$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JFT/MGobDFg7QJxndLJaXE_-6EOvDwo.roa File: MGobDFg7QJxndLJaXE_-6EOvDwo.roa (raw, json) Hash identifier: gulUp6Fo8TOp7Toeokeo+lWHrEcerIyoeH4VEkbpgIE= Subject key identifier: 30:6A:1B:0C:58:3B:40:9C:67:74:B2:5A:5C:4F:FE:E8:43:AF:0F:0A Certificate issuer: /CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Certificate serial: 0275 Authority key identifier: 62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/MGobDFg7QJxndLJaXE_-6EOvDwo.roa Signing time: Fri 22 Aug 2025 09:01:13 +0000 ROA not before: Fri 22 Aug 2025 09:01:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18041 IP address blocks: 2401:16a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Validity Not Before: Aug 22 09:01:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=306A1B0C583B409C6774B25A5C4FFEE843AF0F0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:02:0e:f2:f9:63:db:f3:38:71:ac:28:01:2a: 04:21:70:28:88:ce:d6:e8:ab:6f:22:e9:74:cd:9e: a4:0e:61:fa:61:c4:32:84:35:b4:33:b6:f3:cb:07: 19:f8:9a:09:f6:7b:57:54:40:ff:da:2c:4a:fb:80: de:9d:5e:dd:d9:44:ca:a7:0c:90:48:da:06:20:54: c2:8e:97:13:6b:9c:da:c4:fc:06:bd:db:b5:f3:bc: ae:a8:01:c3:99:c8:95:ba:3b:fd:d4:13:13:cc:4e: a3:78:6b:ab:95:6c:73:b2:80:67:b5:8c:cf:33:6d: 16:57:57:5b:19:60:69:81:2e:cd:04:9d:aa:6f:bf: 2f:82:0d:b6:07:97:0d:db:d4:84:7d:0e:f3:d5:2b: c4:b3:06:8a:ff:d2:ac:51:49:6e:20:6b:4a:e1:b9: 39:a0:7a:5a:de:1f:27:bd:22:36:80:51:c5:b2:65: f8:d0:aa:73:b6:ee:49:cf:54:60:c4:c1:55:5e:f1: 97:69:3b:13:07:b6:09:77:e8:ae:9d:c9:c8:f6:dd: 5e:13:6e:bc:48:31:4d:ad:fd:a7:6f:bf:2e:22:df: b3:1d:1f:d2:cd:5b:70:df:f3:e8:5b:2c:7c:39:4e: 31:9a:94:b3:90:67:8a:2c:52:48:d3:38:1d:d1:e1: 8d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:6A:1B:0C:58:3B:40:9C:67:74:B2:5A:5C:4F:FE:E8:43:AF:0F:0A X509v3 Authority Key Identifier: keyid:62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/MGobDFg7QJxndLJaXE_-6EOvDwo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:16a0::/32 Signature Algorithm: sha256WithRSAEncryption 1c:ab:c6:77:89:4d:42:9d:1d:70:e1:a4:25:8a:4d:5d:ea:0d: 6c:2a:94:a3:15:ed:41:ef:9b:2a:0c:3c:d8:77:56:6f:74:68: 26:1a:52:a5:ef:6d:f4:3d:56:01:80:fc:95:77:03:50:8a:df: 02:15:d3:be:87:75:34:21:bc:26:99:3e:6e:e1:1f:70:97:55: c0:7d:ae:71:c7:2e:6c:3f:e3:ba:ed:7d:7d:9b:68:b6:71:54: 5f:bd:82:12:74:b2:21:35:81:76:0b:95:65:13:d2:57:76:f6: a4:c2:ef:f3:13:c6:72:f5:3d:bd:90:aa:4e:2e:9f:9b:09:46: 19:31:5e:49:d9:ef:39:95:b5:a9:02:c1:db:12:51:da:76:f6: 76:2f:4e:ec:01:77:01:19:61:4b:57:a4:d8:3f:49:5e:0e:ab: 5a:d3:b0:75:4b:f2:7e:90:54:cc:ce:ce:b4:d6:50:cc:84:9a: ef:69:fc:ab:17:85:fd:97:60:c0:8d:93:ee:6b:74:9c:0c:f8: 0c:2c:82:66:1e:b5:16:11:18:6b:10:f4:c4:54:34:18:40:ca: b7:82:f1:fc:af:2a:81:34:1d:28:29:45:8c:bc:af:ed:ca:d2: 13:e3:92:41:89:93:a7:f1:7e:1a:f1:29:b4:28:d2:9e:53:95: b0:0e:12:91 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjI3 RDY3NUZGNUUyQzhCQTkwRjRCNjU1QjEwOEI2OTI1REFGMTU5NTAeFw0yNTA4MjIw OTAxMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMwNkExQjBDNTgzQjQw OUM2Nzc0QjI1QTVDNEZGRUU4NDNBRjBGMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD6Ag7y+WPb8zhxrCgBKgQhcCiIztboq28i6XTNnqQOYfphxDKE NbQztvPLBxn4mgn2e1dUQP/aLEr7gN6dXt3ZRMqnDJBI2gYgVMKOlxNrnNrE/Aa9 27XzvK6oAcOZyJW6O/3UExPMTqN4a6uVbHOygGe1jM8zbRZXV1sZYGmBLs0Enapv vy+CDbYHlw3b1IR9DvPVK8SzBor/0qxRSW4ga0rhuTmgelreHye9IjaAUcWyZfjQ qnO27knPVGDEwVVe8ZdpOxMHtgl36K6dycj23V4TbrxIMU2t/advvy4i37MdH9LN W3Df8+hbLHw5TjGalLOQZ4osUkjTOB3R4Y2bAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUMGobDFg7QJxndLJaXE/+6EOvDwowHwYDVR0jBBgwFoAUYn1nX/XiyLqQ9LZV sQi2kl2vFZUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL1lu MW5YX1hpeUxxUTlMWlZzUWkya2wydkZaVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev WW4xblhfWGl5THFROUxaVnNRaTJrbDJ2RlpVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL01Hb2JERmc3UUp4bmRMSmFYRV8tNkVP dkR3by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkARagMA0G CSqGSIb3DQEBCwUAA4IBAQAcq8Z3iU1CnR1w4aQlik1d6g1sKpSjFe1B75sqDDzY d1ZvdGgmGlKl7230PVYBgPyVdwNQit8CFdO+h3U0IbwmmT5u4R9wl1XAfa5xxy5s P+O67X19m2i2cVRfvYISdLIhNYF2C5VlE9JXdvakwu/zE8Zy9T29kKpOLp+bCUYZ MV5J2e85lbWpAsHbElHadvZ2L07sAXcBGWFLV6TYP0leDqta07B1S/J+kFTMzs60 1lDMhJrvafyrF4X9l2DAjZPua3ScDPgMLIJmHrUWERhrEPTEVDQYQMq3gvH8ryqB NB0oKUWMvK/tytIT45JBiZOn8X4a8Sm0KNKeU5WwDhKR -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:26 2025 by rpki-client