$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/msvMGjjPLnHD6A3NOkfoWXnRGrE.roa File: msvMGjjPLnHD6A3NOkfoWXnRGrE.roa (raw, json) Hash identifier: 8sq3aS8YsDO1cdI5AnwUZZZDWTzAhv4YdKIMvHZnP9w= Subject key identifier: 9A:CB:CC:1A:38:CF:2E:71:C3:E8:0D:CD:3A:47:E8:59:79:D1:1A:B1 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0DBC Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/msvMGjjPLnHD6A3NOkfoWXnRGrE.roa Signing time: Fri 22 Aug 2025 08:49:49 +0000 ROA not before: Fri 22 Aug 2025 08:49:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4781 IP address blocks: 210.63.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3516 (0xdbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 22 08:49:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9ACBCC1A38CF2E71C3E80DCD3A47E85979D11AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3b:06:67:1f:c9:c3:69:bf:fc:99:d8:e5:52: 8c:e8:61:f2:d6:eb:73:0b:60:be:2f:34:10:4e:4a: 72:6f:3f:13:60:d7:10:9d:b5:0b:d5:56:2c:28:98: fa:e3:90:9f:aa:c2:47:07:bb:12:3f:38:0e:c1:d6: b5:bf:42:1f:7d:b5:78:15:e8:54:78:47:af:00:9c: 8d:80:a4:dc:b0:f3:6b:20:d9:b5:ee:8e:70:41:f5: 6f:bc:7b:9b:e8:27:86:3c:35:eb:a1:33:d5:9c:09: 3f:1a:eb:82:3c:d8:6d:dc:a3:33:46:3f:c4:c4:31: aa:8c:0d:2e:2d:2d:31:94:90:81:1a:ab:de:7a:64: 8c:a8:c7:e3:66:94:af:8b:2d:b6:07:bc:e9:57:86: 3e:a6:fe:c1:6a:11:3b:6f:7f:2d:54:75:43:31:2f: 65:7a:6c:39:f8:fe:64:04:df:7a:33:91:13:5d:91: 23:ae:e7:53:22:47:57:46:8f:bc:92:16:f2:8c:a0: 1b:8f:1a:10:ec:cb:ad:14:97:cf:81:85:4b:6e:9f: cd:14:e5:7b:ec:e3:08:d7:96:53:a0:9c:a6:32:67: 36:02:e4:64:cf:10:66:a0:7b:cf:8a:2c:3e:c2:7a: e1:43:ed:8a:f5:ae:ce:ef:f0:08:2e:c7:16:10:25: 8a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:CB:CC:1A:38:CF:2E:71:C3:E8:0D:CD:3A:47:E8:59:79:D1:1A:B1 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/msvMGjjPLnHD6A3NOkfoWXnRGrE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.98.0/24 Signature Algorithm: sha256WithRSAEncryption 99:ba:75:61:bc:83:cd:96:c3:24:04:9e:e7:0a:3d:10:33:de: 03:63:b0:e9:0d:cd:61:a5:de:c1:c6:27:ca:94:16:f5:4b:2a: 1e:ca:a7:9a:a3:bc:dc:44:9c:24:e4:7f:c7:8f:57:a6:18:1b: ab:c6:3f:ae:19:1e:68:e1:ef:bd:b4:9f:66:14:10:88:9f:e7: 17:bb:8f:56:b5:93:03:52:0f:5d:d7:83:a6:62:7e:4b:42:88: fb:7f:c8:67:33:30:ef:8a:92:e0:94:9e:4d:0e:6a:c1:af:44: 4e:30:7a:e1:cc:60:d0:74:8b:e9:14:e7:85:fe:f6:1a:68:95: 2b:83:cd:bb:13:31:5e:c1:b6:89:40:63:ba:80:24:c2:eb:0f: a8:ba:ca:0b:2a:f4:0e:b4:38:29:fa:cb:bd:b8:e9:8b:82:14: f1:43:7a:44:f9:00:9c:c0:f2:34:bd:03:06:2c:3d:53:0e:23: a8:6c:19:55:3e:46:33:34:4c:b3:c2:c3:f2:7d:0f:a5:36:25: ef:f1:ff:ab:87:fe:00:d6:0c:61:92:ee:e6:24:f5:0c:c7:2c: b8:3d:69:c0:1b:54:c7:b3:89:07:bf:8c:3d:27:aa:b7:14:40: 31:05:aa:47:a3:44:7d:80:19:52:85:55:ee:7e:d4:60:13:58: 01:05:55:16 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDbwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA4MjIw ODQ5NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlBQ0JDQzFBMzhDRjJF NzFDM0U4MERDRDNBNDdFODU5NzlEMTFBQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpOwZnH8nDab/8mdjlUozoYfLW63MLYL4vNBBOSnJvPxNg1xCd tQvVViwomPrjkJ+qwkcHuxI/OA7B1rW/Qh99tXgV6FR4R68AnI2ApNyw82sg2bXu jnBB9W+8e5voJ4Y8NeuhM9WcCT8a64I82G3cozNGP8TEMaqMDS4tLTGUkIEaq956 ZIyox+NmlK+LLbYHvOlXhj6m/sFqETtvfy1UdUMxL2V6bDn4/mQE33ozkRNdkSOu 51MiR1dGj7ySFvKMoBuPGhDsy60Ul8+BhUtun80U5Xvs4wjXllOgnKYyZzYC5GTP EGage8+KLD7CeuFD7Yr1rs7v8AguxxYQJYr3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUmsvMGjjPLnHD6A3NOkfoWXnRGrEwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9tc3ZNR2pqUExuSEQ2QTNOT2tm b1dYblJHckUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9i MA0GCSqGSIb3DQEBCwUAA4IBAQCZunVhvIPNlsMkBJ7nCj0QM94DY7DpDc1hpd7B xifKlBb1Syoeyqeao7zcRJwk5H/Hj1emGBurxj+uGR5o4e+9tJ9mFBCIn+cXu49W tZMDUg9d14OmYn5LQoj7f8hnMzDvipLglJ5NDmrBr0ROMHrhzGDQdIvpFOeF/vYa aJUrg827EzFewbaJQGO6gCTC6w+ousoLKvQOtDgp+su9uOmLghTxQ3pE+QCcwPI0 vQMGLD1TDiOobBlVPkYzNEyzwsPyfQ+lNiXv8f+rh/4A1gxhku7mJPUMxyy4PWnA G1THs4kHv4w9J6q3FEAxBapHo0R9gBlShVXuftRgE1gBBVUW -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:54 2025 by rpki-client