$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/nYEUoH-yvLe-MT4Gjewq9-TYf80.roa File: nYEUoH-yvLe-MT4Gjewq9-TYf80.roa (raw, json) Hash identifier: nXlmLEd7YHPEWj7KPioWfeP8cJyQVb4psIeBnt8yJSo= Subject key identifier: 9D:81:14:A0:7F:B2:BC:B7:BE:31:3E:06:8D:EC:2A:F7:E4:D8:7F:CD Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 147E Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/nYEUoH-yvLe-MT4Gjewq9-TYf80.roa Signing time: Fri 22 Aug 2025 09:00:29 +0000 ROA not before: Fri 22 Aug 2025 09:00:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 210.58.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5246 (0x147e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9D8114A07FB2BCB7BE313E068DEC2AF7E4D87FCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0f:00:91:0c:45:4f:ac:3f:7d:63:c3:7e:6d: 8e:f0:88:ac:0a:1d:af:7f:99:4c:02:93:0f:78:9c: e3:f1:84:cf:38:e4:19:34:21:d6:3b:64:2e:8c:57: b9:1d:a2:32:9f:6c:6b:4a:f4:43:ae:85:63:30:41: 82:56:83:0b:cf:54:c8:9f:51:03:f2:5e:2a:32:25: c7:12:a3:ac:e9:ae:12:af:e3:6d:e0:53:5e:9d:96: 0d:d4:30:90:bb:0d:eb:d4:71:f1:de:d9:56:bf:d5: 91:bd:3c:04:1d:03:8c:e4:60:be:a2:21:42:4d:58: 3b:96:91:f2:0f:51:69:0b:70:62:65:23:15:81:b9: c9:01:4a:eb:9b:d6:07:ee:cd:cb:23:37:69:d2:e0: 78:6d:85:72:ff:41:a8:15:0b:13:4a:51:57:39:2b: 62:1b:02:25:66:ab:e5:c0:ea:a7:9c:fe:56:ec:f5: 36:8f:40:bd:57:ed:f5:dd:16:30:20:ad:3d:2e:10: bb:13:89:93:06:50:c7:78:fe:f1:2f:bd:4c:00:03: bd:12:ee:73:67:40:bc:26:26:1e:22:d1:73:f6:bb: 16:1c:db:b6:4c:8f:f5:94:5b:17:83:ca:93:4e:37: 62:96:6f:a0:d8:57:a2:47:69:cc:6d:cd:ef:86:a3: 72:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:81:14:A0:7F:B2:BC:B7:BE:31:3E:06:8D:EC:2A:F7:E4:D8:7F:CD X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/nYEUoH-yvLe-MT4Gjewq9-TYf80.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.112.0/20 Signature Algorithm: sha256WithRSAEncryption 13:1b:1f:6e:c9:66:77:55:83:4d:f1:0f:40:81:f7:d8:4e:a1: 78:27:a9:f3:cc:0e:96:1a:ce:81:eb:a1:d9:99:d8:9f:0c:25: 49:af:97:4d:be:81:74:2f:0d:40:58:d6:ba:15:3b:d7:47:aa: 08:c7:93:31:7c:8e:4b:b5:d6:42:68:c6:85:98:84:27:c0:ea: d8:c9:84:2b:05:ca:0e:25:fb:d3:a1:e8:20:0b:b9:f3:49:75: eb:e7:55:4a:27:56:13:e8:d7:35:30:a1:05:d6:43:04:09:dd: 02:4d:48:71:72:f8:ff:d4:db:3b:9a:62:a1:88:c7:df:58:34: 12:07:88:08:c9:fc:8e:f8:2e:94:06:fa:f2:d2:9f:ba:b1:c8: 68:8d:a9:4f:6c:8f:63:c6:e0:16:b3:23:6d:52:8c:b1:77:1c: eb:b5:f0:6a:b8:81:7a:b8:e2:cc:5a:7d:26:b7:ab:5e:98:f1: 6f:5e:ad:25:26:4a:14:91:d4:97:5b:d4:f0:e8:87:7f:c8:64: c1:68:3a:c2:19:bd:57:95:ae:b0:44:9d:01:47:bd:bd:d9:4d: 8a:08:3f:da:e8:8e:18:ba:83:1a:7c:7b:9e:e9:84:92:b1:a1: 99:db:68:15:ef:43:d6:8a:f0:4a:bb:60:63:4f:6f:e5:df:a6: 01:cd:82:f6 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlEODExNEEwN0ZCMkJD QjdCRTMxM0UwNjhERUMyQUY3RTREODdGQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbDwCRDEVPrD99Y8N+bY7wiKwKHa9/mUwCkw94nOPxhM845Bk0 IdY7ZC6MV7kdojKfbGtK9EOuhWMwQYJWgwvPVMifUQPyXioyJccSo6zprhKv423g U16dlg3UMJC7DevUcfHe2Va/1ZG9PAQdA4zkYL6iIUJNWDuWkfIPUWkLcGJlIxWB uckBSuub1gfuzcsjN2nS4HhthXL/QagVCxNKUVc5K2IbAiVmq+XA6qec/lbs9TaP QL1X7fXdFjAgrT0uELsTiZMGUMd4/vEvvUwAA70S7nNnQLwmJh4i0XP2uxYc27ZM j/WUWxeDypNON2KWb6DYV6JHacxtze+Go3IpAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUnYEUoH+yvLe+MT4Gjewq9+TYf80wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL25ZRVVvSC15dkxlLU1UNEdqZXdxOS1U WWY4MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATSOnAwDQYJ KoZIhvcNAQELBQADggEBABMbH27JZndVg03xD0CB99hOoXgnqfPMDpYazoHrodmZ 2J8MJUmvl02+gXQvDUBY1roVO9dHqgjHkzF8jku11kJoxoWYhCfA6tjJhCsFyg4l +9Oh6CALufNJdevnVUonVhPo1zUwoQXWQwQJ3QJNSHFy+P/U2zuaYqGIx99YNBIH iAjJ/I74LpQG+vLSn7qxyGiNqU9sj2PG4BazI21SjLF3HOu18Gq4gXq44sxafSa3 q16Y8W9erSUmShSR1Jdb1PDoh3/IZMFoOsIZvVeVrrBEnQFHvb3ZTYoIP9rojhi6 gxp8e57phJKxoZnbaBXvQ9aK8Eq7YGNPb+XfpgHNgvY= -----END CERTIFICATE-----Generated at Sun Aug 24 14:24:47 2025 by rpki-client