$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ny1XGJtvd5q0xR2i8UUTvzKuR3w.roa File: ny1XGJtvd5q0xR2i8UUTvzKuR3w.roa (raw, json) Hash identifier: fCYyg9Ju/DomoX4J+gwK21fE/lu4/W1OH9TzGkGfMX0= Subject key identifier: 9F:2D:57:18:9B:6F:77:9A:B4:C5:1D:A2:F1:45:13:BF:32:AE:47:7C Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0EA6 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ny1XGJtvd5q0xR2i8UUTvzKuR3w.roa Signing time: Fri 22 Aug 2025 08:52:29 +0000 ROA not before: Fri 22 Aug 2025 08:52:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18042 IP address blocks: 119.14.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3750 (0xea6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 22 08:52:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9F2D57189B6F779AB4C51DA2F14513BF32AE477C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e3:9c:27:a3:7d:eb:d9:3f:85:d5:6e:54:ba: 24:2b:36:63:13:d2:19:bd:cd:a1:a9:4e:74:99:d2: 61:56:45:6d:74:fe:74:d0:b7:71:70:18:5b:09:57: be:f0:4d:eb:06:37:11:16:22:ce:a3:c2:be:4c:1b: aa:ce:58:95:9c:d3:a2:33:ed:ae:93:87:47:26:6b: 61:65:eb:99:8f:6d:c7:d4:29:05:50:cb:b7:78:50: 3a:3d:8e:0c:1c:cd:7e:f1:ae:56:21:7c:81:0a:a6: 9a:f8:48:74:79:6a:0d:33:0c:f1:cd:47:f2:bf:e7: 33:ac:b9:77:b8:15:d0:d5:d7:02:f6:f5:f9:64:86: ce:36:33:4b:fe:a2:43:c9:06:c9:c6:c4:c4:08:d4: 18:bd:f2:dc:68:bc:a8:0f:5c:36:be:fd:ad:a7:5c: c4:cb:30:1d:bf:b1:12:46:1c:94:9f:3e:a9:3f:a5: 0e:0e:e9:4f:be:74:cd:9e:ad:9a:00:01:7d:79:2d: 11:de:48:98:3e:83:a7:5e:d9:64:d5:e2:7a:1f:54: 4d:e7:9d:4c:da:ea:7b:ac:b7:3c:f0:3c:f4:5f:0c: 44:f1:2d:2f:79:84:fd:c0:f9:18:3b:4f:75:d9:bb: 28:82:ba:95:25:d2:dc:a1:77:ad:44:c0:c0:48:37: f9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2D:57:18:9B:6F:77:9A:B4:C5:1D:A2:F1:45:13:BF:32:AE:47:7C X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ny1XGJtvd5q0xR2i8UUTvzKuR3w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.14.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:2c:88:9d:9f:d2:85:6a:90:23:bb:f7:36:26:5c:ee:0e:22: d8:65:fc:39:d5:c2:df:cc:36:da:c3:fe:ed:2b:be:a2:80:de: 05:52:1b:aa:de:ed:b4:55:84:4e:b2:13:5e:6f:da:98:59:e3: 1c:30:8b:20:c8:a8:e7:10:67:1f:ea:ce:ff:03:ca:4f:bd:ab: e2:8f:7e:55:05:83:f4:ff:64:fb:82:45:cb:d1:3f:77:ce:8d: 10:f6:59:90:b3:f7:95:3f:f6:07:0e:ee:77:c1:04:c5:5d:f5: ee:02:72:a1:00:36:61:3f:84:eb:c4:c8:dd:75:5f:23:5c:78: 90:3b:e6:77:e4:5e:48:3a:c9:fe:be:d2:16:e4:fb:e5:31:dd: d1:d8:ee:a7:37:c3:20:0d:65:fa:22:5f:fc:15:1b:34:bc:12: e0:b4:a3:c4:ed:45:30:3d:60:f5:21:22:bf:6f:52:56:aa:a4: e3:1a:27:bd:b1:97:fd:c9:b5:6d:4a:df:0e:f1:3a:7c:29:d7: 2e:51:26:3e:1b:b8:d5:6d:27:7d:bd:4e:4b:4d:c3:da:4e:2e: c3:76:48:2e:25:8b:5d:e2:80:9e:4c:cb:17:78:d1:19:bb:f4: c1:a3:12:1e:5e:90:e8:79:01:47:d5:0e:b2:4e:92:24:32:97: 7b:88:7f:4e -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDqYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTA4MjIw ODUyMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlGMkQ1NzE4OUI2Rjc3 OUFCNEM1MURBMkYxNDUxM0JGMzJBRTQ3N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc45wno33r2T+F1W5UuiQrNmMT0hm9zaGpTnSZ0mFWRW10/nTQ t3FwGFsJV77wTesGNxEWIs6jwr5MG6rOWJWc06Iz7a6Th0cma2Fl65mPbcfUKQVQ y7d4UDo9jgwczX7xrlYhfIEKppr4SHR5ag0zDPHNR/K/5zOsuXe4FdDV1wL29flk hs42M0v+okPJBsnGxMQI1Bi98txovKgPXDa+/a2nXMTLMB2/sRJGHJSfPqk/pQ4O 6U++dM2erZoAAX15LRHeSJg+g6de2WTV4nofVE3nnUza6nustzzwPPRfDETxLS95 hP3A+Rg7T3XZuyiCupUl0tyhd61EwMBIN/n9AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUny1XGJtvd5q0xR2i8UUTvzKuR3wwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL255MVhHSnR2ZDVxMHhSMmk4 VVVUdnpLdVIzdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB3 DjANBgkqhkiG9w0BAQsFAAOCAQEAWSyInZ/ShWqQI7v3NiZc7g4i2GX8OdXC38w2 2sP+7Su+ooDeBVIbqt7ttFWETrITXm/amFnjHDCLIMio5xBnH+rO/wPKT72r4o9+ VQWD9P9k+4JFy9E/d86NEPZZkLP3lT/2Bw7ud8EExV317gJyoQA2YT+E68TI3XVf I1x4kDvmd+ReSDrJ/r7SFuT75THd0djupzfDIA1l+iJf/BUbNLwS4LSjxO1FMD1g 9SEiv29SVqqk4xonvbGX/cm1bUrfDvE6fCnXLlEmPhu41W0nfb1OS03D2k4uw3ZI LiWLXeKAnkzLF3jRGbv0waMSHl6Q6HkBR9UOsk6SJDKXe4h/Tg== -----END CERTIFICATE-----Generated at Sun Aug 24 11:44:03 2025 by rpki-client