$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/AWU2gb_66VpaTDSBDhpUQgYjKk0.roa File: AWU2gb_66VpaTDSBDhpUQgYjKk0.roa (raw, json) Hash identifier: 6KdVaqSFK4nmq2daOPWtrUkuRZ/xmCuywc3Jkk9/huQ= Subject key identifier: 01:65:36:81:BF:FA:E9:5A:5A:4C:34:81:0E:1A:54:42:06:23:2A:4D Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0245 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/AWU2gb_66VpaTDSBDhpUQgYjKk0.roa Signing time: Sun 29 Jun 2025 11:04:52 +0000 ROA not before: Sun 29 Jun 2025 11:04:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.4/30 maxlen: 30 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 09:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Jun 29 11:04:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=01653681BFFAE95A5A4C34810E1A544206232A4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0f:07:44:85:cf:dc:fe:22:f5:49:e9:18:c3: 2b:dc:42:30:7d:ad:ce:07:ff:59:3d:b9:72:8e:7d: b1:8a:08:c2:7d:11:ff:3f:36:af:e1:31:73:16:a1: 76:c5:b4:dc:94:3c:6f:9a:8f:1e:01:4a:ad:6b:ed: fa:7a:b1:f2:8d:e5:71:53:89:2e:79:ad:56:85:c8: a1:2b:80:91:26:6d:fb:75:f6:50:32:b4:4c:1e:3f: ee:ba:cf:2b:94:fc:bc:fb:72:79:c5:df:b2:fe:4d: 17:44:0a:ce:f5:01:61:43:27:88:d2:66:54:81:de: f5:62:f4:25:37:8e:5a:56:e2:35:c7:19:98:10:5a: 8e:e9:b1:74:de:c4:be:74:49:ba:5c:02:35:34:7b: d7:9c:56:7f:45:ba:2e:90:07:88:2d:8b:aa:23:62: bf:a5:a7:90:e6:dc:e7:10:98:ef:cc:c1:0e:57:ab: c9:01:5b:57:c2:ac:d3:93:b5:53:52:00:87:74:9a: f7:e6:6f:98:55:9c:c2:7b:fa:2d:4c:17:00:a9:cb: 5c:76:14:68:1c:a4:79:ed:48:8a:b7:b5:4e:1f:bf: 2c:15:a0:34:dd:99:af:ed:30:0c:a0:e1:72:43:83: 74:2d:f7:cd:20:8b:a4:25:c3:35:15:09:5d:3e:49: dd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:65:36:81:BF:FA:E9:5A:5A:4C:34:81:0E:1A:54:42:06:23:2A:4D X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/AWU2gb_66VpaTDSBDhpUQgYjKk0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.4/30 Signature Algorithm: sha256WithRSAEncryption 56:cf:57:5e:10:96:72:ec:a9:23:b9:a2:89:2b:a8:3f:48:0b: ca:c7:c4:86:7a:56:ae:c4:25:2e:02:e4:91:ad:53:c8:eb:81: 7a:eb:1e:be:fc:f8:60:b5:f1:3c:90:f2:61:35:02:a8:d9:61: c0:84:e8:7e:cc:cd:09:41:57:8b:3b:42:c6:98:8d:43:a8:0e: bb:fd:5a:16:8b:9d:09:cc:f1:ea:41:c2:e0:0e:8c:09:be:f1: 27:3d:71:6b:22:29:0d:91:76:e8:52:fe:22:fa:c9:1e:71:61: 8e:a8:dd:b9:fc:13:ef:82:89:a9:a8:f9:60:e7:6f:ba:a8:be: 02:42:47:fc:0a:00:fd:eb:1d:f6:88:21:dc:d6:7a:a0:33:76: 44:c3:ff:71:1f:cf:32:1f:a7:67:d8:17:96:00:e2:fa:18:39: d5:c5:09:c1:de:b1:fa:f8:4e:bb:d3:b4:1d:ff:4a:aa:98:89: ad:dd:c8:5d:b7:f3:d5:ae:0f:bb:2c:1e:ae:2b:c9:7b:50:fb: 30:7b:f9:69:8b:e5:ef:fd:dd:12:e2:66:6f:e1:ec:fb:54:c7: 98:f4:57:61:4b:32:50:92:cc:5e:b8:5d:9a:04:d1:47:c6:a0: e0:ce:79:a1:ce:e6:80:89:af:45:36:cc:6b:d1:97:66:d5:dd: f1:a5:85:36 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA2Mjkx MTA0NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAxNjUzNjgxQkZGQUU5 NUE1QTRDMzQ4MTBFMUE1NDQyMDYyMzJBNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/DwdEhc/c/iL1SekYwyvcQjB9rc4H/1k9uXKOfbGKCMJ9Ef8/ Nq/hMXMWoXbFtNyUPG+ajx4BSq1r7fp6sfKN5XFTiS55rVaFyKErgJEmbft19lAy tEweP+66zyuU/Lz7cnnF37L+TRdECs71AWFDJ4jSZlSB3vVi9CU3jlpW4jXHGZgQ Wo7psXTexL50SbpcAjU0e9ecVn9Fui6QB4gti6ojYr+lp5Dm3OcQmO/MwQ5Xq8kB W1fCrNOTtVNSAId0mvfmb5hVnMJ7+i1MFwCpy1x2FGgcpHntSIq3tU4fvywVoDTd ma/tMAyg4XJDg3Qt980gi6QlwzUVCV0+Sd3vAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUAWU2gb/66VpaTDSBDhpUQgYjKk0wHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvQVdVMmdiXzY2VnBhVERTQkRocFVR Z1lqS2swLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAp0U+AQw DQYJKoZIhvcNAQELBQADggEBAFbPV14QlnLsqSO5ookrqD9IC8rHxIZ6Vq7EJS4C 5JGtU8jrgXrrHr78+GC18TyQ8mE1AqjZYcCE6H7MzQlBV4s7QsaYjUOoDrv9WhaL nQnM8epBwuAOjAm+8Sc9cWsiKQ2RduhS/iL6yR5xYY6o3bn8E++Ciamo+WDnb7qo vgJCR/wKAP3rHfaIIdzWeqAzdkTD/3EfzzIfp2fYF5YA4voYOdXFCcHesfr4TrvT tB3/SqqYia3dyF2389WuD7ssHq4ryXtQ+zB7+WmL5e/93RLiZm/h7PtUx5j0V2FL MlCSzF64XZoE0UfGoODOeaHO5oCJr0U2zGvRl2bV3fGlhTY= -----END CERTIFICATE-----Generated at Sat Jul 5 08:39:13 2025 by rpki-client