$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ITRINET/ftyqd-UeVdZb1JpCuqVjslaOx5M.roa File: ftyqd-UeVdZb1JpCuqVjslaOx5M.roa (raw, json) Hash identifier: oEqDkLOpiovn9tqboN86f0ht9iyAfuHKTv933SKK3UI= Subject key identifier: 7E:DC:AA:77:E5:1E:55:D6:5B:D4:9A:42:BA:A5:63:B2:56:8E:C7:93 Certificate issuer: /CN=2F9BECFFE7DA09CA053A2F9681412B19FB004A74 Certificate serial: 0D79 Authority key identifier: 2F:9B:EC:FF:E7:DA:09:CA:05:3A:2F:96:81:41:2B:19:FB:00:4A:74 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/ftyqd-UeVdZb1JpCuqVjslaOx5M.roa Signing time: Fri 22 Aug 2025 08:58:02 +0000 ROA not before: Fri 22 Aug 2025 08:58:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18422 IP address blocks: 61.61.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3449 (0xd79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F9BECFFE7DA09CA053A2F9681412B19FB004A74 Validity Not Before: Aug 22 08:58:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7EDCAA77E51E55D65BD49A42BAA563B2568EC793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fa:0a:ac:71:b2:c7:5a:3f:73:8f:66:f0:c0: 9f:af:53:ae:e5:9a:bb:72:93:a5:c0:5e:0f:f1:e5: 4f:8f:7f:14:9a:88:04:8e:18:d5:03:a7:26:0e:d1: 76:1b:66:07:8b:db:59:4b:f6:4b:49:c1:c5:e4:20: 5a:71:ca:f4:b8:7d:85:0c:a1:08:86:b6:11:8f:aa: 35:4b:24:36:dd:2b:66:fc:1f:21:7f:2c:a7:52:eb: e0:14:96:dc:ee:3d:d0:09:3a:db:b4:d7:f4:82:34: dd:e1:3c:7f:d7:fe:50:da:b0:5d:33:d6:58:bf:33: e8:2c:8c:f6:5d:ea:f6:c9:4e:bb:91:46:b7:e2:1b: 6d:35:4d:4a:fe:f2:96:61:1f:6d:3f:67:be:08:2d: 5b:b4:30:83:3f:a6:12:3d:bd:25:c2:b2:b1:ba:ae: 04:56:27:0e:b0:75:46:91:64:89:8c:7d:99:f5:0b: ad:90:20:7f:61:5f:c0:aa:4e:c3:dc:61:12:2a:0c: 4c:ab:9d:4a:f7:fb:8f:6e:a3:17:3f:d0:0b:e3:f0: 5d:79:2b:a6:6d:10:48:6f:e2:f1:59:d5:8e:3e:ab: d4:d1:54:b7:8c:39:59:2e:98:67:d5:0f:f8:d8:8b: 77:3c:92:0a:8d:a8:a4:5a:26:8e:e5:a9:d9:67:7c: 97:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DC:AA:77:E5:1E:55:D6:5B:D4:9A:42:BA:A5:63:B2:56:8E:C7:93 X509v3 Authority Key Identifier: keyid:2F:9B:EC:FF:E7:DA:09:CA:05:3A:2F:96:81:41:2B:19:FB:00:4A:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/ftyqd-UeVdZb1JpCuqVjslaOx5M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.240.0/20 Signature Algorithm: sha256WithRSAEncryption 63:f4:1e:f4:34:f4:b4:a5:b6:7d:f8:cd:3a:30:a4:7f:09:d3: 6e:9f:f5:04:9d:66:bf:82:36:3c:68:ed:64:e2:c6:0d:5f:4b: 43:09:d4:43:2d:6d:88:54:9a:d7:18:f4:3c:7c:43:08:ac:81: dd:41:0d:78:3c:65:3c:b9:6e:0b:a8:27:28:f7:5b:aa:ef:6c: b3:de:2a:16:7b:78:3b:3a:45:2c:00:69:fa:a0:31:2f:48:57: ab:da:9d:d8:13:36:7f:51:95:e3:20:ca:ec:a9:4d:9f:b4:6a: 9c:3d:3d:cf:c4:da:0a:42:3b:5e:29:01:41:0b:3d:ed:ff:3a: d6:b3:15:e1:46:35:eb:d1:15:c7:64:f0:50:d9:07:c1:94:be: 43:93:b4:50:36:79:2d:ab:97:8b:10:b3:e8:ef:af:9b:1b:86: a3:9f:97:c1:e1:1e:6a:da:7f:38:f0:23:91:21:2b:9f:04:bf: 58:0f:fa:20:84:67:4d:da:a9:2c:8c:5a:db:c2:ec:23:20:51: 1b:47:e0:1e:46:e2:5d:82:2f:bb:e8:7e:f4:1f:29:a8:9a:fa: ff:86:14:72:1b:00:f9:f4:4b:76:85:03:fe:ab:b8:82:0d:0f: 31:5c:46:b7:59:6a:83:f6:cf:64:71:eb:0b:e2:03:d6:38:bf: 1e:ca:9a:bf -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDXkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkY5 QkVDRkZFN0RBMDlDQTA1M0EyRjk2ODE0MTJCMTlGQjAwNEE3NDAeFw0yNTA4MjIw ODU4MDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdFRENBQTc3RTUxRTU1 RDY1QkQ0OUE0MkJBQTU2M0IyNTY4RUM3OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ+gqscbLHWj9zj2bwwJ+vU67lmrtyk6XAXg/x5U+PfxSaiASO GNUDpyYO0XYbZgeL21lL9ktJwcXkIFpxyvS4fYUMoQiGthGPqjVLJDbdK2b8HyF/ LKdS6+AUltzuPdAJOtu01/SCNN3hPH/X/lDasF0z1li/M+gsjPZd6vbJTruRRrfi G201TUr+8pZhH20/Z74ILVu0MIM/phI9vSXCsrG6rgRWJw6wdUaRZImMfZn1C62Q IH9hX8CqTsPcYRIqDEyrnUr3+49uoxc/0Avj8F15K6ZtEEhv4vFZ1Y4+q9TRVLeM OVkumGfVD/jYi3c8kgqNqKRaJo7lqdlnfJfPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUftyqd+UeVdZb1JpCuqVjslaOx5MwHwYDVR0jBBgwFoAUL5vs/+faCcoFOi+W gUErGfsASnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVRSSU5F VC9MNXZzXy1mYUNjb0ZPaS1XZ1VFckdmc0FTblEuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0w1dnNfLWZhQ2NvRk9pLVdnVUVyR2ZzQVNuUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lUUklORVQvZnR5cWQtVWVWZFpiMUpw Q3VxVmpzbGFPeDVNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD098DANBgkqhkiG9w0BAQsFAAOCAQEAY/Qe9DT0tKW2ffjNOjCkfwnTbp/1BJ1m v4I2PGjtZOLGDV9LQwnUQy1tiFSa1xj0PHxDCKyB3UENeDxlPLluC6gnKPdbqu9s s94qFnt4OzpFLABp+qAxL0hXq9qd2BM2f1GV4yDK7KlNn7RqnD09z8TaCkI7XikB QQs97f861rMV4UY169EVx2TwUNkHwZS+Q5O0UDZ5LauXixCz6O+vmxuGo5+XweEe atp/OPAjkSErnwS/WA/6IIRnTdqpLIxa28LsIyBRG0fgHkbiXYIvu+h+9B8pqJr6 /4YUchsA+fRLdoUD/qu4gg0PMVxGt1lqg/bPZHHrC+ID1ji/Hsqavw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:43:24 2025 by rpki-client