$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/TTO-zFYtmzd6yZ_7SEpTi1DAy_A.roa File: TTO-zFYtmzd6yZ_7SEpTi1DAy_A.roa (raw, json) Hash identifier: GbaqBw2hiB79jUq9gjpVuItXJJ3hjidTLdqlAzT36dY= Subject key identifier: 4D:33:BE:CC:56:2D:9B:37:7A:C9:9F:FB:48:4A:53:8B:50:C0:CB:F0 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 02EF Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/TTO-zFYtmzd6yZ_7SEpTi1DAy_A.roa Signing time: Thu 09 Oct 2025 06:13:35 +0000 ROA not before: Thu 09 Oct 2025 06:13:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152609 IP address blocks: 157.20.248.112/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 751 (0x2ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Oct 9 06:13:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4D33BECC562D9B377AC99FFB484A538B50C0CBF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:36:31:b2:b6:bf:0b:be:8c:4c:72:93:fc:e1: 1e:4e:d3:a1:70:35:57:88:b2:12:18:75:1f:ee:78: 77:af:44:f9:4e:09:85:89:c2:cf:33:2a:6f:f4:85: 6c:81:4e:ae:2e:d5:90:35:2a:ee:92:e4:4d:64:ab: 95:d9:59:eb:e8:e6:e8:02:3f:9a:ad:0c:56:49:b0: 23:4e:7e:54:10:4a:db:07:bd:b6:1b:1f:9d:59:54: 98:1c:73:10:03:57:9f:c8:c8:7e:45:f1:85:05:09: a0:b8:f0:20:68:27:2f:9e:98:65:b7:62:a4:fb:14: 0f:8e:84:09:a3:2c:3d:f5:6f:b5:70:80:74:75:4a: 05:85:32:a4:6b:ae:aa:47:3c:a6:b5:35:c9:05:f1: 07:8a:f2:2e:84:95:bd:ef:35:2e:8a:87:92:2a:b8: 1d:7f:b3:a2:33:68:07:0a:2c:47:e5:82:20:ef:17: e1:07:41:d1:21:7b:69:e1:6d:3d:a5:a2:de:1a:ab: 14:e0:08:1c:73:bc:eb:fb:51:43:2c:61:2a:45:fb: 92:49:65:c1:9e:c2:5c:b9:16:73:93:a4:98:98:e7: 8d:c4:fc:89:25:36:cc:6f:64:7a:3e:de:5b:13:21: 0e:8e:70:68:94:65:92:fd:40:73:a5:12:9b:31:4d: 31:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:33:BE:CC:56:2D:9B:37:7A:C9:9F:FB:48:4A:53:8B:50:C0:CB:F0 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/TTO-zFYtmzd6yZ_7SEpTi1DAy_A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.112/28 Signature Algorithm: sha256WithRSAEncryption 35:e9:97:f5:48:d2:a7:2b:bb:b4:3e:ae:cd:bb:67:be:a4:5c: e4:fe:f0:b1:ba:d5:5e:10:7b:e1:63:10:12:11:3e:8c:41:da: f7:c6:92:64:bb:c7:d1:b7:a5:d7:30:74:92:a8:24:1e:71:5d: 3e:18:0f:29:3f:48:9d:30:62:18:db:94:f7:41:e6:2e:9f:c3: 5f:e1:9e:60:19:c8:3c:f3:d1:8a:8b:26:88:00:10:6e:b9:ad: 5c:08:33:e4:16:bf:d5:1d:18:1e:94:10:11:c1:bb:e7:1d:54: 9b:0b:60:19:29:73:55:ca:e9:e6:60:c6:c7:f2:91:6d:e3:b6: 63:a7:e4:09:b2:7d:c3:48:74:06:a1:c0:fd:6c:b0:2b:4e:7d: f4:af:40:8a:fb:eb:52:bc:29:32:5d:de:08:97:e6:c7:c0:58: 2b:c3:e8:fd:d2:9b:46:b1:a1:d9:be:25:c6:bd:b8:a0:55:85: f0:41:9a:44:b1:94:42:b2:c6:5f:04:55:a6:7d:ed:6d:05:2d: ab:50:bb:bc:47:97:77:f8:cf:38:ed:38:5a:e7:65:79:9c:7d: de:be:ac:98:bf:da:12:5a:b4:1e:ff:3a:f6:57:63:9f:4f:72: bc:d3:93:da:55:57:8a:3f:07:f3:b8:94:75:75:e9:cb:02:bb: 7e:2e:e5:27 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAu8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTEwMDkw NjEzMzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDREMzNCRUNDNTYyRDlC Mzc3QUM5OUZGQjQ4NEE1MzhCNTBDMENCRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoNjGytr8LvoxMcpP84R5O06FwNVeIshIYdR/ueHevRPlOCYWJ ws8zKm/0hWyBTq4u1ZA1Ku6S5E1kq5XZWevo5ugCP5qtDFZJsCNOflQQStsHvbYb H51ZVJgccxADV5/IyH5F8YUFCaC48CBoJy+emGW3YqT7FA+OhAmjLD31b7VwgHR1 SgWFMqRrrqpHPKa1NckF8QeK8i6Elb3vNS6Kh5IquB1/s6IzaAcKLEflgiDvF+EH QdEhe2nhbT2lot4aqxTgCBxzvOv7UUMsYSpF+5JJZcGewly5FnOTpJiY543E/Ikl NsxvZHo+3lsTIQ6OcGiUZZL9QHOlEpsxTTFLAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUTTO+zFYtmzd6yZ/7SEpTi1DAy/AwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvVFRPLXpGWXRtemQ2eVpfN1NFcFRp MURBeV9BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFBJ0U+HAw DQYJKoZIhvcNAQELBQADggEBADXpl/VI0qcru7Q+rs27Z76kXOT+8LG61V4Qe+Fj EBIRPoxB2vfGkmS7x9G3pdcwdJKoJB5xXT4YDyk/SJ0wYhjblPdB5i6fw1/hnmAZ yDzz0YqLJogAEG65rVwIM+QWv9UdGB6UEBHBu+cdVJsLYBkpc1XK6eZgxsfykW3j tmOn5AmyfcNIdAahwP1ssCtOffSvQIr761K8KTJd3giX5sfAWCvD6P3Sm0axodm+ Jca9uKBVhfBBmkSxlEKyxl8EVaZ97W0FLatQu7xHl3f4zzjtOFrnZXmcfd6+rJi/ 2hJatB7/OvZXY59PcrzTk9pVV4o/B/O4lHV16csCu34u5Sc= -----END CERTIFICATE-----Generated at Tue Oct 21 01:23:00 2025 by rpki-client