$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/OH2Rz9HO8kPVvreZrpurUQ336jA.roa File: OH2Rz9HO8kPVvreZrpurUQ336jA.roa (raw, json) Hash identifier: eODlkAFjq8gkJ1On0NNiEuhzUFsVMl/aO2ee79E+X3A= Subject key identifier: 38:7D:91:CF:D1:CE:F2:43:D5:BE:B7:99:AE:9B:AB:51:0D:F7:EA:30 Certificate issuer: /CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Certificate serial: 0248 Authority key identifier: 6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/OH2Rz9HO8kPVvreZrpurUQ336jA.roa Signing time: Fri 22 Aug 2025 09:01:17 +0000 ROA not before: Fri 22 Aug 2025 09:01:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152609 IP address blocks: 2401:8c20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 584 (0x248) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Validity Not Before: Aug 22 09:01:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=387D91CFD1CEF243D5BEB799AE9BAB510DF7EA30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:82:99:0c:fd:35:bc:01:5b:39:f6:ac:f7:74: 8d:2a:93:aa:48:f3:5f:ee:7e:eb:af:0a:0e:61:48: 30:fd:ae:08:48:59:3c:9a:50:73:61:28:75:02:40: 98:e6:58:bd:81:f3:90:34:22:4c:f0:d7:94:fc:78: d7:8c:5e:c4:e8:ea:ae:9c:cc:bd:15:45:67:6d:8b: eb:2e:1f:bd:2b:fe:f2:f2:1c:06:49:7d:fa:ac:08: 6a:f1:49:33:6a:27:c5:94:fa:8a:e1:83:1e:84:ae: 8e:f3:c9:8d:69:f6:b6:fd:cd:20:a9:f3:cf:3a:a6: 40:e0:e2:e2:73:6b:87:c7:ff:67:af:fc:6a:95:48: 3b:e3:09:27:54:64:d1:25:3d:2b:4f:89:dc:05:c0: 96:bb:a3:8a:ff:6b:4d:fd:58:55:a3:bf:55:7e:52: a5:78:7b:cb:3c:56:e7:1e:85:9d:f0:24:7c:63:d6: 83:20:4e:9e:2f:22:55:9e:b5:69:33:e9:ba:67:a6: 41:2b:b2:3e:19:3a:0a:c9:02:cd:73:ef:76:28:75: 45:ca:d0:0f:37:f2:3a:63:6c:67:03:ca:70:ad:94: 54:9e:3a:07:0f:d1:6a:cf:2b:ec:00:60:d5:e1:bb: 35:bf:1b:11:71:6d:20:52:e9:e3:af:00:ea:c2:6f: 68:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7D:91:CF:D1:CE:F2:43:D5:BE:B7:99:AE:9B:AB:51:0D:F7:EA:30 X509v3 Authority Key Identifier: keyid:6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/OH2Rz9HO8kPVvreZrpurUQ336jA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:8c20::/32 Signature Algorithm: sha256WithRSAEncryption 7a:d1:0e:fa:b5:dd:ac:99:3a:73:9c:5d:da:ae:51:94:43:03: 7e:4b:37:79:d7:5c:88:9f:55:92:22:53:fc:30:db:db:1f:f4: 50:b4:6f:cd:6a:47:62:1e:92:eb:1f:7c:22:96:df:d5:e6:6c: fd:fc:ce:cf:4a:32:b6:2a:fb:99:b6:30:e1:38:d3:50:22:de: 46:28:82:14:46:5a:74:77:74:70:03:42:83:6e:92:0a:28:b4: 56:a5:fd:58:df:55:86:44:7b:7c:3d:61:24:00:df:02:19:94: 46:ce:e0:a3:81:d9:c6:65:1b:62:3e:cc:61:23:06:42:be:37: 4d:11:97:80:31:41:ee:e0:0f:97:c4:fc:7e:f1:18:79:c0:4c: 16:9b:a0:50:a3:3e:dc:15:8c:ee:c4:98:ec:e9:71:5f:80:24: c1:a7:a7:11:77:93:11:4a:51:9e:64:19:c6:cb:b6:8c:60:ea: f1:0b:8c:f1:50:db:a5:41:9d:75:27:7f:d9:d5:b0:d6:1c:24: 45:28:0a:ff:cc:39:9e:0a:d4:75:09:62:b4:b6:3e:0d:95:fb: 3a:26:a3:fa:a3:a4:2f:2e:c9:74:00:83:94:44:15:f5:1f:b6: bf:18:e1:a2:57:47:2d:ce:09:77:30:15:19:0a:06:c8:09:48: 67:0d:62:de -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAkgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkNB NUI4QjdFMEEyODFDNDY3MjYyMjQ2REYwQzg1OURGNUY4N0YxRjAeFw0yNTA4MjIw OTAxMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM4N0Q5MUNGRDFDRUYy NDNENUJFQjc5OUFFOUJBQjUxMERGN0VBMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNgpkM/TW8AVs59qz3dI0qk6pI81/ufuuvCg5hSDD9rghIWTya UHNhKHUCQJjmWL2B85A0Ikzw15T8eNeMXsTo6q6czL0VRWdti+suH70r/vLyHAZJ ffqsCGrxSTNqJ8WU+orhgx6Ero7zyY1p9rb9zSCp8886pkDg4uJza4fH/2ev/GqV SDvjCSdUZNElPStPidwFwJa7o4r/a039WFWjv1V+UqV4e8s8VucehZ3wJHxj1oMg Tp4vIlWetWkz6bpnpkErsj4ZOgrJAs1z73YodUXK0A838jpjbGcDynCtlFSeOgcP 0WrPK+wAYNXhuzW/GxFxbSBS6eOvAOrCb2hxAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUOH2Rz9HO8kPVvreZrpurUQ336jAwHwYDVR0jBBgwFoAUbKW4t+CigcRnJiJG 3wyFnfX4fx8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC9i S1c0dC1DaWdjUm5KaUpHM3d5Rm5mWDRmeDguY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2JLVzR0LUNpZ2NSbkppSkczd3lGbmZYNGZ4OC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvT0gyUno5SE84a1BWdnJlWnJwdXJV UTMzNmpBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBjCAw DQYJKoZIhvcNAQELBQADggEBAHrRDvq13ayZOnOcXdquUZRDA35LN3nXXIifVZIi U/ww29sf9FC0b81qR2IekusffCKW39XmbP38zs9KMrYq+5m2MOE401Ai3kYoghRG WnR3dHADQoNukgootFal/VjfVYZEe3w9YSQA3wIZlEbO4KOB2cZlG2I+zGEjBkK+ N00Rl4AxQe7gD5fE/H7xGHnATBaboFCjPtwVjO7EmOzpcV+AJMGnpxF3kxFKUZ5k GcbLtoxg6vELjPFQ26VBnXUnf9nVsNYcJEUoCv/MOZ4K1HUJYrS2Pg2V+zomo/qj pC8uyXQAg5REFfUftr8Y4aJXRy3OCXcwFRkKBsgJSGcNYt4= -----END CERTIFICATE-----Generated at Sun Aug 24 07:17:10 2025 by rpki-client