$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/eygCrpbCgLzEdTkBObEqfnzUTAA.roa File: eygCrpbCgLzEdTkBObEqfnzUTAA.roa (raw, json) Hash identifier: /2HRHR4uTCBGFeRMQ+g8xf4XQWryV40yq4wAZXyy0CE= Subject key identifier: 7B:28:02:AE:96:C2:80:BC:C4:75:39:01:39:B1:2A:7E:7C:D4:4C:00 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 02E1 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/eygCrpbCgLzEdTkBObEqfnzUTAA.roa Signing time: Thu 09 Oct 2025 06:08:44 +0000 ROA not before: Thu 09 Oct 2025 06:08:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152609 IP address blocks: 157.20.248.32/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Oct 9 06:08:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7B2802AE96C280BCC475390139B12A7E7CD44C00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:6c:72:eb:38:5f:9e:21:89:49:da:a4:9d:70: 25:8a:40:54:db:3a:63:4b:9a:fe:bb:af:64:b1:d5: aa:88:4a:9c:13:4e:89:a2:32:23:e8:10:6d:20:6e: f8:1b:32:18:83:f9:af:fa:9e:04:3a:fb:5e:9c:61: 62:44:62:52:6a:60:c7:a3:7c:84:79:16:50:e3:0c: 1f:23:b7:33:e1:19:84:37:6f:d2:49:67:6a:ef:c8: a6:1d:5c:61:f8:69:d4:fc:71:ac:69:98:72:32:25: e5:c4:72:bf:39:19:c0:8e:f1:34:5d:72:e7:6a:d0: e8:b7:43:3c:8e:a1:c4:65:37:5e:2d:f9:54:07:b1: 8e:e4:8a:91:fb:5f:5d:ed:89:56:ec:20:3c:fe:e9: 0f:84:5f:e4:37:09:37:7b:4d:42:7a:8e:cb:5c:a9: ca:62:3c:79:d3:81:31:50:89:30:4d:9e:1f:10:3d: cd:be:07:37:ef:10:68:77:18:e9:34:d2:31:fa:99: 7e:8a:35:73:a3:96:7d:72:31:73:1f:0f:65:1d:b0: 61:5d:0a:83:c9:8e:09:83:38:36:13:ba:c1:17:eb: a4:c1:9f:28:a5:bf:8d:1d:b6:12:c5:fe:48:ac:96: 79:f6:87:63:fa:82:d5:02:ad:5c:90:8e:aa:59:2f: 3a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:28:02:AE:96:C2:80:BC:C4:75:39:01:39:B1:2A:7E:7C:D4:4C:00 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/eygCrpbCgLzEdTkBObEqfnzUTAA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.32/28 Signature Algorithm: sha256WithRSAEncryption 21:88:fe:09:3e:62:3d:19:b6:d3:e6:14:45:c3:e4:de:5e:2c: 12:6c:bf:bb:d9:db:e9:fe:e8:6e:5a:db:6a:ed:bd:3a:9a:d6: 88:64:78:ef:c4:79:99:3d:0f:2e:4b:7e:1e:5e:a4:f4:c9:55: a0:08:21:61:e5:a8:61:56:e4:c1:02:e3:8e:45:a2:01:72:23: a5:15:5c:f1:ee:0b:63:1d:8d:84:24:78:00:e2:5c:81:e5:8f: 7d:5b:80:00:b5:c1:02:ff:60:e4:36:83:42:51:67:de:15:77: 46:dd:d7:bb:a5:7e:ee:fc:73:50:93:38:3c:af:df:72:f2:50: 85:b7:81:37:0e:76:f5:88:73:63:6e:4f:7a:a6:ef:b2:a0:29: a0:71:3c:92:86:01:24:5c:03:21:fb:99:b1:b7:5f:5e:5c:94: 24:0a:fe:4c:19:a1:17:a0:4d:b0:83:ba:89:65:5f:3d:fa:3e: fc:8e:f7:e4:ae:d9:be:1b:85:2f:62:28:f6:28:aa:92:e1:18: c9:28:6d:06:11:8c:f6:d4:22:5b:d6:f3:61:6b:25:3f:cf:eb: 86:5d:f9:6e:6a:4c:da:e1:14:7a:47:88:16:bd:19:47:ed:f6: ce:48:2b:44:ef:c2:24:b8:ad:43:fa:90:03:6c:9c:ae:b9:e2: a0:28:3a:37 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTEwMDkw NjA4NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdCMjgwMkFFOTZDMjgw QkNDNDc1MzkwMTM5QjEyQTdFN0NENDRDMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsbHLrOF+eIYlJ2qSdcCWKQFTbOmNLmv67r2Sx1aqISpwTTomi MiPoEG0gbvgbMhiD+a/6ngQ6+16cYWJEYlJqYMejfIR5FlDjDB8jtzPhGYQ3b9JJ Z2rvyKYdXGH4adT8caxpmHIyJeXEcr85GcCO8TRdcudq0Oi3QzyOocRlN14t+VQH sY7kipH7X13tiVbsIDz+6Q+EX+Q3CTd7TUJ6jstcqcpiPHnTgTFQiTBNnh8QPc2+ BzfvEGh3GOk00jH6mX6KNXOjln1yMXMfD2UdsGFdCoPJjgmDODYTusEX66TBnyil v40dthLF/kislnn2h2P6gtUCrVyQjqpZLzrVAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUeygCrpbCgLzEdTkBObEqfnzUTAAwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvZXlnQ3JwYkNnTHpFZFRrQk9iRXFm bnpVVEFBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFBJ0U+CAw DQYJKoZIhvcNAQELBQADggEBACGI/gk+Yj0ZttPmFEXD5N5eLBJsv7vZ2+n+6G5a 22rtvTqa1ohkeO/EeZk9Dy5Lfh5epPTJVaAIIWHlqGFW5MEC445FogFyI6UVXPHu C2MdjYQkeADiXIHlj31bgAC1wQL/YOQ2g0JRZ94Vd0bd17ulfu78c1CTODyv33Ly UIW3gTcOdvWIc2NuT3qm77KgKaBxPJKGASRcAyH7mbG3X15clCQK/kwZoRegTbCD uollXz36PvyO9+Su2b4bhS9iKPYoqpLhGMkobQYRjPbUIlvW82FrJT/P64Zd+W5q TNrhFHpHiBa9GUft9s5IK0TvwiS4rUP6kANsnK654qAoOjc= -----END CERTIFICATE-----Generated at Mon Oct 20 20:13:50 2025 by rpki-client