$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/CW3FD_TRmwzrR5Jpt7o0abja2JM.roa File: CW3FD_TRmwzrR5Jpt7o0abja2JM.roa (raw, json) Hash identifier: GlTKZP/hOiZTcp9R5UgObTobUqRvgQ62iUZSERW23PI= Subject key identifier: 09:6D:C5:0F:F4:D1:9B:0C:EB:47:92:69:B7:BA:34:69:B8:DA:D8:93 Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Certificate serial: 0DEC Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/CW3FD_TRmwzrR5Jpt7o0abja2JM.roa Signing time: Fri 22 Aug 2025 09:01:25 +0000 ROA not before: Fri 22 Aug 2025 09:01:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18426 IP address blocks: 203.145.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3564 (0xdec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Validity Not Before: Aug 22 09:01:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=096DC50FF4D19B0CEB479269B7BA3469B8DAD893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ce:15:14:70:5d:fb:23:53:7b:7f:3c:20:d6: 89:e0:33:42:dd:67:5d:58:f1:fe:1a:cf:45:1e:f6: 35:da:ca:e1:d4:9a:f7:89:f1:89:d4:68:43:80:95: b9:c3:15:4e:2d:35:f3:c6:39:ff:e8:05:e7:e6:ff: 0d:ee:a3:97:09:4f:95:71:97:10:ea:db:5c:52:dc: 7a:ad:cf:e7:b6:3e:52:21:10:2a:1b:e4:af:b3:c6: cc:d8:d4:25:21:99:51:a0:3a:2a:02:2e:5c:42:00: 86:6d:32:31:43:9a:00:ad:4c:a0:21:ff:51:ae:95: 32:6d:d8:a0:62:91:18:57:6a:9f:00:0a:fc:f6:d9: f5:40:37:ba:67:be:4d:5f:9a:c1:8a:57:f3:c8:61: 79:b6:6f:5f:8b:fd:b7:8b:2b:a1:8e:d5:5a:c9:23: 2b:93:31:60:85:ac:3c:35:46:30:0c:df:3b:1b:57: 74:db:82:91:28:cf:99:e4:68:66:fe:34:69:6b:b2: 1d:4e:7c:5c:03:ce:b5:f6:f9:a4:f8:dc:94:34:94: 4e:79:97:02:e2:38:f8:22:cb:7e:da:21:2f:75:d5: fb:da:ad:77:09:9a:23:1a:03:0c:63:0a:d5:b4:a0: df:62:64:8b:7f:84:f3:cf:dc:9e:27:e5:8c:ec:03: c7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:6D:C5:0F:F4:D1:9B:0C:EB:47:92:69:B7:BA:34:69:B8:DA:D8:93 X509v3 Authority Key Identifier: keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/CW3FD_TRmwzrR5Jpt7o0abja2JM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.145.192.0/21 Signature Algorithm: sha256WithRSAEncryption 39:30:c2:d4:06:d9:72:ba:67:91:2b:fb:eb:53:db:a9:72:4c: 03:03:67:7d:72:81:db:e5:96:80:a2:1b:f6:e0:4f:6c:32:0a: 0e:78:1a:51:ed:b8:82:cb:07:0d:2d:b0:c9:52:72:74:d1:30: 21:45:bd:5f:b7:b4:22:05:f1:30:4a:9f:49:87:11:6a:c8:fe: a5:b5:9b:7a:ee:30:71:cd:13:68:2a:f1:9e:5f:2a:36:2e:1a: ff:99:06:4e:8b:e3:87:43:97:2b:ef:e8:44:f8:d0:d8:b8:5d: 11:f0:5e:30:be:c4:b8:e1:fb:94:d6:82:d3:76:9b:09:1e:06: 1e:30:49:06:4f:ec:90:e6:6c:a2:e6:7a:97:9e:88:ee:97:17: 9b:7a:cc:af:4c:de:38:b0:13:42:a8:0d:0f:74:51:f8:f4:4f: 28:9a:0a:81:8b:c0:60:de:69:0f:10:d5:38:7e:29:81:f0:00: 16:b4:4c:97:b6:63:c5:34:3e:fd:2c:6f:3e:d6:f4:06:d0:40: 79:25:44:92:8d:6d:0b:38:91:e0:66:a9:95:91:4b:cd:b4:09: b8:ba:b0:09:df:26:bb:54:03:49:60:0e:0e:ac:66:41:bf:5b: cf:5c:f0:96:67:c5:9b:3f:65:c5:b0:e9:17:25:33:10:dc:ed: c9:ba:50:7f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yNTA4MjIw OTAxMjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA5NkRDNTBGRjREMTlC MENFQjQ3OTI2OUI3QkEzNDY5QjhEQUQ4OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3zhUUcF37I1N7fzwg1ongM0LdZ11Y8f4az0Ue9jXayuHUmveJ 8YnUaEOAlbnDFU4tNfPGOf/oBefm/w3uo5cJT5VxlxDq21xS3Hqtz+e2PlIhECob 5K+zxszY1CUhmVGgOioCLlxCAIZtMjFDmgCtTKAh/1GulTJt2KBikRhXap8ACvz2 2fVAN7pnvk1fmsGKV/PIYXm2b1+L/beLK6GO1VrJIyuTMWCFrDw1RjAM3zsbV3Tb gpEoz5nkaGb+NGlrsh1OfFwDzrX2+aT43JQ0lE55lwLiOPgiy37aIS911fvarXcJ miMaAwxjCtW0oN9iZIt/hPPP3J4n5YzsA8f1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUCW3FD/TRmwzrR5Jpt7o0abja2JMwHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvQ1czRkRfVFJtd3pyUjVKcHQ3bzBh YmphMkpNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8uRwDAN BgkqhkiG9w0BAQsFAAOCAQEAOTDC1AbZcrpnkSv761PbqXJMAwNnfXKB2+WWgKIb 9uBPbDIKDngaUe24gssHDS2wyVJydNEwIUW9X7e0IgXxMEqfSYcRasj+pbWbeu4w cc0TaCrxnl8qNi4a/5kGTovjh0OXK+/oRPjQ2LhdEfBeML7EuOH7lNaC03abCR4G HjBJBk/skOZsouZ6l56I7pcXm3rMr0zeOLATQqgND3RR+PRPKJoKgYvAYN5pDxDV OH4pgfAAFrRMl7ZjxTQ+/SxvPtb0BtBAeSVEko1tCziR4GaplZFLzbQJuLqwCd8m u1QDSWAODqxmQb9bz1zwlmfFmz9lxbDpFyUzENztybpQfw== -----END CERTIFICATE-----Generated at Sun Aug 24 14:03:45 2025 by rpki-client