$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/RIV6PgWMJkJlUBTyjCvNjrEjQrQ.roa File: RIV6PgWMJkJlUBTyjCvNjrEjQrQ.roa (raw, json) Hash identifier: /c6CnGCYp3uDqy903NYKQ8azcI+NYy29gMAjI7Y7e5I= Subject key identifier: 44:85:7A:3E:05:8C:26:42:65:50:14:F2:8C:2B:CD:8E:B1:23:42:B4 Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Certificate serial: 0856 Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/RIV6PgWMJkJlUBTyjCvNjrEjQrQ.roa Signing time: Fri 22 Aug 2025 08:44:23 +0000 ROA not before: Fri 22 Aug 2025 08:44:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24171 IP address blocks: 2406:3540:fff4::/46 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2134 (0x856) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Validity Not Before: Aug 22 08:44:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=44857A3E058C2642655014F28C2BCD8EB12342B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a2:26:f5:75:e9:cf:08:cc:f1:17:12:a9:e4: a6:5d:35:8b:8e:03:2a:52:0b:a7:de:57:3f:c6:21: c4:9c:85:76:0d:a7:d1:d3:83:f2:42:1b:31:20:2b: 32:c4:fb:24:63:a3:b8:68:f8:5b:af:be:d5:2b:00: 70:52:0c:b8:8d:33:6a:28:89:7c:b4:e6:78:71:4d: a0:04:e2:00:27:bc:fa:05:85:cd:04:87:1e:c5:57: 4d:df:8a:60:16:a9:a0:85:6d:3f:ec:d1:2e:26:78: 7e:84:3a:93:00:b9:0e:50:f9:18:df:30:c3:19:78: 8d:7a:00:f6:23:69:43:ef:08:88:54:4e:db:0f:ba: 75:4b:fa:eb:45:2f:57:e0:6b:a9:2a:b6:a0:ec:07: 80:bd:e0:0b:ad:52:7e:02:5a:e6:b7:70:0a:b5:d5: 88:2b:60:59:e6:d3:06:fa:21:72:dc:73:4d:f1:e3: 43:6a:73:24:09:3b:dc:ea:d3:45:90:00:ef:dc:20: c9:6d:f7:2f:3d:ec:d0:66:70:9f:ef:db:b5:0c:8a: bd:e0:10:d9:12:e6:70:ec:b0:25:94:83:77:14:fb: 18:8e:24:68:2c:f3:65:6e:21:93:5c:c7:b5:5d:8d: 1c:96:ac:e5:e9:cf:c4:ba:e2:27:72:b1:93:c0:d0: 58:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:85:7A:3E:05:8C:26:42:65:50:14:F2:8C:2B:CD:8E:B1:23:42:B4 X509v3 Authority Key Identifier: keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/RIV6PgWMJkJlUBTyjCvNjrEjQrQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:3540:fff4::/46 Signature Algorithm: sha256WithRSAEncryption 34:66:f5:9f:00:d4:c5:ac:b6:5c:17:05:ec:18:eb:f7:4f:4f: 58:6f:69:d8:aa:14:bc:86:4d:73:31:ac:28:cd:cb:40:74:a9: cf:eb:fe:4e:2f:b7:ad:d3:99:dc:b6:95:60:f8:11:ff:80:9f: 53:d9:65:97:7f:a7:a7:f9:0e:4c:06:95:71:15:d0:0f:ed:94: 4c:61:69:07:7a:e3:a5:c1:3e:65:5d:8b:7f:7d:19:77:a9:87: fb:00:47:42:2d:27:83:a3:cd:64:25:37:e6:63:c5:8b:71:67: 0e:0c:00:49:d4:da:08:01:10:39:5b:e5:e9:02:70:f3:5b:bf: 54:94:4a:dc:6f:75:9b:a7:8f:c5:f4:03:00:d5:5c:1d:f4:f1: c9:44:70:fa:33:2c:42:00:1d:87:a8:37:98:ab:42:d3:3b:d1: 83:9e:77:eb:35:62:82:2e:a5:f9:67:90:83:b9:89:88:8b:74: 99:16:89:42:44:a8:82:e9:2f:29:f0:5b:46:df:a0:e9:6b:03: 2c:67:8f:02:35:12:95:e2:3b:ba:2f:7f:f7:73:78:27:4f:b9: 56:35:ab:3d:69:d3:22:93:86:fb:6e:92:53:6c:e4:57:3b:44: df:55:b6:ff:b2:6f:14:4f:2e:ba:46:7d:a1:ed:0d:91:9f:c6: e5:21:b5:5e -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICCFYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURG RTZFNTZEQUY4NDkyRUM3REU4OEIzQTkwNkIzMTM5QjU1Qjg2NDAeFw0yNTA4MjIw ODQ0MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ0ODU3QTNFMDU4QzI2 NDI2NTUwMTRGMjhDMkJDRDhFQjEyMzQyQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzoib1denPCMzxFxKp5KZdNYuOAypSC6feVz/GIcSchXYNp9HT g/JCGzEgKzLE+yRjo7ho+FuvvtUrAHBSDLiNM2ooiXy05nhxTaAE4gAnvPoFhc0E hx7FV03fimAWqaCFbT/s0S4meH6EOpMAuQ5Q+RjfMMMZeI16APYjaUPvCIhUTtsP unVL+utFL1fga6kqtqDsB4C94AutUn4CWua3cAq11YgrYFnm0wb6IXLcc03x40Nq cyQJO9zq00WQAO/cIMlt9y897NBmcJ/v27UMir3gENkS5nDssCWUg3cU+xiOJGgs 82VuIZNcx7VdjRyWrOXpz8S64idysZPA0FhxAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQURIV6PgWMJkJlUBTyjCvNjrEjQrQwHwYDVR0jBBgwFoAUrf5uVtr4SS7H3oiz qQazE5tVuGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJ VEVBL3JmNXVWdHI0U1M3SDNvaXpxUWF6RTV0VnVHUS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcmY1dVZ0cjRTUzdIM29penFRYXpFNXRWdUdRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJVEVBL1JJVjZQZ1dNSmtK bFVCVHlqQ3ZOanJFalFyUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwIkBjVA//QwDQYJKoZIhvcNAQELBQADggEBADRm9Z8A1MWstlwXBewY6/dP T1hvadiqFLyGTXMxrCjNy0B0qc/r/k4vt63Tmdy2lWD4Ef+An1PZZZd/p6f5DkwG lXEV0A/tlExhaQd646XBPmVdi399GXeph/sAR0ItJ4OjzWQlN+ZjxYtxZw4MAEnU 2ggBEDlb5ekCcPNbv1SUStxvdZunj8X0AwDVXB308clEcPozLEIAHYeoN5irQtM7 0YOed+s1YoIupflnkIO5iYiLdJkWiUJEqILpLynwW0bfoOlrAyxnjwI1EpXiO7ov f/dzeCdPuVY1qz1p0yKThvtuklNs5Fc7RN9Vtv+ybxRPLrpGfaHtDZGfxuUhtV4= -----END CERTIFICATE-----Generated at Sun Aug 24 05:43:26 2025 by rpki-client