$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/Kz9ua8MKbwF76ejTAUnmyiGpj0E.roa File: Kz9ua8MKbwF76ejTAUnmyiGpj0E.roa (raw, json) Hash identifier: I2nYkYDyxBWLQO3eZoG4tfdnQTeXGJ/nK7mRU+1iIOY= Subject key identifier: 2B:3F:6E:6B:C3:0A:6F:01:7B:E9:E8:D3:01:49:E6:CA:21:A9:8F:41 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 02E5 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/Kz9ua8MKbwF76ejTAUnmyiGpj0E.roa Signing time: Thu 09 Oct 2025 06:10:27 +0000 ROA not before: Thu 09 Oct 2025 06:10:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152609 IP address blocks: 157.20.248.64/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 741 (0x2e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Oct 9 06:10:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2B3F6E6BC30A6F017BE9E8D30149E6CA21A98F41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:32:3e:33:d9:18:2b:f1:a2:a6:f8:68:bf:e2: 39:64:ab:3f:ba:b9:d1:53:22:da:37:f8:8f:11:a4: 37:d2:af:ef:fe:54:f3:9d:e7:8b:db:69:99:2c:9f: 64:71:42:5c:0a:3c:c2:0c:97:5e:ef:9c:e8:47:4f: 12:5a:1a:7e:61:ae:1b:93:5f:e6:8b:a0:91:c2:d0: 84:a1:c9:0f:ad:9d:70:b4:cd:e0:83:36:d9:77:86: 15:11:06:1b:6f:dd:ed:6f:f7:48:37:8e:33:5e:51: 30:e7:e0:e9:ab:b8:f4:2c:5c:fa:11:10:78:d4:05: 7c:cb:8e:11:f0:1f:8a:db:18:be:7a:da:c4:9a:6c: b6:09:1c:8a:02:81:27:4e:77:b4:57:97:a2:25:34: 23:3a:03:ed:28:34:7e:45:b5:3f:0b:cf:d0:b2:bb: 70:29:ca:46:6d:de:cb:0c:9b:09:a1:55:3d:b1:19: 27:1f:1e:71:96:37:07:da:d3:ea:19:be:bf:14:7c: 1d:8f:f3:1e:88:20:8a:8a:11:15:2b:98:f1:1c:b0: 73:7a:a9:c4:06:6c:95:18:60:a1:0a:22:7e:56:70: f0:f0:ba:79:10:b3:f7:9d:0b:33:a4:a3:61:23:66: 3f:79:f3:bc:98:3a:b7:d1:5d:a3:84:e2:a5:8b:78: d6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:3F:6E:6B:C3:0A:6F:01:7B:E9:E8:D3:01:49:E6:CA:21:A9:8F:41 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/Kz9ua8MKbwF76ejTAUnmyiGpj0E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.64/28 Signature Algorithm: sha256WithRSAEncryption 08:5e:da:14:0a:af:bc:b2:c0:ca:4c:97:31:48:ea:c9:16:4d: 60:ce:20:f7:2d:f2:99:cb:dc:26:e6:fd:7f:cf:fd:b4:db:f3: 35:11:2a:ef:16:3a:cb:bb:12:cd:9e:62:1f:45:f9:4b:c2:3f: 4f:1e:8b:1b:38:a3:a6:21:eb:8d:20:36:ed:2b:ad:2b:83:73: 61:bd:28:00:9a:b9:4b:53:e2:2c:fb:37:07:e3:57:c2:0d:70: d6:91:a0:f6:b5:c9:70:d8:b5:f7:a3:c5:44:eb:67:3f:29:b1: 69:fc:13:87:be:9e:59:34:e2:9d:a5:c1:9a:27:a4:6d:22:25: a9:4c:61:05:3c:31:62:e2:5e:e8:9d:ad:ff:55:48:4a:0d:8d: 05:43:d7:5c:69:1b:80:83:98:40:a3:d8:c9:f8:df:b6:1f:25: 5e:b2:ef:71:86:c7:49:2a:0d:35:f3:6c:f9:06:01:02:a1:dd: 7b:f7:0d:44:2a:18:f5:80:0f:c4:94:62:2e:17:86:9d:72:99: ae:13:0d:20:75:10:3c:76:87:22:c7:a0:dd:e6:5d:53:94:df: 0d:13:4d:e6:8f:8b:af:bb:03:79:d7:24:96:19:0c:26:10:c4: 29:9e:2e:e1:32:a9:59:2d:38:37:86:5d:61:26:ee:30:2e:4e: 1c:80:e3:e7 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTEwMDkw NjEwMjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJCM0Y2RTZCQzMwQTZG MDE3QkU5RThEMzAxNDlFNkNBMjFBOThGNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDMj4z2Rgr8aKm+Gi/4jlkqz+6udFTIto3+I8RpDfSr+/+VPOd 54vbaZksn2RxQlwKPMIMl17vnOhHTxJaGn5hrhuTX+aLoJHC0IShyQ+tnXC0zeCD Ntl3hhURBhtv3e1v90g3jjNeUTDn4OmruPQsXPoREHjUBXzLjhHwH4rbGL562sSa bLYJHIoCgSdOd7RXl6IlNCM6A+0oNH5FtT8Lz9Cyu3ApykZt3ssMmwmhVT2xGScf HnGWNwfa0+oZvr8UfB2P8x6IIIqKERUrmPEcsHN6qcQGbJUYYKEKIn5WcPDwunkQ s/edCzOko2EjZj9587yYOrfRXaOE4qWLeNatAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUKz9ua8MKbwF76ejTAUnmyiGpj0EwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvS3o5dWE4TUtid0Y3NmVqVEFVbm15 aUdwajBFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFBJ0U+EAw DQYJKoZIhvcNAQELBQADggEBAAhe2hQKr7yywMpMlzFI6skWTWDOIPct8pnL3Cbm /X/P/bTb8zURKu8WOsu7Es2eYh9F+UvCP08eixs4o6Yh640gNu0rrSuDc2G9KACa uUtT4iz7NwfjV8INcNaRoPa1yXDYtfejxUTrZz8psWn8E4e+nlk04p2lwZonpG0i JalMYQU8MWLiXuidrf9VSEoNjQVD11xpG4CDmECj2Mn437YfJV6y73GGx0kqDTXz bPkGAQKh3Xv3DUQqGPWAD8SUYi4Xhp1yma4TDSB1EDx2hyLHoN3mXVOU3w0TTeaP i6+7A3nXJJYZDCYQxCmeLuEyqVktODeGXWEm7jAuThyA4+c= -----END CERTIFICATE-----Generated at Tue Oct 21 01:19:47 2025 by rpki-client