$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/4L30LnOQIS99TlCPOUpwEFLfEQg.roa File: 4L30LnOQIS99TlCPOUpwEFLfEQg.roa (raw, json) Hash identifier: yWCDDFR7pLNm/S7nzB+Bwx+TZYuB7g0e+ipjO4ErgF0= Subject key identifier: E0:BD:F4:2E:73:90:21:2F:7D:4E:50:8F:39:4A:70:10:52:DF:11:08 Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Certificate serial: 022B Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/4L30LnOQIS99TlCPOUpwEFLfEQg.roa Signing time: Fri 22 Aug 2025 08:50:10 +0000 ROA not before: Fri 22 Aug 2025 08:50:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150767 IP address blocks: 2401:5f20::/32 maxlen: 127 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Validity Not Before: Aug 22 08:50:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E0BDF42E7390212F7D4E508F394A701052DF1108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:95:92:ca:61:84:65:e9:4b:86:74:b1:52:6e: ff:c9:a3:db:8a:04:57:c8:2b:e0:4a:a8:39:3a:19: 2f:6e:7d:2b:65:5f:b2:7e:f9:70:09:95:b3:1e:73: 2d:ee:2d:28:b8:2a:6f:a2:9d:68:23:31:c4:df:32: 69:28:7b:8e:f2:02:d1:53:77:ca:bf:11:5c:15:e5: 26:63:43:0a:28:73:ed:61:59:a3:57:9f:df:98:5a: cd:4a:73:b8:10:12:a4:6a:11:c2:ea:84:5e:37:45: 1c:ed:63:c6:4d:c4:6c:36:d5:86:5d:2d:af:68:85: 02:93:13:08:e4:42:91:7d:ce:19:9e:62:dd:d8:42: 14:4f:93:1b:e1:36:0b:42:c7:a9:78:1a:31:64:a5: a2:6f:29:48:31:94:54:9e:61:6a:52:6d:b5:b9:21: 14:e1:0a:e4:48:55:91:a6:53:7b:14:fe:44:2c:e4: c0:36:19:56:cd:72:56:59:3a:f7:13:58:83:c9:49: 51:04:17:8c:ac:4b:d1:ec:b1:36:9b:95:00:ef:08: ec:5d:55:4a:b7:73:a4:81:6e:8c:18:8f:cf:67:2d: 8d:3e:0d:eb:73:0b:75:74:f2:39:20:cb:c8:f5:17: 6c:74:61:b2:97:44:e9:76:f5:0f:89:be:84:09:e9: a7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:BD:F4:2E:73:90:21:2F:7D:4E:50:8F:39:4A:70:10:52:DF:11:08 X509v3 Authority Key Identifier: keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/4L30LnOQIS99TlCPOUpwEFLfEQg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5f20::/32 Signature Algorithm: sha256WithRSAEncryption 29:29:f5:06:07:7e:a1:4d:4d:f3:a2:13:40:26:48:81:83:96: 1e:ae:cc:b4:01:aa:cf:de:05:ce:7f:eb:f2:22:58:6f:24:1b: 5a:0e:63:e0:7f:7b:2c:07:3c:62:aa:39:9f:94:fc:b6:bc:c8: 24:12:24:75:a7:74:c6:b5:69:0a:08:9d:73:ec:6a:41:ad:82: 46:7f:6c:ce:52:b5:16:8a:65:02:d3:c4:ca:9b:1b:9c:d5:35: e4:03:5c:b7:08:08:e0:6b:06:89:17:37:6f:e2:a9:e2:c2:d2: e2:94:fe:ba:c0:55:52:ad:d7:09:43:f6:5d:82:69:80:ae:f4: b7:58:69:c4:9a:85:36:b5:97:4c:51:ee:48:65:68:13:b6:92: 0d:97:6c:ac:f0:f6:ef:15:2c:d6:96:84:c5:8b:9b:94:c7:8b: fe:31:16:bc:c4:c8:0f:7f:bb:dc:d8:18:2a:60:7b:7c:c6:86: c4:75:ad:da:97:bc:dc:3c:7e:12:85:16:63:4b:5d:61:75:85: eb:76:cd:c8:a4:e1:50:f8:6a:81:c2:85:ed:e0:27:6f:4e:6e: e3:1b:60:dc:15:1a:9e:be:a7:b3:62:54:7b:74:25:af:05:36: e5:ea:1e:19:87:a0:d5:e7:56:6e:16:8f:e7:59:50:74:1b:a0: 5f:5b:00:b1 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICAiswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVG RjkwMzA2QjQ3QTdERTAzMDdGMEUzMzVCNERDN0YyN0RFQTRGQjAeFw0yNTA4MjIw ODUwMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUwQkRGNDJFNzM5MDIx MkY3RDRFNTA4RjM5NEE3MDEwNTJERjExMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXlZLKYYRl6UuGdLFSbv/Jo9uKBFfIK+BKqDk6GS9ufStlX7J+ +XAJlbMecy3uLSi4Km+inWgjMcTfMmkoe47yAtFTd8q/EVwV5SZjQwooc+1hWaNX n9+YWs1Kc7gQEqRqEcLqhF43RRztY8ZNxGw21YZdLa9ohQKTEwjkQpF9zhmeYt3Y QhRPkxvhNgtCx6l4GjFkpaJvKUgxlFSeYWpSbbW5IRThCuRIVZGmU3sU/kQs5MA2 GVbNclZZOvcTWIPJSVEEF4ysS9HssTablQDvCOxdVUq3c6SBbowYj89nLY0+Detz C3V08jkgy8j1F2x0YbKXROl29Q+JvoQJ6ae7AgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQU4L30LnOQIS99TlCPOUpwEFLfEQgwHwYDVR0jBBgwFoAUNf+QMGtHp94DB/Dj NbTcfyfepPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklD T0xURC9OZi1RTUd0SHA5NERCX0RqTmJUY2Z5ZmVwUHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NISUpJQ09MVEQvNEwzMExuT1FJ Uzk5VGxDUE9VcHdFRkxmRVFnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQBXyAwDQYJKoZIhvcNAQELBQADggEBACkp9QYHfqFNTfOiE0AmSIGD lh6uzLQBqs/eBc5/6/IiWG8kG1oOY+B/eywHPGKqOZ+U/La8yCQSJHWndMa1aQoI nXPsakGtgkZ/bM5StRaKZQLTxMqbG5zVNeQDXLcICOBrBokXN2/iqeLC0uKU/rrA VVKt1wlD9l2CaYCu9LdYacSahTa1l0xR7khlaBO2kg2XbKzw9u8VLNaWhMWLm5TH i/4xFrzEyA9/u9zYGCpge3zGhsR1rdqXvNw8fhKFFmNLXWF1het2zcik4VD4aoHC he3gJ29ObuMbYNwVGp6+p7NiVHt0Ja8FNuXqHhmHoNXnVm4Wj+dZUHQboF9bALE= -----END CERTIFICATE-----Generated at Sun Aug 24 07:17:30 2025 by rpki-client