$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/atUwJIKFrDyvVHD-_XMj0YDtvmI.roa File: atUwJIKFrDyvVHD-_XMj0YDtvmI.roa (raw, json) Hash identifier: SapC8vJuEGKRwGQlQcjqEo9/M2fJ6wGFGEG9eLaA+2I= Subject key identifier: 6A:D5:30:24:82:85:AC:3C:AF:54:70:FE:FD:73:23:D1:80:ED:BE:62 Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Certificate serial: 0DE7 Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/atUwJIKFrDyvVHD-_XMj0YDtvmI.roa Signing time: Fri 22 Aug 2025 09:01:23 +0000 ROA not before: Fri 22 Aug 2025 09:01:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18183 IP address blocks: 2001:4500::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3559 (0xde7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Validity Not Before: Aug 22 09:01:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6AD530248285AC3CAF5470FEFD7323D180EDBE62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:74:2e:1f:1c:8d:a4:1b:42:3b:64:77:08:10: 4f:85:a4:96:9b:5b:d5:4b:38:e1:a0:33:86:c5:ce: 1c:32:96:cf:33:dc:81:31:8f:7f:6a:d3:4e:b7:f7: be:4e:9b:25:15:2e:4e:6f:2c:31:79:cc:86:ff:9e: 47:1c:8a:52:13:4f:a7:e0:85:43:e0:7a:df:4f:d6: 6b:15:2c:d0:f3:eb:e2:2d:bc:7f:5a:12:10:03:b3: 82:92:ca:66:b5:32:3a:89:ca:f0:c2:5d:85:53:92: 7e:a8:df:38:99:a3:34:71:d5:c0:19:f6:f4:70:eb: db:4d:9a:dc:60:19:3c:d7:d6:c4:2b:d5:33:49:0b: ad:eb:92:aa:68:b7:05:a2:73:ac:91:25:7b:7c:5a: 49:92:8d:cb:8a:64:05:e4:33:e2:51:f4:b4:88:b9: 66:19:7a:77:7e:47:34:4b:61:be:45:e5:9e:3b:84: de:35:50:e5:dc:8e:ab:f5:7a:9e:51:4d:c7:fa:3a: f9:0a:2e:f6:81:c0:17:46:ab:b4:8e:07:b4:ba:73: 60:9d:5c:00:bc:9e:d1:f9:94:5b:37:d0:c8:3d:86: 22:a5:f1:ef:d1:c3:b4:27:b7:56:6d:e1:e1:48:c5: 71:97:2c:51:dd:2f:b9:1c:7a:08:49:93:0e:6a:cb: d4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D5:30:24:82:85:AC:3C:AF:54:70:FE:FD:73:23:D1:80:ED:BE:62 X509v3 Authority Key Identifier: keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/atUwJIKFrDyvVHD-_XMj0YDtvmI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4500::/32 Signature Algorithm: sha256WithRSAEncryption 46:c4:38:b6:36:91:02:d4:c5:de:31:60:d0:67:25:3c:d6:52: 7e:b6:ca:5b:5a:64:b1:a6:b5:31:07:1e:92:90:a1:cf:ff:ff: b5:07:5f:c4:c3:60:71:64:ad:0f:0d:6c:98:66:3f:21:ee:2b: c6:66:3a:ae:33:e7:46:75:e1:7c:36:21:4e:0b:f6:5a:d5:90: d8:1f:d6:56:1d:eb:85:04:99:b5:52:22:e5:c4:cb:e3:64:4e: 5a:af:fe:0e:17:d5:13:32:07:e1:44:33:f7:50:67:55:da:cc: a3:c2:fd:2a:f8:b9:6b:f2:4d:7f:d8:f1:15:c5:2d:36:71:e5: b0:fc:a3:9e:5b:1e:ce:5b:a4:a1:55:90:6c:4c:8b:d4:a1:1f: 72:00:87:45:0f:cd:91:51:1d:0a:66:1b:18:22:1e:d9:64:81: 5a:36:b5:2d:c7:3d:52:63:b7:31:c7:0f:d5:6d:8b:eb:95:20: 8c:0f:86:77:5f:2d:39:4f:f9:02:84:91:38:f6:34:8b:1a:58: 18:cd:c3:bb:27:ac:ae:14:d7:25:e7:c8:e2:a6:d8:cf:23:cd: f2:a0:28:88:e6:3d:16:ec:bb:5c:21:9b:6f:c6:ea:8d:3f:6c: 71:12:2d:e5:51:7c:a9:00:80:b1:a1:6f:01:eb:23:b9:94:c8: cc:6f:c0:34 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yNTA4MjIw OTAxMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZBRDUzMDI0ODI4NUFD M0NBRjU0NzBGRUZENzMyM0QxODBFREJFNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+dC4fHI2kG0I7ZHcIEE+FpJabW9VLOOGgM4bFzhwyls8z3IEx j39q0063975OmyUVLk5vLDF5zIb/nkccilITT6fghUPget9P1msVLNDz6+ItvH9a EhADs4KSyma1MjqJyvDCXYVTkn6o3ziZozRx1cAZ9vRw69tNmtxgGTzX1sQr1TNJ C63rkqpotwWic6yRJXt8WkmSjcuKZAXkM+JR9LSIuWYZend+RzRLYb5F5Z47hN41 UOXcjqv1ep5RTcf6OvkKLvaBwBdGq7SOB7S6c2CdXAC8ntH5lFs30Mg9hiKl8e/R w7Qnt1Zt4eFIxXGXLFHdL7kceghJkw5qy9SBAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUatUwJIKFrDyvVHD+/XMj0YDtvmIwHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvYXRVd0pJS0ZyRHl2VkhELV9YTWow WUR0dm1JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACABRQAw DQYJKoZIhvcNAQELBQADggEBAEbEOLY2kQLUxd4xYNBnJTzWUn62yltaZLGmtTEH HpKQoc///7UHX8TDYHFkrQ8NbJhmPyHuK8ZmOq4z50Z14Xw2IU4L9lrVkNgf1lYd 64UEmbVSIuXEy+NkTlqv/g4X1RMyB+FEM/dQZ1XazKPC/Sr4uWvyTX/Y8RXFLTZx 5bD8o55bHs5bpKFVkGxMi9ShH3IAh0UPzZFRHQpmGxgiHtlkgVo2tS3HPVJjtzHH D9Vti+uVIIwPhndfLTlP+QKEkTj2NIsaWBjNw7snrK4U1yXnyOKm2M8jzfKgKIjm PRbsu1whm2/G6o0/bHESLeVRfKkAgLGhbwHrI7mUyMxvwDQ= -----END CERTIFICATE-----Generated at Sun Aug 24 14:05:20 2025 by rpki-client