$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/sydBr4xKaQYOdLiz5nITiyme1LM.roa File: sydBr4xKaQYOdLiz5nITiyme1LM.roa (raw, json) Hash identifier: knoFvxrN5GTINwkfJI3ZohoaZyfQ4WX4WEctsRJxf9g= Subject key identifier: B3:27:41:AF:8C:4A:69:06:0E:74:B8:B3:E6:72:13:8B:29:9E:D4:B3 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0EAE Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/sydBr4xKaQYOdLiz5nITiyme1LM.roa Signing time: Fri 22 Aug 2025 08:52:31 +0000 ROA not before: Fri 22 Aug 2025 08:52:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18042 IP address blocks: 124.155.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3758 (0xeae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 22 08:52:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B32741AF8C4A69060E74B8B3E672138B299ED4B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:40:f7:4b:7d:22:32:60:25:83:28:85:6e:11: dd:1b:de:c2:bd:d6:a8:5f:8a:34:8d:37:14:3b:f2: 10:98:36:c1:63:a0:81:f4:7d:f1:d1:a9:31:a1:12: 98:cc:04:54:b9:e6:da:a5:da:cc:31:28:c0:c0:a7: 30:26:f4:29:83:03:61:f6:a5:53:70:2f:59:99:44: 27:7f:6d:0e:2c:56:d9:94:df:f8:71:77:c7:a5:b7: af:d8:ad:2c:91:a7:23:76:08:8d:a9:0a:ad:05:4c: 38:5a:de:bc:93:c0:0e:92:ca:41:01:72:d2:c0:53: 33:23:79:8d:cd:3c:87:54:2e:f2:01:36:1f:fa:20: 39:42:68:e9:dc:aa:85:0f:44:6d:f4:cd:36:47:89: 9a:42:98:02:87:7f:d1:dd:4b:fe:d5:7f:0e:14:8b: 83:33:e0:41:8f:b8:63:d8:87:f9:05:ac:60:22:91: e4:8e:06:a9:45:af:32:f4:59:70:68:55:a2:6c:5c: 00:54:36:ff:5d:dd:b7:97:1c:3e:3c:4f:9b:1a:27: 24:87:ba:d7:b6:ff:50:43:2f:fc:a2:57:8b:e9:58: 6c:73:fa:c8:a7:d9:07:fe:56:6e:38:9a:b2:28:f2: 85:fe:b9:97:d6:ed:77:9a:b9:93:9a:0f:aa:ca:b8: 8c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:27:41:AF:8C:4A:69:06:0E:74:B8:B3:E6:72:13:8B:29:9E:D4:B3 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/sydBr4xKaQYOdLiz5nITiyme1LM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.155.128.0/19 Signature Algorithm: sha256WithRSAEncryption 0f:13:d6:a3:3c:9d:99:79:2f:aa:15:ff:1a:e7:a8:ef:fe:90: 7a:d1:f6:8a:4c:ce:ac:dc:e9:4d:22:81:1a:25:2e:94:8f:fc: 3b:27:77:54:3f:34:ea:4c:d4:ee:80:da:85:62:45:8b:f3:2c: e9:1b:75:02:ab:bb:3e:2d:5e:08:3f:03:ef:89:ad:49:8e:91: d9:03:96:09:17:24:c5:d8:b9:4d:30:09:54:46:f3:20:89:b7: aa:fe:26:2f:11:aa:b4:eb:3a:39:a8:2d:2e:6f:ce:c7:01:16: a9:47:6b:c9:48:8a:f5:36:44:38:aa:a7:66:33:84:05:a1:6f: 2c:0e:36:d4:a5:c7:aa:68:63:f6:70:f4:b0:36:6f:ab:6d:34: 13:f0:88:b0:c1:f5:ad:66:e2:85:51:98:8d:9d:0f:7e:c9:ab: 3e:f5:6f:3c:ca:ac:9a:35:f6:3a:1a:c8:e1:ff:d0:de:04:03: eb:b1:b7:a5:d7:65:91:33:05:34:59:a0:ac:67:79:f4:8d:b7: 51:90:2b:30:4a:06:05:ae:9e:13:ee:10:fe:e7:6d:50:d7:56: 39:44:8e:60:60:27:ed:00:2e:b9:09:f7:2d:9b:ad:02:bc:2e: d3:fe:a1:b7:ac:13:75:96:5c:cc:d2:1c:4c:9b:19:0a:7d:d7: c7:6b:25:e0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDq4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTA4MjIw ODUyMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIzMjc0MUFGOEM0QTY5 MDYwRTc0QjhCM0U2NzIxMzhCMjk5RUQ0QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGQPdLfSIyYCWDKIVuEd0b3sK91qhfijSNNxQ78hCYNsFjoIH0 ffHRqTGhEpjMBFS55tql2swxKMDApzAm9CmDA2H2pVNwL1mZRCd/bQ4sVtmU3/hx d8elt6/YrSyRpyN2CI2pCq0FTDha3ryTwA6SykEBctLAUzMjeY3NPIdULvIBNh/6 IDlCaOncqoUPRG30zTZHiZpCmAKHf9HdS/7Vfw4Ui4Mz4EGPuGPYh/kFrGAikeSO BqlFrzL0WXBoVaJsXABUNv9d3beXHD48T5saJySHute2/1BDL/yiV4vpWGxz+sin 2Qf+Vm44mrIo8oX+uZfW7XeauZOaD6rKuIx9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUsydBr4xKaQYOdLiz5nITiyme1LMwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL3N5ZEJyNHhLYVFZT2RMaXo1 bklUaXltZTFMTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8 m4AwDQYJKoZIhvcNAQELBQADggEBAA8T1qM8nZl5L6oV/xrnqO/+kHrR9opMzqzc 6U0igRolLpSP/Dsnd1Q/NOpM1O6A2oViRYvzLOkbdQKruz4tXgg/A++JrUmOkdkD lgkXJMXYuU0wCVRG8yCJt6r+Ji8RqrTrOjmoLS5vzscBFqlHa8lIivU2RDiqp2Yz hAWhbywONtSlx6poY/Zw9LA2b6ttNBPwiLDB9a1m4oVRmI2dD37Jqz71bzzKrJo1 9joayOH/0N4EA+uxt6XXZZEzBTRZoKxnefSNt1GQKzBKBgWunhPuEP7nbVDXVjlE jmBgJ+0ALrkJ9y2brQK8LtP+obesE3WWXMzSHEybGQp918drJeA= -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:16 2025 by rpki-client