$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/w0F-RtfcEvacog1NaTPiwxaA6fU.roa File: w0F-RtfcEvacog1NaTPiwxaA6fU.roa (raw, json) Hash identifier: wK6sERlxahb9nNy3ZcU7U/1Lwm3W5av2acMVh9vctLA= Subject key identifier: C3:41:7E:46:D7:DC:12:F6:9C:A2:0D:4D:69:33:E2:C3:16:80:E9:F5 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13D8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/w0F-RtfcEvacog1NaTPiwxaA6fU.roa Signing time: Fri 22 Aug 2025 08:59:48 +0000 ROA not before: Fri 22 Aug 2025 08:59:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 210.201.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5080 (0x13d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C3417E46D7DC12F69CA20D4D6933E2C31680E9F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:05:1c:0f:ae:66:66:f3:6a:30:75:0f:f3:51: 7e:2c:f2:5a:bd:50:83:1a:80:52:05:7f:22:b3:cc: 76:3f:4c:1f:1f:07:ca:b7:13:32:ca:9e:27:b9:3a: 1f:c0:06:b3:fd:5f:d0:0f:65:1f:fe:d7:48:0c:2c: 9a:ce:ba:30:2a:1e:d8:ec:9d:7a:8f:eb:b7:1e:aa: e1:37:5a:34:e5:90:74:18:a5:f7:13:23:2e:a6:4a: 2b:65:5e:a6:26:28:fb:0d:07:bd:4b:2a:9d:50:de: fe:a5:55:37:94:fe:9d:89:82:da:b8:24:a6:b3:55: ba:29:1c:83:a8:1d:2c:42:74:43:61:f9:3a:05:9f: f7:8f:92:ca:70:6c:1e:48:51:6a:98:ea:37:11:48: 72:db:10:ab:4a:03:8d:78:68:18:93:5b:a0:b3:50: 9b:dd:16:18:3a:35:59:12:47:7e:e7:33:7e:0e:83: b7:4e:4c:ef:bb:14:9f:79:ea:8a:06:91:4c:b9:e6: 2f:00:39:35:10:7e:21:a8:5c:38:e7:9d:89:25:f4: fd:98:0e:28:95:20:ee:87:2c:91:01:87:8f:01:21: 06:10:d5:10:cd:c9:b9:3d:df:de:38:c7:8f:73:84: 98:af:4e:69:11:4e:a4:3b:6a:6c:c9:7a:3e:43:6a: 63:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:41:7E:46:D7:DC:12:F6:9C:A2:0D:4D:69:33:E2:C3:16:80:E9:F5 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/w0F-RtfcEvacog1NaTPiwxaA6fU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.0.0/18 Signature Algorithm: sha256WithRSAEncryption 25:99:3d:68:52:a3:44:5d:ef:c0:01:dc:d5:31:b2:66:09:c8: b1:cf:25:23:8d:f4:8d:2c:b7:04:2b:bd:55:a6:04:9a:0a:9a: 2f:65:49:25:71:f1:7a:be:7d:56:5b:b2:9a:1e:a0:ee:88:1c: 3e:53:17:8f:79:7f:f4:0f:80:87:c7:4e:fa:16:4d:d8:28:4f: da:9a:f8:db:fe:19:09:3a:5b:aa:a3:72:bd:b2:49:9c:aa:9f: dc:f5:b7:04:30:1a:7b:d2:b9:4d:19:ed:4d:9e:42:d0:4f:84: a9:1a:83:03:3a:c2:fb:94:1f:00:2e:7a:7d:a2:a7:ab:8d:37: 95:c7:af:56:3c:83:63:77:a5:98:0e:02:7f:4d:96:e8:15:41: ff:25:7c:ad:a2:9e:98:1d:95:93:ca:eb:ad:b7:7b:f5:bd:83: ef:ee:90:c0:60:b8:3a:e3:c0:0f:b1:40:02:ad:b2:af:d4:47: 74:bf:c4:bb:c3:bc:0c:7e:2c:49:31:1b:63:98:dc:26:60:c0: 34:48:a1:c4:0a:d8:f0:de:60:81:21:9e:4a:b7:32:e1:db:59: 58:26:0d:07:a4:32:73:08:96:d5:5c:65:21:fb:3e:ad:94:08: 5c:2e:7a:c0:bf:67:a6:02:54:b7:0c:44:df:14:80:17:7a:bd: a5:1b:c4:2e -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMzNDE3RTQ2RDdEQzEy RjY5Q0EyMEQ0RDY5MzNFMkMzMTY4MEU5RjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPBRwPrmZm82owdQ/zUX4s8lq9UIMagFIFfyKzzHY/TB8fB8q3 EzLKnie5Oh/ABrP9X9APZR/+10gMLJrOujAqHtjsnXqP67cequE3WjTlkHQYpfcT Iy6mSitlXqYmKPsNB71LKp1Q3v6lVTeU/p2Jgtq4JKazVbopHIOoHSxCdENh+ToF n/ePkspwbB5IUWqY6jcRSHLbEKtKA414aBiTW6CzUJvdFhg6NVkSR37nM34Og7dO TO+7FJ956ooGkUy55i8AOTUQfiGoXDjnnYkl9P2YDiiVIO6HLJEBh48BIQYQ1RDN ybk93944x49zhJivTmkRTqQ7amzJej5DamNDAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUw0F+RtfcEvacog1NaTPiwxaA6fUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3cwRi1SdGZjRXZhY29nMU5hVFBpd3hh QTZmVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyQAwDQYJ KoZIhvcNAQELBQADggEBACWZPWhSo0Rd78AB3NUxsmYJyLHPJSON9I0stwQrvVWm BJoKmi9lSSVx8Xq+fVZbspoeoO6IHD5TF495f/QPgIfHTvoWTdgoT9qa+Nv+GQk6 W6qjcr2ySZyqn9z1twQwGnvSuU0Z7U2eQtBPhKkagwM6wvuUHwAuen2ip6uNN5XH r1Y8g2N3pZgOAn9NlugVQf8lfK2inpgdlZPK6623e/W9g+/ukMBguDrjwA+xQAKt sq/UR3S/xLvDvAx+LEkxG2OY3CZgwDRIocQK2PDeYIEhnkq3MuHbWVgmDQekMnMI ltVcZSH7Pq2UCFwuesC/Z6YCVLcMRN8UgBd6vaUbxC4= -----END CERTIFICATE-----Generated at Sun Aug 24 14:21:05 2025 by rpki-client