$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/_rC_1l5JHdkqSn4SWRIHD6kGLKc.roa File: _rC_1l5JHdkqSn4SWRIHD6kGLKc.roa (raw, json) Hash identifier: BsAqwx31Dieib+joB/F+6gNym1Gib2RnD2xqCYseG0k= Subject key identifier: FE:B0:BF:D6:5E:49:1D:D9:2A:4A:7E:12:59:12:07:0F:A9:06:2C:A7 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0E10 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/_rC_1l5JHdkqSn4SWRIHD6kGLKc.roa Signing time: Fri 22 Aug 2025 08:54:23 +0000 ROA not before: Fri 22 Aug 2025 08:54:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4782 IP address blocks: 163.29.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3600 (0xe10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Aug 22 08:54:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FEB0BFD65E491DD92A4A7E125912070FA9062CA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:29:41:bb:38:3d:67:8d:ae:e7:8e:97:b6:23: 43:22:1a:18:41:74:e8:a3:15:f3:fd:38:a9:bd:56: 4d:7a:9f:39:11:55:41:0e:8b:11:5e:e6:82:0f:17: e8:ca:79:2e:d0:9a:69:65:8c:f2:f3:16:46:c5:28: 40:fa:3d:ac:42:3c:02:25:ea:5f:38:5c:d4:e2:71: 85:b5:6d:0f:51:7a:cd:9b:dd:0a:58:dc:8f:a5:49: c8:93:94:11:26:19:11:1f:94:71:69:b1:76:ee:a4: 7a:84:28:cc:7e:c0:74:10:03:d2:6c:37:4a:59:2d: 71:0c:0f:4d:23:c0:9e:db:1a:5d:47:8b:e9:72:51: 2b:da:64:b3:35:3b:05:03:6e:17:35:c1:c2:4c:df: 36:ba:7a:f1:81:f6:71:a0:12:6b:7b:3f:8f:21:92: b2:5f:d8:7d:f7:08:34:27:f4:b8:c6:fb:f3:da:e5: 34:7f:c8:42:a7:ff:26:98:0c:58:e2:12:21:4b:1d: 4f:42:8b:2b:d6:0b:8a:38:ad:84:71:2c:db:47:5f: 09:9d:ba:71:5e:35:4e:77:4f:c0:ec:01:5c:d7:9c: a3:5f:a5:8e:90:5f:aa:67:b4:13:c1:3f:4e:a8:25: 84:28:4e:a9:21:18:e8:32:51:04:60:a8:4f:e8:2b: ed:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B0:BF:D6:5E:49:1D:D9:2A:4A:7E:12:59:12:07:0F:A9:06:2C:A7 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/_rC_1l5JHdkqSn4SWRIHD6kGLKc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.29.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7f:5c:c5:7e:2c:af:ea:9c:e6:b1:20:93:8d:96:d7:22:0b:4f: 7a:d4:ad:2b:0c:d7:eb:67:8b:5f:b8:8c:20:25:18:17:76:8e: a3:aa:34:e9:31:fe:38:b5:8e:b5:ff:c6:93:67:22:ac:ef:98: 9a:33:80:9a:38:b9:7b:d5:47:b4:c2:08:92:16:c0:91:82:89: 9b:b8:ff:00:18:47:e9:27:f8:ea:62:4c:d7:71:b6:ff:d0:d5: 18:3a:83:d3:0d:27:df:3e:6d:75:93:c3:b7:b4:10:a1:f0:b7: 6d:5a:38:7b:63:91:4e:87:11:46:08:de:45:ee:90:e4:6d:28: 09:0e:b3:55:ec:3f:ba:66:fd:9a:c7:45:1b:69:1a:50:ec:3f: 28:75:0d:3e:11:69:d5:5a:de:4b:0a:b1:76:5a:07:cc:74:ff: 8b:8b:2c:a2:e4:c9:47:fb:34:66:75:1f:bf:33:55:5b:a8:82: 3b:f2:3d:7a:ab:35:ff:ce:b4:00:26:fe:37:a6:3f:82:17:df: c2:d7:51:1f:c1:ff:3e:6b:e4:30:61:2c:e0:de:54:08:51:6b: 22:b5:6d:df:8b:10:46:0a:f2:54:67:c0:30:a4:c2:6f:db:65: 81:e0:1f:75:ac:09:bf:71:d8:61:4a:b7:1b:3c:ba:03:dd:db: d1:11:db:b6 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTA4MjIw ODU0MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZFQjBCRkQ2NUU0OTFE RDkyQTRBN0UxMjU5MTIwNzBGQTkwNjJDQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaKUG7OD1nja7njpe2I0MiGhhBdOijFfP9OKm9Vk16nzkRVUEO ixFe5oIPF+jKeS7QmmlljPLzFkbFKED6PaxCPAIl6l84XNTicYW1bQ9Res2b3QpY 3I+lSciTlBEmGREflHFpsXbupHqEKMx+wHQQA9JsN0pZLXEMD00jwJ7bGl1Hi+ly USvaZLM1OwUDbhc1wcJM3za6evGB9nGgEmt7P48hkrJf2H33CDQn9LjG+/Pa5TR/ yEKn/yaYDFjiEiFLHU9CiyvWC4o4rYRxLNtHXwmdunFeNU53T8DsAVzXnKNfpY6Q X6pntBPBP06oJYQoTqkhGOgyUQRgqE/oK+2lAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU/rC/1l5JHdkqSn4SWRIHD6kGLKcwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL19yQ18xbDVKSGRrcVNuNFNXUklIRDZr R0xLYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwCjHTANBgkq hkiG9w0BAQsFAAOCAQEAf1zFfiyv6pzmsSCTjZbXIgtPetStKwzX62eLX7iMICUY F3aOo6o06TH+OLWOtf/Gk2cirO+YmjOAmji5e9VHtMIIkhbAkYKJm7j/ABhH6Sf4 6mJM13G2/9DVGDqD0w0n3z5tdZPDt7QQofC3bVo4e2ORTocRRgjeRe6Q5G0oCQ6z Vew/umb9msdFG2kaUOw/KHUNPhFp1VreSwqxdloHzHT/i4ssouTJR/s0ZnUfvzNV W6iCO/I9eqs1/860ACb+N6Y/ghffwtdRH8H/PmvkMGEs4N5UCFFrIrVt34sQRgry VGfAMKTCb9tlgeAfdawJv3HYYUq3Gzy6A93b0RHbtg== -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:52 2025 by rpki-client