$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/S55r6kzbFl_9kG_KyHl41L24iIA.roa File: S55r6kzbFl_9kG_KyHl41L24iIA.roa (raw, json) Hash identifier: BRyUYGJUIL7sDlzEDuo2ThCsr5ZMxav72B4Ef7gBv84= Subject key identifier: 4B:9E:6B:EA:4C:DB:16:5F:FD:90:6F:CA:C8:79:78:D4:BD:B8:88:80 Certificate issuer: /CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Certificate serial: 0474 Authority key identifier: 7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/S55r6kzbFl_9kG_KyHl41L24iIA.roa Signing time: Fri 22 Aug 2025 08:56:20 +0000 ROA not before: Fri 22 Aug 2025 08:56:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38853 IP address blocks: 2407:9a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1140 (0x474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Validity Not Before: Aug 22 08:56:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4B9E6BEA4CDB165FFD906FCAC87978D4BDB88880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e1:00:3b:d2:d0:08:46:e7:2b:11:75:a1:03: 99:35:a4:20:73:bd:61:d4:f4:cc:2a:62:e4:7e:1b: 4e:77:c5:86:87:d0:c3:c4:db:f3:c8:f3:08:0c:f5: 16:56:c1:be:d5:2c:58:80:1c:29:bd:e0:04:f7:c3: 08:14:66:b6:6f:b6:cf:0c:fc:29:71:b2:c7:f1:69: 88:9a:52:71:5d:31:19:9d:5e:5b:13:4f:7f:4e:bb: f7:6e:2c:93:de:96:d2:38:b6:15:9c:1a:c2:51:d6: d4:16:fe:23:55:f4:43:a0:a3:ec:c8:e8:c6:ff:be: c8:6b:fd:09:0c:17:2b:a9:b3:c3:81:d7:6d:b8:12: 69:12:76:72:2e:6d:06:dc:6c:e4:b6:f0:5d:94:0b: f2:bc:a7:0a:4a:7f:f4:1b:c1:08:35:49:89:83:f4: 47:d8:b1:e0:ef:e7:14:53:ec:06:7f:df:7c:d0:a0: 4c:0e:45:09:27:83:bd:86:58:9d:2e:ea:11:84:3c: 67:0f:dd:b1:11:41:10:e9:6f:fb:4e:5c:b4:54:2c: 3a:33:13:d2:e9:fe:de:20:97:db:22:c0:2e:b5:36: 7f:b5:68:61:d0:5a:a6:70:80:c3:aa:0b:b4:24:5a: ae:a8:20:5a:b1:aa:e4:22:7a:89:46:3e:b5:4a:1f: 7e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:9E:6B:EA:4C:DB:16:5F:FD:90:6F:CA:C8:79:78:D4:BD:B8:88:80 X509v3 Authority Key Identifier: keyid:7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/S55r6kzbFl_9kG_KyHl41L24iIA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9a40::/32 Signature Algorithm: sha256WithRSAEncryption 88:4b:1b:53:82:41:72:a2:ec:9c:fe:16:e0:ce:d9:71:42:94: 0e:a3:22:04:a0:7c:0a:9b:fc:d3:dc:49:5a:e6:d8:fe:53:8d: dd:c0:20:59:ca:dc:b1:a2:5b:ad:c7:02:92:22:ea:a4:28:9b: 00:26:83:02:f7:76:69:a9:bf:cd:1a:52:75:c0:b0:29:ff:01: f6:b6:91:45:f4:09:32:ad:78:43:8f:98:72:9e:30:86:6d:39: 0b:87:1d:40:eb:59:80:c8:59:72:e3:59:0b:2b:2d:40:38:27: 77:5d:32:1b:79:24:69:c5:2a:3f:02:c6:1b:36:93:6a:45:c1: 04:1e:21:cb:74:46:4a:46:62:89:9e:ac:73:bf:a9:90:89:c6: 1d:4f:3a:e7:0d:28:dd:f5:3e:31:bc:26:59:e7:28:11:fd:9d: ce:e2:c4:8c:33:97:23:e6:fa:c9:00:1c:39:34:af:c1:a5:80: 6c:d2:48:57:e2:40:c2:96:c3:19:30:37:f4:2e:3c:3e:e5:38: 96:49:35:1c:3a:bf:51:1b:12:c1:77:01:a5:f3:11:a2:90:80: b3:4c:3d:c7:06:9e:b6:d7:ba:c2:73:83:8f:af:d0:e1:97:b2: 73:f0:f4:af:b8:ad:3a:b1:de:40:1d:10:24:27:73:af:dd:da: 76:48:9a:c5 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBHQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0I4 MjU3RkZEQzdDRDFDQjQxOTYxMjlDRDQwNDkzMzUyQkM4M0JCOTAeFw0yNTA4MjIw ODU2MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRCOUU2QkVBNENEQjE2 NUZGRDkwNkZDQUM4Nzk3OEQ0QkRCODg4ODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV4QA70tAIRucrEXWhA5k1pCBzvWHU9MwqYuR+G053xYaH0MPE 2/PI8wgM9RZWwb7VLFiAHCm94AT3wwgUZrZvts8M/ClxssfxaYiaUnFdMRmdXlsT T39Ou/duLJPeltI4thWcGsJR1tQW/iNV9EOgo+zI6Mb/vshr/QkMFyups8OB1224 EmkSdnIubQbcbOS28F2UC/K8pwpKf/QbwQg1SYmD9EfYseDv5xRT7AZ/33zQoEwO RQkng72GWJ0u6hGEPGcP3bERQRDpb/tOXLRULDozE9Lp/t4gl9siwC61Nn+1aGHQ WqZwgMOqC7QkWq6oIFqxquQieolGPrVKH37rAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUS55r6kzbFl/9kG/KyHl41L24iIAwHwYDVR0jBBgwFoAUe4JX/9x80ctBlhKc 1ASTNSvIO7kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFSQU1J VEEvZTRKWF85eDgwY3RCbGhLYzFBU1ROU3ZJTzdrLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lNEpYXzl4ODBjdEJsaEtjMUFTVE5TdklPN2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQVJBTUlUQS9TNTVyNmt6YkZsXzlr R19LeUhsNDFMMjRpSUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAeaQDANBgkqhkiG9w0BAQsFAAOCAQEAiEsbU4JBcqLsnP4W4M7ZcUKUDqMi BKB8Cpv809xJWubY/lON3cAgWcrcsaJbrccCkiLqpCibACaDAvd2aam/zRpSdcCw Kf8B9raRRfQJMq14Q4+Ycp4whm05C4cdQOtZgMhZcuNZCystQDgnd10yG3kkacUq PwLGGzaTakXBBB4hy3RGSkZiiZ6sc7+pkInGHU865w0o3fU+MbwmWecoEf2dzuLE jDOXI+b6yQAcOTSvwaWAbNJIV+JAwpbDGTA39C48PuU4lkk1HDq/URsSwXcBpfMR opCAs0w9xwaette6wnODj6/Q4Zeyc/D0r7itOrHeQB0QJCdzr93adkiaxQ== -----END CERTIFICATE-----Generated at Sun Aug 24 14:20:12 2025 by rpki-client