$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/0GdIWU1lfyMQFzmPTedYn0sWG4A.roa File: 0GdIWU1lfyMQFzmPTedYn0sWG4A.roa (raw, json) Hash identifier: GL3oftuTiSnmkXMNrfCrB3JoRYgPoki7421QGPoHNPs= Subject key identifier: D0:67:48:59:4D:65:7F:23:10:17:39:8F:4D:E7:58:9F:4B:16:1B:80 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0EB7 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/0GdIWU1lfyMQFzmPTedYn0sWG4A.roa Signing time: Fri 22 Aug 2025 08:52:33 +0000 ROA not before: Fri 22 Aug 2025 08:52:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18042 IP address blocks: 122.99.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3767 (0xeb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 22 08:52:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D06748594D657F231017398F4DE7589F4B161B80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:37:21:ca:f7:8e:9f:77:7a:20:ae:3e:60:4b: 68:08:30:e6:be:6f:47:7b:1e:d4:55:6a:97:c1:c9: 44:6f:e4:06:24:35:7d:d3:6e:60:f7:5a:b5:4c:a9: 61:55:1b:a4:bc:a0:0e:b3:77:7b:5f:f7:b2:4b:56: 3a:58:63:2c:35:e7:7a:05:0d:89:96:6c:e0:31:c0: fd:a6:67:8c:df:2d:2a:9c:74:09:e7:07:8f:c0:ca: a2:16:b2:a9:a6:ad:4e:f0:a3:94:4a:58:29:69:16: 7e:72:32:08:1c:3c:5d:f9:37:71:24:f9:c6:d2:68: 68:e5:74:8f:8d:4a:cb:78:0a:ad:0a:5a:48:91:9f: 32:c8:81:fe:84:6d:d8:b8:5b:9b:f5:bf:93:d5:49: 62:56:4a:38:1d:d0:f8:66:fc:c1:ce:1b:54:6e:a5: d3:16:1c:8e:3a:04:80:89:96:16:97:2c:6a:8e:fa: 71:73:8c:84:ba:eb:51:46:f8:be:c2:3d:4b:3e:11: 7a:20:6d:b5:a2:6d:50:a3:90:2e:d9:78:a9:06:fd: 87:54:ab:dc:b9:06:21:a1:17:94:bd:68:4f:7f:86: be:8c:fe:01:ac:d3:3c:c7:60:41:af:45:58:f8:3b: 93:24:84:7b:2f:63:6b:85:6c:cc:12:b1:34:46:9a: 98:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:67:48:59:4D:65:7F:23:10:17:39:8F:4D:E7:58:9F:4B:16:1B:80 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/0GdIWU1lfyMQFzmPTedYn0sWG4A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.99.0.0/18 Signature Algorithm: sha256WithRSAEncryption 97:31:1e:ed:52:bd:9e:5f:ef:04:32:96:24:81:7d:90:8a:4e: ce:37:f5:a0:64:27:a7:f0:b9:ce:da:42:56:03:bb:70:fe:cc: 7d:7f:71:5a:78:25:cd:5f:60:4e:9d:2e:e2:0a:de:58:e7:3b: 71:63:13:14:a2:25:e4:d0:82:92:71:23:c4:d1:2f:e6:d7:00: a2:87:bd:b0:e5:54:24:8a:0f:64:87:8d:10:16:89:42:26:05: dd:a9:43:46:46:4e:7e:df:fb:7d:e0:67:dd:fa:29:7a:5c:32: 16:b4:80:ec:33:ed:3c:93:d0:ff:78:c1:60:71:9e:62:73:bf: 45:c2:89:09:bb:a6:da:c7:83:1b:7e:e5:f3:fe:e3:d4:64:2c: d8:24:d0:6f:ca:be:ac:45:a7:80:ba:d1:69:96:e2:b5:ce:32: 0d:75:8f:b3:4f:b0:7a:cc:b0:45:d7:58:50:51:2b:80:b8:8b: d7:9f:01:46:b3:67:90:d9:c9:d6:6c:3a:ab:f8:a1:b6:ce:73: 4f:70:44:43:0b:94:4a:f0:a3:55:b4:a4:0c:5c:43:45:96:f8: 4a:3d:93:41:9e:e4:35:43:9e:71:16:81:46:d7:04:ed:b2:b6: ba:7e:72:eb:90:38:ed:1e:34:57:33:8a:f7:dd:cc:7b:73:bd: 06:86:07:81 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTA4MjIw ODUyMzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQwNjc0ODU5NEQ2NTdG MjMxMDE3Mzk4RjRERTc1ODlGNEIxNjFCODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqNyHK946fd3ogrj5gS2gIMOa+b0d7HtRVapfByURv5AYkNX3T bmD3WrVMqWFVG6S8oA6zd3tf97JLVjpYYyw153oFDYmWbOAxwP2mZ4zfLSqcdAnn B4/AyqIWsqmmrU7wo5RKWClpFn5yMggcPF35N3Ek+cbSaGjldI+NSst4Cq0KWkiR nzLIgf6Ebdi4W5v1v5PVSWJWSjgd0Phm/MHOG1RupdMWHI46BICJlhaXLGqO+nFz jIS661FG+L7CPUs+EXogbbWibVCjkC7ZeKkG/YdUq9y5BiGhF5S9aE9/hr6M/gGs 0zzHYEGvRVj4O5MkhHsvY2uFbMwSsTRGmpixAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0GdIWU1lfyMQFzmPTedYn0sWG4AwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HLzBHZElXVTFsZnlNUUZ6bVBU ZWRZbjBzV0c0QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 YwAwDQYJKoZIhvcNAQELBQADggEBAJcxHu1SvZ5f7wQyliSBfZCKTs439aBkJ6fw uc7aQlYDu3D+zH1/cVp4Jc1fYE6dLuIK3ljnO3FjExSiJeTQgpJxI8TRL+bXAKKH vbDlVCSKD2SHjRAWiUImBd2pQ0ZGTn7f+33gZ936KXpcMha0gOwz7TyT0P94wWBx nmJzv0XCiQm7ptrHgxt+5fP+49RkLNgk0G/KvqxFp4C60WmW4rXOMg11j7NPsHrM sEXXWFBRK4C4i9efAUazZ5DZydZsOqv4obbOc09wREMLlErwo1W0pAxcQ0WW+Eo9 k0Ge5DVDnnEWgUbXBO2ytrp+cuuQOO0eNFczivfdzHtzvQaGB4E= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:42 2025 by rpki-client