$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/V2-e3j-C2M3f-IPF48ND24nzbIA.roa File: V2-e3j-C2M3f-IPF48ND24nzbIA.roa (raw, json) Hash identifier: hFVoewVj78NZRFxiWLt4Uyz69EdAufx67waMMJXCdog= Subject key identifier: 57:6F:9E:DE:3F:82:D8:CD:DF:F8:83:C5:E3:C3:43:DB:89:F3:6C:80 Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Certificate serial: 022E Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/V2-e3j-C2M3f-IPF48ND24nzbIA.roa Signing time: Fri 22 Aug 2025 09:01:09 +0000 ROA not before: Fri 22 Aug 2025 09:01:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 19551 IP address blocks: 180.94.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Validity Not Before: Aug 22 09:01:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=576F9EDE3F82D8CDDFF883C5E3C343DB89F36C80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:78:6d:65:60:09:c0:c4:08:35:7f:3b:cb:2d: f2:73:42:dd:d0:8e:48:18:f3:a6:2e:60:8e:73:f6: 81:b1:46:af:1a:09:79:a4:ca:9a:83:67:6c:fc:5b: 9a:04:fc:af:f2:9b:87:33:60:8a:3f:ec:3f:66:5c: 0f:e4:63:cf:02:25:92:71:f6:06:02:fd:ce:b3:f3: 87:da:22:85:01:4a:0c:4f:53:38:c7:b0:02:d3:17: c2:96:d6:0c:fa:13:80:37:9e:80:cc:11:64:c2:c5: c7:61:54:21:cf:2e:ba:2d:de:9e:fb:fb:f9:c8:69: c0:3b:7f:cc:52:e8:b4:ee:72:d9:ec:b4:05:b0:7b: de:03:5f:1b:d6:e6:44:0b:8c:dd:ce:2d:4d:a2:98: 44:26:ad:dd:84:68:cf:04:95:de:65:f8:4b:08:8f: 5a:fa:8d:d4:c8:e9:d1:74:15:9e:9e:d6:a6:1d:52: 0f:78:c1:ac:49:5d:55:1b:98:ed:c5:2d:7e:f9:7c: 7a:a1:c2:4e:07:2f:98:bc:48:08:fa:25:66:23:8d: ab:5a:cc:56:0f:c6:45:f9:1b:d5:76:af:94:f2:e7: e2:1b:1c:d6:5e:0b:cc:d3:16:a2:8b:6e:ea:f4:95: f1:c1:52:e8:8d:14:4d:46:1d:68:27:9d:3c:a5:e0: e9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6F:9E:DE:3F:82:D8:CD:DF:F8:83:C5:E3:C3:43:DB:89:F3:6C:80 X509v3 Authority Key Identifier: keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/V2-e3j-C2M3f-IPF48ND24nzbIA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.94.30.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:9a:58:00:6c:43:83:f1:67:f9:bb:5f:3c:e3:b5:6c:13:59: df:06:0c:d1:99:69:6c:12:81:95:80:fa:14:af:11:85:c2:60: 60:20:56:75:64:57:5e:e6:7c:2f:3f:0f:7e:03:7a:e5:94:77: 7b:4e:77:2e:62:b0:f7:3a:01:57:f5:3f:a8:13:0b:75:96:70: cb:27:f0:4c:b2:c4:e3:55:64:db:64:d6:d5:d1:24:f9:00:ad: e9:9c:5e:4e:6f:5c:54:11:6f:db:ef:ea:92:6e:54:7f:67:52: 4e:d2:7c:ae:34:b5:4a:91:11:48:80:74:47:66:28:7a:2c:c3: 29:90:b5:eb:d5:5a:75:f8:1b:4c:9a:81:d5:7f:64:a8:cf:3a: 89:db:ce:1f:9c:f8:6a:cc:84:a0:79:5e:5b:2b:c4:0f:01:e1: d7:ea:1f:8a:d9:ff:f6:4d:de:46:89:fe:02:ab:4e:f1:ba:05: 21:31:83:26:fa:cd:6d:3b:b7:f8:67:62:ef:27:82:07:bd:94: 91:73:85:13:48:0f:e3:0f:9f:23:14:ff:91:d9:bb:67:fd:9e: f3:3a:90:4d:2f:6d:b2:49:9c:d3:72:31:4d:b2:32:10:de:64: 94:c2:4a:3b:c0:9b:16:e9:2d:14:8c:33:17:94:b8:97:5b:4a: d8:21:49:89 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzJD NDM2QkU5MkFFMEFEQ0IzMTRFQkMxQUNFMzE5RkY3N0JEQTNGQzAeFw0yNTA4MjIw OTAxMDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU3NkY5RURFM0Y4MkQ4 Q0RERkY4ODNDNUUzQzM0M0RCODlGMzZDODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUeG1lYAnAxAg1fzvLLfJzQt3QjkgY86YuYI5z9oGxRq8aCXmk ypqDZ2z8W5oE/K/ym4czYIo/7D9mXA/kY88CJZJx9gYC/c6z84faIoUBSgxPUzjH sALTF8KW1gz6E4A3noDMEWTCxcdhVCHPLrot3p77+/nIacA7f8xS6LTuctnstAWw e94DXxvW5kQLjN3OLU2imEQmrd2EaM8Eld5l+EsIj1r6jdTI6dF0FZ6e1qYdUg94 waxJXVUbmO3FLX75fHqhwk4HL5i8SAj6JWYjjatazFYPxkX5G9V2r5Ty5+IbHNZe C8zTFqKLbur0lfHBUuiNFE1GHWgnnTyl4OllAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUV2+e3j+C2M3f+IPF48ND24nzbIAwHwYDVR0jBBgwFoAUcsQ2vpKuCtyzFOvB rOMZ/3e9o/wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL2Nz UTJ2cEt1Q3R5ekZPdkJyT01aXzNlOW9fdy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Y3NRMnZwS3VDdHl6Rk92QnJPTVpfM2U5b193LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL1YyLWUzai1DMk0zZi1JUEY0OE5EMjRu emJJQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0Xh4wDQYJ KoZIhvcNAQELBQADggEBAIyaWABsQ4PxZ/m7XzzjtWwTWd8GDNGZaWwSgZWA+hSv EYXCYGAgVnVkV17mfC8/D34DeuWUd3tOdy5isPc6AVf1P6gTC3WWcMsn8EyyxONV ZNtk1tXRJPkAremcXk5vXFQRb9vv6pJuVH9nUk7SfK40tUqREUiAdEdmKHoswymQ tevVWnX4G0yagdV/ZKjPOonbzh+c+GrMhKB5XlsrxA8B4dfqH4rZ//ZN3kaJ/gKr TvG6BSExgyb6zW07t/hnYu8ngge9lJFzhRNID+MPnyMU/5HZu2f9nvM6kE0vbbJJ nNNyMU2yMhDeZJTCSjvAmxbpLRSMMxeUuJdbStghSYk= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:49 2025 by rpki-client