$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/L6ppqKhZbyWldT4YnDnzg9lHVAY.roa File: L6ppqKhZbyWldT4YnDnzg9lHVAY.roa (raw, json) Hash identifier: JO8UfxNQDwpzGeONQuMn4DuYbs9pHLBOsg80em3/Y8U= Subject key identifier: 2F:AA:69:A8:A8:59:6F:25:A5:75:3E:18:9C:39:F3:83:D9:47:54:06 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0EA9 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/L6ppqKhZbyWldT4YnDnzg9lHVAY.roa Signing time: Fri 22 Aug 2025 08:52:30 +0000 ROA not before: Fri 22 Aug 2025 08:52:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9416 IP address blocks: 123.252.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3753 (0xea9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 22 08:52:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2FAA69A8A8596F25A5753E189C39F383D9475406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5f:5b:e9:f4:36:3d:03:50:df:c7:99:d7:8d: 17:40:6c:28:46:0d:82:32:07:e1:6a:69:34:ea:f8: c3:68:78:76:14:ab:82:86:d2:d2:83:c9:e9:26:38: 2c:51:fb:d5:d6:20:e4:7e:48:07:35:5b:86:ec:15: 17:c0:40:48:34:5e:28:72:7a:73:bb:bf:41:3a:2c: 99:d2:26:4b:09:8f:98:e2:20:78:4c:01:bc:73:43: ac:e3:0e:d5:b5:07:1a:38:b4:fa:93:01:76:0a:16: 86:f6:24:5d:d1:6c:0b:5a:26:52:2c:09:60:55:ec: 8b:de:79:23:e9:26:29:2d:e1:f7:7b:bf:7e:8a:11: 69:d4:b1:08:b3:71:20:b2:85:f8:89:39:29:9d:79: ca:7a:54:7d:21:4d:1d:37:af:7d:ef:c0:1b:3a:64: 64:7f:b3:2a:45:1b:55:9a:64:e3:27:a6:db:94:39: ae:40:b9:09:23:69:0d:58:e8:f0:d6:50:51:fd:81: 80:0d:0c:f3:55:93:a8:47:6b:f6:4b:85:26:a2:23: 44:81:56:7d:92:d4:fd:01:fe:f9:0b:ae:9b:62:94: 0f:40:85:dd:6a:98:f4:e9:7b:59:07:d0:af:ad:85: b5:9e:ad:b8:94:55:01:69:9a:ad:8f:8b:48:13:53: 8f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:AA:69:A8:A8:59:6F:25:A5:75:3E:18:9C:39:F3:83:D9:47:54:06 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/L6ppqKhZbyWldT4YnDnzg9lHVAY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.252.64.0/18 Signature Algorithm: sha256WithRSAEncryption 33:00:9d:31:d8:30:2a:9d:e2:52:4c:c5:46:0d:db:c6:60:ff: 86:c1:18:e5:d4:2f:a6:56:eb:e0:03:94:e0:0b:24:9c:82:d0: e2:fe:49:01:3d:e7:92:52:26:34:3e:b6:91:02:23:44:ec:72: 60:51:8b:a1:30:65:48:49:6f:82:63:78:37:72:fc:fb:11:87: 4e:a4:99:17:54:9b:98:36:b1:b1:a4:79:15:99:fb:25:55:05: 91:3a:e4:c2:b9:12:4e:e1:e4:f0:f2:a5:51:fd:9b:9b:a9:2e: 84:11:77:77:2e:64:9d:07:47:c0:20:04:36:73:8b:ec:f8:2c: 04:85:ad:06:6d:57:24:cd:70:fc:5e:22:8d:f1:51:8f:e6:17: 83:bc:62:be:43:a2:cd:8f:f0:c2:98:60:5d:1a:eb:e4:b0:97: a4:9f:2e:c8:97:f1:b7:28:cf:4d:63:1a:94:6c:09:48:f6:06: 62:bb:98:3e:10:9d:f0:f2:6e:a6:bf:43:19:d2:5f:51:b3:3f: ee:b4:a9:3a:a3:a0:ed:70:e4:a0:52:fd:af:cb:0a:86:e5:a3: b9:28:00:f5:57:ae:f1:fb:fb:11:00:8b:98:1d:ae:75:18:fc: a1:34:43:72:30:31:b5:a5:27:0a:c3:be:d5:bf:b7:53:57:68: 88:bb:ab:61 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDqkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTA4MjIw ODUyMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJGQUE2OUE4QTg1OTZG MjVBNTc1M0UxODlDMzlGMzgzRDk0NzU0MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUX1vp9DY9A1Dfx5nXjRdAbChGDYIyB+FqaTTq+MNoeHYUq4KG 0tKDyekmOCxR+9XWIOR+SAc1W4bsFRfAQEg0XihyenO7v0E6LJnSJksJj5jiIHhM AbxzQ6zjDtW1Bxo4tPqTAXYKFob2JF3RbAtaJlIsCWBV7IveeSPpJikt4fd7v36K EWnUsQizcSCyhfiJOSmdecp6VH0hTR03r33vwBs6ZGR/sypFG1WaZOMnptuUOa5A uQkjaQ1Y6PDWUFH9gYANDPNVk6hHa/ZLhSaiI0SBVn2S1P0B/vkLrptilA9Ahd1q mPTpe1kH0K+thbWerbiUVQFpmq2Pi0gTU48dAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUL6ppqKhZbyWldT4YnDnzg9lHVAYwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL0w2cHBxS2haYnlXbGRUNFlu RG56ZzlsSFZBWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7 /EAwDQYJKoZIhvcNAQELBQADggEBADMAnTHYMCqd4lJMxUYN28Zg/4bBGOXUL6ZW 6+ADlOALJJyC0OL+SQE955JSJjQ+tpECI0TscmBRi6EwZUhJb4JjeDdy/PsRh06k mRdUm5g2sbGkeRWZ+yVVBZE65MK5Ek7h5PDypVH9m5upLoQRd3cuZJ0HR8AgBDZz i+z4LASFrQZtVyTNcPxeIo3xUY/mF4O8Yr5Dos2P8MKYYF0a6+Swl6SfLsiX8bco z01jGpRsCUj2BmK7mD4QnfDybqa/QxnSX1GzP+60qTqjoO1w5KBS/a/LCoblo7ko APVXrvH7+xEAi5gdrnUY/KE0Q3IwMbWlJwrDvtW/t1NXaIi7q2E= -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:45 2025 by rpki-client