$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/MrF9ZL46aALzmpFm6KWuBL1weh0.roa File: MrF9ZL46aALzmpFm6KWuBL1weh0.roa (raw, json) Hash identifier: AP9S968EsFmuBrWeIKP5uy0MvUxX/NF48tGT+XgsQkw= Subject key identifier: 32:B1:7D:64:BE:3A:68:02:F3:9A:91:66:E8:A5:AE:04:BD:70:7A:1D Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 02D4 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/MrF9ZL46aALzmpFm6KWuBL1weh0.roa Signing time: Wed 08 Oct 2025 07:18:04 +0000 ROA not before: Wed 08 Oct 2025 07:18:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152609 IP address blocks: 157.20.248.20/30 maxlen: 30 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Oct 8 07:18:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=32B17D64BE3A6802F39A9166E8A5AE04BD707A1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:db:fc:77:a9:cc:8a:98:2f:36:fe:18:2d:8c: 7d:55:c7:d9:66:14:71:43:a3:36:91:fb:9c:14:d3: d6:8b:94:b8:c2:d5:be:fa:a0:3e:83:01:5e:66:ec: a0:3a:07:e1:3e:58:ec:44:4a:0e:d4:f4:48:24:75: 37:f6:42:24:ac:64:d7:1a:d2:d4:37:b5:66:74:42: b7:0c:22:0c:07:73:b4:87:35:00:67:3c:16:82:15: e9:57:67:29:4c:bf:06:62:45:1b:7b:4b:82:e3:3f: 6c:69:b4:e7:07:e9:ed:6a:14:bd:17:6a:87:29:ba: ef:db:31:dc:0a:83:bb:18:ed:ca:1d:a5:68:77:b6: 09:7b:76:0f:7f:b2:13:d8:fc:af:7a:de:62:43:ab: 8a:4d:c9:14:a4:bd:6b:b6:c3:6d:70:01:71:9e:20: c9:18:14:f0:bf:30:3c:ca:54:28:29:2e:05:03:99: 31:0f:d3:8e:f6:85:5d:62:66:9b:2b:c8:48:25:9c: 62:86:64:95:d1:d1:7e:59:48:60:61:b6:08:b8:0a: ba:8d:e8:da:28:e8:5a:03:d6:ec:30:66:76:e5:3e: 7c:02:2c:5f:99:90:d7:68:cc:22:e2:7b:32:3f:56: 28:e8:6e:c5:df:65:29:47:84:e9:49:ed:e5:ad:4a: 9e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B1:7D:64:BE:3A:68:02:F3:9A:91:66:E8:A5:AE:04:BD:70:7A:1D X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/MrF9ZL46aALzmpFm6KWuBL1weh0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.20/30 Signature Algorithm: sha256WithRSAEncryption 75:b8:a4:3b:22:83:e3:dd:19:37:79:d5:ef:23:44:53:68:44: d9:e4:8f:85:f7:eb:ea:4e:01:18:c9:a9:a0:a1:42:f4:c5:32: e3:47:c8:a0:bc:c6:b9:98:c3:72:47:93:09:b9:49:39:8d:38: a8:4c:c3:11:ac:bb:46:6c:23:1b:7e:46:79:13:8c:84:d2:e9: 67:0c:9e:4d:a1:c1:95:c5:a8:5b:b2:99:68:7a:3c:cb:1f:48: cb:cc:31:2b:b5:aa:70:91:7e:89:de:0e:03:74:35:44:5b:ea: 2e:df:cd:99:69:7e:03:41:f6:85:24:02:94:90:cb:56:44:d0: 37:0c:07:d1:d3:e8:5b:5b:3b:62:f9:de:8c:65:55:9a:4d:81: 54:04:44:39:ba:4d:25:83:8d:6d:49:bf:75:4b:af:14:b7:3a: 0a:b9:f9:22:31:11:7c:9b:e5:5e:40:d8:6a:a9:3c:7d:2c:2d: 4d:30:98:5d:48:76:ce:3b:b3:5d:49:4d:18:48:23:99:61:04: b3:25:c8:dd:ee:8b:01:18:16:8e:b3:c3:31:4c:6c:43:25:5a: 81:12:2b:e1:ac:29:d4:78:46:12:30:4a:54:9f:02:b1:fe:4e: 8b:b1:17:cb:86:c2:f2:71:c1:39:c0:c2:61:5c:8d:f5:33:67: a1:53:5b:62 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTEwMDgw NzE4MDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMyQjE3RDY0QkUzQTY4 MDJGMzlBOTE2NkU4QTVBRTA0QkQ3MDdBMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH2/x3qcyKmC82/hgtjH1Vx9lmFHFDozaR+5wU09aLlLjC1b76 oD6DAV5m7KA6B+E+WOxESg7U9EgkdTf2QiSsZNca0tQ3tWZ0QrcMIgwHc7SHNQBn PBaCFelXZylMvwZiRRt7S4LjP2xptOcH6e1qFL0Xaocpuu/bMdwKg7sY7codpWh3 tgl7dg9/shPY/K963mJDq4pNyRSkvWu2w21wAXGeIMkYFPC/MDzKVCgpLgUDmTEP 0472hV1iZpsryEglnGKGZJXR0X5ZSGBhtgi4CrqN6Noo6FoD1uwwZnblPnwCLF+Z kNdozCLiezI/VijobsXfZSlHhOlJ7eWtSp4xAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUMrF9ZL46aALzmpFm6KWuBL1weh0wHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvTXJGOVpMNDZhQUx6bXBGbTZLV3VC TDF3ZWgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAp0U+BQw DQYJKoZIhvcNAQELBQADggEBAHW4pDsig+PdGTd51e8jRFNoRNnkj4X36+pOARjJ qaChQvTFMuNHyKC8xrmYw3JHkwm5STmNOKhMwxGsu0ZsIxt+RnkTjITS6WcMnk2h wZXFqFuymWh6PMsfSMvMMSu1qnCRfoneDgN0NURb6i7fzZlpfgNB9oUkApSQy1ZE 0DcMB9HT6FtbO2L53oxlVZpNgVQERDm6TSWDjW1Jv3VLrxS3Ogq5+SIxEXyb5V5A 2GqpPH0sLU0wmF1Ids47s11JTRhII5lhBLMlyN3uiwEYFo6zwzFMbEMlWoESK+Gs KdR4RhIwSlSfArH+TouxF8uGwvJxwTnAwmFcjfUzZ6FTW2I= -----END CERTIFICATE-----Generated at Tue Oct 21 01:21:53 2025 by rpki-client