$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/M2NIM/r8boz4jBdZztL_izZVGfhqDuooE.roa File: r8boz4jBdZztL_izZVGfhqDuooE.roa (raw, json) Hash identifier: TlUVGa4sphWGhDx//uUjzcMnpnFrJwG51Qzv51S2VWM= Subject key identifier: AF:C6:E8:CF:88:C1:75:9C:ED:2F:F8:B3:65:51:9F:86:A0:EE:A2:81 Certificate issuer: /CN=CC4EFE97C9C1EA48F01A1F865DD617EBB13351A1 Certificate serial: 01DE Authority key identifier: CC:4E:FE:97:C9:C1:EA:48:F0:1A:1F:86:5D:D6:17:EB:B1:33:51:A1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zE7-l8nB6kjwGh-GXdYX67EzUaE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/r8boz4jBdZztL_izZVGfhqDuooE.roa Signing time: Fri 22 Aug 2025 08:44:08 +0000 ROA not before: Fri 22 Aug 2025 08:44:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9923 IP address blocks: 2401:8420::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/zE7-l8nB6kjwGh-GXdYX67EzUaE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/zE7-l8nB6kjwGh-GXdYX67EzUaE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zE7-l8nB6kjwGh-GXdYX67EzUaE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC4EFE97C9C1EA48F01A1F865DD617EBB13351A1 Validity Not Before: Aug 22 08:44:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AFC6E8CF88C1759CED2FF8B365519F86A0EEA281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:60:7a:b2:b0:60:f0:36:20:22:d3:c9:22:03: f3:a8:50:57:d1:56:b3:db:46:ea:68:67:6e:9d:b0: 94:90:26:53:f4:ed:8e:9f:f6:4d:d1:89:47:33:f4: 02:cf:73:72:34:80:65:7a:fd:1a:b0:71:11:e5:b2: d6:af:37:aa:33:b5:e1:05:b4:64:85:46:8d:cb:76: dc:b5:2b:2b:ec:ed:9a:17:7a:6f:93:2d:3e:69:0a: cf:ca:41:1f:16:57:f7:80:31:5f:e9:e8:2d:5b:82: c4:36:d1:0c:53:d4:b6:fa:dc:4b:45:11:f6:f1:e2: a2:29:94:6b:9f:6f:04:70:96:ad:79:3a:12:b2:b4: 7b:ec:2e:14:4b:13:ab:1d:77:30:ef:0b:4e:eb:60: 80:7c:b4:ba:76:63:6a:b2:5b:4c:2c:24:91:fb:58: f0:82:26:a3:15:a3:91:1c:db:b2:7f:d6:bb:22:9c: a1:b7:c8:93:f4:19:8c:9f:56:6f:21:ee:81:78:f9: 22:4b:47:17:e8:d0:86:3b:2a:ae:25:02:17:ca:17: 25:67:1f:cf:91:b5:26:ac:6d:06:93:e8:05:d2:19: 70:28:c2:be:70:2d:e5:33:6d:48:dd:78:f9:26:c9: 3c:ef:42:02:9a:9e:94:89:eb:0d:2a:65:75:44:aa: f9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:C6:E8:CF:88:C1:75:9C:ED:2F:F8:B3:65:51:9F:86:A0:EE:A2:81 X509v3 Authority Key Identifier: keyid:CC:4E:FE:97:C9:C1:EA:48:F0:1A:1F:86:5D:D6:17:EB:B1:33:51:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/zE7-l8nB6kjwGh-GXdYX67EzUaE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zE7-l8nB6kjwGh-GXdYX67EzUaE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/r8boz4jBdZztL_izZVGfhqDuooE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:8420::/32 