$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/4amXaaN3bAIg_uUSrPekB3kiaGw.roa File: 4amXaaN3bAIg_uUSrPekB3kiaGw.roa (raw, json) Hash identifier: 6KuV83R0OpmtQs2KdM6LV8l+AJ/kcLiGzTtXQWBLEto= Subject key identifier: E1:A9:97:69:A3:77:6C:02:20:FE:E5:12:AC:F7:A4:07:79:22:68:6C Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0DBE Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/4amXaaN3bAIg_uUSrPekB3kiaGw.roa Signing time: Fri 22 Aug 2025 08:49:49 +0000 ROA not before: Fri 22 Aug 2025 08:49:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4781 IP address blocks: 210.63.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3518 (0xdbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 22 08:49:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E1A99769A3776C0220FEE512ACF7A4077922686C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:35:be:db:0e:42:1e:8f:b2:18:11:1e:5c:ee: fb:4a:81:8c:69:72:df:54:e7:82:df:91:40:63:77: 56:a7:15:f5:33:51:86:44:e5:05:17:19:66:ad:1d: dd:c6:00:2b:2b:97:39:60:22:77:7e:a0:ab:9a:9b: bf:c4:31:b3:c9:b2:d3:00:14:73:4f:90:3c:05:a2: 36:bf:af:2b:70:b0:6a:2b:13:58:04:f6:77:63:39: 72:b6:c3:a9:d1:94:1a:05:13:a5:ed:8c:d7:4a:fb: 4c:c8:e7:ab:61:2f:67:ce:f0:48:f5:5d:88:72:5d: ae:18:09:38:db:63:ce:15:ee:50:2f:9a:95:0c:f3: 27:9b:f5:b8:48:05:06:11:03:9c:85:b9:fd:1b:8e: 6b:65:6d:ae:e3:64:b5:02:67:22:d3:5e:25:d2:55: 2c:9a:44:e0:6e:1c:e1:0c:43:c6:f3:5f:23:22:97: 90:d0:37:1f:a9:fc:aa:31:21:db:50:35:4f:1d:ec: 79:c8:e3:ac:a8:a3:b9:a9:a9:18:08:60:26:5a:59: 6f:ff:56:6a:26:df:6c:6e:00:55:60:6d:b4:b7:41: 76:00:b0:4a:ec:7d:c5:91:a4:59:e9:1e:26:83:13: 91:f3:67:5a:18:dd:68:73:f2:6b:11:d8:44:a5:96: 65:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A9:97:69:A3:77:6C:02:20:FE:E5:12:AC:F7:A4:07:79:22:68:6C X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/4amXaaN3bAIg_uUSrPekB3kiaGw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.97.0/24 Signature Algorithm: sha256WithRSAEncryption 65:f3:52:ee:32:17:f6:0f:56:63:1c:0a:91:be:47:34:2d:aa: 6e:18:76:28:d3:52:7f:f5:e7:fc:4a:7a:5d:03:99:30:ad:31: 77:e4:20:b1:da:9b:e6:56:71:25:1b:24:4f:fb:bc:cd:48:77: 1d:22:37:98:11:d7:27:02:e5:58:a0:25:1c:c0:28:41:18:36: d3:b5:d0:7e:8d:52:e4:c2:0c:33:84:21:93:bd:e5:7e:0c:de: 0c:ce:c9:eb:d7:80:7e:27:21:6f:6c:13:cb:75:0f:5a:59:f9: 21:d4:a3:d4:c8:be:39:2a:99:28:b6:8e:34:34:64:53:0e:c7: 6e:63:cc:b6:7a:86:f2:74:48:1c:d3:09:b6:18:f9:f0:6f:d7: 21:ed:4a:55:f3:d6:a4:fa:c5:e5:59:4e:5d:09:61:5b:cb:0c: 6c:5f:35:14:37:96:7e:60:a9:fe:38:e2:81:f5:73:e5:df:b3: 16:9b:68:12:70:a1:40:ba:4f:31:1c:ce:ec:71:f8:4d:51:b4: 24:dd:cd:5f:c3:30:ef:6a:7a:b7:b8:0c:00:0d:99:20:71:15: ed:7f:d0:7f:b1:75:dd:01:8d:12:d0:ee:89:71:d1:4e:b1:1a: 1a:e4:23:54:65:17:d3:3e:ab:9e:89:74:6b:34:5c:51:24:84: d9:3d:53:94 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDb4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA4MjIw ODQ5NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUxQTk5NzY5QTM3NzZD MDIyMEZFRTUxMkFDRjdBNDA3NzkyMjY4NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtNb7bDkIej7IYER5c7vtKgYxpct9U54LfkUBjd1anFfUzUYZE 5QUXGWatHd3GACsrlzlgInd+oKuam7/EMbPJstMAFHNPkDwFoja/rytwsGorE1gE 9ndjOXK2w6nRlBoFE6XtjNdK+0zI56thL2fO8Ej1XYhyXa4YCTjbY84V7lAvmpUM 8yeb9bhIBQYRA5yFuf0bjmtlba7jZLUCZyLTXiXSVSyaROBuHOEMQ8bzXyMil5DQ Nx+p/KoxIdtQNU8d7HnI46yoo7mpqRgIYCZaWW//Vmom32xuAFVgbbS3QXYAsErs fcWRpFnpHiaDE5HzZ1oY3Whz8msR2ESllmWrAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU4amXaaN3bAIg/uUSrPekB3kiaGwwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy80YW1YYWFOM2JBSWdfdVVTclBl a0Iza2lhR3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9h MA0GCSqGSIb3DQEBCwUAA4IBAQBl81LuMhf2D1ZjHAqRvkc0LapuGHYo01J/9ef8 SnpdA5kwrTF35CCx2pvmVnElGyRP+7zNSHcdIjeYEdcnAuVYoCUcwChBGDbTtdB+ jVLkwgwzhCGTveV+DN4Mzsnr14B+JyFvbBPLdQ9aWfkh1KPUyL45Kpkoto40NGRT DsduY8y2eobydEgc0wm2GPnwb9ch7UpV89ak+sXlWU5dCWFbywxsXzUUN5Z+YKn+ OOKB9XPl37MWm2gScKFAuk8xHM7scfhNUbQk3c1fwzDvanq3uAwADZkgcRXtf9B/ sXXdAY0S0O6JcdFOsRoa5CNUZRfTPqueiXRrNFxRJITZPVOU -----END CERTIFICATE-----Generated at Sun Aug 24 07:43:49 2025 by rpki-client