$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/zE6hPvKCLicZUzAz1VY1mOR9e_k.roa File: zE6hPvKCLicZUzAz1VY1mOR9e_k.roa (raw, json) Hash identifier: e8XWeYTRv+3IwKLuOb8CM6yTxzsOPPLbIq1ilWy/VpY= Subject key identifier: CC:4E:A1:3E:F2:82:2E:27:19:53:30:33:D5:56:35:98:E4:7D:7B:F9 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13F5 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/zE6hPvKCLicZUzAz1VY1mOR9e_k.roa Signing time: Fri 22 Aug 2025 08:59:55 +0000 ROA not before: Fri 22 Aug 2025 08:59:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 219.91.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5109 (0x13f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CC4EA13EF2822E2719533033D5563598E47D7BF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:79:76:33:62:6e:8e:52:56:bf:7b:ca:e2:1e: ef:5b:ef:42:34:9e:63:e7:73:66:9b:d9:7a:78:f5: 66:f1:5b:55:ec:c8:80:52:c6:b7:f7:e9:cf:22:ab: 6f:c6:70:92:ae:64:32:82:bc:fa:ec:cd:ce:76:a7: 8e:1e:48:cc:55:45:1c:69:8f:ec:dc:22:ed:96:a8: 41:81:f5:e9:e3:11:dd:8a:0b:43:15:e1:df:e2:d3: 70:8f:a9:18:a7:5f:25:13:82:4e:9b:ce:27:8c:32: b7:a7:42:00:af:4b:fe:3b:78:85:5c:bf:81:85:9a: ee:60:a0:b9:4f:f4:92:5b:00:ba:56:ba:a4:c0:7e: 12:57:b3:94:f3:c7:fe:18:1e:25:6e:f8:6c:49:fe: 88:5f:23:fe:f6:31:55:77:37:bc:05:09:47:f2:b7: b6:bd:79:da:05:58:47:56:96:16:e0:8e:82:fe:67: af:54:08:6f:b5:ac:33:a9:15:41:67:49:12:bf:05: ea:b2:dd:04:6b:fc:02:14:e6:33:6f:7a:39:ea:7d: d2:e1:09:96:75:29:fe:64:89:80:44:28:3c:20:1d: 42:7f:a9:3e:ce:05:91:7a:4d:de:29:6b:01:90:e8: ba:95:bb:c1:cc:17:78:f7:34:c5:24:85:8e:61:1a: d6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:4E:A1:3E:F2:82:2E:27:19:53:30:33:D5:56:35:98:E4:7D:7B:F9 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/zE6hPvKCLicZUzAz1VY1mOR9e_k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.91.68.0/23 Signature Algorithm: sha256WithRSAEncryption 25:81:90:03:f4:2e:90:b3:27:e7:c1:80:28:72:46:ed:a6:b6: b6:5c:62:08:7f:4a:06:41:10:df:bc:fb:5b:8b:01:b1:00:55: 85:73:7b:af:01:10:df:e1:ce:e3:d6:e4:62:74:b1:a3:11:ac: 2b:29:c3:4c:c6:48:d6:0b:eb:96:16:05:fc:eb:46:62:1e:07: f9:c9:e9:d2:f8:92:df:3c:d7:2c:a9:d6:53:d3:0a:97:27:25: c4:6e:a4:26:91:b8:7e:99:2e:1d:1b:84:36:eb:45:de:61:53: ce:b8:a5:f4:3f:90:31:6d:c4:f6:22:eb:06:84:62:ef:ea:db: 78:ba:59:04:7a:c5:72:a2:6f:37:3f:c6:5e:1c:eb:b1:80:1b: b6:93:87:71:e6:e7:8c:60:73:83:5d:82:12:b2:b1:ca:e0:33: 28:11:43:fd:56:d6:77:f4:ed:4f:bd:e8:c7:b7:06:ec:d9:26: 13:58:70:0d:e5:57:e9:cf:6e:fe:4c:e9:1e:05:d5:2a:a5:59: 95:50:da:ea:86:1d:11:46:36:fd:39:b8:5f:0b:22:ba:be:75: b2:b3:0a:2e:f1:68:4f:3b:0f:90:45:6f:4f:d0:bc:d4:40:7c: 53:62:5d:75:69:a2:32:ce:a7:d3:ab:c2:af:0b:98:5a:a1:31: 97:1f:83:e2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENDNEVBMTNFRjI4MjJF MjcxOTUzMzAzM0Q1NTYzNTk4RTQ3RDdCRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBeXYzYm6OUla/e8riHu9b70I0nmPnc2ab2Xp49WbxW1XsyIBS xrf36c8iq2/GcJKuZDKCvPrszc52p44eSMxVRRxpj+zcIu2WqEGB9enjEd2KC0MV 4d/i03CPqRinXyUTgk6bzieMMrenQgCvS/47eIVcv4GFmu5goLlP9JJbALpWuqTA fhJXs5Tzx/4YHiVu+GxJ/ohfI/72MVV3N7wFCUfyt7a9edoFWEdWlhbgjoL+Z69U CG+1rDOpFUFnSRK/Beqy3QRr/AIU5jNvejnqfdLhCZZ1Kf5kiYBEKDwgHUJ/qT7O BZF6Td4pawGQ6LqVu8HMF3j3NMUkhY5hGtbzAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUzE6hPvKCLicZUzAz1VY1mOR9e/kwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3pFNmhQdktDTGljWlV6QXoxVlkxbU9S OWVfay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHbW0QwDQYJ KoZIhvcNAQELBQADggEBACWBkAP0LpCzJ+fBgChyRu2mtrZcYgh/SgZBEN+8+1uL AbEAVYVze68BEN/hzuPW5GJ0saMRrCspw0zGSNYL65YWBfzrRmIeB/nJ6dL4kt88 1yyp1lPTCpcnJcRupCaRuH6ZLh0bhDbrRd5hU864pfQ/kDFtxPYi6waEYu/q23i6 WQR6xXKibzc/xl4c67GAG7aTh3Hm54xgc4NdghKyscrgMygRQ/1W1nf07U+96Me3 BuzZJhNYcA3lV+nPbv5M6R4F1SqlWZVQ2uqGHRFGNv05uF8LIrq+dbKzCi7xaE87 D5BFb0/QvNRAfFNiXXVpojLOp9Orwq8LmFqhMZcfg+I= -----END CERTIFICATE-----Generated at Sun Aug 24 14:16:33 2025 by rpki-client