Signature Algorithm: sha256WithRSAEncryption 4f:38:9b:d7:a0:1e:ec:e6:da:9b:b6:f5:e6:f4:e4:a1:7e:b1: e0:b8:41:c7:c4:8e:9c:af:ce:e1:2a:35:7d:23:4e:06:12:dd: 78:77:48:f8:fa:ae:61:52:a3:35:87:32:64:d0:52:c4:66:d5: cc:99:90:54:61:d1:21:b2:96:f0:2a:63:95:87:c0:38:3b:a5: 77:f4:78:b4:c5:64:96:8c:84:b0:27:41:04:b0:72:e6:e2:50: eb:cd:21:b3:6b:f2:fb:55:26:21:aa:3c:33:2f:55:68:1e:d7: 11:87:1e:d9:40:a5:c1:e8:1a:1a:c2:dd:6b:3e:18:cd:0a:37: 6d:7e:73:67:cd:06:46:fa:69:d2:75:7c:30:6c:3f:c8:8c:a7: bc:6d:9b:60:14:cc:a5:01:b4:5d:01:0b:e2:d8:d7:2f:18:16: 0f:1d:65:08:20:19:10:5a:bb:89:b8:04:6c:77:d6:b6:bb:bd: e1:ce:58:9c:c9:56:c1:5d:7d:9b:b1:85:44:83:e6:d7:33:f4: e6:71:09:94:8f:0e:32:e5:77:4e:ca:ac:e0:c4:23:88:c4:c7: 18:7e:a3:77:a9:fc:2b:3b:e2:db:44:df:ad:de:31:b5:4d:26: 8d:74:07:1f:8e:13:6a:f9:f9:9b:9d:c2:ca:8b:e2:b6:44:07: c8:ba:a6:ac -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0M0 RUZFOTdDOUMxRUE0OEYwMUExRjg2NURENjE3RUJCMTMzNTFBMTAeFw0yNTA4MjIw ODQ0MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFGQzZFOENGODhDMTc1 OUNFRDJGRjhCMzY1NTE5Rjg2QTBFRUEyODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+YHqysGDwNiAi08kiA/OoUFfRVrPbRupoZ26dsJSQJlP07Y6f 9k3RiUcz9ALPc3I0gGV6/RqwcRHlstavN6ozteEFtGSFRo3Ldty1Kyvs7ZoXem+T LT5pCs/KQR8WV/eAMV/p6C1bgsQ20QxT1Lb63EtFEfbx4qIplGufbwRwlq15OhKy tHvsLhRLE6sddzDvC07rYIB8tLp2Y2qyW0wsJJH7WPCCJqMVo5Ec27J/1rsinKG3 yJP0GYyfVm8h7oF4+SJLRxfo0IY7Kq4lAhfKFyVnH8+RtSasbQaT6AXSGXAowr5w LeUzbUjdePkmyTzvQgKanpSJ6w0qZXVEqvnJAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUr8boz4jBdZztL/izZVGfhqDuooEwHwYDVR0jBBgwFoAUzE7+l8nB6kjwGh+G XdYX67EzUaEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTTJOSU0v ekU3LWw4bkI2a2p3R2gtR1hkWVg2N0V6VWFFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96RTctbDhuQjZrandHaC1HWGRZWDY3RXpVYUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NMk5JTS9yOGJvejRqQmRaenRMX2l6WlZH ZmhxRHVvb0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAGE IDANBgkqhkiG9w0BAQsFAAOCAQEATzib16Ae7Obam7b15vTkoX6x4LhBx8SOnK/O 4So1fSNOBhLdeHdI+PquYVKjNYcyZNBSxGbVzJmQVGHRIbKW8CpjlYfAODuld/R4 tMVkloyEsCdBBLBy5uJQ680hs2vy+1UmIao8My9VaB7XEYce2UClwegaGsLdaz4Y zQo3bX5zZ80GRvpp0nV8MGw/yIynvG2bYBTMpQG0XQEL4tjXLxgWDx1lCCAZEFq7 ibgEbHfWtru94c5YnMlWwV19m7GFRIPm1zP05nEJlI8OMuV3Tsqs4MQjiMTHGH6j d6n8Kzvi20Tfrd4xtU0mjXQHH44Tavn5m53CyovitkQHyLqmrA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:40:03 2025 by rpki-client