$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/yjfpuXVsORas_e4zw2iTHMb9q8o.roa File: yjfpuXVsORas_e4zw2iTHMb9q8o.roa (raw, json) Hash identifier: mINi9dcXLAZcub8RllSL+4uXX9rsZhpci+w881omafA= Subject key identifier: CA:37:E9:B9:75:6C:39:16:AC:FD:EE:33:C3:68:93:1C:C6:FD:AB:CA Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1434 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yjfpuXVsORas_e4zw2iTHMb9q8o.roa Signing time: Fri 22 Aug 2025 09:00:10 +0000 ROA not before: Fri 22 Aug 2025 09:00:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 210.200.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5172 (0x1434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CA37E9B9756C3916ACFDEE33C368931CC6FDABCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0e:68:88:c2:20:6a:f9:be:37:61:56:e2:e3: 63:aa:8a:b1:0b:6c:66:26:e6:fc:6f:92:85:f0:95: b9:34:2b:80:58:f0:8f:51:7b:09:d7:e8:17:3f:f9: bd:f1:4e:ec:c1:61:44:07:69:2d:1b:df:64:6c:8e: 42:fa:52:37:2c:70:17:0f:12:54:55:47:61:c6:61: 65:8f:22:c8:2e:ba:b1:39:b6:9d:97:6a:c8:e4:74: 96:83:6f:cf:8c:1e:3b:eb:db:68:84:3a:e3:79:fc: 1b:1b:9e:b0:69:80:d4:eb:14:6b:18:75:e7:ed:70: 46:7b:e4:fb:ae:ed:ec:18:12:52:4c:36:dd:d6:4a: 07:21:6a:d8:09:2c:88:68:b1:b7:ec:ed:bc:94:26: 9c:63:d9:df:a6:b4:16:b6:fb:70:73:83:23:61:ef: a9:78:30:93:b8:19:36:8c:1b:0f:ad:e9:72:c1:55: 79:b2:b4:d5:2c:91:fe:76:85:5f:2a:3f:ae:1d:22: 2f:6f:94:e4:b7:fa:bf:8e:c9:6c:60:c5:37:8f:89: 3f:26:a5:bc:c6:16:c7:9f:55:82:04:f3:e9:fb:2f: c2:ce:2a:9d:26:af:d4:7c:f1:9f:36:a4:c2:2e:c4: 89:c9:d7:68:8f:ec:51:b2:00:59:8c:2a:86:e7:64: f7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:37:E9:B9:75:6C:39:16:AC:FD:EE:33:C3:68:93:1C:C6:FD:AB:CA X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yjfpuXVsORas_e4zw2iTHMb9q8o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.148.0/22 Signature Algorithm: sha256WithRSAEncryption 21:c0:af:a7:45:68:94:15:85:36:da:52:e7:97:fd:46:3a:c8: bd:55:36:52:38:c3:78:10:78:2b:8c:ae:15:0e:18:86:f9:25: da:c2:8a:88:23:89:2d:a8:39:75:c4:86:71:26:41:03:c0:eb: da:3d:8f:46:02:19:ab:0b:14:4d:a7:0f:7d:4f:c4:21:99:19: 22:5e:ec:74:c9:0b:93:d0:cd:17:30:92:7e:aa:02:b0:03:93: 78:35:a4:85:57:32:87:03:49:76:8b:96:9c:d9:70:04:29:c1: 0a:27:64:b3:5d:eb:39:17:d0:33:3a:eb:53:6d:02:85:da:64: 33:7e:51:22:cb:df:91:9e:14:67:38:df:fe:84:de:33:5e:f5: 29:b6:6e:ef:7c:4b:9c:ef:97:43:ea:2a:de:e1:81:02:6b:00: ce:3f:27:22:a8:56:b3:c5:e5:b3:b7:02:6c:de:19:0a:83:8a: e4:f1:00:8b:95:f9:0e:09:10:f7:56:ea:07:51:6c:af:5e:21: df:c1:71:71:e7:03:76:54:fa:ca:3e:e2:11:cc:3e:19:2d:ab: 5f:ec:bc:58:2f:c2:f4:a8:e6:9d:82:bb:a8:08:57:63:6b:66: 6f:72:26:3c:29:e8:cf:60:74:46:79:e8:5b:95:bc:26:c4:97: a0:bd:c3:fc -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFDQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENBMzdFOUI5NzU2QzM5 MTZBQ0ZERUUzM0MzNjg5MzFDQzZGREFCQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfDmiIwiBq+b43YVbi42OqirELbGYm5vxvkoXwlbk0K4BY8I9R ewnX6Bc/+b3xTuzBYUQHaS0b32RsjkL6UjcscBcPElRVR2HGYWWPIsguurE5tp2X asjkdJaDb8+MHjvr22iEOuN5/BsbnrBpgNTrFGsYdeftcEZ75Puu7ewYElJMNt3W SgchatgJLIhosbfs7byUJpxj2d+mtBa2+3BzgyNh76l4MJO4GTaMGw+t6XLBVXmy tNUskf52hV8qP64dIi9vlOS3+r+OyWxgxTePiT8mpbzGFsefVYIE8+n7L8LOKp0m r9R88Z82pMIuxInJ12iP7FGyAFmMKobnZPdrAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUyjfpuXVsORas/e4zw2iTHMb9q8owHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3lqZnB1WFZzT1Jhc19lNHp3MmlUSE1i OXE4by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALSyJQwDQYJ KoZIhvcNAQELBQADggEBACHAr6dFaJQVhTbaUueX/UY6yL1VNlI4w3gQeCuMrhUO GIb5JdrCiogjiS2oOXXEhnEmQQPA69o9j0YCGasLFE2nD31PxCGZGSJe7HTJC5PQ zRcwkn6qArADk3g1pIVXMocDSXaLlpzZcAQpwQonZLNd6zkX0DM661NtAoXaZDN+ USLL35GeFGc43/6E3jNe9Sm2bu98S5zvl0PqKt7hgQJrAM4/JyKoVrPF5bO3Amze GQqDiuTxAIuV+Q4JEPdW6gdRbK9eId/BcXHnA3ZU+so+4hHMPhktq1/svFgvwvSo 5p2Cu6gIV2NrZm9yJjwp6M9gdEZ56FuVvCbEl6C9w/w= -----END CERTIFICATE-----Generated at Sun Aug 24 14:14:39 2025 by rpki-client