$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/plN6TlQMP3qTM5WBPlFYzO6YRCE.roa File: plN6TlQMP3qTM5WBPlFYzO6YRCE.roa (raw, json) Hash identifier: oXn5+/wl8H3Ceea5XWKI+xNM2/t6MEJx6Sg2hKc5Oaw= Subject key identifier: A6:53:7A:4E:54:0C:3F:7A:93:33:95:81:3E:51:58:CC:EE:98:44:21 Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Certificate serial: 0197 Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/plN6TlQMP3qTM5WBPlFYzO6YRCE.roa Signing time: Fri 22 Aug 2025 08:50:01 +0000 ROA not before: Fri 22 Aug 2025 08:50:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152610 IP address blocks: 160.19.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Validity Not Before: Aug 22 08:50:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A6537A4E540C3F7A933395813E5158CCEE984421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c5:84:8e:36:44:4d:98:15:51:04:94:c7:0b: 7b:59:a2:b4:45:23:65:b8:80:b4:12:2e:5f:8b:8b: 5b:ba:2e:7f:2c:84:de:f2:70:d9:d2:a7:45:f4:26: bc:ab:48:00:1b:8e:f8:fb:40:6a:ef:68:05:c2:0a: 89:76:1d:f9:54:08:27:8f:f8:7a:f3:44:4c:f5:19: 69:02:04:69:be:8e:90:b0:24:8e:72:f8:aa:5d:83: 8b:32:2e:0f:ba:7a:32:4a:50:4e:99:95:b3:17:ba: 2b:2e:ae:8c:9a:59:b3:36:59:c2:0d:b0:cb:c2:99: 0f:4f:ec:19:61:d7:e1:44:fc:e4:9b:7e:f1:d4:3b: 21:08:8f:ec:ad:c3:da:3b:3c:f7:ad:ee:d8:4e:ef: a8:65:0f:15:76:51:d9:87:b7:4d:3d:c3:ad:1d:03: b4:ea:71:0f:a8:b1:52:0a:03:8a:a4:ec:87:42:63: 22:4e:02:c7:94:14:de:68:ca:e0:b9:76:f2:25:c7: 29:94:7f:dd:c0:40:b5:2a:9c:9d:d5:14:35:d2:a3: 0d:1c:4a:3f:6d:e8:e8:f9:bf:1f:4a:7a:f1:f7:1b: 0b:93:ce:61:c2:71:31:18:00:1e:ca:4c:cf:0f:40: c7:f2:bf:b5:e0:00:44:90:8c:db:db:ec:43:fd:1d: 56:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:53:7A:4E:54:0C:3F:7A:93:33:95:81:3E:51:58:CC:EE:98:44:21 X509v3 Authority Key Identifier: keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/plN6TlQMP3qTM5WBPlFYzO6YRCE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.19.91.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:21:da:f0:51:d5:56:38:1a:0b:61:90:bd:d4:71:62:2f:42: c8:bf:c7:cc:ed:fd:b5:3c:01:df:80:91:b3:13:64:9c:a3:d0: 83:25:e6:e1:8d:71:43:99:83:c9:25:70:50:25:12:11:ea:5c: 0a:49:df:50:1d:70:4f:04:ec:58:c6:88:fd:28:ad:9b:78:2a: cc:da:08:5e:bb:b1:5a:4e:90:55:7d:53:cc:d0:90:e1:f7:39: be:f6:67:0e:71:6d:e4:21:e7:f9:6e:f4:a8:a1:9c:30:32:d1: b7:c0:66:a8:f6:4a:0e:d9:e0:d3:4e:4d:23:53:b6:36:a3:96: e2:45:4b:e9:b4:2e:10:36:9a:19:53:4c:f7:98:8d:f1:39:04: ba:af:4f:a6:1d:89:c0:68:5a:da:39:e3:05:66:c5:cd:38:b4: 35:dd:59:7e:2a:64:7c:93:bf:9f:2c:69:ac:08:55:60:c4:e3: 3a:f5:f0:e8:5d:2c:7f:1c:ba:f1:b2:27:4c:a9:fc:34:63:59: d0:ef:f9:53:61:d7:75:3c:fc:08:d3:31:f3:89:6c:d3:f1:0b: b8:8e:48:5c:94:ef:b6:fa:ba:b0:9f:57:35:59:59:15:91:ad: 94:64:71:e8:3d:22:87:ef:81:4e:c8:c3:9b:b9:4f:1d:77:b5: 96:1b:ce:84 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNF QkQzOUZCNTE4QjU1REEwMDc0MkFFRUM3QjBEQTZBQUJBNjFGNzAeFw0yNTA4MjIw ODUwMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE2NTM3QTRFNTQwQzNG N0E5MzMzOTU4MTNFNTE1OENDRUU5ODQ0MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkxYSONkRNmBVRBJTHC3tZorRFI2W4gLQSLl+Li1u6Ln8shN7y cNnSp0X0JryrSAAbjvj7QGrvaAXCCol2HflUCCeP+HrzREz1GWkCBGm+jpCwJI5y +Kpdg4syLg+6ejJKUE6ZlbMXuisuroyaWbM2WcINsMvCmQ9P7Blh1+FE/OSbfvHU OyEIj+ytw9o7PPet7thO76hlDxV2UdmHt009w60dA7TqcQ+osVIKA4qk7IdCYyJO AseUFN5oyuC5dvIlxymUf93AQLUqnJ3VFDXSow0cSj9t6Oj5vx9KevH3GwuTzmHC cTEYAB7KTM8PQMfyv7XgAESQjNvb7EP9HVZlAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUplN6TlQMP3qTM5WBPlFYzO6YRCEwHwYDVR0jBBgwFoAUQ+vTn7UYtV2gB0Ku 7HsNpqq6YfcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FFTFcv US12VG43VVl0VjJnQjBLdTdIc05wcXE2WWZjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9RLXZUbjdVWXRWMmdCMEt1N0hzTnBxcTZZZmMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQUVMVy9wbE42VGxRTVAzcVRNNVdCUGxG WXpPNllSQ0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBNb MA0GCSqGSIb3DQEBCwUAA4IBAQCPIdrwUdVWOBoLYZC91HFiL0LIv8fM7f21PAHf gJGzE2Sco9CDJebhjXFDmYPJJXBQJRIR6lwKSd9QHXBPBOxYxoj9KK2beCrM2ghe u7FaTpBVfVPM0JDh9zm+9mcOcW3kIef5bvSooZwwMtG3wGao9koO2eDTTk0jU7Y2 o5biRUvptC4QNpoZU0z3mI3xOQS6r0+mHYnAaFraOeMFZsXNOLQ13Vl+KmR8k7+f LGmsCFVgxOM69fDoXSx/HLrxsidMqfw0Y1nQ7/lTYdd1PPwI0zHziWzT8Qu4jkhc lO+2+rqwn1c1WVkVka2UZHHoPSKH74FOyMObuU8dd7WWG86E -----END CERTIFICATE-----Generated at Sun Aug 24 09:17:48 2025 by rpki-client