$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/v62m8m95F8SNEZzytzf99Nu39wo.roa File: v62m8m95F8SNEZzytzf99Nu39wo.roa (raw, json) Hash identifier: v+zQwEwT9Dt5OgeL19L++86HklExsjJY/Tl6Exw478k= Subject key identifier: BF:AD:A6:F2:6F:79:17:C4:8D:11:9C:F2:B7:37:FD:F4:DB:B7:F7:0A Certificate issuer: /CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Certificate serial: 036B Authority key identifier: 53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/v62m8m95F8SNEZzytzf99Nu39wo.roa Signing time: Tue 30 Sep 2025 15:50:59 +0000 ROA not before: Tue 30 Sep 2025 15:50:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152616 IP address blocks: 160.191.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Validity Not Before: Sep 30 15:50:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BFADA6F26F7917C48D119CF2B737FDF4DBB7F70A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:30:7c:e6:83:e8:c4:0d:9f:01:d8:3b:32:76: 59:52:d6:2f:63:ae:5f:13:35:9c:be:15:7a:c6:c8: c9:51:be:0f:cd:de:be:1c:43:f6:36:9b:a6:61:4f: 4f:1b:3c:ff:b9:36:73:50:4a:ae:0e:d3:b5:a5:71: 2b:dc:77:f7:2e:82:9c:67:97:8c:4c:b6:bc:30:83: 66:d2:bf:25:c7:52:40:6e:4a:af:f2:34:dc:94:3e: a5:1e:65:01:44:6f:e6:ce:ce:22:90:89:8f:3b:34: 71:2e:ab:7f:ed:3f:d0:2e:0a:15:97:79:0f:96:b7: ac:33:aa:76:c3:18:f3:76:e6:61:3e:6c:66:03:ae: 82:9b:fa:b5:a2:8e:6e:b8:34:aa:4d:31:f6:c8:c0: 60:0c:77:a6:34:be:1a:7f:70:3c:7d:b2:00:29:d3: 14:34:a3:20:d4:a2:97:90:70:03:1c:3c:f5:86:e7: 8d:71:3d:70:77:1a:a2:15:99:f4:a8:e9:51:0c:dd: 3a:d3:b7:7a:7f:7c:89:fa:67:ad:89:7b:75:35:a9: 90:80:d6:b2:6f:94:e6:08:c5:af:c7:91:f0:c6:60: 5e:32:c7:ed:62:86:7c:0c:0b:42:36:cf:55:63:b1: c1:58:da:c7:1c:67:2f:5a:08:58:a3:6f:17:db:c7: 85:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:AD:A6:F2:6F:79:17:C4:8D:11:9C:F2:B7:37:FD:F4:DB:B7:F7:0A X509v3 Authority Key Identifier: keyid:53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/v62m8m95F8SNEZzytzf99Nu39wo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.7.0/24 Signature Algorithm: sha256WithRSAEncryption 83:97:17:28:ca:5a:3b:f3:16:7a:a4:46:ea:73:7c:3d:6b:e6: 67:8a:6d:8d:2e:7f:48:ce:75:26:10:f9:19:7d:b7:f0:98:9d: c2:bf:e0:1f:3b:34:bb:50:94:f4:04:9d:ad:e3:89:4c:fc:ed: eb:40:aa:f3:c8:fe:db:dd:6d:4f:0f:4f:4d:c3:ee:db:3c:f6: b1:49:e3:69:5a:8d:30:68:4f:99:ba:5b:3f:be:34:6a:5c:7b: d9:54:f5:79:41:91:7e:d5:66:6d:b8:d6:4c:93:46:c5:b7:db: f0:23:93:c5:a3:f1:bf:ab:39:76:a7:c0:c8:47:cf:38:f9:b7: e6:8b:f1:af:96:5c:b7:22:e8:5a:9c:42:2e:df:37:02:ff:0e: e8:f0:68:87:5f:52:1a:d0:19:f1:77:98:6e:8d:73:d1:05:5d: 3a:73:b4:56:c0:9c:ee:a6:21:a3:02:37:20:20:b0:ba:72:ae: e7:d9:46:91:ff:f5:78:91:b9:1e:82:07:3d:7e:a3:ec:e0:45: ae:0c:40:9e:81:bd:2f:f4:64:e5:32:48:20:ca:69:a4:78:f9: d7:e3:08:30:8b:ac:2c:e4:46:1f:6d:62:e7:2a:20:3c:b3:8c: f6:3e:1e:9d:69:50:b3:af:1a:1e:98:f3:8d:0c:04:15:69:e1: 2a:7f:6b:01 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICA2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTMy MkU2MUFFOEM4REQ4OTUzRTFFNkJEQzk2QUU0ODI3QUZDRjk5MDAeFw0yNTA5MzAx NTUwNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJGQURBNkYyNkY3OTE3 QzQ4RDExOUNGMkI3MzdGREY0REJCN0Y3MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCMHzmg+jEDZ8B2DsydllS1i9jrl8TNZy+FXrGyMlRvg/N3r4c Q/Y2m6ZhT08bPP+5NnNQSq4O07WlcSvcd/cugpxnl4xMtrwwg2bSvyXHUkBuSq/y NNyUPqUeZQFEb+bOziKQiY87NHEuq3/tP9AuChWXeQ+Wt6wzqnbDGPN25mE+bGYD roKb+rWijm64NKpNMfbIwGAMd6Y0vhp/cDx9sgAp0xQ0oyDUopeQcAMcPPWG541x PXB3GqIVmfSo6VEM3TrTt3p/fIn6Z62Je3U1qZCA1rJvlOYIxa/HkfDGYF4yx+1i hnwMC0I2z1VjscFY2sccZy9aCFijbxfbx4UzAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUv62m8m95F8SNEZzytzf99Nu39wowHwYDVR0jBBgwFoAUUyLmGujI3YlT4ea9 yWrkgnr8+ZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVZVU4v VXlMbUd1akkzWWxUNGVhOXlXcmtnbnI4LVpBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VeUxtR3VqSTNZbFQ0ZWE5eVdya2ducjgtWkEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi92NjJtOG05NUY4U05FWnp5dHpm OTlOdTM5d28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoL8H MA0GCSqGSIb3DQEBCwUAA4IBAQCDlxcoylo78xZ6pEbqc3w9a+Znim2NLn9IznUm EPkZfbfwmJ3Cv+AfOzS7UJT0BJ2t44lM/O3rQKrzyP7b3W1PD09Nw+7bPPaxSeNp Wo0waE+Zuls/vjRqXHvZVPV5QZF+1WZtuNZMk0bFt9vwI5PFo/G/qzl2p8DIR884 +bfmi/Gvlly3IuhanEIu3zcC/w7o8GiHX1Ia0Bnxd5hujXPRBV06c7RWwJzupiGj AjcgILC6cq7n2UaR//V4kbkeggc9fqPs4EWuDECegb0v9GTlMkggymmkePnX4wgw i6ws5EYfbWLnKiA8s4z2Ph6daVCzrxoemPONDAQVaeEqf2sB -----END CERTIFICATE-----Generated at Mon Oct 20 20:11:35 2025 by rpki-client