$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/oiWOrjc_s8wA30vOx-ydj4RTD0A.roa File: oiWOrjc_s8wA30vOx-ydj4RTD0A.roa (raw, json) Hash identifier: 87pcMcs3rA2Ymj6qibEyGigEB8IJtalcwF7xLdzH8K4= Subject key identifier: A2:25:8E:AE:37:3F:B3:CC:00:DF:4B:CE:C7:EC:9D:8F:84:53:0F:40 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1457 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/oiWOrjc_s8wA30vOx-ydj4RTD0A.roa Signing time: Fri 22 Aug 2025 09:00:18 +0000 ROA not before: Fri 22 Aug 2025 09:00:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 124.218.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5207 (0x1457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A2258EAE373FB3CC00DF4BCEC7EC9D8F84530F40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:97:f3:1c:46:8c:e6:18:d6:77:a7:3c:3b:7c: 91:e6:a0:e4:65:c0:d0:10:09:af:49:9b:ae:9d:ce: ed:b8:28:ea:de:ad:24:f2:38:cc:59:93:ec:59:e6: a3:ca:84:11:3b:d7:17:27:4c:09:ec:74:55:7d:ba: b8:66:06:9b:72:d0:ef:fd:fd:eb:9e:e5:33:c7:15: 93:32:d1:d0:35:c3:a2:08:6f:4d:f6:68:e3:6c:ba: 35:34:a4:08:b5:03:e6:41:80:6e:72:75:66:12:85: 14:0b:7b:bb:e9:e5:c3:2d:eb:54:19:5c:25:42:62: 79:60:a0:4a:66:f2:24:85:65:4a:2b:00:17:69:22: 2e:16:63:c1:50:d1:fc:b3:85:39:fb:27:08:e4:6d: a7:38:f7:7a:bb:e0:35:e6:f2:9e:4c:dc:c0:a4:6a: 2f:b1:0d:5f:7d:46:91:2a:8a:d0:55:9a:eb:77:78: ef:85:59:99:93:9d:0d:cd:c6:8e:6a:a0:27:a1:36: 70:bc:af:67:38:db:b0:84:b4:a5:6f:fd:3a:eb:99: 48:3a:ad:7f:5a:62:89:23:60:eb:cc:8b:fa:d0:b6: 6d:f7:fa:de:b7:ec:df:df:49:e8:30:bb:47:51:e5: 1a:28:1e:52:77:56:0d:9f:1b:d8:c1:71:3c:73:a7: f3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:25:8E:AE:37:3F:B3:CC:00:DF:4B:CE:C7:EC:9D:8F:84:53:0F:40 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/oiWOrjc_s8wA30vOx-ydj4RTD0A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.80.0/20 Signature Algorithm: sha256WithRSAEncryption b0:fe:d9:07:f8:02:be:44:8a:a8:3a:71:68:72:a0:7d:c6:df: 00:30:44:e8:7c:7d:6b:6c:65:0a:3d:ff:8e:7b:39:fc:2c:a4: e3:cc:40:ab:c7:51:ba:f1:c4:36:3c:81:fa:3a:83:a5:3f:76: dd:51:86:e4:fd:12:1f:dd:ae:f5:e4:2f:ca:4d:9b:7b:25:fe: 1f:a0:ab:7f:a2:78:b7:d0:66:cb:e9:4e:b8:c7:8c:bd:58:8b: 4b:95:a1:cc:b6:b5:02:04:b1:0e:10:5b:12:3f:f1:1a:28:3b: 4c:a7:43:f6:f9:41:0a:02:e8:40:fb:84:ad:8d:04:fb:8d:06: 1c:a5:73:d4:81:f9:60:4d:2c:a2:8a:1f:1e:eb:69:13:b0:63: 6c:7c:c6:16:c6:39:ff:32:4b:fc:8e:2e:8e:d6:d0:70:e9:d7: 4b:98:db:8c:ef:35:01:34:80:1f:dc:df:da:c4:b3:15:c0:8e: 6b:7e:49:0c:f5:ba:44:52:bc:00:d0:a6:84:50:fc:eb:cf:96: c8:cb:3f:a9:f7:52:e0:23:da:a3:50:42:b3:ea:69:96:c3:f7: 73:6b:25:6c:bf:e7:e5:11:d0:8a:d0:80:03:10:6a:9f:46:7c: 67:21:88:03:35:23:26:60:65:82:4f:ce:95:e6:27:42:81:05: 01:52:ef:09 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEyMjU4RUFFMzczRkIz Q0MwMERGNEJDRUM3RUM5RDhGODQ1MzBGNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+l/McRozmGNZ3pzw7fJHmoORlwNAQCa9Jm66dzu24KOrerSTy OMxZk+xZ5qPKhBE71xcnTAnsdFV9urhmBpty0O/9/eue5TPHFZMy0dA1w6IIb032 aONsujU0pAi1A+ZBgG5ydWYShRQLe7vp5cMt61QZXCVCYnlgoEpm8iSFZUorABdp Ii4WY8FQ0fyzhTn7Jwjkbac493q74DXm8p5M3MCkai+xDV99RpEqitBVmut3eO+F WZmTnQ3Nxo5qoCehNnC8r2c427CEtKVv/TrrmUg6rX9aYokjYOvMi/rQtm33+t63 7N/fSegwu0dR5RooHlJ3Vg2fG9jBcTxzp/OTAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUoiWOrjc/s8wA30vOx+ydj4RTD0AwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL29pV09yamNfczh3QTMwdk94LXlkajRS VEQwQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR82lAwDQYJ KoZIhvcNAQELBQADggEBALD+2Qf4Ar5Eiqg6cWhyoH3G3wAwROh8fWtsZQo9/457 OfwspOPMQKvHUbrxxDY8gfo6g6U/dt1RhuT9Eh/drvXkL8pNm3sl/h+gq3+ieLfQ ZsvpTrjHjL1Yi0uVocy2tQIEsQ4QWxI/8RooO0ynQ/b5QQoC6ED7hK2NBPuNBhyl c9SB+WBNLKKKHx7raROwY2x8xhbGOf8yS/yOLo7W0HDp10uY24zvNQE0gB/c39rE sxXAjmt+SQz1ukRSvADQpoRQ/OvPlsjLP6n3UuAj2qNQQrPqaZbD93NrJWy/5+UR 0IrQgAMQap9GfGchiAM1IyZgZYJPzpXmJ0KBBQFS7wk= -----END CERTIFICATE-----Generated at Sun Aug 24 13:50:07 2025 by rpki-client