$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SGU/fCU065lwBoI9H4GCE3gvn-zOfYc.roa File: fCU065lwBoI9H4GCE3gvn-zOfYc.roa (raw, json) Hash identifier: xnWLwZnm8AEhy85znOyMpparkVtZ+4NYWUgc4jRcEHA= Subject key identifier: 7C:25:34:EB:99:70:06:82:3D:1F:81:82:13:78:2F:9F:EC:CE:7D:87 Certificate issuer: /CN=3294E71902A4A5C31B987BD67D094AF5830A816D Certificate serial: 0396 Authority key identifier: 32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/fCU065lwBoI9H4GCE3gvn-zOfYc.roa Signing time: Fri 22 Aug 2025 08:51:51 +0000 ROA not before: Fri 22 Aug 2025 08:51:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 2400:7420::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 918 (0x396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3294E71902A4A5C31B987BD67D094AF5830A816D Validity Not Before: Aug 22 08:51:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7C2534EB997006823D1F818213782F9FECCE7D87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:70:9d:00:a9:c5:14:8a:e9:13:50:03:83:6c: 88:ae:89:75:28:5f:de:60:0f:91:ff:fd:b4:90:9d: 50:51:b0:c2:81:d6:8e:7d:92:95:40:f5:4a:b3:06: 6e:52:20:e5:2a:5d:d2:69:27:77:8a:ed:85:55:bf: eb:25:66:1c:43:27:8a:3d:23:b1:81:0a:5c:86:a1: 94:53:90:b2:12:3b:d3:d6:cf:5a:1e:24:67:62:10: 56:fe:47:ae:eb:5d:90:63:a2:a5:ec:5a:da:e7:e5: 40:e1:b5:69:e2:7d:c5:5f:27:f0:5c:06:6f:76:e0: 9f:41:89:eb:d9:56:a4:ac:20:73:db:f5:6f:b0:40: f8:56:13:f1:31:d9:5c:1e:da:90:8d:5c:c9:c1:70: 04:a2:aa:35:77:8a:a2:c5:15:bf:3a:72:1b:f1:8e: 76:d1:31:49:c7:b0:27:52:ed:bc:99:55:14:f1:62: 97:1e:1e:bf:04:b0:98:d9:e1:42:2b:a5:9b:15:03: ae:54:de:4b:56:5e:85:87:59:ce:40:b8:a6:9f:b7: 0e:3c:53:28:4c:00:ad:f7:50:2f:a6:78:26:a4:7d: a3:d2:70:7f:f5:c7:6b:b4:72:d2:9b:82:38:56:c4: 61:ce:1f:19:39:f9:dc:af:52:a9:d5:bd:9c:2c:3c: 0d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:25:34:EB:99:70:06:82:3D:1F:81:82:13:78:2F:9F:EC:CE:7D:87 X509v3 Authority Key Identifier: keyid:32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/fCU065lwBoI9H4GCE3gvn-zOfYc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:7420::/32 Signature Algorithm: sha256WithRSAEncryption 19:9f:52:ad:89:69:9e:78:dc:c3:02:7c:c7:c9:f7:a8:d9:46: bf:f0:19:ea:6a:25:3d:3c:b2:1b:4f:5c:7e:72:d5:e7:85:b7: f5:f9:72:bd:d8:f7:3a:d1:0a:9e:ad:79:f5:3b:f6:ce:c2:2c: 17:36:ad:8c:09:f0:40:55:29:aa:29:dc:6c:8c:59:2c:bb:f3: f1:3e:2b:af:7a:f8:a0:d9:d4:7d:3f:7f:49:a6:d9:fb:c7:b5: 49:7c:d5:84:7d:e9:2b:d4:25:b0:4f:33:2c:01:c3:0a:af:45: 2b:9f:11:5f:a8:34:8c:fa:ad:80:f7:69:53:c5:6b:58:b5:d5: 24:db:50:a3:d3:de:49:8d:ea:87:4f:72:0e:b6:05:fa:b3:96: 73:b1:62:e0:1c:35:af:46:d7:be:40:37:ad:78:65:22:2c:6f: df:0a:47:ed:05:90:94:d1:d7:44:51:6f:b2:0d:a4:e2:62:d2: 5c:ac:17:54:a4:30:b0:1c:26:6a:7c:07:97:25:44:de:b8:00: d4:ca:6c:d8:84:ca:7d:2e:e5:d4:64:e2:03:34:06:48:36:9d: cb:70:46:2d:55:b4:f4:48:41:99:e9:af:cb:e4:26:67:d8:65: b7:24:de:3c:1a:9c:e7:f5:f3:4f:90:e1:fd:9c:56:a7:57:55: 7b:e0:2a:97 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICA5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzI5 NEU3MTkwMkE0QTVDMzFCOTg3QkQ2N0QwOTRBRjU4MzBBODE2RDAeFw0yNTA4MjIw ODUxNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdDMjUzNEVCOTk3MDA2 ODIzRDFGODE4MjEzNzgyRjlGRUNDRTdEODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDcJ0AqcUUiukTUAODbIiuiXUoX95gD5H//bSQnVBRsMKB1o59 kpVA9UqzBm5SIOUqXdJpJ3eK7YVVv+slZhxDJ4o9I7GBClyGoZRTkLISO9PWz1oe JGdiEFb+R67rXZBjoqXsWtrn5UDhtWnifcVfJ/BcBm924J9BievZVqSsIHPb9W+w QPhWE/Ex2Vwe2pCNXMnBcASiqjV3iqLFFb86chvxjnbRMUnHsCdS7byZVRTxYpce Hr8EsJjZ4UIrpZsVA65U3ktWXoWHWc5AuKaftw48UyhMAK33UC+meCakfaPScH/1 x2u0ctKbgjhWxGHOHxk5+dyvUqnVvZwsPA2VAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUfCU065lwBoI9H4GCE3gvn+zOfYcwHwYDVR0jBBgwFoAUMpTnGQKkpcMbmHvW fQlK9YMKgW0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0dVL01w VG5HUUtrcGNNYm1IdldmUWxLOVlNS2dXMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TXBUbkdRS2twY01ibUh2V2ZRbEs5WU1LZ1cwLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvU0dVL2ZDVTA2NWx3Qm9JOUg0R0NFM2d2bi16 T2ZZYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAHQgMA0G CSqGSIb3DQEBCwUAA4IBAQAZn1KtiWmeeNzDAnzHyfeo2Ua/8BnqaiU9PLIbT1x+ ctXnhbf1+XK92Pc60QqerXn1O/bOwiwXNq2MCfBAVSmqKdxsjFksu/PxPiuvevig 2dR9P39Jptn7x7VJfNWEfekr1CWwTzMsAcMKr0UrnxFfqDSM+q2A92lTxWtYtdUk 21Cj095JjeqHT3IOtgX6s5ZzsWLgHDWvRte+QDeteGUiLG/fCkftBZCU0ddEUW+y DaTiYtJcrBdUpDCwHCZqfAeXJUTeuADUymzYhMp9LuXUZOIDNAZINp3LcEYtVbT0 SEGZ6a/L5CZn2GW3JN48Gpzn9fNPkOH9nFanV1V74CqX -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:48 2025 by rpki-client