$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/3OH1ZZgOMWLuq_xJb1MnW_5wadQ.roa File: 3OH1ZZgOMWLuq_xJb1MnW_5wadQ.roa (raw, json) Hash identifier: RmwMP27jBoCAHcfMyNtj3mVOKBk/2ItEvxHp1Mg0nqk= Subject key identifier: DC:E1:F5:65:98:0E:31:62:EE:AB:FC:49:6F:53:27:5B:FE:70:69:D4 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0EBA Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/3OH1ZZgOMWLuq_xJb1MnW_5wadQ.roa Signing time: Fri 22 Aug 2025 08:52:34 +0000 ROA not before: Fri 22 Aug 2025 08:52:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9416 IP address blocks: 115.43.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3770 (0xeba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 22 08:52:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DCE1F565980E3162EEABFC496F53275BFE7069D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:91:6d:2d:79:bd:0b:9b:fd:40:b0:0e:48:89: 7c:34:92:36:12:6f:5d:1c:bd:7e:83:6a:9e:8b:68: ac:35:96:4c:de:b1:76:0c:5d:b3:30:5a:08:ab:93: a6:47:b7:a7:a2:9b:dc:94:4d:de:a4:fe:bf:0f:e0: 8c:0a:2f:48:c5:cc:1c:a5:54:1f:22:5f:6a:60:47: 79:24:55:b4:58:29:6c:8e:5b:86:87:cd:63:69:1d: 36:92:24:38:1f:89:1e:81:fa:44:c1:e9:60:3c:11: a6:8c:94:61:06:3e:b1:7e:40:8d:89:2f:ba:a1:48: 10:75:f8:66:05:b3:b4:15:20:bb:f1:18:ca:51:14: a4:34:b1:3a:e9:12:5d:06:2e:86:56:1c:eb:f9:41: 67:18:8a:f4:26:50:7f:41:05:cf:fa:4c:ae:5d:d1: d8:ce:51:10:b4:cf:24:1d:19:30:cd:8f:b9:2b:48: 44:5b:25:5f:73:8b:31:98:6f:d4:8b:bf:98:d0:dd: 3e:b8:83:d6:38:ba:7b:ab:54:93:64:e4:a1:3f:2c: 5b:5b:51:6e:6e:f0:5e:5f:22:96:26:0c:eb:01:be: b9:6c:fe:5e:c2:da:5c:12:29:b3:f4:c0:da:a9:6c: 9c:0a:71:1d:80:ad:50:08:42:d0:fc:c2:92:50:00: 13:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E1:F5:65:98:0E:31:62:EE:AB:FC:49:6F:53:27:5B:FE:70:69:D4 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/3OH1ZZgOMWLuq_xJb1MnW_5wadQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.43.128.0/17 Signature Algorithm: sha256WithRSAEncryption 8f:35:54:f4:28:73:ae:2a:f2:c1:bd:a7:6b:db:6c:71:e1:27: 9a:c6:d1:4b:13:6c:cd:48:d6:35:27:cf:3b:6e:74:f9:08:b9: be:ce:07:0c:46:0e:be:59:d1:03:04:9e:bf:95:cd:56:18:76: e5:45:93:d8:2d:2e:89:f0:95:35:f9:61:ce:22:4f:26:63:e4: 9b:f8:b2:73:99:eb:67:65:bb:26:1f:a0:f6:97:61:62:59:88: 2d:1c:0b:aa:ae:5d:20:4c:15:ba:02:65:08:28:da:c6:1a:cb: c2:50:9c:69:a7:a0:48:da:ee:44:76:54:e7:12:79:ec:e8:5b: 4c:ec:d7:fa:a5:43:69:c0:39:b6:a9:cc:53:69:ea:14:56:91: 0f:51:03:03:b5:34:0e:7d:4d:91:d6:11:4b:cf:7d:5c:a1:ae: d5:87:4f:ca:18:e7:2e:ad:94:76:81:17:42:e2:b5:79:35:93: 51:de:f3:6a:04:d0:95:5d:e2:8e:03:51:2a:1d:1c:92:8a:83: ea:41:63:fe:a7:ca:0a:91:65:4e:01:2a:0d:22:93:ed:9c:98: f2:7c:1c:17:ee:d4:ec:a8:e4:38:08:17:ad:98:67:e1:04:1c: af:42:1b:df:f2:d5:13:d8:85:ba:ab:0d:bd:c4:8d:63:7a:34: 88:63:82:c6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDrowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTA4MjIw ODUyMzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERDRTFGNTY1OTgwRTMx NjJFRUFCRkM0OTZGNTMyNzVCRkU3MDY5RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+kW0teb0Lm/1AsA5IiXw0kjYSb10cvX6Dap6LaKw1lkzesXYM XbMwWgirk6ZHt6eim9yUTd6k/r8P4IwKL0jFzBylVB8iX2pgR3kkVbRYKWyOW4aH zWNpHTaSJDgfiR6B+kTB6WA8EaaMlGEGPrF+QI2JL7qhSBB1+GYFs7QVILvxGMpR FKQ0sTrpEl0GLoZWHOv5QWcYivQmUH9BBc/6TK5d0djOURC0zyQdGTDNj7krSERb JV9zizGYb9SLv5jQ3T64g9Y4unurVJNk5KE/LFtbUW5u8F5fIpYmDOsBvrls/l7C 2lwSKbP0wNqpbJwKcR2ArVAIQtD8wpJQABM9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3OH1ZZgOMWLuq/xJb1MnW/5wadQwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HLzNPSDFaWmdPTVdMdXFfeEpi MU1uV181d2FkUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAdz K4AwDQYJKoZIhvcNAQELBQADggEBAI81VPQoc64q8sG9p2vbbHHhJ5rG0UsTbM1I 1jUnzztudPkIub7OBwxGDr5Z0QMEnr+VzVYYduVFk9gtLonwlTX5Yc4iTyZj5Jv4 snOZ62dluyYfoPaXYWJZiC0cC6quXSBMFboCZQgo2sYay8JQnGmnoEja7kR2VOcS eezoW0zs1/qlQ2nAObapzFNp6hRWkQ9RAwO1NA59TZHWEUvPfVyhrtWHT8oY5y6t lHaBF0LitXk1k1He82oE0JVd4o4DUSodHJKKg+pBY/6nygqRZU4BKg0ik+2cmPJ8 HBfu1Oyo5DgIF62YZ+EEHK9CG9/y1RPYhbqrDb3EjWN6NIhjgsY= -----END CERTIFICATE-----Generated at Sun Aug 24 07:44:25 2025 by rpki-client