$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MKY/TS_4nJp52bO6vMKDnamKhwn8rvQ.roa File: TS_4nJp52bO6vMKDnamKhwn8rvQ.roa (raw, json) Hash identifier: DNV3QhDRLJWIQBrTcqDDUG/gHKe4Y6qRhN/XN2TFd/w= Subject key identifier: 4D:2F:F8:9C:9A:79:D9:B3:BA:BC:C2:83:9D:A9:8A:87:09:FC:AE:F4 Certificate issuer: /CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1 Certificate serial: 0D8E Authority key identifier: 9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/TS_4nJp52bO6vMKDnamKhwn8rvQ.roa Signing time: Fri 22 Aug 2025 08:51:45 +0000 ROA not before: Fri 22 Aug 2025 08:51:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7478 IP address blocks: 211.76.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3470 (0xd8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1 Validity Not Before: Aug 22 08:51:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4D2FF89C9A79D9B3BABCC2839DA98A8709FCAEF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2f:7f:01:6c:e8:68:c6:b4:df:9a:96:13:6b: a6:f9:dc:fb:28:36:0b:75:a4:f3:ea:f7:3e:83:81: dc:67:f4:b8:f2:fe:68:01:3e:1f:bc:c4:40:3b:39: de:4f:9b:23:50:d1:37:58:bd:47:f4:6f:36:73:85: 59:6d:85:46:13:db:59:59:5e:99:13:c2:ad:e5:7e: 2a:ee:17:12:e6:3d:dd:6a:47:a9:c2:69:f1:af:a8: 9a:a3:6e:6a:81:e3:e0:41:40:7d:6c:5a:28:dc:1a: 38:9e:11:a9:a7:df:51:85:10:f2:4c:67:90:62:47: 8e:1e:a0:1c:ed:66:3e:6e:54:a3:11:70:d9:5d:b9: a8:9b:9a:36:ae:62:25:5e:1f:ba:65:19:43:0e:df: 0c:ae:52:be:51:a4:6c:cb:2e:01:c7:95:f1:e5:c8: 39:ab:8c:58:af:66:77:6d:15:c6:af:9d:1c:3b:86: 3d:d0:a4:4b:e5:81:d7:04:ef:e7:3e:8e:4e:06:c6: 17:82:8f:9a:93:3f:a7:6d:fd:26:17:c2:ec:9d:11: 69:e3:5b:c1:79:e5:61:3a:af:69:75:5a:38:fd:dc: 8b:2f:71:f4:66:19:df:ff:f0:3e:c8:1a:ba:52:dc: fe:a8:80:18:fe:67:78:2e:c6:e1:78:2e:35:3e:4e: d1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:2F:F8:9C:9A:79:D9:B3:BA:BC:C2:83:9D:A9:8A:87:09:FC:AE:F4 X509v3 Authority Key Identifier: keyid:9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/TS_4nJp52bO6vMKDnamKhwn8rvQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.0.0/19 Signature Algorithm: sha256WithRSAEncryption 63:5f:81:af:fb:88:7b:94:bd:0a:be:06:19:d4:d8:18:a8:62: 39:05:aa:5b:cb:8c:15:f7:6d:a6:5e:01:c2:33:45:bf:36:07: 00:aa:3e:30:34:23:cc:da:a6:00:d8:5d:6e:d6:d3:dd:be:0a: b2:80:ad:b2:00:ea:eb:29:a5:9d:82:a6:90:46:08:e8:95:f5: d5:85:fb:17:c2:27:b5:5a:ee:50:7a:43:a4:86:87:e0:c0:5f: c3:67:fc:e4:10:6a:34:33:ef:61:7f:b7:a4:fd:0b:94:43:d8: 7a:89:b8:6e:79:4a:df:c1:33:1f:24:7d:e4:0d:97:a2:5e:ef: ce:cc:e0:37:27:c2:32:1a:14:ee:ad:08:80:a6:02:32:1a:fc: ef:49:98:14:0e:7c:ad:93:13:88:0b:dc:8d:33:65:3a:5e:b4: f5:06:8a:ea:e9:72:76:bc:8d:7a:12:df:76:f3:d7:1e:15:c1: 40:30:15:7d:ee:0c:e7:03:69:5c:0f:8d:56:5f:f5:2e:b4:91: e4:81:8d:73:48:9a:2a:d8:7a:de:69:d4:de:2d:08:6e:d7:1c: 8c:f8:9e:c5:3b:b6:06:8a:2d:86:71:eb:1f:27:af:3e:c1:90: 17:5e:23:11:75:88:78:0d:9e:f9:80:b3:0d:95:99:61:c0:82: 7d:c2:8e:f2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDY4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUQ5 RTk3QjAwRDJFMTVDNDFBRTcwNzE3MzIwMThDMkIxMzdFNTNBMTAeFw0yNTA4MjIw ODUxNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDREMkZGODlDOUE3OUQ5 QjNCQUJDQzI4MzlEQTk4QTg3MDlGQ0FFRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjL38BbOhoxrTfmpYTa6b53PsoNgt1pPPq9z6Dgdxn9Ljy/mgB Ph+8xEA7Od5PmyNQ0TdYvUf0bzZzhVlthUYT21lZXpkTwq3lfiruFxLmPd1qR6nC afGvqJqjbmqB4+BBQH1sWijcGjieEamn31GFEPJMZ5BiR44eoBztZj5uVKMRcNld uaibmjauYiVeH7plGUMO3wyuUr5RpGzLLgHHlfHlyDmrjFivZndtFcavnRw7hj3Q pEvlgdcE7+c+jk4GxheCj5qTP6dt/SYXwuydEWnjW8F55WE6r2l1Wjj93IsvcfRm Gd//8D7IGrpS3P6ogBj+Z3guxuF4LjU+TtHZAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUTS/4nJp52bO6vMKDnamKhwn8rvQwHwYDVR0jBBgwFoAUnZ6XsA0uFcQa5wcX MgGMKxN+U6EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUtZL25a NlhzQTB1RmNRYTV3Y1hNZ0dNS3hOLVU2RS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev blo2WHNBMHVGY1FhNXdjWE1nR01LeE4tVTZFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvTUtZL1RTXzRuSnA1MmJPNnZNS0RuYW1LaHdu OHJ2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTTAAwDQYJ KoZIhvcNAQELBQADggEBAGNfga/7iHuUvQq+BhnU2BioYjkFqlvLjBX3baZeAcIz Rb82BwCqPjA0I8zapgDYXW7W092+CrKArbIA6usppZ2CppBGCOiV9dWF+xfCJ7Va 7lB6Q6SGh+DAX8Nn/OQQajQz72F/t6T9C5RD2HqJuG55St/BMx8kfeQNl6Je787M 4DcnwjIaFO6tCICmAjIa/O9JmBQOfK2TE4gL3I0zZTpetPUGiurpcna8jXoS33bz 1x4VwUAwFX3uDOcDaVwPjVZf9S60keSBjXNImirYet5p1N4tCG7XHIz4nsU7tgaK LYZx6x8nrz7BkBdeIxF1iHgNnvmAsw2VmWHAgn3CjvI= -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:54 2025 by rpki-client