$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/jLKa0XsGBSbaFXh3TxEn76E0l1Y.roa File: jLKa0XsGBSbaFXh3TxEn76E0l1Y.roa (raw, json) Hash identifier: h68/GTheWe8r+L492QZjNMqxMSvq1YkR6jBkOn/d0Sc= Subject key identifier: 8C:B2:9A:D1:7B:06:05:26:DA:15:78:77:4F:11:27:EF:A1:34:97:56 Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 03E6 Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/jLKa0XsGBSbaFXh3TxEn76E0l1Y.roa Signing time: Fri 22 Aug 2025 08:55:56 +0000 ROA not before: Fri 22 Aug 2025 08:55:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38047 IP address blocks: 2400:5ea0:852a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 998 (0x3e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: Aug 22 08:55:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8CB29AD17B060526DA1578774F1127EFA1349756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3a:f9:6f:a3:63:2b:d6:82:22:3c:7e:9d:a6: 5a:97:ad:de:74:ba:2a:b0:a0:b2:80:35:ac:97:87: d0:a9:16:df:96:16:b6:8f:1e:5d:e9:71:60:71:9b: 0e:08:4c:b4:9c:78:00:b0:1a:f0:9d:77:33:10:43: 0d:92:22:d4:0c:e2:a1:68:5b:4d:24:e3:e6:39:40: bb:82:de:3e:97:b8:20:29:1d:77:dd:03:2d:7b:e6: 2b:7e:05:63:7f:92:30:25:08:b1:9c:c4:78:a5:7e: a6:dc:f7:de:26:84:1c:04:7a:67:cc:ed:b5:62:11: cc:f3:51:38:f9:a1:50:be:4a:64:dd:cd:23:be:da: 49:b4:78:68:09:d7:93:b8:72:c6:2e:1a:c0:8f:a7: 54:b9:1d:b8:ed:8c:74:26:75:8d:12:4c:1d:2f:7b: c2:f9:ce:28:3b:01:8a:bc:10:cf:5c:4e:d6:73:c9: 5f:62:d5:0b:69:d3:ce:1a:b9:d1:f9:2f:8f:65:27: c5:71:35:de:43:5c:d1:55:d5:6d:a9:1d:52:c5:2f: 04:75:13:79:b0:99:67:6b:e1:3f:3f:d9:6a:66:cf: f6:b4:25:21:14:36:22:79:78:b4:29:3e:5c:d4:95: c9:cc:f4:6c:42:06:77:70:8d:f8:82:13:e5:c1:7d: f3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B2:9A:D1:7B:06:05:26:DA:15:78:77:4F:11:27:EF:A1:34:97:56 X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/jLKa0XsGBSbaFXh3TxEn76E0l1Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:5ea0:852a::/48 Signature Algorithm: sha256WithRSAEncryption 1e:6d:bb:bb:2b:e4:c7:85:8e:b6:2c:39:c5:4c:e3:b9:de:ee: 21:58:14:9c:c3:f6:8f:ca:9f:9b:44:2a:47:ce:74:4f:33:aa: da:fa:e5:bd:27:31:39:30:0b:1c:2c:0c:b8:1f:44:8a:5e:d0: cc:29:12:55:45:51:f4:27:74:6a:de:5d:94:d7:b3:59:33:d0: 38:cc:f1:20:55:65:c1:b4:92:16:76:bd:8b:0a:fc:54:e1:7e: bc:64:09:21:e3:d7:b2:3f:db:46:92:01:d1:ce:43:a3:cb:4f: cb:53:fc:7d:65:41:ed:92:4e:9e:f5:a0:b7:d4:13:fc:19:f4: 49:10:4c:a2:e4:83:a5:2c:09:1a:d8:bf:58:a3:a9:46:de:0b: 01:a2:23:91:de:38:35:25:7b:06:67:3a:cb:fd:85:92:a2:fb: a0:69:1a:1b:86:94:8d:b1:eb:9f:b9:0d:18:5b:48:59:ab:02: 37:38:67:a7:fa:93:2b:80:5c:73:2a:06:3b:8d:0e:75:6d:46: e6:32:c9:4c:b2:68:0d:34:c1:93:93:8d:1b:97:c6:1a:09:e1: fa:40:d8:26:dc:3e:59:e1:e7:e9:29:0c:36:55:88:09:13:c2: 38:67:80:a9:22:6e:ae:37:dd:0b:69:b9:32:31:93:c1:f4:c4: d7:02:44:e8 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICA+YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yNTA4MjIw ODU1NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhDQjI5QUQxN0IwNjA1 MjZEQTE1Nzg3NzRGMTEyN0VGQTEzNDk3NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Ovlvo2Mr1oIiPH6dplqXrd50uiqwoLKANayXh9CpFt+WFraP Hl3pcWBxmw4ITLSceACwGvCddzMQQw2SItQM4qFoW00k4+Y5QLuC3j6XuCApHXfd Ay175it+BWN/kjAlCLGcxHilfqbc994mhBwEemfM7bViEczzUTj5oVC+SmTdzSO+ 2km0eGgJ15O4csYuGsCPp1S5HbjtjHQmdY0STB0ve8L5zig7AYq8EM9cTtZzyV9i 1Qtp084audH5L49lJ8VxNd5DXNFV1W2pHVLFLwR1E3mwmWdr4T8/2Wpmz/a0JSEU NiJ5eLQpPlzUlcnM9GxCBndwjfiCE+XBffNZAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUjLKa0XsGBSbaFXh3TxEn76E0l1YwHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL2pMS2EwWHNHQlNiYUZYaDNU eEVuNzZFMGwxWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AF6ghSowDQYJKoZIhvcNAQELBQADggEBAB5tu7sr5MeFjrYsOcVM47ne7iFYFJzD 9o/Kn5tEKkfOdE8zqtr65b0nMTkwCxwsDLgfRIpe0MwpElVFUfQndGreXZTXs1kz 0DjM8SBVZcG0khZ2vYsK/FThfrxkCSHj17I/20aSAdHOQ6PLT8tT/H1lQe2STp71 oLfUE/wZ9EkQTKLkg6UsCRrYv1ijqUbeCwGiI5HeODUlewZnOsv9hZKi+6BpGhuG lI2x65+5DRhbSFmrAjc4Z6f6kyuAXHMqBjuNDnVtRuYyyUyyaA00wZOTjRuXxhoJ 4fpA2CbcPlnh5+kpDDZViAkTwjhngKkibq433QtpuTIxk8H0xNcCROg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:16:37 2025 by rpki-client