$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/rEDBPd9QydLPmNdugYc-Cw9E9d8.roa File: rEDBPd9QydLPmNdugYc-Cw9E9d8.roa (raw, json) Hash identifier: Is2DH/5MAbpAg0nOVvIxsesK1GhINut4G7201Gjsppg= Subject key identifier: AC:40:C1:3D:DF:50:C9:D2:CF:98:D7:6E:81:87:3E:0B:0F:44:F5:DF Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 03E8 Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/rEDBPd9QydLPmNdugYc-Cw9E9d8.roa Signing time: Fri 22 Aug 2025 08:55:56 +0000 ROA not before: Fri 22 Aug 2025 08:55:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38047 IP address blocks: 2400:5ea0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1000 (0x3e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: Aug 22 08:55:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AC40C13DDF50C9D2CF98D76E81873E0B0F44F5DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:46:73:7f:9c:9f:9b:eb:4b:36:21:2b:1c:68: 7f:c8:e0:76:b1:17:24:0e:cf:63:a8:29:d0:56:c5: 85:2e:ea:f8:a0:8e:cd:ce:35:97:1b:c1:d7:67:b7: f3:bd:80:5d:11:7d:6e:64:05:cb:e4:03:82:4e:a8: c6:51:1b:cd:91:94:96:81:7b:81:9b:78:64:e8:55: 6b:37:c5:8b:25:61:e9:e3:e5:7a:c9:af:ad:4c:f2: d7:a0:1c:8a:47:dd:a2:06:2c:f5:27:ad:ec:3d:29: 6f:7f:e0:55:8e:b1:de:69:c0:7c:4d:2e:66:60:ae: d6:d2:e0:6d:21:d4:07:a3:d0:c3:2c:d2:73:60:37: 1e:e7:b4:aa:46:96:ae:07:c0:31:c9:8a:48:4e:05: 88:c1:39:b4:37:1f:bf:2e:ab:02:28:2d:1c:80:0b: e4:50:c2:b9:18:de:14:90:d2:1b:73:74:f2:38:c8: 6f:1d:05:68:d2:88:e0:f5:1b:cc:04:00:a8:e3:cd: 0b:fe:e6:5d:af:54:70:7b:16:8d:ba:b5:19:24:a8: 56:c3:77:50:80:5a:d2:70:fa:92:ea:e1:a0:d9:29: 74:9e:79:38:94:2a:73:03:12:0b:3c:3f:5a:6f:0c: 37:56:0b:01:e0:48:a2:37:80:f6:74:21:3c:7c:1f: c0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:40:C1:3D:DF:50:C9:D2:CF:98:D7:6E:81:87:3E:0B:0F:44:F5:DF X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/rEDBPd9QydLPmNdugYc-Cw9E9d8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:5ea0::/32 Signature Algorithm: sha256WithRSAEncryption 99:b2:10:87:d5:99:e2:50:f6:1e:d9:87:4a:ba:c7:91:aa:d3: 0a:d2:8c:08:e3:96:bb:52:ab:c8:cf:09:2d:60:16:84:34:a7: 5e:de:1d:d1:99:50:d4:99:22:b9:a4:f9:6b:20:4b:89:48:a6: d2:d9:20:32:e2:57:8d:5e:18:60:bf:24:b9:85:94:fe:28:ef: 83:30:2d:d5:46:8d:fb:bd:29:ed:fd:fd:d6:1e:f0:ed:9a:e8: 2b:22:dd:bc:7b:32:91:33:b3:98:32:6e:94:2b:d8:46:97:a9: 13:36:7c:c1:a7:56:22:6d:9d:f9:22:bc:d8:ae:17:5b:06:1e: 2c:8d:ac:96:9e:89:49:c9:11:00:d6:f6:7e:03:33:ce:11:96: ac:13:a3:5d:f1:84:97:7a:2d:05:17:f1:22:c9:16:18:54:8e: 93:3a:7a:2e:03:d7:7d:9f:e6:27:9a:2d:ac:3b:8f:04:9e:87: 7d:b7:c8:cc:f9:79:b8:fe:21:ac:2f:3c:cc:8a:d9:fb:cc:02: 1e:1d:60:7d:2e:a8:4f:b1:57:8d:5b:be:2e:57:ce:2e:bb:e3: c9:37:70:62:59:49:80:0f:6c:62:04:09:71:d9:81:74:24:85: 96:a2:21:e9:46:bf:f8:fd:39:72:4f:25:a0:cb:7b:8b:17:fc: e8:b3:32:49 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICA+gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yNTA4MjIw ODU1NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFDNDBDMTNEREY1MEM5 RDJDRjk4RDc2RTgxODczRTBCMEY0NEY1REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmRnN/nJ+b60s2ISscaH/I4HaxFyQOz2OoKdBWxYUu6vigjs3O NZcbwddnt/O9gF0RfW5kBcvkA4JOqMZRG82RlJaBe4GbeGToVWs3xYslYenj5XrJ r61M8tegHIpH3aIGLPUnrew9KW9/4FWOsd5pwHxNLmZgrtbS4G0h1Aej0MMs0nNg Nx7ntKpGlq4HwDHJikhOBYjBObQ3H78uqwIoLRyAC+RQwrkY3hSQ0htzdPI4yG8d BWjSiOD1G8wEAKjjzQv+5l2vVHB7Fo26tRkkqFbDd1CAWtJw+pLq4aDZKXSeeTiU KnMDEgs8P1pvDDdWCwHgSKI3gPZ0ITx8H8DbAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUrEDBPd9QydLPmNdugYc+Cw9E9d8wHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL3JFREJQZDlReWRMUG1OZHVn WWMtQ3c5RTlkOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk AF6gMA0GCSqGSIb3DQEBCwUAA4IBAQCZshCH1ZniUPYe2YdKuseRqtMK0owI45a7 UqvIzwktYBaENKde3h3RmVDUmSK5pPlrIEuJSKbS2SAy4leNXhhgvyS5hZT+KO+D MC3VRo37vSnt/f3WHvDtmugrIt28ezKRM7OYMm6UK9hGl6kTNnzBp1YibZ35IrzY rhdbBh4sjayWnolJyREA1vZ+AzPOEZasE6Nd8YSXei0FF/EiyRYYVI6TOnouA9d9 n+Ynmi2sO48Enod9t8jM+Xm4/iGsLzzMitn7zAIeHWB9LqhPsVeNW74uV84uu+PJ N3BiWUmAD2xiBAlx2YF0JIWWoiHpRr/4/TlyTyWgy3uLF/zoszJJ -----END CERTIFICATE-----Generated at Sun Aug 24 11:14:24 2025 by rpki-client