$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/_0rc2fu6QuZdbGLyQN_SCGG2qbU.roa File: _0rc2fu6QuZdbGLyQN_SCGG2qbU.roa (raw, json) Hash identifier: 0wREt0IXbXg1hmtrvs8iaaOrZromHSJCZ96/fm71C1E= Subject key identifier: FF:4A:DC:D9:FB:BA:42:E6:5D:6C:62:F2:40:DF:D2:08:61:B6:A9:B5 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 02F5 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/_0rc2fu6QuZdbGLyQN_SCGG2qbU.roa Signing time: Thu 09 Oct 2025 06:14:05 +0000 ROA not before: Thu 09 Oct 2025 06:14:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152609 IP address blocks: 157.20.248.160/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 757 (0x2f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Oct 9 06:14:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FF4ADCD9FBBA42E65D6C62F240DFD20861B6A9B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b5:57:bc:5a:f4:a6:a5:b4:ea:0d:4f:2a:80: b3:41:00:eb:1b:6a:34:dd:88:37:6e:df:3b:21:57: 8b:0c:e3:28:2c:40:6e:2d:3f:36:b2:1c:36:9e:5e: ae:d6:29:16:aa:0e:54:fe:fd:71:f5:9a:e9:ca:f2: 9f:ca:8e:87:eb:c6:2b:03:0f:76:3a:64:c2:4c:57: 70:b8:4f:02:85:f4:a0:08:c2:6e:71:38:a8:c3:bb: 02:90:94:2d:d4:97:dd:2d:8b:ed:b6:8c:17:02:76: 37:90:cc:6c:e5:50:65:29:c0:e5:23:18:1c:fd:86: 7f:ea:33:a8:22:33:82:82:f7:78:05:95:55:e1:62: 78:34:6b:7f:b8:0d:fd:91:11:3d:8a:65:59:1e:e4: e1:67:3f:7d:ff:a3:3c:cf:48:82:48:fe:c1:bb:8b: 0b:6d:d2:d4:39:b1:54:4e:53:ee:94:52:d7:12:4d: 4e:6c:3e:d0:9f:1a:92:60:e5:bf:be:99:0a:98:39: 97:b4:fd:79:be:2c:ba:fb:61:32:a0:73:3b:1d:4b: c2:a6:e2:4c:a3:51:dd:81:e9:80:15:ef:39:f6:b5: a7:7b:55:2c:00:16:6d:60:14:22:4f:6c:d8:59:b8: e9:70:26:dc:fe:d2:f4:7c:0e:d9:d1:bc:6b:71:c5: 4f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4A:DC:D9:FB:BA:42:E6:5D:6C:62:F2:40:DF:D2:08:61:B6:A9:B5 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/_0rc2fu6QuZdbGLyQN_SCGG2qbU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.160/28 Signature Algorithm: sha256WithRSAEncryption 27:9a:be:7d:8c:2b:e6:1e:24:b1:3f:53:61:43:8c:43:e9:b2: 9e:31:c1:e4:23:fd:e5:bf:aa:b8:cd:d2:64:e4:93:67:73:56: c9:f9:a1:97:6c:d9:d2:3d:d3:f2:12:db:24:63:53:c7:91:56: e4:f6:26:a2:3b:b7:08:4a:81:1a:38:c9:c8:6d:da:95:9d:6a: db:87:13:c4:50:e8:cb:90:83:c4:3c:4a:aa:99:30:d1:86:08: d3:e4:8b:ba:79:36:43:40:96:77:6b:99:fe:69:2d:26:9c:77: 2a:9f:06:35:0f:99:f9:48:8e:e5:1d:a7:71:e1:d6:7e:9b:c9: 77:83:f0:a4:40:70:08:90:ff:4b:63:cd:49:a0:56:fc:19:51: 6d:a4:18:94:44:87:54:01:dc:d5:f2:25:17:93:04:94:64:a7: c1:70:5f:2c:2f:d0:f2:b2:7c:cc:6a:a8:a0:23:3b:92:11:bd: 4a:f8:2a:1a:d4:53:f6:62:d6:6b:a0:c7:1c:51:1f:c0:63:b3: 31:82:0e:b0:ee:f2:15:49:b5:d3:34:52:01:76:00:c6:35:b5: 2d:b0:87:80:35:02:f0:22:00:7a:38:97:4e:f7:f1:af:a4:29: 91:15:38:2d:88:00:34:62:fa:d3:88:e5:0e:94:bb:37:2c:68: e7:25:ac:69 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAvUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTEwMDkw NjE0MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZGNEFEQ0Q5RkJCQTQy RTY1RDZDNjJGMjQwREZEMjA4NjFCNkE5QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7tVe8WvSmpbTqDU8qgLNBAOsbajTdiDdu3zshV4sM4ygsQG4t PzayHDaeXq7WKRaqDlT+/XH1munK8p/KjofrxisDD3Y6ZMJMV3C4TwKF9KAIwm5x OKjDuwKQlC3Ul90ti+22jBcCdjeQzGzlUGUpwOUjGBz9hn/qM6giM4KC93gFlVXh Yng0a3+4Df2RET2KZVke5OFnP33/ozzPSIJI/sG7iwtt0tQ5sVROU+6UUtcSTU5s PtCfGpJg5b++mQqYOZe0/Xm+LLr7YTKgczsdS8Km4kyjUd2B6YAV7zn2tad7VSwA Fm1gFCJPbNhZuOlwJtz+0vR8DtnRvGtxxU8lAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU/0rc2fu6QuZdbGLyQN/SCGG2qbUwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvXzByYzJmdTZRdVpkYkdMeVFOX1ND R0cycWJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFBJ0U+KAw DQYJKoZIhvcNAQELBQADggEBACeavn2MK+YeJLE/U2FDjEPpsp4xweQj/eW/qrjN 0mTkk2dzVsn5oZds2dI90/IS2yRjU8eRVuT2JqI7twhKgRo4ycht2pWdatuHE8RQ 6MuQg8Q8SqqZMNGGCNPki7p5NkNAlndrmf5pLSacdyqfBjUPmflIjuUdp3Hh1n6b yXeD8KRAcAiQ/0tjzUmgVvwZUW2kGJREh1QB3NXyJReTBJRkp8FwXywv0PKyfMxq qKAjO5IRvUr4KhrUU/Zi1mugxxxRH8BjszGCDrDu8hVJtdM0UgF2AMY1tS2wh4A1 AvAiAHo4l0738a+kKZEVOC2IADRi+tOI5Q6UuzcsaOclrGk= -----END CERTIFICATE-----Generated at Tue Oct 21 01:12:47 2025 by rpki-client