$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ffQedrZ__zOr9Kh_lmDecV09cVY.roa File: ffQedrZ__zOr9Kh_lmDecV09cVY.roa (raw, json) Hash identifier: lDAZ686aBzLfXPTD0B8tadH4tII2dljEkHzs84KD01U= Subject key identifier: 7D:F4:1E:76:B6:7F:FF:33:AB:F4:A8:7F:96:60:DE:71:5D:3D:71:56 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 07FC Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ffQedrZ__zOr9Kh_lmDecV09cVY.roa Signing time: Fri 22 Aug 2025 08:58:49 +0000 ROA not before: Fri 22 Aug 2025 08:58:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 2401:95c0::/36 maxlen: 36 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 22 08:58:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7DF41E76B67FFF33ABF4A87F9660DE715D3D7156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e9:e5:69:b2:35:1e:61:19:3d:dd:38:cc:f8: 1e:ab:98:f0:94:27:2e:16:f1:9e:36:18:ea:95:65: 2b:71:50:58:21:b0:fa:f4:02:52:c9:25:4b:86:25: d6:e2:23:36:0f:0d:67:ab:98:22:b3:5b:e1:77:b4: f8:a4:2c:be:6a:06:76:06:1b:b0:be:6d:4d:3a:8a: 35:b4:3c:71:53:97:ca:11:d8:4d:f4:ea:b2:c0:7b: 27:a6:d8:ab:ad:b6:1f:e1:c8:8b:2c:56:cb:22:d4: d3:e5:59:ee:0b:7d:c9:f2:de:94:a8:1e:f7:bb:4e: 56:3c:91:43:13:97:81:41:86:ba:b3:7c:a6:8e:f7: fc:95:19:86:00:46:03:c9:2a:68:9e:92:24:4d:bc: 77:12:b8:7f:5a:3b:61:4c:5d:48:f0:6e:b3:55:f9: 30:e6:bf:b1:f5:8e:9b:fb:23:6b:e8:98:56:d1:62: 82:51:1f:c5:b6:b4:ad:da:df:6a:58:34:5f:e3:43: e7:70:fe:fd:d2:6a:00:27:85:fc:76:a9:4d:6b:79: 1f:a4:f7:36:5d:d6:4b:00:cf:7f:94:37:91:11:b8: 2d:7b:fa:9d:a3:e1:36:9a:79:99:d0:d0:fe:5b:cc: 0f:be:63:e7:77:a1:78:86:36:2e:48:de:9e:78:08: 21:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F4:1E:76:B6:7F:FF:33:AB:F4:A8:7F:96:60:DE:71:5D:3D:71:56 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ffQedrZ__zOr9Kh_lmDecV09cVY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:95c0::/36 Signature Algorithm: sha256WithRSAEncryption 87:71:06:d9:3a:aa:71:ad:7f:a7:d2:60:c4:d9:ce:d2:32:83: 3b:07:02:55:de:4b:db:ef:8f:31:39:67:74:52:54:2f:b1:9c: d7:b6:71:9a:5e:61:38:2b:69:ca:8e:5c:42:74:f0:fa:2b:77: 20:c8:f6:8e:76:96:b9:9d:cf:b2:9b:d8:17:0d:62:64:46:5f: 40:be:38:b3:35:1a:47:05:1d:ca:03:c2:93:99:6b:51:c8:82: 1f:8b:ef:a2:27:2b:d3:fe:85:33:47:ce:59:4c:b1:f8:71:55: c3:22:35:a2:df:24:7b:4b:71:76:de:10:ca:44:b7:16:02:c4: 5f:95:aa:92:db:40:4b:ba:94:8a:66:97:84:fd:cc:40:15:13: 93:da:c6:89:54:7b:e9:ea:31:fc:87:58:b5:c5:5d:88:db:e9: fd:98:9d:10:2c:ad:c9:32:ff:4d:48:da:93:53:84:f6:0c:9c: 78:40:d2:c0:77:49:d2:85:63:cc:e6:49:fa:89:fc:2c:5e:5f: 4c:bf:c3:2b:f4:aa:d7:bb:26:78:88:cf:90:e8:15:fc:c9:ca: 0a:60:06:57:67:3f:e6:34:68:d9:d4:3c:ee:e3:19:28:27:e0: e5:56:8b:ad:0c:60:b3:79:cb:6b:76:31:93:1e:87:82:da:38: a4:6e:e1:ca -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA4MjIw ODU4NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdERjQxRTc2QjY3RkZG MzNBQkY0QTg3Rjk2NjBERTcxNUQzRDcxNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI6eVpsjUeYRk93TjM+B6rmPCUJy4W8Z42GOqVZStxUFghsPr0 AlLJJUuGJdbiIzYPDWermCKzW+F3tPikLL5qBnYGG7C+bU06ijW0PHFTl8oR2E30 6rLAeyem2Kutth/hyIssVssi1NPlWe4Lfcny3pSoHve7TlY8kUMTl4FBhrqzfKaO 9/yVGYYARgPJKmiekiRNvHcSuH9aO2FMXUjwbrNV+TDmv7H1jpv7I2vomFbRYoJR H8W2tK3a32pYNF/jQ+dw/v3SagAnhfx2qU1reR+k9zZd1ksAz3+UN5ERuC17+p2j 4TaaeZnQ0P5bzA++Y+d3oXiGNi5I3p54CCFHAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUffQedrZ//zOr9Kh/lmDecV09cVYwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL2ZmUWVkclpfX3pPcjlLaF9s bURlY1YwOWNWWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk AZXAADANBgkqhkiG9w0BAQsFAAOCAQEAh3EG2Tqqca1/p9JgxNnO0jKDOwcCVd5L 2++PMTlndFJUL7Gc17Zxml5hOCtpyo5cQnTw+it3IMj2jnaWuZ3PspvYFw1iZEZf QL44szUaRwUdygPCk5lrUciCH4vvoicr0/6FM0fOWUyx+HFVwyI1ot8ke0txdt4Q ykS3FgLEX5WqkttAS7qUimaXhP3MQBUTk9rGiVR76eox/IdYtcVdiNvp/ZidECyt yTL/TUjak1OE9gyceEDSwHdJ0oVjzOZJ+on8LF5fTL/DK/Sq17smeIjPkOgV/MnK CmAGV2c/5jRo2dQ87uMZKCfg5VaLrQxgs3nLa3Yxkx6Hgto4pG7hyg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:31 2025 by rpki-client