$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/M6xLtDnsMtiC0ovB_mbD_Vl9prc.roa File: M6xLtDnsMtiC0ovB_mbD_Vl9prc.roa (raw, json) Hash identifier: BD8DmV943YzwXW0hC2gr3PUCtFdNdfsaqyIuhxJiQvw= Subject key identifier: 33:AC:4B:B4:39:EC:32:D8:82:D2:8B:C1:FE:66:C3:FD:59:7D:A6:B7 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0243 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/M6xLtDnsMtiC0ovB_mbD_Vl9prc.roa Signing time: Sun 29 Jun 2025 11:04:40 +0000 ROA not before: Sun 29 Jun 2025 11:04:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.248.8/30 maxlen: 30 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 09:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Jun 29 11:04:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=33AC4BB439EC32D882D28BC1FE66C3FD597DA6B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:42:37:85:df:96:69:c7:e0:ff:bd:52:06:4e: 9d:01:a2:33:73:13:4b:e7:e7:ec:f5:7f:f0:54:56: d7:4f:70:93:75:26:8b:14:8a:53:4f:3d:dc:ff:0f: 50:24:32:c9:9b:ea:3e:07:1b:2c:37:0a:0f:93:bc: 6f:b5:cb:0e:ed:a1:e9:22:ba:10:5a:54:20:ab:18: e5:81:df:04:26:04:95:bf:21:b8:7c:60:6c:08:b3: 77:48:9b:3a:d3:32:40:1e:2a:57:f7:c0:a5:9b:3b: a7:13:de:4c:28:90:97:38:8f:50:63:2e:81:ac:02: 56:d9:bb:28:6a:6a:f5:b4:7c:33:eb:15:67:43:a8: 37:d1:26:48:53:c3:aa:00:29:8e:68:f1:e7:02:6f: 25:bd:32:09:3d:10:ea:d8:a7:88:63:51:c7:89:10: 1d:e4:af:1b:5e:a1:a9:20:29:a7:db:19:37:9f:87: 73:ea:3d:8f:e7:c2:57:56:2f:e8:36:01:7e:f4:64: d5:54:f7:fc:46:78:ca:77:a9:6a:e1:e0:43:86:7f: f5:88:aa:e5:6c:e2:c7:0c:0b:0c:3a:08:d4:b0:ee: 60:31:29:ae:9b:cf:87:e3:bb:27:be:d4:f8:ce:86: 97:8d:70:c1:7e:d3:7d:6e:c6:ab:24:20:d6:27:cf: 46:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AC:4B:B4:39:EC:32:D8:82:D2:8B:C1:FE:66:C3:FD:59:7D:A6:B7 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/M6xLtDnsMtiC0ovB_mbD_Vl9prc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.8/30 Signature Algorithm: sha256WithRSAEncryption 2d:16:d3:1e:9c:c4:dc:c2:cb:a8:ab:fe:7a:b0:1f:49:07:fc: 49:9f:5a:76:7d:57:1e:32:e0:d8:78:3a:d9:ce:fc:e6:c1:7c: 23:46:f7:a9:24:e2:bc:13:32:fc:55:0a:45:4a:3c:d8:e2:d2: 88:2c:fd:06:88:8d:72:25:d8:19:c6:a5:2a:4b:47:3e:8a:bb: b3:e9:61:00:aa:43:9b:eb:b9:b9:86:0e:95:c4:c9:96:85:7f: 0c:66:ca:4b:e6:57:ad:c9:3d:6e:ac:ef:39:61:37:5c:56:fc: 39:94:21:91:b9:77:64:67:bb:1c:a2:74:b0:9f:a7:8b:e2:8c: 59:87:65:f0:b7:c7:3c:b0:20:16:5a:d0:70:28:af:48:fd:4a: e0:ca:2d:9f:71:90:b8:63:85:3a:23:6f:0c:56:01:e8:21:07: 23:25:0c:03:df:be:a1:13:ce:80:72:8a:27:d8:3e:14:91:d4: a5:1e:53:9e:0c:d7:d8:5f:5d:8c:63:0a:7c:e6:97:7e:9f:a3: c3:7f:e9:71:52:bb:bf:43:2e:99:b9:6b:b8:6d:07:89:77:9e: a7:f0:72:d6:81:8d:cf:1f:41:f6:71:cc:8c:ea:e3:a9:55:65: c2:56:43:12:7c:aa:47:7f:e4:89:dc:3b:8f:e7:08:ca:fc:88: 4f:81:50:97 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA2Mjkx MTA0NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzQUM0QkI0MzlFQzMy RDg4MkQyOEJDMUZFNjZDM0ZENTk3REE2QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/QjeF35Zpx+D/vVIGTp0BojNzE0vn5+z1f/BUVtdPcJN1JosU ilNPPdz/D1AkMsmb6j4HGyw3Cg+TvG+1yw7toekiuhBaVCCrGOWB3wQmBJW/Ibh8 YGwIs3dImzrTMkAeKlf3wKWbO6cT3kwokJc4j1BjLoGsAlbZuyhqavW0fDPrFWdD qDfRJkhTw6oAKY5o8ecCbyW9Mgk9EOrYp4hjUceJEB3krxteoakgKafbGTefh3Pq PY/nwldWL+g2AX70ZNVU9/xGeMp3qWrh4EOGf/WIquVs4scMCww6CNSw7mAxKa6b z4fjuye+1PjOhpeNcMF+031uxqskINYnz0YRAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUM6xLtDnsMtiC0ovB/mbD/Vl9prcwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvTTZ4THREbnNNdGlDMG92Ql9tYkRf Vmw5cHJjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAp0U+Agw DQYJKoZIhvcNAQELBQADggEBAC0W0x6cxNzCy6ir/nqwH0kH/EmfWnZ9Vx4y4Nh4 OtnO/ObBfCNG96kk4rwTMvxVCkVKPNji0ogs/QaIjXIl2BnGpSpLRz6Ku7PpYQCq Q5vrubmGDpXEyZaFfwxmykvmV63JPW6s7zlhN1xW/DmUIZG5d2RnuxyidLCfp4vi jFmHZfC3xzywIBZa0HAor0j9SuDKLZ9xkLhjhTojbwxWAeghByMlDAPfvqETzoBy iifYPhSR1KUeU54M19hfXYxjCnzml36fo8N/6XFSu79DLpm5a7htB4l3nqfwctaB jc8fQfZxzIzq46lVZcJWQxJ8qkd/5IncO4/nCMr8iE+BUJc= -----END CERTIFICATE-----Generated at Sat Jul 5 08:34:07 2025 by rpki-client