$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FUYU/Ys7rKLEYD2kOpySnI_yjbmngYfM.roa File: Ys7rKLEYD2kOpySnI_yjbmngYfM.roa (raw, json) Hash identifier: 2CYqCzOww661PaV9o8IXzL7BcmuTUdIBHAbsIb3GJRc= Subject key identifier: 62:CE:EB:28:B1:18:0F:69:0E:A7:24:A7:23:FC:A3:6E:69:E0:61:F3 Certificate issuer: /CN=6B3C09A6D48E6F4E1760EDD8942C436D0A196387 Certificate serial: 01ED Authority key identifier: 6B:3C:09:A6:D4:8E:6F:4E:17:60:ED:D8:94:2C:43:6D:0A:19:63:87 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/azwJptSOb04XYO3YlCxDbQoZY4c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/Ys7rKLEYD2kOpySnI_yjbmngYfM.roa Signing time: Sat 20 Sep 2025 03:00:51 +0000 ROA not before: Sat 20 Sep 2025 03:00:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63906 IP address blocks: 2401:81a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/azwJptSOb04XYO3YlCxDbQoZY4c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/azwJptSOb04XYO3YlCxDbQoZY4c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/azwJptSOb04XYO3YlCxDbQoZY4c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 12:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B3C09A6D48E6F4E1760EDD8942C436D0A196387 Validity Not Before: Sep 20 03:00:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=62CEEB28B1180F690EA724A723FCA36E69E061F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:17:55:2f:8a:9a:aa:d4:71:1e:17:a3:ec:84: 29:7c:59:82:ee:50:ac:44:2f:ef:6a:3b:5a:e8:d3: 6a:e2:44:d7:60:4a:4c:d6:1c:4f:8e:11:5a:83:5c: 39:c6:a7:f2:ad:6b:44:dd:d4:39:8c:14:c9:ca:81: b4:f7:f2:bc:5d:66:c0:91:4f:6c:91:eb:b6:be:0b: bd:49:e0:9d:01:51:97:f7:41:67:cf:e3:c0:10:68: 6f:95:e3:b7:29:e9:9d:0f:43:83:e1:5f:8d:ce:9e: ce:34:2c:c4:a2:df:23:e7:f1:56:05:a4:43:3e:e2: ea:6d:a6:ae:83:4e:fa:c2:3a:e7:bb:ba:50:d0:bb: f8:75:7f:d4:5a:8e:b0:a9:96:c5:a6:8c:f1:6a:a2: 4c:6d:49:dd:d9:68:8b:c6:f7:10:d9:14:0d:91:34: b1:ee:17:c9:85:84:68:ca:e9:dd:76:39:1b:e6:c7: a3:5a:2d:dc:fb:41:16:a1:f9:fd:94:65:fd:da:82: 61:ba:06:a0:22:22:f7:8c:48:4c:05:f5:85:88:34: 93:7e:23:15:50:ae:ca:4a:8b:14:48:a1:93:ae:72: 8c:b2:3d:ef:b3:b8:fb:d1:f5:42:71:a6:f3:35:97: 97:d6:7a:e0:ff:ba:8b:b0:23:35:dd:52:a1:5b:fc: 47:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CE:EB:28:B1:18:0F:69:0E:A7:24:A7:23:FC:A3:6E:69:E0:61:F3 X509v3 Authority Key Identifier: keyid:6B:3C:09:A6:D4:8E:6F:4E:17:60:ED:D8:94:2C:43:6D:0A:19:63:87 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/azwJptSOb04XYO3YlCxDbQoZY4c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/azwJptSOb04XYO3YlCxDbQoZY4c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/Ys7rKLEYD2kOpySnI_yjbmngYfM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:81a0::/32 