$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/Oxn3IEuc0SEQKlqJN5GlC-LZwws.roa File: Oxn3IEuc0SEQKlqJN5GlC-LZwws.roa (raw, json) Hash identifier: uYCn12YEDdIRLfm7DXBdOel+4CMgmyN+ldhslznxGKc= Subject key identifier: 3B:19:F7:20:4B:9C:D1:21:10:2A:5A:89:37:91:A5:0B:E2:D9:C3:0B Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0E14 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Oxn3IEuc0SEQKlqJN5GlC-LZwws.roa Signing time: Fri 22 Aug 2025 08:54:24 +0000 ROA not before: Fri 22 Aug 2025 08:54:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4782 IP address blocks: 124.199.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3604 (0xe14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Aug 22 08:54:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3B19F7204B9CD121102A5A893791A50BE2D9C30B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3a:b4:81:92:23:9a:f8:ac:bb:b5:64:a3:5b: 12:8a:e2:eb:00:5e:8f:84:a4:ee:4a:0d:5d:bc:70: 1a:f4:1a:1c:96:95:47:a7:59:18:31:a1:78:9d:17: a7:f3:02:d0:4e:5c:6e:82:e5:19:24:3c:e1:0b:1d: f7:5e:5d:50:cb:36:27:ab:28:46:d1:96:79:0b:a2: 0c:e4:44:d3:0b:ce:fe:dc:bf:96:0a:81:6f:6c:b2: 00:26:19:e8:48:cc:02:ce:86:35:11:ed:b5:5e:18: a5:00:ff:a3:24:ef:da:0e:33:14:31:a5:2f:38:ee: 44:52:9d:42:bf:73:99:46:90:79:4a:47:71:1e:8e: 3f:5d:9b:60:40:91:ec:8a:c0:26:44:b4:bd:ac:42: 66:06:0d:62:a7:35:bd:cb:b6:c3:bb:44:86:0e:e7: c9:7e:ff:88:8f:10:ce:54:22:93:de:ff:88:e0:63: 06:1a:8a:9e:68:27:6a:f0:85:c5:1b:1b:ba:d1:dd: 87:42:3d:5a:ca:0d:e6:01:5a:db:a6:12:0c:10:c7: 9a:41:d5:40:55:b0:cc:c9:89:3a:24:b9:df:3d:be: cf:12:f8:3c:c6:c3:90:7c:36:66:bb:6e:15:16:34: 8a:17:0b:8f:c6:61:af:1c:3b:5b:9a:84:71:8c:94: ec:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:19:F7:20:4B:9C:D1:21:10:2A:5A:89:37:91:A5:0B:E2:D9:C3:0B X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Oxn3IEuc0SEQKlqJN5GlC-LZwws.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.199.64.0/19 Signature Algorithm: sha256WithRSAEncryption b6:81:7d:b5:07:5a:91:5d:fb:0e:e1:ff:82:a8:6d:44:e6:06: bd:bc:63:cc:8e:35:84:5c:1c:53:b2:ec:94:23:85:e7:0f:97: 6d:de:81:1a:31:9c:8a:73:71:27:d4:eb:82:9f:8b:c4:97:46: da:92:41:62:23:97:d7:04:49:ff:ed:21:de:27:68:c3:9f:6d: dd:39:59:8c:49:5a:fc:6c:8b:47:b4:9b:d1:e0:15:6f:2a:df: e1:56:96:8b:fc:dd:ad:2a:29:30:7e:a2:83:70:10:2f:99:40: 1f:6e:dd:45:92:b9:2b:31:e3:49:1a:0c:92:9a:41:ff:c6:a5: 1c:82:5c:01:71:4b:b9:ea:5c:0e:ae:65:da:b9:0d:35:0b:6a: a9:7f:60:e6:a4:6b:18:a5:cd:b3:cb:ed:31:db:e2:45:33:ce: 6a:a8:06:63:f9:66:b9:69:a6:8c:f3:75:d5:f6:da:e2:3b:4a: d7:c9:52:0e:96:52:6f:40:fd:09:27:62:0b:f7:ab:99:38:9a: 84:b6:99:42:c0:c8:d1:b7:35:7a:f4:60:03:ea:3f:f1:9f:93: f8:83:65:39:ee:7e:b1:82:ee:0d:01:3f:39:3e:cb:41:24:c2: fa:f7:80:4f:c6:12:34:80:5f:c9:d0:5b:cf:1b:db:4f:ce:6e: 26:b3:06:c9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDhQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTA4MjIw ODU0MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNCMTlGNzIwNEI5Q0Qx MjExMDJBNUE4OTM3OTFBNTBCRTJEOUMzMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0OrSBkiOa+Ky7tWSjWxKK4usAXo+EpO5KDV28cBr0GhyWlUen WRgxoXidF6fzAtBOXG6C5RkkPOELHfdeXVDLNierKEbRlnkLogzkRNMLzv7cv5YK gW9ssgAmGehIzALOhjUR7bVeGKUA/6Mk79oOMxQxpS847kRSnUK/c5lGkHlKR3Ee jj9dm2BAkeyKwCZEtL2sQmYGDWKnNb3LtsO7RIYO58l+/4iPEM5UIpPe/4jgYwYa ip5oJ2rwhcUbG7rR3YdCPVrKDeYBWtumEgwQx5pB1UBVsMzJiTokud89vs8S+DzG w5B8Nma7bhUWNIoXC4/GYa8cO1uahHGMlOy1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUOxn3IEuc0SEQKlqJN5GlC+LZwwswHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL094bjNJRXVjMFNFUUtscUpONUdsQy1M Wnd3cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8x0AwDQYJ KoZIhvcNAQELBQADggEBALaBfbUHWpFd+w7h/4KobUTmBr28Y8yONYRcHFOy7JQj hecPl23egRoxnIpzcSfU64Kfi8SXRtqSQWIjl9cESf/tId4naMOfbd05WYxJWvxs i0e0m9HgFW8q3+FWlov83a0qKTB+ooNwEC+ZQB9u3UWSuSsx40kaDJKaQf/GpRyC XAFxS7nqXA6uZdq5DTULaql/YOakaxilzbPL7THb4kUzzmqoBmP5ZrlppozzddX2 2uI7StfJUg6WUm9A/QknYgv3q5k4moS2mULAyNG3NXr0YAPqP/Gfk/iDZTnufrGC 7g0BPzk+y0Ekwvr3gE/GEjSAX8nQW88b20/ObiazBsk= -----END CERTIFICATE-----Generated at Sun Aug 24 07:25:27 2025 by rpki-client