$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/3TYq-kV1SFHvV5lQ05GAhWZ2BQ0.roa File: 3TYq-kV1SFHvV5lQ05GAhWZ2BQ0.roa (raw, json) Hash identifier: sJmYBLlFVeN5LNAZpw23/QRVyUTZZu8AWhwmNZU7wX4= Subject key identifier: DD:36:2A:FA:45:75:48:51:EF:57:99:50:D3:91:80:85:66:76:05:0D Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 02E9 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/3TYq-kV1SFHvV5lQ05GAhWZ2BQ0.roa Signing time: Thu 09 Oct 2025 06:10:49 +0000 ROA not before: Thu 09 Oct 2025 06:10:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152609 IP address blocks: 157.20.248.96/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 745 (0x2e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Oct 9 06:10:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DD362AFA45754851EF579950D39180856676050D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9e:36:43:34:81:fa:92:46:2d:a7:2b:4a:1e: 29:30:4a:a5:11:9e:fa:b0:32:84:60:64:bf:6c:d9: 27:9a:52:41:f0:97:35:02:6d:12:3a:2a:22:99:1c: 4f:84:ea:88:8a:13:d4:86:2c:64:8e:40:2c:86:92: 13:c6:20:fc:a9:53:ae:a6:50:26:31:e4:1b:03:7b: 85:b7:e4:04:92:85:29:8e:37:1d:c1:2a:40:14:be: 87:66:97:e9:b2:96:62:1d:3d:0c:f1:7e:f5:95:d1: 17:59:f3:a6:3a:02:58:6b:35:4c:6e:44:3c:5c:fd: 31:19:b0:a6:6e:af:5e:d1:70:4c:ec:3f:02:00:15: 02:05:5b:38:f8:7f:b4:3e:55:c0:f4:37:7d:df:2b: f2:f5:ff:70:bb:44:66:4e:5c:68:a5:0d:aa:a0:96: 6a:17:bb:83:ff:90:a9:e7:84:15:7c:2c:11:69:8d: 39:27:b4:49:f9:e8:f6:f9:ce:de:2a:7e:55:51:5d: 8b:aa:95:3a:2c:a1:69:8b:8e:ac:58:c9:b8:5d:97: a6:73:a1:50:40:ee:aa:0f:4b:cd:02:fc:35:d6:d7: 21:d9:c7:83:c8:55:10:4e:21:ae:cd:72:68:46:91: 17:b2:3e:c0:51:d2:cc:59:34:0d:05:0e:bd:12:7d: 05:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:36:2A:FA:45:75:48:51:EF:57:99:50:D3:91:80:85:66:76:05:0D X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/3TYq-kV1SFHvV5lQ05GAhWZ2BQ0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.96/28 Signature Algorithm: sha256WithRSAEncryption a2:82:b2:78:86:88:4a:60:70:d7:42:ab:6b:0a:03:09:b6:9d: ee:ef:92:3c:58:ea:af:ca:0a:48:3a:5f:65:8b:4d:23:c9:b0: eb:63:e3:69:25:23:29:e2:62:e6:e8:75:ad:73:34:b2:ba:76: a8:b4:75:f9:50:fe:3c:2f:2e:28:d4:18:f6:b9:e8:81:d7:07: 4b:9d:5a:8f:5f:1d:1c:5e:28:9c:aa:0a:7e:a4:bd:55:4d:13: 98:c2:32:f6:bf:83:63:bd:f6:03:60:aa:7e:ee:e8:b7:28:61: 80:17:dd:7b:97:07:b6:1c:dd:80:be:8a:b2:07:e0:c5:1b:ec: 08:8d:fb:21:e0:fd:0a:72:b8:6a:4a:c7:7c:66:1d:cb:bf:e4: 54:5f:d7:f3:48:d1:44:15:08:50:d2:01:2c:91:36:17:a6:db: f9:11:5d:62:e3:81:a2:31:04:37:6a:c1:de:35:f7:7c:44:7b: e9:33:c9:cf:59:4f:92:71:80:ea:8a:02:18:9f:ee:85:0d:51: 65:46:35:22:cf:2b:14:3b:60:8f:2c:74:df:01:8c:9c:38:3f: ab:00:8c:e6:ab:e1:b5:fa:d6:29:da:cc:1b:fa:e4:89:e9:c7: 04:b7:27:e0:4d:5f:e0:ba:20:e1:f0:54:8d:7c:8e:53:d2:dd: 58:a2:fa:bf -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAukwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTEwMDkw NjEwNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEREMzYyQUZBNDU3NTQ4 NTFFRjU3OTk1MEQzOTE4MDg1NjY3NjA1MEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCynjZDNIH6kkYtpytKHikwSqURnvqwMoRgZL9s2SeaUkHwlzUC bRI6KiKZHE+E6oiKE9SGLGSOQCyGkhPGIPypU66mUCYx5BsDe4W35ASShSmONx3B KkAUvodml+mylmIdPQzxfvWV0RdZ86Y6AlhrNUxuRDxc/TEZsKZur17RcEzsPwIA FQIFWzj4f7Q+VcD0N33fK/L1/3C7RGZOXGilDaqglmoXu4P/kKnnhBV8LBFpjTkn tEn56Pb5zt4qflVRXYuqlTosoWmLjqxYybhdl6ZzoVBA7qoPS80C/DXW1yHZx4PI VRBOIa7NcmhGkReyPsBR0sxZNA0FDr0SfQXdAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU3TYq+kV1SFHvV5lQ05GAhWZ2BQ0wHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvM1RZcS1rVjFTRkh2VjVsUTA1R0Fo V1oyQlEwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFBJ0U+GAw DQYJKoZIhvcNAQELBQADggEBAKKCsniGiEpgcNdCq2sKAwm2ne7vkjxY6q/KCkg6 X2WLTSPJsOtj42klIyniYuboda1zNLK6dqi0dflQ/jwvLijUGPa56IHXB0udWo9f HRxeKJyqCn6kvVVNE5jCMva/g2O99gNgqn7u6LcoYYAX3XuXB7Yc3YC+irIH4MUb 7AiN+yHg/QpyuGpKx3xmHcu/5FRf1/NI0UQVCFDSASyRNhem2/kRXWLjgaIxBDdq wd4193xEe+kzyc9ZT5JxgOqKAhif7oUNUWVGNSLPKxQ7YI8sdN8BjJw4P6sAjOar 4bX61inazBv65InpxwS3J+BNX+C6IOHwVI18jlPS3Vii+r8= -----END CERTIFICATE-----Generated at Tue Oct 21 01:23:50 2025 by rpki-client