Signature Algorithm: sha256WithRSAEncryption 48:4e:d3:c4:27:46:cf:50:ea:04:55:ad:5a:af:14:c7:2a:f6: a2:db:5c:73:32:10:92:2f:33:59:92:1f:9a:52:cd:82:49:f4: ab:ed:d3:54:46:51:c4:a5:64:6b:ed:82:b4:1f:1a:bd:d4:9c: 55:8f:ac:7e:e5:94:fe:f8:d1:55:ca:a5:6d:ba:15:01:e5:82: d0:ea:fa:e5:a9:8d:35:a1:4c:7e:d8:64:c1:21:75:1e:c8:7e: 29:fb:83:15:26:21:78:5c:85:b2:c9:e2:d8:53:14:ba:f1:08: b9:c3:24:7c:8e:74:3e:74:c3:85:46:24:e9:9f:62:4b:d1:35: c6:e0:59:93:98:d4:cb:9b:35:f1:3e:cb:7d:7c:9e:0c:59:1a: 92:2d:12:d9:d4:07:39:28:e1:22:f1:64:08:f7:d4:3e:23:c8: 23:09:a6:0d:64:11:e9:10:5f:b3:27:5b:8c:33:67:71:bc:fc: 56:e8:93:a3:bb:4a:c2:2a:bb:2d:0c:da:3c:96:ca:b5:50:3e: 4a:9d:8f:68:ec:72:2a:75:b3:a4:cb:d7:98:6b:3c:a3:ac:3c: ff:ab:37:16:a1:9d:99:27:7e:70:3c:65:fb:57:00:f8:e9:43: aa:9e:9b:6b:72:26:2c:52:da:c6:4f:7e:a4:73:62:f1:93:dd: 56:ae:5d:77 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkIz QzA5QTZENDhFNkY0RTE3NjBFREQ4OTQyQzQzNkQwQTE5NjM4NzAeFw0yNTA5MjAw MzAwNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYyQ0VFQjI4QjExODBG NjkwRUE3MjRBNzIzRkNBMzZFNjlFMDYxRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxF1Uvipqq1HEeF6PshCl8WYLuUKxEL+9qO1ro02riRNdgSkzW HE+OEVqDXDnGp/Kta0Td1DmMFMnKgbT38rxdZsCRT2yR67a+C71J4J0BUZf3QWfP 48AQaG+V47cp6Z0PQ4PhX43Ons40LMSi3yPn8VYFpEM+4uptpq6DTvrCOue7ulDQ u/h1f9RajrCplsWmjPFqokxtSd3ZaIvG9xDZFA2RNLHuF8mFhGjK6d12ORvmx6Na Ldz7QRah+f2UZf3agmG6BqAiIveMSEwF9YWINJN+IxVQrspKixRIoZOucoyyPe+z uPvR9UJxpvM1l5fWeuD/uouwIzXdUqFb/EfjAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUYs7rKLEYD2kOpySnI/yjbmngYfMwHwYDVR0jBBgwFoAUazwJptSOb04XYO3Y lCxDbQoZY4cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRlVZVS9h endKcHRTT2IwNFhZTzNZbEN4RGJRb1pZNGMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2F6d0pwdFNPYjA0WFlPM1lsQ3hEYlFvWlk0Yy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZVWVUvWXM3cktMRVlEMmtPcHlTbklfeWpi bW5nWWZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBgaAw DQYJKoZIhvcNAQELBQADggEBAEhO08QnRs9Q6gRVrVqvFMcq9qLbXHMyEJIvM1mS H5pSzYJJ9Kvt01RGUcSlZGvtgrQfGr3UnFWPrH7llP740VXKpW26FQHlgtDq+uWp jTWhTH7YZMEhdR7Ifin7gxUmIXhchbLJ4thTFLrxCLnDJHyOdD50w4VGJOmfYkvR NcbgWZOY1MubNfE+y318ngxZGpItEtnUBzko4SLxZAj31D4jyCMJpg1kEekQX7Mn W4wzZ3G8/Fbok6O7SsIquy0M2jyWyrVQPkqdj2jscip1s6TL15hrPKOsPP+rNxah nZknfnA8ZftXAPjpQ6qem2tyJixS2sZPfqRzYvGT3VauXXc= -----END CERTIFICATE-----Generated at Tue Oct 21 10:14:35 2025 by rpki-client