$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/tNkKkO9jjoeH85Lz-VF6TFa-HFA.roa File: tNkKkO9jjoeH85Lz-VF6TFa-HFA.roa (raw, json) Hash identifier: rcLtIgfB9tzN7Q5O2v0XjqG4T+q9ALZNzpu2zc4mHis= Subject key identifier: B4:D9:0A:90:EF:63:8E:87:87:F3:92:F3:F9:51:7A:4C:56:BE:1C:50 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13FE Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tNkKkO9jjoeH85Lz-VF6TFa-HFA.roa Signing time: Fri 22 Aug 2025 08:59:58 +0000 ROA not before: Fri 22 Aug 2025 08:59:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18412 IP address blocks: 2401:e180:8800::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5118 (0x13fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B4D90A90EF638E8787F392F3F9517A4C56BE1C50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9b:de:90:4c:e9:e0:18:6d:e2:90:1f:3b:2b: a8:82:64:49:7f:c8:b1:d1:ce:5b:41:00:75:c8:af: 9b:4c:bd:30:37:b7:c6:14:4b:0d:3f:d3:4b:46:33: a7:76:ed:eb:8a:5f:d7:54:f4:bb:43:93:84:e5:f6: 47:44:a6:8f:b5:46:7c:f2:2f:ac:eb:12:41:73:9b: 50:db:e4:44:31:a6:35:45:50:29:19:3d:d7:32:71: 31:9a:96:37:16:d3:73:11:a4:60:c5:7d:84:74:55: 2f:ed:38:9b:3b:dd:37:a8:3f:8a:88:36:9b:35:4c: c9:20:4f:8e:d3:af:f9:5f:ca:7f:df:4e:93:8d:f4: 2e:c0:88:15:9d:c4:d0:7e:32:39:eb:04:e1:1e:5d: 78:58:1f:23:26:52:44:42:c1:80:3d:4a:87:cd:e4: d5:79:c8:a6:d8:ed:63:59:c8:f6:9e:d7:d1:06:9b: 4a:67:e9:6d:66:c5:8f:02:fb:cf:4d:1a:80:f9:ba: 63:3f:75:7b:b1:c0:3f:eb:86:55:9e:93:32:ac:07: bb:2e:0b:35:bd:85:50:c7:cc:bc:70:82:34:9c:9b: c8:16:95:40:42:4b:43:46:3c:99:5e:d3:42:74:25: 2d:fb:38:e8:27:9f:58:25:dd:0f:20:44:6f:ec:16: 89:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D9:0A:90:EF:63:8E:87:87:F3:92:F3:F9:51:7A:4C:56:BE:1C:50 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tNkKkO9jjoeH85Lz-VF6TFa-HFA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180:8800::/44 Signature Algorithm: sha256WithRSAEncryption 3d:10:ef:9e:59:c4:97:14:e8:7f:5a:21:4f:46:1d:65:6e:a8: 2c:b3:84:a6:fc:ed:1d:2a:17:a0:40:ae:94:5f:98:d7:c8:35: 7d:30:c1:e5:13:7e:fc:13:ec:74:5a:28:d8:73:d6:23:ee:34: 1c:a3:57:77:06:49:f0:26:1d:90:4f:b9:61:e8:cc:49:90:5c: 31:2e:46:25:4a:8c:84:3a:f1:d1:76:1e:28:9a:40:f0:e5:14: a0:85:52:4c:04:f3:9a:b7:03:b4:e2:86:61:b7:83:fd:e4:a5: 38:fe:3d:67:13:5b:02:77:85:f6:2d:1d:ee:1a:16:7c:ff:9e: 59:ca:b4:d7:c8:25:79:8e:d9:f2:d4:cd:c9:cc:c9:69:c8:5f: 4e:d4:e2:32:d3:d6:fc:af:28:49:e1:95:8b:72:73:82:88:c2: cc:0f:8e:59:2c:98:77:d8:7e:61:93:ce:15:3c:2e:69:1e:0b: 70:3e:bb:a5:4a:bb:3f:9b:7b:1f:60:3f:08:60:39:81:e1:1e: 9d:ab:98:54:9e:a2:5a:1a:cb:17:2c:c2:39:8a:d5:4d:e1:73: 0e:fe:56:df:43:95:55:50:18:9b:0a:c9:7e:aa:06:c4:bd:7f: 58:f4:8f:8d:5a:3a:06:3b:b7:a7:ce:83:19:8c:69:7c:82:63: 83:ab:99:fc -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICE/4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI0RDkwQTkwRUY2MzhF ODc4N0YzOTJGM0Y5NTE3QTRDNTZCRTFDNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFm96QTOngGG3ikB87K6iCZEl/yLHRzltBAHXIr5tMvTA3t8YU Sw0/00tGM6d27euKX9dU9LtDk4Tl9kdEpo+1RnzyL6zrEkFzm1Db5EQxpjVFUCkZ PdcycTGaljcW03MRpGDFfYR0VS/tOJs73TeoP4qINps1TMkgT47Tr/lfyn/fTpON 9C7AiBWdxNB+MjnrBOEeXXhYHyMmUkRCwYA9SofN5NV5yKbY7WNZyPae19EGm0pn 6W1mxY8C+89NGoD5umM/dXuxwD/rhlWekzKsB7suCzW9hVDHzLxwgjScm8gWlUBC S0NGPJle00J0JS37OOgnn1gl3Q8gRG/sFolJAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUtNkKkO9jjoeH85Lz+VF6TFa+HFAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3ROa0trTzlqam9lSDg1THotVkY2VEZh LUhGQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAiAAw DQYJKoZIhvcNAQELBQADggEBAD0Q755ZxJcU6H9aIU9GHWVuqCyzhKb87R0qF6BA rpRfmNfINX0wweUTfvwT7HRaKNhz1iPuNByjV3cGSfAmHZBPuWHozEmQXDEuRiVK jIQ68dF2HiiaQPDlFKCFUkwE85q3A7TihmG3g/3kpTj+PWcTWwJ3hfYtHe4aFnz/ nlnKtNfIJXmO2fLUzcnMyWnIX07U4jLT1vyvKEnhlYtyc4KIwswPjlksmHfYfmGT zhU8LmkeC3A+u6VKuz+bex9gPwhgOYHhHp2rmFSeoloayxcswjmK1U3hcw7+Vt9D lVVQGJsKyX6qBsS9f1j0j41aOgY7t6fOgxmMaXyCY4Ormfw= -----END CERTIFICATE-----Generated at Sun Aug 24 14:21:41 2025 by rpki-client