea:ca:91:89:76:c8:fb:6e:a5:f4:a3:cc:63: 5e:e4:e9:c1:bc:16:bb:7b:e1:86:e8:ef:36:d5:07:12:17:7a: 66:31:b6:57:8a:7b:59:53:91:c0:11:3f:62:9f:2e:d3:9f:61: 26:eb:99:e3:88:dd:ba:34:4d:62:a2:44:a2:84:26:b2:09:6a: fc:36:f5:73:a4:22:ac:a9:76:26:70:22:63:86:41:66:8c:89: 9d:5f:01:87 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlBODE5MTYyM0EwOUNC NzFEMkFDRUQzNkUxOERGMENEODIxQUEwODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgJ/M0y7s75mDZPdgutOLG6+CptvdvQc1mGYofCWORokw27emi nLCA642DptZpKTDRQpUUA+b8c3DdWiZsG0uzbuHSUhidmawiRPwhpjTIRSXYWe+t NKVPREfSdOxSCuCHuVSXTzUy+BrvbAMrIj+/5W8OV025B39fPujOAcG9LW4Ku5pg AnOA8ahYS99Gfi7NMJiD9vODPOq4VUyyhFpEtLg50CnYAeRomcrMgQu9tyQNQZ0H VgnblifU5v9Fp7tQs1tDZ33EeXFBaSJgCDPM12CfxmkN0FrEZ6snL7ipNwh5JDcA FQ46KLkHlzsg4aQ1uKC6/IsHGO/na7v11xDBAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUmoGRYjoJy3HSrO024Y3wzYIaoIIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL21vR1JZam9KeTNIU3JPMDI0WTN3ellJ YW9JSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfKsoAwDQYJ KoZIhvcNAQELBQADggEBADR/jKjU8mFm04d124tPJPuEMrpoX0J86f1rwz3ix+Ni Y/zmQTMO70i4+pZa1Y1BNVU0GQjeputTW4qgoOBJYG/Y+20GRymPx3H03+i4ASGF XlV+XrfC4zSs1FdEVpWFShgMqBL6FmsP9g64W5dCHFmEJAxbG6qOmwtuch+wdk8t 73AQOfwagF7rySbWQ13NnhRzbQcTSWYoE0IjWpiaKV65w0Cdqy/s6sqRiXbI+26l 9KPMY17k6cG8Frt74Ybo7zbVBxIXemYxtleKe1lTkcARP2KfLtOfYSbrmeOI3bo0 TWKiRKKEJrIJavw29XOkIqypdiZwImOGQWaMiZ1fAYc= -----END CERTIFICATE-----Generated at Sun Aug 24 14:16:34 2025 by rpki-client