$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/xN1LYiWEZ_ULeeE_W-yGkZEwqE8.roa File: xN1LYiWEZ_ULeeE_W-yGkZEwqE8.roa (raw, json) Hash identifier: JmnYPkxIRWrVS8C9ot8XL87lKTNEphD58Eb653ISTD8= Subject key identifier: C4:DD:4B:62:25:84:67:F5:0B:79:E1:3F:5B:EC:86:91:91:30:A8:4F Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13B7 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xN1LYiWEZ_ULeeE_W-yGkZEwqE8.roa Signing time: Fri 22 Aug 2025 08:59:38 +0000 ROA not before: Fri 22 Aug 2025 08:59:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24154 IP address blocks: 210.63.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5047 (0x13b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C4DD4B62258467F50B79E13F5BEC86919130A84F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4d:cc:cb:21:ff:37:1b:9d:a3:3f:29:41:aa: 7b:02:49:46:c2:0a:f8:16:16:81:83:b3:7b:d8:d7: b3:ff:3a:fd:78:f9:a5:20:a1:6f:01:89:d1:53:c4: fc:af:6f:6b:bc:56:13:c7:10:fc:70:18:0e:52:c9: 3c:85:30:08:a8:7c:02:ad:3b:72:09:f4:05:cf:8e: 7c:22:64:80:d4:44:83:cb:11:85:26:7a:fc:09:0e: f7:95:5a:64:b5:13:2a:92:81:03:f5:26:25:0c:f0: 4f:62:46:ef:54:6e:6a:a8:1c:c1:de:a6:65:16:59: 29:d7:67:14:47:3f:6b:ac:33:19:b9:19:d5:99:a2: 38:c5:a0:8c:da:9e:b3:69:f9:25:27:0e:1f:5b:93: ad:e4:8d:b1:f7:8c:6f:9d:f5:08:4f:22:5d:ef:1c: 9d:ba:da:ae:49:1c:cc:98:bb:f5:0c:cc:a2:e7:e3: 22:f9:99:37:db:5e:db:dc:d6:2a:9b:ec:42:9a:74: 31:37:f7:ab:ff:d0:2c:22:4e:d6:e4:c6:1b:ff:4a: 62:bc:39:60:f1:ab:fc:00:6c:3c:48:05:33:88:11: 66:0f:1a:83:27:af:f9:e7:dc:d4:71:91:92:be:6c: 70:2f:22:f7:ad:cf:9e:b0:d4:dc:2b:9e:47:8f:31: 3c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:DD:4B:62:25:84:67:F5:0B:79:E1:3F:5B:EC:86:91:91:30:A8:4F X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xN1LYiWEZ_ULeeE_W-yGkZEwqE8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.192.0/21 Signature Algorithm: sha256WithRSAEncryption 94:9f:07:95:ac:e9:a9:79:c9:80:e2:d5:c1:d9:1d:7d:20:09: 37:2b:d1:df:e8:5e:f1:82:f9:6a:c9:cb:85:4e:2e:62:e2:ac: 43:d0:c6:58:27:68:99:4d:c6:24:f1:d2:9a:27:3e:39:01:4b: 50:8f:5c:88:a5:32:65:49:70:9d:c2:37:28:ce:b3:1b:a1:3f: 1e:41:77:24:7a:7a:7f:e8:5f:7a:61:a4:0d:53:b2:27:eb:d4: dd:40:34:71:09:43:70:1d:7a:16:4d:1c:03:80:ba:b7:e0:ef: ec:02:62:4b:4f:15:6a:95:85:d2:8d:08:ec:fc:08:89:4c:a0: 4b:9a:4d:c5:a0:2d:80:79:f9:87:a8:4e:06:99:97:70:cd:52: 79:f3:22:b2:09:7b:18:b8:70:77:59:cd:cf:de:f5:f9:3e:74: 2c:8e:43:cf:d8:56:d8:0b:ec:50:79:4d:9f:22:1e:2e:d0:4b: ad:bf:e7:10:34:f0:66:66:77:7c:5b:b6:aa:e6:e7:f6:0d:6f: e6:b2:a1:e4:73:d9:cf:9c:bf:da:30:51:3b:bc:19:0e:2c:fe: f3:93:be:59:41:2e:9d:e3:89:6a:8c:4c:0b:99:ef:e5:9b:a3: 10:eb:d1:ef:5a:29:db:65:1a:9d:d7:35:33:63:87:d9:2d:3a: 95:8f:03:37 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE7cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM0REQ0QjYyMjU4NDY3 RjUwQjc5RTEzRjVCRUM4NjkxOTEzMEE4NEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6TczLIf83G52jPylBqnsCSUbCCvgWFoGDs3vY17P/Ov14+aUg oW8BidFTxPyvb2u8VhPHEPxwGA5SyTyFMAiofAKtO3IJ9AXPjnwiZIDURIPLEYUm evwJDveVWmS1EyqSgQP1JiUM8E9iRu9UbmqoHMHepmUWWSnXZxRHP2usMxm5GdWZ ojjFoIzanrNp+SUnDh9bk63kjbH3jG+d9QhPIl3vHJ262q5JHMyYu/UMzKLn4yL5 mTfbXtvc1iqb7EKadDE396v/0CwiTtbkxhv/SmK8OWDxq/wAbDxIBTOIEWYPGoMn r/nn3NRxkZK+bHAvIvetz56w1NwrnkePMTyFAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUxN1LYiWEZ/ULeeE/W+yGkZEwqE8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3hOMUxZaVdFWl9VTGVlRV9XLXlHa1pF d3FFOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSP8AwDQYJ KoZIhvcNAQELBQADggEBAJSfB5Ws6al5yYDi1cHZHX0gCTcr0d/oXvGC+WrJy4VO LmLirEPQxlgnaJlNxiTx0ponPjkBS1CPXIilMmVJcJ3CNyjOsxuhPx5BdyR6en/o X3phpA1Tsifr1N1ANHEJQ3AdehZNHAOAurfg7+wCYktPFWqVhdKNCOz8CIlMoEua TcWgLYB5+YeoTgaZl3DNUnnzIrIJexi4cHdZzc/e9fk+dCyOQ8/YVtgL7FB5TZ8i Hi7QS62/5xA08GZmd3xbtqrm5/YNb+ayoeRz2c+cv9owUTu8GQ4s/vOTvllBLp3j iWqMTAuZ7+WboxDr0e9aKdtlGp3XNTNjh9ktOpWPAzc= -----END CERTIFICATE-----Generated at Sun Aug 24 14:24:45 2025 by rpki-client