$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/CtX3bsStaehTulePp-M9SLrYU9I.roa File: CtX3bsStaehTulePp-M9SLrYU9I.roa (raw, json) Hash identifier: aMJPOJqETc0fZ4HgdpEBNFOSZyNcv+5HkI0LFXxvRvk= Subject key identifier: 0A:D5:F7:6E:C4:AD:69:E8:53:BA:57:8F:A7:E3:3D:48:BA:D8:53:D2 Certificate issuer: /CN=AE0A7B3E88A24A81BE91A09695691D5D1845194D Certificate serial: 0363 Authority key identifier: AE:0A:7B:3E:88:A2:4A:81:BE:91:A0:96:95:69:1D:5D:18:45:19:4D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/CtX3bsStaehTulePp-M9SLrYU9I.roa Signing time: Tue 30 Sep 2025 15:50:59 +0000 ROA not before: Tue 30 Sep 2025 15:50:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152616 IP address blocks: 2401:cd20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 12:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 867 (0x363) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE0A7B3E88A24A81BE91A09695691D5D1845194D Validity Not Before: Sep 30 15:50:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0AD5F76EC4AD69E853BA578FA7E33D48BAD853D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0d:72:98:44:1c:f4:2a:16:dd:d6:d4:66:20: dc:ae:04:8e:cd:ba:99:e8:0a:bf:67:e2:b7:92:67: 96:a1:46:19:38:da:eb:aa:c5:bb:be:cc:ee:55:74: 4c:79:91:b0:d2:4d:cd:f8:73:f5:01:1a:58:82:62: 1c:f7:94:46:73:1b:2f:91:96:bd:e9:2d:b7:03:f2: d4:58:c8:7b:20:49:b8:cf:7e:cf:6f:bf:dc:c4:2e: 7e:33:3d:85:26:c9:ae:a9:f2:61:bc:a1:9b:8d:6c: c1:ec:b6:6f:ff:fc:e0:f2:3a:07:c0:c1:de:e1:f8: 5f:cd:c3:71:9f:1b:4d:88:3a:2a:94:aa:7a:da:a6: 21:81:a9:31:6c:9c:39:61:d3:29:3b:53:2b:6c:83: df:a6:a6:b3:86:82:80:d2:db:28:ae:e2:ef:64:6b: f6:2e:a1:8f:3d:75:e5:dd:15:f5:b1:8c:bd:f0:f6: f0:50:88:8b:60:ea:20:d2:e5:5d:30:97:6c:42:2c: 03:4b:04:17:d1:a3:bc:eb:c5:f1:29:14:b7:17:0f: 62:b8:04:ca:b7:f9:d1:39:21:6e:c0:88:7a:da:12: a1:5f:a3:31:cc:c1:65:07:a6:fd:85:a5:5b:f2:e6: 44:fa:d3:8e:bd:43:93:cf:bb:4d:62:4f:b1:7d:8a: da:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D5:F7:6E:C4:AD:69:E8:53:BA:57:8F:A7:E3:3D:48:BA:D8:53:D2 X509v3 Authority Key Identifier: keyid:AE:0A:7B:3E:88:A2:4A:81:BE:91:A0:96:95:69:1D:5D:18:45:19:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/rgp7PoiiSoG-kaCWlWkdXRhFGU0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rgp7PoiiSoG-kaCWlWkdXRhFGU0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/CtX3bsStaehTulePp-M9SLrYU9I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:cd20::/32 Signature Algorithm: