$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/DHfspAVUUZ0rNFX5agFJgGyx23Q.roa File: DHfspAVUUZ0rNFX5agFJgGyx23Q.roa (raw, json) Hash identifier: 0yRv4FcWg1qFIUGDL74GwiVrS4qIfgwZ9YjYGaMW7Ks= Subject key identifier: 0C:77:EC:A4:05:54:51:9D:2B:34:55:F9:6A:01:49:80:6C:B1:DB:74 Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Certificate serial: 0198 Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/DHfspAVUUZ0rNFX5agFJgGyx23Q.roa Signing time: Fri 22 Aug 2025 08:50:01 +0000 ROA not before: Fri 22 Aug 2025 08:50:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152610 IP address blocks: 160.19.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Validity Not Before: Aug 22 08:50:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0C77ECA40554519D2B3455F96A0149806CB1DB74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5f:86:21:4d:3d:ae:3d:d1:ab:4f:e9:d5:78: 89:92:11:07:0c:59:4c:c8:24:6a:e3:c6:78:37:6f: be:64:47:3e:90:f6:1c:da:f3:87:26:84:6a:6c:2f: f0:ca:51:26:c5:f3:c2:3c:be:80:15:52:60:24:5b: b2:2a:5c:45:d6:8e:5c:7e:9b:cf:e9:16:2f:e4:9c: 1b:69:37:c6:11:d3:d1:6f:89:98:8a:9d:9d:ca:ad: 96:d9:cf:93:e4:fe:86:a5:86:78:9c:67:30:58:ff: c4:5e:09:f5:da:35:44:a7:7a:dc:a7:ba:7e:3f:c8: 54:2a:ad:69:ec:4d:2c:0b:27:05:30:12:ec:85:87: ea:a4:fb:1f:18:80:a9:e9:23:d5:50:b3:df:53:9c: b4:ff:f1:8d:b9:26:ae:e0:4b:6e:2e:6d:41:8a:a9: a3:9c:b1:5d:9b:db:28:1c:4d:17:43:d3:b1:fd:b7: ac:10:9a:db:59:8e:8b:4a:f3:1d:ce:49:1e:ea:0f: e8:0b:dd:14:85:16:ae:3a:43:4c:99:91:a1:af:d7: 38:f0:6b:50:d7:db:4c:43:02:2a:77:98:23:e8:c6: 5c:ee:77:3f:9e:20:42:a7:9d:23:4c:dc:ae:42:25: ce:9c:e5:0c:38:89:7e:1d:29:e4:0f:12:8f:34:d4: f5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:77:EC:A4:05:54:51:9D:2B:34:55:F9:6A:01:49:80:6C:B1:DB:74 X509v3 Authority Key Identifier: keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/DHfspAVUUZ0rNFX5agFJgGyx23Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.19.90.0/24 Signature Algorithm: sha256WithRSAEncryption 15:f5:9f:ba:9b:18:2a:b4:d8:62:07:f8:a5:83:bc:d4:70:bc: 7e:77:d9:6a:6b:58:a9:ba:7d:d7:57:00:38:70:88:94:dc:ab: 80:c6:3f:88:58:c1:e0:d9:b3:1f:9e:37:0c:58:e4:06:9f:00: 75:72:02:9d:61:d6:5c:52:88:7b:19:a3:43:4b:16:51:04:08: 25:74:95:5d:75:9b:3c:4a:58:94:0c:f4:bd:ef:6d:81:fe:56: 6d:26:57:ba:da:6f:ca:70:63:18:be:50:bd:64:4f:c6:1e:1f: 92:18:21:3a:08:f9:56:d5:9e:55:e3:46:cb:2a:43:a6:6e:2c: f0:44:82:c3:fb:f1:5f:9b:c4:1e:35:9a:b7:d6:c1:6b:cd:58: 65:5f:5e:79:47:e2:27:56:dd:79:f0:ce:fd:95:a0:ed:d2:42: ac:25:0f:ff:73:7f:19:1d:e3:b7:e4:85:84:5b:e6:1c:ee:af: 6b:86:c4:d3:44:19:a6:2c:10:5a:97:a6:c8:20:b6:5c:0d:21: c7:3e:c6:64:6e:28:f0:d2:9c:d9:75:6a:5b:9b:d1:eb:43:32: 65:d5:ef:3f:0d:6d:09:ee:81:8f:60:78:a5:23:0f:3a:bd:f5: 67:a1:75:fd:d5:88:00:b9:f9:ec:3f:d7:ea:9d:79:83:d1:a2: a3:e2:02:53 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNF QkQzOUZCNTE4QjU1REEwMDc0MkFFRUM3QjBEQTZBQUJBNjFGNzAeFw0yNTA4MjIw ODUwMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBDNzdFQ0E0MDU1NDUx OUQyQjM0NTVGOTZBMDE0OTgwNkNCMURCNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+X4YhTT2uPdGrT+nVeImSEQcMWUzIJGrjxng3b75kRz6Q9hza 84cmhGpsL/DKUSbF88I8voAVUmAkW7IqXEXWjlx+m8/pFi/knBtpN8YR09FviZiK nZ3KrZbZz5Pk/oalhnicZzBY/8ReCfXaNUSnetynun4/yFQqrWnsTSwLJwUwEuyF h+qk+x8YgKnpI9VQs99TnLT/8Y25Jq7gS24ubUGKqaOcsV2b2ygcTRdD07H9t6wQ mttZjotK8x3OSR7qD+gL3RSFFq46Q0yZkaGv1zjwa1DX20xDAip3mCPoxlzudz+e IEKnnSNM3K5CJc6c5Qw4iX4dKeQPEo801PU/AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUDHfspAVUUZ0rNFX5agFJgGyx23QwHwYDVR0jBBgwFoAUQ+vTn7UYtV2gB0Ku 7HsNpqq6YfcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FFTFcv US12VG43VVl0VjJnQjBLdTdIc05wcXE2WWZjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9RLXZUbjdVWXRWMmdCMEt1N0hzTnBxcTZZZmMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQUVMVy9ESGZzcEFWVVVaMHJORlg1YWdG SmdHeXgyM1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBNa MA0GCSqGSIb3DQEBCwUAA4IBAQAV9Z+6mxgqtNhiB/ilg7zUcLx+d9lqa1ipun3X VwA4cIiU3KuAxj+IWMHg2bMfnjcMWOQGnwB1cgKdYdZcUoh7GaNDSxZRBAgldJVd dZs8SliUDPS9722B/lZtJle62m/KcGMYvlC9ZE/GHh+SGCE6CPlW1Z5V40bLKkOm bizwRILD+/Ffm8QeNZq31sFrzVhlX155R+InVt158M79laDt0kKsJQ//c38ZHeO3 5IWEW+Yc7q9rhsTTRBmmLBBal6bIILZcDSHHPsZkbijw0pzZdWpbm9HrQzJl1e8/ DW0J7oGPYHilIw86vfVnoXX91YgAufnsP9fqnXmD0aKj4gJT -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:35 2025 by rpki-client