$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/r0dCIeZFjvaAjV8skSyEFPzGK7g.roa File: r0dCIeZFjvaAjV8skSyEFPzGK7g.roa (raw, json) Hash identifier: PWF4cocGFssG0ZK1B0cw9yxyC+OeZ0gZxVrZ6mU6AYg= Subject key identifier: AF:47:42:21:E6:45:8E:F6:80:8D:5F:2C:91:2C:84:14:FC:C6:2B:B8 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13BC Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/r0dCIeZFjvaAjV8skSyEFPzGK7g.roa Signing time: Fri 22 Aug 2025 08:59:39 +0000 ROA not before: Fri 22 Aug 2025 08:59:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7539 IP address blocks: 210.200.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5052 (0x13bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AF474221E6458EF6808D5F2C912C8414FCC62BB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fb:e8:44:08:61:4c:e0:fe:7f:1a:bb:ab:3b: f4:06:cb:16:63:f9:98:ad:31:77:8c:ff:34:34:ae: 80:d9:26:94:2a:ab:4c:00:01:01:6d:32:18:ae:65: 20:3e:2f:ed:9b:d7:f9:24:aa:2c:3c:26:d9:5a:8a: 73:e4:af:d3:38:d9:ef:43:08:88:bd:fc:ce:3b:dd: 33:5a:20:d3:3d:4a:7f:a2:61:a5:a1:2f:9c:d6:17: df:74:6a:05:ea:39:62:1a:5c:20:29:de:e0:15:f8: b9:99:7c:e0:23:74:eb:c6:24:4d:42:2f:e2:70:96: ef:eb:76:dc:6f:c0:29:a9:3a:18:10:11:55:ed:2d: 0b:0f:8a:91:6c:64:cf:0e:d4:94:26:58:63:d4:e9: 56:9c:6e:18:9f:f6:ca:0d:11:82:a2:06:74:51:dd: c5:2b:c5:18:57:df:5b:10:ac:72:66:00:57:b4:c1: ea:1a:52:60:b7:56:50:6d:7d:98:62:3b:ef:25:dc: e6:b6:32:7e:ed:c3:57:d7:30:4f:48:0a:aa:da:22: 1a:0d:db:79:9b:13:eb:2b:02:0f:ca:90:3b:c5:d5: dd:50:71:bc:a9:e9:3d:f9:c0:63:bb:09:0d:94:a4: 72:9b:b0:c1:63:0c:1c:33:55:6a:c2:3d:4c:c6:12: b8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:47:42:21:E6:45:8E:F6:80:8D:5F:2C:91:2C:84:14:FC:C6:2B:B8 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/r0dCIeZFjvaAjV8skSyEFPzGK7g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.32.0/20 Signature Algorithm: sha256WithRSAEncryption 24:6e:7a:27:ef:cb:8d:da:83:fe:f3:54:c6:22:17:2f:66:81: e4:b6:0d:47:40:a4:c9:77:c2:55:ad:bc:ab:76:c7:51:e3:79: 8d:40:f3:46:1a:18:ff:39:6e:f2:62:59:99:04:df:c5:99:c6: 45:9c:8a:52:1f:12:d9:d1:c1:c9:c1:5f:0c:62:87:4b:50:1a: 98:27:0e:84:54:c7:34:90:1a:70:03:3c:47:f0:60:d6:f2:e7: af:9a:4a:5e:f3:2d:4d:58:b5:04:27:6b:d7:2b:13:86:ed:d1: 75:74:d6:9b:df:70:91:b6:60:85:4a:7c:b3:a9:97:35:14:ac: 05:dc:b3:cd:bd:c1:91:91:6b:2d:db:d9:9b:be:3f:3f:e4:c9: c2:46:e2:2b:f1:d4:c5:a8:03:28:1e:3a:0e:38:d5:56:de:ae: f2:14:10:77:e2:4e:61:75:16:97:28:95:e8:ef:46:28:7f:96: e1:56:68:9f:dd:4d:16:cd:3f:68:af:f3:ef:6c:fb:2e:d1:31: 5e:98:c4:ff:10:1f:55:10:77:82:a5:81:89:92:dc:65:7b:e1: f7:93:49:a0:d2:eb:64:f4:de:28:9c:57:a5:b8:e9:8c:ca:5a: 3d:e5:5d:f7:bc:9f:6e:c8:07:48:46:69:9e:60:94:74:46:cc: 73:4a:73:59 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE7wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFGNDc0MjIxRTY0NThF RjY4MDhENUYyQzkxMkM4NDE0RkNDNjJCQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCa++hECGFM4P5/GrurO/QGyxZj+ZitMXeM/zQ0roDZJpQqq0wA AQFtMhiuZSA+L+2b1/kkqiw8JtlainPkr9M42e9DCIi9/M473TNaINM9Sn+iYaWh L5zWF990agXqOWIaXCAp3uAV+LmZfOAjdOvGJE1CL+Jwlu/rdtxvwCmpOhgQEVXt LQsPipFsZM8O1JQmWGPU6Vacbhif9soNEYKiBnRR3cUrxRhX31sQrHJmAFe0weoa UmC3VlBtfZhiO+8l3Oa2Mn7tw1fXME9ICqraIhoN23mbE+srAg/KkDvF1d1Qcbyp 6T35wGO7CQ2UpHKbsMFjDBwzVWrCPUzGErgVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUr0dCIeZFjvaAjV8skSyEFPzGK7gwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3IwZENJZVpGanZhQWpWOHNrU3lFRlB6 R0s3Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATSyCAwDQYJ KoZIhvcNAQELBQADggEBACRueifvy43ag/7zVMYiFy9mgeS2DUdApMl3wlWtvKt2 x1HjeY1A80YaGP85bvJiWZkE38WZxkWcilIfEtnRwcnBXwxih0tQGpgnDoRUxzSQ GnADPEfwYNby56+aSl7zLU1YtQQna9crE4bt0XV01pvfcJG2YIVKfLOplzUUrAXc s829wZGRay3b2Zu+Pz/kycJG4ivx1MWoAygeOg441VbervIUEHfiTmF1Fpcolejv Rih/luFWaJ/dTRbNP2iv8+9s+y7RMV6YxP8QH1UQd4KlgYmS3GV74feTSaDS62T0 3iicV6W46YzKWj3lXfe8n27IB0hGaZ5glHRGzHNKc1k= -----END CERTIFICATE-----Generated at Sun Aug 24 14:05:21 2025 by rpki-client