$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/SwGJksHfXG_hW-bnWpCDYo2hV_o.roa File: SwGJksHfXG_hW-bnWpCDYo2hV_o.roa (raw, json) Hash identifier: 2RAG9iJlUObKk9QMjilJSv7vsU9lG0VWVePt54z1BwU= Subject key identifier: 4B:01:89:92:C1:DF:5C:6F:E1:5B:E6:E7:5A:90:83:62:8D:A1:57:FA Certificate issuer: /CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9 Certificate serial: 0233 Authority key identifier: F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/SwGJksHfXG_hW-bnWpCDYo2hV_o.roa Signing time: Fri 22 Aug 2025 08:44:03 +0000 ROA not before: Fri 22 Aug 2025 08:44:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 14874 IP address blocks: 202.47.172.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9 Validity Not Before: Aug 22 08:44:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4B018992C1DF5C6FE15BE6E75A9083628DA157FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f3:b5:6d:a9:da:a0:13:e0:0d:99:96:e1:11: b5:08:96:b7:b4:b3:07:09:77:40:88:e5:a5:cb:2d: 04:54:54:b8:91:00:ca:a3:b6:07:67:a2:cc:5e:a1: 94:c7:01:c2:15:52:12:41:d3:aa:6c:49:4a:35:89: a6:54:7a:39:86:ea:eb:22:90:f4:f4:e5:77:be:cb: 07:73:67:d6:7c:5a:bc:09:24:0d:32:b1:eb:8b:2a: b9:8c:2c:77:f7:3b:f2:1d:77:6e:62:bb:2a:62:79: a3:9f:5a:2e:62:56:c6:33:8b:30:8f:4a:94:38:43: 0a:99:b0:72:96:52:b1:e5:d9:cb:f9:32:b3:ea:ae: 8e:26:39:58:0c:36:16:01:e0:ae:77:23:cb:6b:eb: d1:89:0d:17:5c:b0:f8:da:55:d0:64:37:19:07:8c: db:be:ed:13:48:77:93:f8:8c:b8:53:df:5a:20:68: e7:59:86:b9:c6:49:1c:7b:0f:07:61:06:22:93:af: 70:a4:1b:53:0f:2b:12:6b:d7:a5:d2:99:e4:bd:fc: 8b:9d:a2:5f:01:b5:63:c8:d4:5c:f9:3a:dd:39:78: 76:44:9d:84:7e:00:80:bc:c9:6e:6f:b2:3f:60:64: ac:0d:c5:a1:c9:14:ca:0c:07:e3:8f:ad:cb:0c:7f: dc:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:01:89:92:C1:DF:5C:6F:E1:5B:E6:E7:5A:90:83:62:8D:A1:57:FA X509v3 Authority Key Identifier: keyid:F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/SwGJksHfXG_hW-bnWpCDYo2hV_o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.47.172.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:9f:8c:ca:27:b1:6a:79:1d:c4:b1:51:98:c2:6b:d7:15:b3: 58:c5:93:55:5e:d7:de:f9:d8:e0:59:cb:62:a2:ff:57:2b:4a: 05:d0:51:dc:eb:d7:72:31:af:f0:26:b7:57:54:18:32:9f:0a: 5f:7d:15:58:d7:17:6e:b9:c4:d6:c2:03:3f:7e:16:16:9a:cd: b6:57:df:a2:de:7e:1a:d8:53:60:94:02:34:ea:02:c6:21:7e: 16:8d:e9:08:92:2a:d5:9f:e7:10:19:a0:72:5d:36:ca:b9:89: 35:5e:df:50:aa:c2:ee:26:ba:ec:95:d3:e0:6b:7d:e6:83:b3: 42:ad:73:e5:38:4d:8a:b0:4c:0e:a1:7d:e4:ae:96:6d:0e:b7: 08:3b:13:bd:97:be:6f:b7:7d:81:d5:34:6f:7d:e8:c9:80:72: c4:2b:9e:1f:f8:6e:be:ac:2e:00:ee:2b:9f:f9:e1:ad:dc:06: 1e:b5:55:c8:0b:4c:a8:9d:9a:4b:8c:28:e3:c2:99:0b:9f:a0: 1d:19:b0:5b:f9:cb:26:da:07:93:0c:0b:b2:73:50:a8:eb:30: 2a:c0:5c:cc:9e:d5:9a:c2:45:f5:a8:96:fc:7d:8b:2f:93:5d: 0d:fd:c4:74:9e:3e:70:78:6d:be:57:58:9f:70:d5:a1:7d:58: bc:5b:1a:36 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjk1 RjBBQTRFRUUzNDZGMDc3QTBDRUVDOEQwNkNDNDk4RjlCMUFCOTAeFw0yNTA4MjIw ODQ0MDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRCMDE4OTkyQzFERjVD NkZFMTVCRTZFNzVBOTA4MzYyOERBMTU3RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO87VtqdqgE+ANmZbhEbUIlre0swcJd0CI5aXLLQRUVLiRAMqj tgdnosxeoZTHAcIVUhJB06psSUo1iaZUejmG6usikPT05Xe+ywdzZ9Z8WrwJJA0y seuLKrmMLHf3O/Idd25iuypieaOfWi5iVsYzizCPSpQ4QwqZsHKWUrHl2cv5MrPq ro4mOVgMNhYB4K53I8tr69GJDRdcsPjaVdBkNxkHjNu+7RNId5P4jLhT31ogaOdZ hrnGSRx7DwdhBiKTr3CkG1MPKxJr16XSmeS9/Iudol8BtWPI1Fz5Ot05eHZEnYR+ AIC8yW5vsj9gZKwNxaHJFMoMB+OPrcsMf9yLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSwGJksHfXG/hW+bnWpCDYo2hV/owHwYDVR0jBBgwFoAU+V8KpO7jRvB3oM7s jQbMSY+bGrkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0FJV0VJ Ly1WOEtwTzdqUnZCM29NN3NqUWJNU1ktYkdyay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvLVY4S3BPN2pSdkIzb003c2pRYk1TWS1iR3JrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0FJV0VJL1N3R0prc0hmWEdfaFctYm5X cENEWW8yaFZfby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHK L6wwDQYJKoZIhvcNAQELBQADggEBABqfjMonsWp5HcSxUZjCa9cVs1jFk1Ve1975 2OBZy2Ki/1crSgXQUdzr13Ixr/Amt1dUGDKfCl99FVjXF265xNbCAz9+FhaazbZX 36LefhrYU2CUAjTqAsYhfhaN6QiSKtWf5xAZoHJdNsq5iTVe31Cqwu4muuyV0+Br feaDs0Ktc+U4TYqwTA6hfeSulm0Otwg7E72Xvm+3fYHVNG996MmAcsQrnh/4br6s LgDuK5/54a3cBh61VcgLTKidmkuMKOPCmQufoB0ZsFv5yybaB5MMC7JzUKjrMCrA XMye1ZrCRfWolvx9iy+TXQ39xHSePnB4bb5XWJ9w1aF9WLxbGjY= -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:44 2025 by rpki-client