$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IDT/ISiAlMu9Bx0JGQsh1l4u-_mW9po.roa File: ISiAlMu9Bx0JGQsh1l4u-_mW9po.roa (raw, json) Hash identifier: SsIIlymhpFNPAUj18BJo17BkNF+QGJR3FA6zYXIWOKk= Subject key identifier: 21:28:80:94:CB:BD:07:1D:09:19:0B:21:D6:5E:2E:FB:F9:96:F6:9A Certificate issuer: /CN=4FA6A6A655A0C42B99C7E2087EBEF444ACB56493 Certificate serial: 05EE Authority key identifier: 4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/ISiAlMu9Bx0JGQsh1l4u-_mW9po.roa Signing time: Fri 22 Aug 2025 08:55:14 +0000 ROA not before: Fri 22 Aug 2025 08:55:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 2406:2fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FA6A6A655A0C42B99C7E2087EBEF444ACB56493 Validity Not Before: Aug 22 08:55:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=21288094CBBD071D09190B21D65E2EFBF996F69A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9b:24:e3:4b:01:66:b6:cc:b8:64:3f:89:10: 35:85:33:02:ae:4a:95:3a:9c:ca:da:59:9d:10:7e: 7e:3a:d8:2c:28:7b:b9:1e:01:0c:de:f2:cf:11:b3: a6:00:87:c9:6a:a3:bf:2a:35:b0:28:ac:f5:3b:0a: 73:49:46:1c:4c:a3:b3:18:06:cc:db:74:4f:64:95: cd:b8:99:e1:a8:ef:43:c9:18:3b:ef:01:4f:e3:77: 71:96:58:30:34:0d:a9:a8:b0:da:ce:3a:27:31:6d: af:97:8b:77:74:39:30:f1:36:56:74:47:b7:a8:7f: 93:4d:a0:b4:14:c6:47:0d:d7:eb:30:7d:1d:43:d2: 93:20:e4:cc:fc:aa:75:b8:21:7a:12:c4:5d:c0:e8: ae:52:bf:57:3e:96:e2:e5:f9:70:1a:f3:a2:24:e1: 14:63:ed:f5:a6:1f:e5:50:58:4b:09:e0:c3:b3:8e: 8e:6e:b8:e6:07:f6:f1:dd:eb:3a:33:8e:f3:19:4a: 09:44:af:1d:a6:b9:22:0b:72:4f:e4:33:5e:c9:fb: af:70:05:0f:fd:f4:aa:e5:94:82:a0:cf:06:9c:40: 11:e7:0b:aa:cd:69:2a:5f:4d:a0:e5:ad:8d:db:ff: 0f:33:45:30:91:04:12:75:38:93:cf:eb:08:e7:fe: 00:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:28:80:94:CB:BD:07:1D:09:19:0B:21:D6:5E:2E:FB:F9:96:F6:9A X509v3 Authority Key Identifier: keyid:4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/ISiAlMu9Bx0JGQsh1l4u-_mW9po.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:2fc0::/32 Signature Algorithm: sha256WithRSAEncryption c5:ac:63:32:3e:36:d1:38:a3:63:95:fe:1e:a5:99:46:17:c0: 21:8a:9d:9b:5b:cf:37:3f:17:21:21:06:20:8d:6a:11:91:90: aa:06:5a:d7:62:9f:71:dc:48:a9:52:17:f7:8e:d9:90:63:b6: 82:cc:9d:ab:d9:ed:ea:74:fa:08:45:7a:8c:4c:f4:84:bc:e5: 20:23:f3:00:df:23:e9:eb:5b:90:73:5d:27:1b:17:0e:77:6e: a8:cb:41:9f:90:0b:5d:ad:9a:19:fd:c6:b9:d1:69:0f:e0:fc: 47:e1:5b:f3:f3:06:8d:a4:42:0f:8e:25:b4:1b:65:2d:90:62: 72:8e:ad:e5:8a:79:05:18:8a:e5:22:07:87:bd:f9:5f:2f:38: 14:4b:96:33:11:ac:2b:db:10:88:51:5b:8c:02:1e:b1:16:31: 0a:fe:7b:c4:df:09:13:21:dc:15:fe:23:f7:ec:02:a5:07:1d: b7:c3:c4:6a:87:c3:f3:66:c8:6a:eb:0f:36:e8:ae:2f:58:9e: a5:36:06:be:c1:61:26:3a:ad:7f:5a:6e:fd:86:38:89:cc:72: d2:2e:2c:9e:95:b9:3a:15:b3:90:7c:ae:de:49:93:c5:1d:8e: 90:cd:46:02:44:dd:df:30:69:d2:fe:1b:55:d5:65:ad:f3:dd: ba:c5:79:1d -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZB NkE2QTY1NUEwQzQyQjk5QzdFMjA4N0VCRUY0NDRBQ0I1NjQ5MzAeFw0yNTA4MjIw ODU1MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIxMjg4MDk0Q0JCRDA3 MUQwOTE5MEIyMUQ2NUUyRUZCRjk5NkY2OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOmyTjSwFmtsy4ZD+JEDWFMwKuSpU6nMraWZ0Qfn462Cwoe7ke AQze8s8Rs6YAh8lqo78qNbAorPU7CnNJRhxMo7MYBszbdE9klc24meGo70PJGDvv AU/jd3GWWDA0DamosNrOOicxba+Xi3d0OTDxNlZ0R7eof5NNoLQUxkcN1+swfR1D 0pMg5Mz8qnW4IXoSxF3A6K5Sv1c+luLl+XAa86Ik4RRj7fWmH+VQWEsJ4MOzjo5u uOYH9vHd6zozjvMZSglErx2muSILck/kM17J+69wBQ/99KrllIKgzwacQBHnC6rN aSpfTaDlrY3b/w8zRTCRBBJ1OJPP6wjn/gBzAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUISiAlMu9Bx0JGQsh1l4u+/mW9powHwYDVR0jBBgwFoAUT6amplWgxCuZx+II fr70RKy1ZJMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSURUL1Q2 YW1wbFdneEN1WngtSUlmcjcwUkt5MVpKTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev VDZhbXBsV2d4Q3VaeC1JSWZyNzBSS3kxWkpNLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSURUL0lTaUFsTXU5QngwSkdRc2gxbDR1LV9t Vzlwby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBi/AMA0G CSqGSIb3DQEBCwUAA4IBAQDFrGMyPjbROKNjlf4epZlGF8Ahip2bW883PxchIQYg jWoRkZCqBlrXYp9x3EipUhf3jtmQY7aCzJ2r2e3qdPoIRXqMTPSEvOUgI/MA3yPp 61uQc10nGxcOd26oy0GfkAtdrZoZ/ca50WkP4PxH4Vvz8waNpEIPjiW0G2UtkGJy jq3linkFGIrlIgeHvflfLzgUS5YzEawr2xCIUVuMAh6xFjEK/nvE3wkTIdwV/iP3 7AKlBx23w8Rqh8PzZshq6w826K4vWJ6lNga+wWEmOq1/Wm79hjiJzHLSLiyelbk6 FbOQfK7eSZPFHY6QzUYCRN3fMGnS/htV1WWt8926xXkd -----END CERTIFICATE-----Generated at Sun Aug 24 15:36:32 2025 by rpki-client