$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/mFCKX647egMWRjaSvIGqI0RqwmY.roa File: mFCKX647egMWRjaSvIGqI0RqwmY.roa (raw, json) Hash identifier: hMiNbN8dpsTFf0y6Sui0mAW/IPUCVmEzv25ZNPcIEWA= Subject key identifier: 98:50:8A:5F:AE:3B:7A:03:16:46:36:92:BC:81:AA:23:44:6A:C2:66 Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908 Certificate serial: 0AF3 Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/mFCKX647egMWRjaSvIGqI0RqwmY.roa Signing time: Fri 22 Aug 2025 08:48:59 +0000 ROA not before: Fri 22 Aug 2025 08:48:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131666 IP address blocks: 2405:6440::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2803 (0xaf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908 Validity Not Before: Aug 22 08:48:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=98508A5FAE3B7A0316463692BC81AA23446AC266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:81:55:9c:ff:d8:5e:e2:97:86:0c:91:65:95: 99:62:72:95:db:b0:72:a0:19:55:8a:85:ee:ab:a2: 64:29:c5:1d:d7:6d:34:e9:5e:16:9c:25:3e:e8:0d: b6:e3:37:40:d9:d8:5b:ae:3c:37:76:f7:ab:80:e8: 72:27:90:63:a9:b5:97:b8:be:7a:f3:19:3f:cd:be: 6c:59:7b:a1:ca:e7:36:6b:60:52:68:91:32:49:3a: fa:98:fb:48:82:09:f0:f6:65:c6:0f:a8:21:59:cb: eb:f7:0b:36:2e:a7:24:10:6f:2b:bf:6c:18:40:c4: a1:72:27:f6:2b:ed:0f:a3:52:7f:f8:a7:b9:74:fd: 0a:17:6a:13:ff:fc:84:64:b2:5c:51:54:0f:dc:84: 82:36:73:1b:8c:aa:68:c5:63:82:70:ba:39:14:02: 03:37:b9:18:07:c9:19:76:cc:0f:1c:3f:40:4d:ab: 30:7f:2c:49:65:f4:d8:d0:92:40:30:af:a4:04:f6: 81:c4:ef:35:de:83:6f:6f:60:76:f3:f4:69:6c:c4: d0:f1:0e:9f:28:7d:db:e4:5c:dd:ed:73:a8:dd:51: 38:19:90:10:77:b8:d5:26:55:8c:75:4c:be:98:93: 0c:91:5e:fd:e6:34:6d:35:4f:2c:4c:f3:f3:59:6e: 05:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:50:8A:5F:AE:3B:7A:03:16:46:36:92:BC:81:AA:23:44:6A:C2:66 X509v3 Authority Key Identifier: keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/mFCKX647egMWRjaSvIGqI0RqwmY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:6440::/32 Signature Algorithm: sha256WithRSAEncryption 2a:89:9f:c3:a1:e2:16:44:d7:d4:cf:4b:00:48:4c:01:b3:a6: fd:67:3b:8d:99:3d:cb:ed:dc:f0:b8:e3:b2:72:33:01:2d:9e: 51:f9:4d:00:fa:ec:9d:18:d3:c6:29:c5:b9:f4:22:70:09:c7: 92:b9:e9:58:69:3b:13:bd:64:e1:80:60:1e:c9:1b:a1:14:6c: 5f:3c:fe:f6:d6:56:55:8e:16:87:ed:44:86:5d:c5:bf:03:58: 40:82:ec:fb:d0:a4:3f:93:ef:26:28:97:76:91:83:64:70:92: 7d:69:bd:31:c7:1b:c4:76:93:21:ed:a1:e1:b1:7f:57:51:22: 4f:01:b1:4c:32:93:21:00:79:20:99:38:7d:6c:c6:14:8e:ef: 6c:bf:09:d0:0e:38:27:cd:6c:68:17:21:76:20:f6:31:66:62: 4f:e1:2e:3d:14:b6:0a:34:14:31:70:98:5d:ad:2b:9b:1a:2d: b7:33:94:f2:ad:5f:13:ab:9c:fd:c3:e1:c8:0a:6e:27:0e:ef: 29:79:eb:08:4e:ac:da:83:a8:11:9e:d2:de:9b:dd:e6:74:e5: 5d:be:3d:0c:c5:97:de:2b:a9:32:99:1f:f2:b6:58:18:7d:7a: 63:31:9c:10:ae:e2:c1:35:8b:9d:22:15:1a:db:c1:23:ca:6f: ee:0a:9a:07 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICCvMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMz RDVCRjc5QjQ1QzczMEVEMTQxQ0I1MzlBNTA4RDAxQUEzMDkwODAeFw0yNTA4MjIw ODQ4NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk4NTA4QTVGQUUzQjdB MDMxNjQ2MzY5MkJDODFBQTIzNDQ2QUMyNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdgVWc/9he4peGDJFllZlicpXbsHKgGVWKhe6romQpxR3XbTTp XhacJT7oDbbjN0DZ2FuuPDd296uA6HInkGOptZe4vnrzGT/NvmxZe6HK5zZrYFJo kTJJOvqY+0iCCfD2ZcYPqCFZy+v3CzYupyQQbyu/bBhAxKFyJ/Yr7Q+jUn/4p7l0 /QoXahP//IRkslxRVA/chII2cxuMqmjFY4JwujkUAgM3uRgHyRl2zA8cP0BNqzB/ LEll9NjQkkAwr6QE9oHE7zXeg29vYHbz9GlsxNDxDp8ofdvkXN3tc6jdUTgZkBB3 uNUmVYx1TL6YkwyRXv3mNG01TyxM8/NZbgULAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUmFCKX647egMWRjaSvIGqI0RqwmYwHwYDVR0jBBgwFoAUgz1b95tFxzDtFBy1 OaUI0BqjCQgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL2d6 MWI5NXRGeHpEdEZCeTFPYVVJMEJxakNRZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Z3oxYjk1dEZ4ekR0RkJ5MU9hVUkwQnFqQ1FnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL21GQ0tYNjQ3ZWdNV1JqYVN2SUdxSTBS cXdtWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBWRAMA0G CSqGSIb3DQEBCwUAA4IBAQAqiZ/DoeIWRNfUz0sASEwBs6b9ZzuNmT3L7dzwuOOy cjMBLZ5R+U0A+uydGNPGKcW59CJwCceSuelYaTsTvWThgGAeyRuhFGxfPP721lZV jhaH7USGXcW/A1hAguz70KQ/k+8mKJd2kYNkcJJ9ab0xxxvEdpMh7aHhsX9XUSJP AbFMMpMhAHkgmTh9bMYUju9svwnQDjgnzWxoFyF2IPYxZmJP4S49FLYKNBQxcJhd rSubGi23M5TyrV8Tq5z9w+HICm4nDu8peesITqzag6gRntLem93mdOVdvj0MxZfe K6kymR/ytlgYfXpjMZwQruLBNYudIhUa28Ejym/uCpoH -----END CERTIFICATE-----Generated at Sun Aug 24 09:42:05 2025 by rpki-client