$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/wI3WM2X80PWZBkh8BX1eBjdV5f0.roa File: wI3WM2X80PWZBkh8BX1eBjdV5f0.roa (raw, json) Hash identifier: WVYRrIOyx3rpiULvb09qFeBQd1ywUujKKatjPdnoP4Q= Subject key identifier: C0:8D:D6:33:65:FC:D0:F5:99:06:48:7C:05:7D:5E:06:37:55:E5:FD Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13B5 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wI3WM2X80PWZBkh8BX1eBjdV5f0.roa Signing time: Fri 22 Aug 2025 08:59:37 +0000 ROA not before: Fri 22 Aug 2025 08:59:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 210.201.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5045 (0x13b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C08DD63365FCD0F59906487C057D5E063755E5FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a3:16:98:53:0b:4b:12:cd:4b:95:5a:e9:ae: 1b:ea:03:85:cf:0e:46:06:0e:2f:81:1d:f8:a0:82: 53:f6:9d:01:47:d3:d9:28:f9:74:7f:bc:2f:7b:82: 7c:57:76:03:be:88:6e:cd:39:6c:b3:53:ea:84:5d: f9:d3:ea:00:b2:7e:23:cc:62:cc:4e:31:8b:ed:85: 4f:99:c3:13:f0:0d:b8:03:48:63:0a:f1:19:38:e7: ed:1b:59:b9:2d:8f:1c:f2:d4:08:29:ea:ec:ae:33: ef:f9:09:b1:46:65:90:bc:e5:aa:42:69:bb:3a:07: b3:b1:f4:af:53:d5:6e:7d:81:87:79:a8:3a:22:b0: 3b:84:a8:9c:bd:3f:41:5b:e0:eb:02:9d:d9:c1:91: 6c:d4:c4:31:e7:26:6e:4e:82:56:b6:e1:58:63:40: d6:fb:42:cd:aa:58:e0:11:65:54:71:c7:62:a1:5b: 4e:42:ab:90:c6:71:99:d2:40:4e:ee:2d:6e:12:4b: e2:6e:4c:a5:de:1d:8e:b6:91:54:9d:7d:ba:72:21: 3c:3a:41:1f:f8:08:1d:24:6c:8a:6b:30:ed:de:74: 70:9e:e6:f1:e2:65:ab:26:d4:07:51:27:59:b5:12: dd:59:32:b6:c8:3a:16:66:fc:4a:8a:2e:af:0c:36: fa:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:8D:D6:33:65:FC:D0:F5:99:06:48:7C:05:7D:5E:06:37:55:E5:FD X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wI3WM2X80PWZBkh8BX1eBjdV5f0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.192.0/18 Signature Algorithm: sha256WithRSAEncryption 80:b4:17:34:8a:87:38:fa:0b:e5:a9:83:d1:e6:61:06:33:b3: 5a:53:e5:a7:c8:76:14:ed:d4:31:82:a2:6f:2c:35:e9:d6:34: da:68:49:e0:2e:ca:01:ca:fc:ba:c2:a1:7a:08:a0:b2:1b:93: b8:4c:1c:65:9c:16:e4:9c:09:91:d0:aa:08:99:65:18:4b:60: 03:e3:5e:61:4d:d1:47:33:df:1b:66:e5:35:6f:6a:f2:d5:80: e5:de:ba:24:2f:c6:02:84:a2:bf:ec:84:f1:20:f4:ba:b7:34: 1b:fd:a4:dd:db:4c:66:bc:ed:0e:e1:56:04:47:b8:86:e5:14: 77:5f:4f:80:3f:b5:fc:08:1e:9e:d9:42:8a:1d:32:05:94:75: a1:9d:05:04:fa:1e:9e:bb:15:87:0c:1c:c3:f7:ad:c5:0d:9f: 15:94:8e:4b:e9:18:71:1c:c9:56:99:8d:14:ca:2b:0e:97:02: 04:82:8f:03:01:6c:e3:15:aa:c0:d3:9c:64:8d:57:a6:b1:9d: 48:b4:58:be:3b:ba:41:aa:05:d9:ba:87:fd:3a:2f:18:be:f8: 17:66:a6:b3:4f:12:08:3f:69:70:86:73:34:e2:f4:68:76:8b: f7:df:e2:f1:c2:22:f8:ac:d0:04:14:fa:31:ea:97:5d:aa:30: 77:96:63:1f -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE7UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMwOERENjMzNjVGQ0Qw RjU5OTA2NDg3QzA1N0Q1RTA2Mzc1NUU1RkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeoxaYUwtLEs1LlVrprhvqA4XPDkYGDi+BHfigglP2nQFH09ko +XR/vC97gnxXdgO+iG7NOWyzU+qEXfnT6gCyfiPMYsxOMYvthU+ZwxPwDbgDSGMK 8Rk45+0bWbktjxzy1Agp6uyuM+/5CbFGZZC85apCabs6B7Ox9K9T1W59gYd5qDoi sDuEqJy9P0Fb4OsCndnBkWzUxDHnJm5Ogla24VhjQNb7Qs2qWOARZVRxx2KhW05C q5DGcZnSQE7uLW4SS+JuTKXeHY62kVSdfbpyITw6QR/4CB0kbIprMO3edHCe5vHi Zasm1AdRJ1m1Et1ZMrbIOhZm/EqKLq8MNvrfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUwI3WM2X80PWZBkh8BX1eBjdV5f0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3dJM1dNMlg4MFBXWkJraDhCWDFlQmpk VjVmMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSycAwDQYJ KoZIhvcNAQELBQADggEBAIC0FzSKhzj6C+Wpg9HmYQYzs1pT5afIdhTt1DGCom8s NenWNNpoSeAuygHK/LrCoXoIoLIbk7hMHGWcFuScCZHQqgiZZRhLYAPjXmFN0Ucz 3xtm5TVvavLVgOXeuiQvxgKEor/shPEg9Lq3NBv9pN3bTGa87Q7hVgRHuIblFHdf T4A/tfwIHp7ZQoodMgWUdaGdBQT6Hp67FYcMHMP3rcUNnxWUjkvpGHEcyVaZjRTK Kw6XAgSCjwMBbOMVqsDTnGSNV6axnUi0WL47ukGqBdm6h/06Lxi++BdmprNPEgg/ aXCGczTi9Gh2i/ff4vHCIvis0AQU+jHql12qMHeWYx8= -----END CERTIFICATE-----Generated at Sun Aug 24 14:17:20 2025 by rpki-client