$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/wrl5NeoRcGsoK60HzZTo2UqlBhg.roa File: wrl5NeoRcGsoK60HzZTo2UqlBhg.roa (raw, json) Hash identifier: FCoUgoH3oETK1Bh95M4gxmisEKfDfCuxfsjVRzbFogg= Subject key identifier: C2:B9:79:35:EA:11:70:6B:28:2B:AD:07:CD:94:E8:D9:4A:A5:06:18 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0E11 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/wrl5NeoRcGsoK60HzZTo2UqlBhg.roa Signing time: Fri 22 Aug 2025 08:54:23 +0000 ROA not before: Fri 22 Aug 2025 08:54:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4782 IP address blocks: 124.199.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3601 (0xe11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Aug 22 08:54:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C2B97935EA11706B282BAD07CD94E8D94AA50618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6a:00:61:cf:75:bd:2b:ca:e7:c4:1f:77:50: 4b:2f:1a:ea:ce:6c:0f:ca:7d:57:c9:4e:4c:b0:44: db:87:90:c7:ac:4e:25:4b:98:54:ea:c6:9b:6e:df: 45:24:66:ef:18:bf:c2:fb:8b:81:a3:5b:c4:34:b9: 4f:02:f5:f3:05:f2:46:c3:be:fe:43:99:4f:79:2b: 52:5f:b4:3a:85:f5:e8:cf:d9:fb:28:f1:cb:37:02: d6:bb:c6:6a:cc:1d:ec:68:1a:6e:49:93:db:12:44: 5c:a8:72:26:65:27:ec:66:7f:c3:6b:77:66:5f:9e: 32:62:ab:59:48:c3:42:d5:31:c5:d5:c9:a9:b6:61: 47:ff:9b:8e:c3:19:95:50:70:e9:a3:d8:67:62:90: ab:a3:17:f2:ce:ec:1c:eb:fd:f9:f9:10:d3:a2:88: 01:24:ce:0b:89:c7:9b:6f:b6:e2:5f:98:c5:23:e3: e9:80:4c:78:62:a0:11:29:69:1e:5c:16:ed:30:9f: c0:01:a0:56:31:ae:ae:0a:7d:ae:55:0a:a5:53:31: 9d:b1:8b:37:a6:f7:94:0e:61:02:78:b3:5d:44:f3: 67:5b:39:11:09:7e:31:b3:4a:a6:53:df:aa:29:27: 2d:8c:71:2d:2c:bb:76:20:ef:72:2f:85:73:7e:2e: c1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B9:79:35:EA:11:70:6B:28:2B:AD:07:CD:94:E8:D9:4A:A5:06:18 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/wrl5NeoRcGsoK60HzZTo2UqlBhg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.199.96.0/20 Signature Algorithm: sha256WithRSAEncryption 30:31:cf:33:aa:a1:78:65:44:85:46:f1:bc:ce:22:77:52:af: 77:60:7a:c5:43:8c:e3:2b:12:98:be:4b:c7:81:f0:75:57:f8: 79:38:06:ed:33:63:2e:0d:60:47:14:23:00:4f:a1:fb:f5:b2: 7f:ec:b6:7d:ff:34:c3:61:b2:79:e4:64:1d:89:49:ed:34:88: 3d:34:7d:2a:c5:de:56:a0:4b:24:03:b1:35:22:8d:13:72:4e: e7:53:f0:28:7f:1d:a0:80:fd:9f:88:b9:14:f0:7d:5c:6d:2d: 2d:4a:46:6f:46:0b:75:19:45:e0:dd:dd:08:e2:33:30:fa:04: 3e:61:08:5f:b3:1a:7e:7d:ec:80:d6:f5:00:e6:14:50:1b:85: 05:2d:68:4b:d3:00:27:09:a7:f3:04:17:6c:97:82:ef:9c:72: 20:e5:4f:e9:af:6f:44:75:63:47:ab:ea:01:fe:2d:1f:66:4f: 7f:f9:98:99:5a:28:0b:97:75:6e:2c:29:48:00:b6:c3:f9:b9: 0c:3d:21:95:c1:f1:1a:01:4f:ff:34:31:58:6d:6f:0e:23:f6: e6:a7:84:36:34:1f:b7:96:08:92:6e:0e:63:8f:2a:bb:70:20: 95:90:04:9b:2a:64:c5:d3:58:b5:0c:3b:a5:4a:80:07:08:4a: 1d:83:25:c9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDhEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTA4MjIw ODU0MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMyQjk3OTM1RUExMTcw NkIyODJCQUQwN0NEOTRFOEQ5NEFBNTA2MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFagBhz3W9K8rnxB93UEsvGurObA/KfVfJTkywRNuHkMesTiVL mFTqxptu30UkZu8Yv8L7i4GjW8Q0uU8C9fMF8kbDvv5DmU95K1JftDqF9ejP2fso 8cs3Ata7xmrMHexoGm5Jk9sSRFyociZlJ+xmf8Nrd2ZfnjJiq1lIw0LVMcXVyam2 YUf/m47DGZVQcOmj2GdikKujF/LO7Bzr/fn5ENOiiAEkzguJx5tvtuJfmMUj4+mA THhioBEpaR5cFu0wn8ABoFYxrq4Kfa5VCqVTMZ2xizem95QOYQJ4s11E82dbOREJ fjGzSqZT36opJy2McS0su3Yg73IvhXN+LsHtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUwrl5NeoRcGsoK60HzZTo2UqlBhgwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL3dybDVOZW9SY0dzb0s2MEh6WlRvMlVx bEJoZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR8x2AwDQYJ KoZIhvcNAQELBQADggEBADAxzzOqoXhlRIVG8bzOIndSr3dgesVDjOMrEpi+S8eB 8HVX+Hk4Bu0zYy4NYEcUIwBPofv1sn/stn3/NMNhsnnkZB2JSe00iD00fSrF3lag SyQDsTUijRNyTudT8Ch/HaCA/Z+IuRTwfVxtLS1KRm9GC3UZReDd3QjiMzD6BD5h CF+zGn597IDW9QDmFFAbhQUtaEvTACcJp/MEF2yXgu+cciDlT+mvb0R1Y0er6gH+ LR9mT3/5mJlaKAuXdW4sKUgAtsP5uQw9IZXB8RoBT/80MVhtbw4j9uanhDY0H7eW CJJuDmOPKrtwIJWQBJsqZMXTWLUMO6VKgAcISh2DJck= -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:16 2025 by rpki-client