sha256WithRSAEncryption 43:28:44:61:41:3a:e2:36:c7:32:67:4d:2f:66:c7:89:17:9c: 63:7a:da:64:7a:2e:11:ce:c2:4b:d0:dc:7c:1a:38:46:75:83: 16:59:28:68:7c:3b:db:d3:e4:96:48:7e:29:5b:bb:62:9e:e7: 9c:47:9a:89:3b:0f:8a:60:c8:b6:26:21:d4:c0:b5:70:76:2d: 56:fc:c8:81:d3:39:14:ce:fa:54:98:32:99:0f:33:9c:48:74: 55:9a:f9:55:e7:a9:79:1e:ab:03:29:40:d0:af:f0:a8:bb:82: 47:3f:9b:06:d1:31:17:e5:8c:88:3d:a5:27:d9:a9:ee:3f:40: 3e:d4:84:2e:50:ef:5c:51:fa:34:c9:64:4d:1f:43:b9:c8:d4: 6d:77:38:e9:54:9c:7f:9d:b1:df:a2:19:d2:b0:f4:21:09:42: 1c:06:60:79:71:80:6d:06:d4:cc:48:2c:48:a6:27:fc:fa:9d: 2b:49:96:6b:83:e9:4b:fd:4f:7c:d0:48:68:b3:d8:74:fe:b7: db:4e:22:ec:a1:a1:8a:c0:b0:22:b4:9f:c6:c2:85:04:fa:0d: 84:d7:8c:67:c7:4f:59:32:78:42:3b:b7:98:1d:8d:bf:fd:a1: 0c:4a:69:6c:03:c2:d9:10:fb:81:e8:27:9c:4a:d5:ad:6e:ef: 82:4c:36:a5 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICA2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUUw QTdCM0U4OEEyNEE4MUJFOTFBMDk2OTU2OTFENUQxODQ1MTk0RDAeFw0yNTA5MzAx NTUwNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBBRDVGNzZFQzRBRDY5 RTg1M0JBNTc4RkE3RTMzRDQ4QkFEODUzRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqDXKYRBz0Khbd1tRmINyuBI7NupnoCr9n4reSZ5ahRhk42uuq xbu+zO5VdEx5kbDSTc34c/UBGliCYhz3lEZzGy+Rlr3pLbcD8tRYyHsgSbjPfs9v v9zELn4zPYUmya6p8mG8oZuNbMHstm///ODyOgfAwd7h+F/Nw3GfG02IOiqUqnra piGBqTFsnDlh0yk7Uytsg9+mprOGgoDS2yiu4u9ka/YuoY89deXdFfWxjL3w9vBQ iItg6iDS5V0wl2xCLANLBBfRo7zrxfEpFLcXD2K4BMq3+dE5IW7AiHraEqFfozHM wWUHpv2FpVvy5kT60469Q5PPu01iT7F9itoVAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUCtX3bsStaehTulePp+M9SLrYU9IwHwYDVR0jBBgwFoAUrgp7PoiiSoG+kaCW lWkdXRhFGU0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVZVU4v cmdwN1BvaWlTb0cta2FDV2xXa2RYUmhGR1UwLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9yZ3A3UG9paVNvRy1rYUNXbFdrZFhSaEZHVTAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi9DdFgzYnNTdGFlaFR1bGVQcC1N OVNMcllVOUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAHN IDANBgkqhkiG9w0BAQsFAAOCAQEAQyhEYUE64jbHMmdNL2bHiRecY3raZHouEc7C S9DcfBo4RnWDFlkoaHw729Pklkh+KVu7Yp7nnEeaiTsPimDItiYh1MC1cHYtVvzI gdM5FM76VJgymQ8znEh0VZr5VeepeR6rAylA0K/wqLuCRz+bBtExF+WMiD2lJ9mp 7j9APtSELlDvXFH6NMlkTR9DucjUbXc46VScf52x36IZ0rD0IQlCHAZgeXGAbQbU zEgsSKYn/PqdK0mWa4PpS/1PfNBIaLPYdP63204i7KGhisCwIrSfxsKFBPoNhNeM Z8dPWTJ4Qju3mB2Nv/2hDEppbAPC2RD7gegnnErVrW7vgkw2pQ== -----END CERTIFICATE-----Generated at Tue Oct 21 10:23:42 2025 by rpki-client