$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/jWBYQ5pbCg6OIgs9Pf3VodgEIM4.roa File: jWBYQ5pbCg6OIgs9Pf3VodgEIM4.roa (raw, json) Hash identifier: Xb56F6mzkQr+C03qp42Cx3YA+qDHu0+PW8bBe9JMehY= Subject key identifier: 8D:60:58:43:9A:5B:0A:0E:8E:22:0B:3D:3D:FD:D5:A1:D8:04:20:CE Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0EAB Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/jWBYQ5pbCg6OIgs9Pf3VodgEIM4.roa Signing time: Fri 22 Aug 2025 08:52:31 +0000 ROA not before: Fri 22 Aug 2025 08:52:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 123.252.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3755 (0xeab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 22 08:52:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8D6058439A5B0A0E8E220B3D3DFDD5A1D80420CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:98:7d:6f:f2:af:90:25:53:18:05:ca:e8:4a: f4:41:51:fa:48:b1:d5:e2:0a:0b:08:86:d6:77:fa: 9a:76:e5:6e:97:c0:84:c8:68:bb:31:61:3b:cf:30: b6:e8:c1:de:d7:58:4c:16:be:1b:d9:67:45:3f:3a: 7b:e9:6f:1d:a2:20:fb:24:8a:63:fa:96:20:ec:dc: b5:bf:c5:40:1f:02:ac:11:65:79:95:31:c1:c1:0d: f1:91:f8:27:a4:5f:5e:8f:06:41:b4:15:37:17:59: c6:90:6d:32:73:89:b8:e8:a1:f5:81:8e:89:5f:cb: 41:c7:b5:c8:11:f3:d7:cf:be:85:18:c2:7b:58:a6: 0f:25:6c:7a:80:9c:ae:a0:17:8e:3f:2a:95:82:27: 6b:06:9b:76:e0:c8:3e:78:8f:16:f0:92:49:2d:7a: 51:a8:8f:9c:ab:96:d1:3d:ed:13:98:ff:89:f1:24: 78:a5:20:c5:75:ac:c1:4e:0d:ec:07:aa:0c:b1:c0: a3:9f:e5:b5:db:a3:53:22:f8:56:a2:1c:43:9c:3d: 01:a7:79:7a:74:d7:3c:66:86:9c:d4:a9:9f:dc:e6: 03:b6:2f:05:11:42:e4:9e:86:09:c4:d2:32:ae:26: 4d:cf:ff:01:9c:d3:2c:a1:03:34:68:0c:ec:f9:c3: 89:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:60:58:43:9A:5B:0A:0E:8E:22:0B:3D:3D:FD:D5:A1:D8:04:20:CE X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/jWBYQ5pbCg6OIgs9Pf3VodgEIM4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.252.64.0/18 Signature Algorithm: sha256WithRSAEncryption 76:94:06:15:50:51:17:cf:7e:fb:e2:f6:c5:c1:ca:61:72:18: fc:26:58:06:50:a8:15:a6:46:77:7b:cc:f7:82:5f:8c:a5:9d: d5:c7:b5:78:2d:f4:b5:4a:ba:c9:f7:b1:d8:67:1c:b0:fd:8d: be:66:c7:8f:e0:d0:18:80:58:89:7e:96:b9:a4:00:d3:28:23: 95:31:93:51:97:cb:37:68:94:6f:bd:07:10:60:33:40:93:8a: df:89:68:4a:b0:b3:08:92:ed:76:a4:9c:b2:ab:9c:01:24:5b: 08:c6:5f:06:1a:8b:da:57:88:2d:7f:3a:4c:96:04:93:a7:66: f2:fa:54:00:fc:a6:62:4e:5c:b7:29:a3:48:a2:07:3d:44:88: 54:31:ee:07:ef:e7:e3:7b:77:de:58:3a:06:f3:a9:56:d2:6f: b5:ee:b2:02:f9:f3:49:4a:90:a2:0b:37:5c:98:3b:29:6a:a0: a7:8e:46:be:04:47:67:a5:85:f1:63:2d:e9:6d:09:3b:0c:a9: 56:ba:d4:7b:de:d7:63:30:95:63:0f:55:7f:49:cf:c3:4a:5b: 4d:b1:08:5f:1f:4a:53:fe:76:88:b4:09:58:a9:97:ef:c9:66: 12:f1:89:94:e6:a1:e0:3d:c6:91:03:94:c2:f4:c6:57:b5:82: 28:31:ed:aa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDqswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTA4MjIw ODUyMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhENjA1ODQzOUE1QjBB MEU4RTIyMEIzRDNERkRENUExRDgwNDIwQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsmH1v8q+QJVMYBcroSvRBUfpIsdXiCgsIhtZ3+pp25W6XwITI aLsxYTvPMLbowd7XWEwWvhvZZ0U/Onvpbx2iIPskimP6liDs3LW/xUAfAqwRZXmV McHBDfGR+CekX16PBkG0FTcXWcaQbTJzibjoofWBjolfy0HHtcgR89fPvoUYwntY pg8lbHqAnK6gF44/KpWCJ2sGm3bgyD54jxbwkkktelGoj5yrltE97ROY/4nxJHil IMV1rMFODewHqgyxwKOf5bXbo1Mi+FaiHEOcPQGneXp01zxmhpzUqZ/c5gO2LwUR QuSehgnE0jKuJk3P/wGc0yyhAzRoDOz5w4nZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjWBYQ5pbCg6OIgs9Pf3VodgEIM4wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL2pXQllRNXBiQ2c2T0lnczlQ ZjNWb2RnRUlNNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7 /EAwDQYJKoZIhvcNAQELBQADggEBAHaUBhVQURfPfvvi9sXBymFyGPwmWAZQqBWm Rnd7zPeCX4ylndXHtXgt9LVKusn3sdhnHLD9jb5mx4/g0BiAWIl+lrmkANMoI5Ux k1GXyzdolG+9BxBgM0CTit+JaEqwswiS7XaknLKrnAEkWwjGXwYai9pXiC1/OkyW BJOnZvL6VAD8pmJOXLcpo0iiBz1EiFQx7gfv5+N7d95YOgbzqVbSb7XusgL580lK kKILN1yYOylqoKeORr4ER2elhfFjLeltCTsMqVa61Hve12MwlWMPVX9Jz8NKW02x CF8fSlP+doi0CVipl+/JZhLxiZTmoeA9xpEDlML0xle1gigx7ao= -----END CERTIFICATE-----Generated at Sun Aug 24 07:41:56 2025 by rpki-client