$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/o0midc-s4Gt74-NMtz4sSoz2roY.roa File: o0midc-s4Gt74-NMtz4sSoz2roY.roa (raw, json) Hash identifier: /dRt+pxD9Oh1iXJiCw7T9H4mKh+yd0QeMMxr7DpJi9U= Subject key identifier: A3:49:A2:75:CF:AC:E0:6B:7B:E3:E3:4C:B7:3E:2C:4A:8C:F6:AE:86 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13F9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/o0midc-s4Gt74-NMtz4sSoz2roY.roa Signing time: Fri 22 Aug 2025 08:59:57 +0000 ROA not before: Fri 22 Aug 2025 08:59:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 210.58.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5113 (0x13f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A349A275CFACE06B7BE3E34CB73E2C4A8CF6AE86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ee:ce:78:ef:e4:92:b3:a3:0d:62:b0:1a:32: 51:cf:d4:7d:8e:de:6d:04:87:fa:9c:86:ee:64:63: 25:6c:f8:96:8b:5a:64:48:d3:61:e8:d3:2e:a1:c0: 0f:9e:83:74:ca:c5:ac:d1:19:9f:16:c8:71:e9:78: 0d:59:16:34:d4:03:cc:da:16:f1:77:5a:f5:70:e0: da:d5:f9:84:44:d0:94:06:34:d9:7d:df:b5:95:02: 39:87:51:33:3d:c5:60:ab:f9:4f:4f:f4:2f:77:4b: c7:0b:14:79:7b:f6:21:4b:41:be:49:f3:37:43:a2: 94:c1:aa:af:6d:ca:2b:fc:3c:59:14:e9:e4:7c:de: 9d:8e:94:60:8a:4b:3e:dd:b3:df:c6:c5:87:67:a7: 52:33:b8:94:f1:d8:55:b7:25:f3:2c:f9:b4:03:65: 9e:9f:3d:e0:d7:6c:e2:8e:32:1e:52:97:12:e3:c6: fd:f6:22:9e:60:bd:8f:5b:fe:f4:cf:80:a5:ac:b6: 54:51:6d:11:80:96:34:f1:a7:cc:92:ab:e4:4e:14: d3:c4:28:6d:81:0e:7f:d5:15:75:43:58:46:0d:12: 3b:96:7f:7b:59:d6:90:71:24:12:03:1d:2e:96:b7: f6:85:38:f3:3e:be:0a:b5:fd:d3:50:ab:9b:f8:0a: e8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:49:A2:75:CF:AC:E0:6B:7B:E3:E3:4C:B7:3E:2C:4A:8C:F6:AE:86 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/o0midc-s4Gt74-NMtz4sSoz2roY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.128.0/19 Signature Algorithm: sha256WithRSAEncryption b2:d9:e4:98:e5:f9:ca:37:36:80:3d:94:59:b2:4d:7a:31:d2: da:74:f6:21:6c:44:d7:b1:f5:54:19:87:ce:ff:a1:a0:50:c5: 83:f4:92:0b:eb:14:78:d6:3a:2e:d1:f0:d9:67:9b:34:ba:fe: d6:95:2b:61:c4:e6:f2:3e:d2:2d:76:8b:33:1a:51:6b:4a:ba: a4:87:48:90:1b:0f:ae:48:d5:39:e0:e6:3a:a1:c2:60:c7:d3: fd:43:24:d9:ab:b6:28:5b:02:a9:2d:8d:80:cf:66:a4:b0:2a: a9:e2:c7:6c:b5:ca:b5:48:bc:73:55:bb:f5:05:3a:12:fc:50: 9a:42:ed:7c:f7:90:8c:c2:ba:97:97:3e:81:9a:2c:09:bd:bb: 31:87:7c:d8:e4:e2:8e:27:3c:40:c9:8d:35:54:1b:0e:28:e0: 00:a1:64:b4:84:7d:91:27:1d:f2:1a:f3:5e:2d:2d:4d:55:c2: fa:4b:c3:22:f5:8b:bf:69:be:ab:26:84:b7:14:90:98:2f:83: c8:61:ef:17:18:4b:5d:22:ff:7e:e6:28:aa:75:b2:7f:56:ad: 64:25:0f:c0:02:a8:4d:cd:cd:42:58:88:65:28:a6:05:de:8e: 00:e8:68:a5:f3:bf:5b:14:00:22:6e:a9:80:2d:86:29:92:67: fa:28:b5:d9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEzNDlBMjc1Q0ZBQ0Uw NkI3QkUzRTM0Q0I3M0UyQzRBOENGNkFFODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCl7s547+SSs6MNYrAaMlHP1H2O3m0Eh/qchu5kYyVs+JaLWmRI 02Ho0y6hwA+eg3TKxazRGZ8WyHHpeA1ZFjTUA8zaFvF3WvVw4NrV+YRE0JQGNNl9 37WVAjmHUTM9xWCr+U9P9C93S8cLFHl79iFLQb5J8zdDopTBqq9tyiv8PFkU6eR8 3p2OlGCKSz7ds9/GxYdnp1IzuJTx2FW3JfMs+bQDZZ6fPeDXbOKOMh5SlxLjxv32 Ip5gvY9b/vTPgKWstlRRbRGAljTxp8ySq+ROFNPEKG2BDn/VFXVDWEYNEjuWf3tZ 1pBxJBIDHS6Wt/aFOPM+vgq1/dNQq5v4Cui5AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUo0midc+s4Gt74+NMtz4sSoz2roYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL28wbWlkYy1zNEd0NzQtTk10ejRzU296 MnJvWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXSOoAwDQYJ KoZIhvcNAQELBQADggEBALLZ5Jjl+co3NoA9lFmyTXox0tp09iFsRNex9VQZh87/ oaBQxYP0kgvrFHjWOi7R8NlnmzS6/taVK2HE5vI+0i12izMaUWtKuqSHSJAbD65I 1Tng5jqhwmDH0/1DJNmrtihbAqktjYDPZqSwKqnix2y1yrVIvHNVu/UFOhL8UJpC 7Xz3kIzCupeXPoGaLAm9uzGHfNjk4o4nPEDJjTVUGw4o4AChZLSEfZEnHfIa814t LU1VwvpLwyL1i79pvqsmhLcUkJgvg8hh7xcYS10i/37mKKp1sn9WrWQlD8ACqE3N zUJYiGUopgXejgDoaKXzv1sUACJuqYAthimSZ/ootdk= -----END CERTIFICATE-----Generated at Sun Aug 24 14:24:04 2025 by rpki-client