$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/Z5YBuuWYNZaE_tCBI05QVhHGDXQ.roa File: Z5YBuuWYNZaE_tCBI05QVhHGDXQ.roa (raw, json) Hash identifier: Kw943L2UTRzOxYr0n8xN8sdk8u7iVdcFaFaiNIYzPUU= Subject key identifier: 67:96:01:BA:E5:98:35:96:84:FE:D0:81:23:4E:50:56:11:C6:0D:74 Certificate issuer: /CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Certificate serial: 036B Authority key identifier: 53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/Z5YBuuWYNZaE_tCBI05QVhHGDXQ.roa Signing time: Tue 30 Sep 2025 15:50:59 +0000 ROA not before: Tue 30 Sep 2025 15:50:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152616 IP address blocks: 160.191.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Validity Not Before: Sep 30 15:50:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=679601BAE598359684FED081234E505611C60D74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d7:65:b9:30:1d:02:9a:e8:1e:53:fd:f1:a1: e6:a1:c8:b9:78:84:6d:0a:26:20:a0:05:8f:f2:5f: 4f:a4:91:91:69:e7:c3:8d:fe:c7:09:98:2c:96:8e: 3d:ec:66:96:f9:d9:41:f0:b6:ca:a8:23:0a:b4:ad: c9:cd:de:e7:ca:a9:83:f9:f7:ab:7d:03:d4:33:4c: a9:5b:88:3e:81:a0:61:8f:dd:16:28:f4:16:b7:ce: b9:00:eb:b2:9f:1e:3b:7b:86:01:dc:53:6c:40:d4: 26:d9:19:d5:0d:d2:e8:78:46:52:73:37:30:93:64: 92:16:ca:d6:09:3a:aa:4e:0f:97:c8:a5:bf:0f:09: 1e:61:ca:da:09:b0:f4:31:f0:f8:6f:88:48:d3:25: c9:a1:63:0a:cd:3e:39:49:c1:0d:b6:85:f6:3f:6f: 1b:01:09:f9:14:a0:a5:be:b3:ca:9c:af:3a:95:42: ba:0e:3b:a7:00:b3:84:60:51:65:80:21:51:e8:90: ed:6c:e5:c7:ee:2c:43:7f:c7:7e:cc:01:a9:65:05: ef:a2:d5:ec:5d:4c:25:14:30:60:2f:ab:c6:e6:31: 29:cd:70:a5:26:89:81:b3:21:39:0b:2f:6b:31:e3: 59:8e:f7:67:5d:62:e7:34:ae:72:c0:74:85:e0:5f: 35:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:96:01:BA:E5:98:35:96:84:FE:D0:81:23:4E:50:56:11:C6:0D:74 X509v3 Authority Key Identifier: keyid:53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/Z5YBuuWYNZaE_tCBI05QVhHGDXQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.6.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:49:93:73:6b:12:73:fc:2d:6e:3b:73:dd:81:f0:5f:5f:74: 1b:8f:84:76:a6:f1:26:86:61:24:58:6e:5a:53:61:31:87:20: 8f:06:96:31:dc:65:19:a2:c5:30:5f:36:62:42:db:64:68:a9: 24:c2:91:df:75:4d:33:2b:62:a7:72:55:d6:a9:73:70:90:89: 0a:93:2f:35:f2:81:2f:0b:0d:1f:f4:0e:c4:f9:41:f8:ff:cf: 0f:03:f1:3f:0c:83:06:93:7c:5e:9c:f8:03:8a:04:16:38:27: ee:b3:dd:55:0b:42:c1:24:de:46:b7:d8:17:19:19:82:ca:ec: 49:34:7b:d5:dd:7e:d2:9e:67:04:57:13:61:a0:af:94:3a:71: 7a:c6:f1:55:39:4f:f2:74:9f:99:82:b4:ac:cf:f7:27:02:ae: d7:9e:df:f5:82:2c:c2:4f:33:dd:6e:10:74:f0:66:47:24:bc: 99:6d:48:84:1e:bc:db:a5:88:32:a6:05:d2:5e:51:3e:1d:78: 7c:f3:15:c8:3e:26:8f:77:3a:58:22:96:2c:04:09:9a:61:c2: 08:a4:5d:f1:d9:54:02:ab:d9:13:45:cd:31:93:73:f6:b9:3c: ad:88:33:a6:eb:70:2b:1f:09:bb:5f:24:7b:77:4d:bd:8a:83: 11:30:d3:d1 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICA2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTMy MkU2MUFFOEM4REQ4OTUzRTFFNkJEQzk2QUU0ODI3QUZDRjk5MDAeFw0yNTA5MzAx NTUwNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY3OTYwMUJBRTU5ODM1 OTY4NEZFRDA4MTIzNEU1MDU2MTFDNjBENzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ12W5MB0CmugeU/3xoeahyLl4hG0KJiCgBY/yX0+kkZFp58ON /scJmCyWjj3sZpb52UHwtsqoIwq0rcnN3ufKqYP596t9A9QzTKlbiD6BoGGP3RYo 9Ba3zrkA67KfHjt7hgHcU2xA1CbZGdUN0uh4RlJzNzCTZJIWytYJOqpOD5fIpb8P CR5hytoJsPQx8PhviEjTJcmhYwrNPjlJwQ22hfY/bxsBCfkUoKW+s8qcrzqVQroO O6cAs4RgUWWAIVHokO1s5cfuLEN/x37MAallBe+i1exdTCUUMGAvq8bmMSnNcKUm iYGzITkLL2sx41mO92ddYuc0rnLAdIXgXzXLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUZ5YBuuWYNZaE/tCBI05QVhHGDXQwHwYDVR0jBBgwFoAUUyLmGujI3YlT4ea9 yWrkgnr8+ZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVZVU4v VXlMbUd1akkzWWxUNGVhOXlXcmtnbnI4LVpBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VeUxtR3VqSTNZbFQ0ZWE5eVdya2ducjgtWkEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi9aNVlCdXVXWU5aYUVfdENCSTA1 UVZoSEdEWFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoL8G MA0GCSqGSIb3DQEBCwUAA4IBAQCOSZNzaxJz/C1uO3PdgfBfX3Qbj4R2pvEmhmEk WG5aU2ExhyCPBpYx3GUZosUwXzZiQttkaKkkwpHfdU0zK2KnclXWqXNwkIkKky81 8oEvCw0f9A7E+UH4/88PA/E/DIMGk3xenPgDigQWOCfus91VC0LBJN5Gt9gXGRmC yuxJNHvV3X7SnmcEVxNhoK+UOnF6xvFVOU/ydJ+ZgrSsz/cnAq7Xnt/1gizCTzPd bhB08GZHJLyZbUiEHrzbpYgypgXSXlE+HXh88xXIPiaPdzpYIpYsBAmaYcIIpF3x 2VQCq9kTRc0xk3P2uTytiDOm63ArHwm7XyR7d029ioMRMNPR -----END CERTIFICATE-----Generated at Mon Oct 20 20:13:35 2025 by rpki-client