$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ZT81LEWgl-cAVOBaJ37heSOJGO0.roa File: ZT81LEWgl-cAVOBaJ37heSOJGO0.roa (raw, json) Hash identifier: XyUgNkqHNOPBZdxkrcLQVZtlX/gfmQH2FoEx9wUrjC0= Subject key identifier: 65:3F:35:2C:45:A0:97:E7:00:54:E0:5A:27:7E:E1:79:23:89:18:ED Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0EB3 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ZT81LEWgl-cAVOBaJ37heSOJGO0.roa Signing time: Fri 22 Aug 2025 08:52:32 +0000 ROA not before: Fri 22 Aug 2025 08:52:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18042 IP address blocks: 115.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3763 (0xeb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 22 08:52:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=653F352C45A097E70054E05A277EE179238918ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:4d:b7:ee:6e:20:78:bc:da:0e:ff:ba:53: 49:22:cf:69:c7:88:cc:63:ae:68:40:d1:0d:09:37: 4f:a9:97:c3:38:80:20:b4:bd:1f:b9:62:3f:01:37: d8:2d:19:6b:8a:49:bd:39:08:1d:11:f3:6a:77:04: 3a:b3:37:9b:50:70:0c:04:cc:1d:e8:c6:1a:e3:23: 23:9d:71:dc:5d:ae:3e:c4:50:57:1b:9b:b2:83:f0: 14:61:75:fb:54:bd:d5:d7:a8:5a:29:9a:63:ab:28: 82:8c:89:22:29:09:25:9f:aa:42:54:15:68:b0:60: f9:f6:cb:9a:3e:10:d5:cb:34:a9:d5:6b:aa:a0:f1: f9:dc:ec:09:04:99:68:48:b0:70:27:d3:9e:ab:36: 5a:43:2d:1c:8f:13:5e:f0:8d:e4:64:b3:d5:5f:47: b8:b5:ac:2a:a4:96:0a:02:97:c9:a3:a3:dc:46:f6: fa:8d:79:a7:db:fb:61:8b:4b:d3:22:00:ab:06:ff: 44:10:f6:1b:de:db:ec:b3:be:24:ae:0f:4e:a5:77: 70:6f:bd:3f:5c:6c:f6:d6:da:ab:62:62:9e:17:16: eb:33:cb:23:98:0e:58:1f:cb:3c:ed:14:3e:8e:a4: 9e:88:a3:dc:5b:64:11:a7:32:76:05:54:73:6f:3b: 80:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3F:35:2C:45:A0:97:E7:00:54:E0:5A:27:7E:E1:79:23:89:18:ED X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ZT81LEWgl-cAVOBaJ37heSOJGO0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 30:28:51:6c:60:ea:5e:3d:5b:be:6a:2c:13:87:23:e6:43:36: 8c:0a:91:f0:2d:6f:4c:76:c2:fa:d4:cf:57:f0:69:ee:6a:a5: b9:5b:59:94:af:e3:d9:89:84:fe:a7:a6:ac:54:ca:13:81:df: 5e:bf:08:22:19:32:d4:42:ac:63:9d:63:24:bc:69:01:d4:a3: 97:fc:1d:ae:1b:f6:d5:7a:83:28:bd:a7:df:58:87:41:18:dd: 4e:20:42:44:11:d0:0e:35:ac:4c:cd:ad:d6:9f:fa:e3:e2:59: 23:4e:26:87:89:f6:7a:97:58:2a:f8:86:ce:bd:cf:d8:da:e1: 7a:15:6b:3f:b6:23:71:81:9f:ba:6b:0f:7f:aa:c1:bd:43:4a: ee:0c:ff:3a:1d:0f:d3:92:e6:be:4c:71:0b:43:7c:3a:78:98: 1b:fb:5a:ac:7a:d8:50:8f:f6:f6:be:19:e8:ff:8b:86:3b:4d: af:e8:3e:c3:5a:c2:dd:34:71:09:3f:77:01:f6:61:50:30:2c: a0:bb:54:ae:0f:02:5e:01:3f:d0:48:0d:12:f2:3a:91:09:a9: 00:df:40:95:65:22:36:da:cb:ef:cf:87:15:bf:4f:ba:94:cb: 6e:ed:31:b6:fc:46:1a:ed:b3:0b:fb:36:2e:13:3f:c5:0a:32: 23:56:d3:7f -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDrMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTA4MjIw ODUyMzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY1M0YzNTJDNDVBMDk3 RTcwMDU0RTA1QTI3N0VFMTc5MjM4OTE4RUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2j0237m4geLzaDv+6U0kiz2nHiMxjrmhA0Q0JN0+pl8M4gCC0 vR+5Yj8BN9gtGWuKSb05CB0R82p3BDqzN5tQcAwEzB3oxhrjIyOdcdxdrj7EUFcb m7KD8BRhdftUvdXXqFopmmOrKIKMiSIpCSWfqkJUFWiwYPn2y5o+ENXLNKnVa6qg 8fnc7AkEmWhIsHAn056rNlpDLRyPE17wjeRks9VfR7i1rCqklgoCl8mjo9xG9vqN eafb+2GLS9MiAKsG/0QQ9hve2+yzviSuD06ld3BvvT9cbPbW2qtiYp4XFuszyyOY DlgfyzztFD6OpJ6Io9xbZBGnMnYFVHNvO4BNAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUZT81LEWgl+cAVOBaJ37heSOJGO0wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1pUODFMRVdnbC1jQVZPQmFK MzdoZVNPSkdPMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwBz KzANBgkqhkiG9w0BAQsFAAOCAQEAMChRbGDqXj1bvmosE4cj5kM2jAqR8C1vTHbC +tTPV/Bp7mqluVtZlK/j2YmE/qemrFTKE4HfXr8IIhky1EKsY51jJLxpAdSjl/wd rhv21XqDKL2n31iHQRjdTiBCRBHQDjWsTM2t1p/64+JZI04mh4n2epdYKviGzr3P 2NrhehVrP7YjcYGfumsPf6rBvUNK7gz/Oh0P05LmvkxxC0N8OniYG/tarHrYUI/2 9r4Z6P+LhjtNr+g+w1rC3TRxCT93AfZhUDAsoLtUrg8CXgE/0EgNEvI6kQmpAN9A lWUiNtrL78+HFb9PupTLbu0xtvxGGu2zC/s2LhM/xQoyI1bTfw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:00 2025 by rpki-client