$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/5pHluZOCvmCnma3oGF8YHhIrmWE.roa File: 5pHluZOCvmCnma3oGF8YHhIrmWE.roa (raw, json) Hash identifier: 1uJrZLpcghEn/31+TQno69AakJlARhPv2cfKSe25le0= Subject key identifier: E6:91:E5:B9:93:82:BE:60:A7:99:AD:E8:18:5F:18:1E:12:2B:99:61 Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Certificate serial: 022E Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/5pHluZOCvmCnma3oGF8YHhIrmWE.roa Signing time: Fri 22 Aug 2025 08:50:10 +0000 ROA not before: Fri 22 Aug 2025 08:50:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 32595 IP address blocks: 2401:5f20:1000::/36 maxlen: 127 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Validity Not Before: Aug 22 08:50:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E691E5B99382BE60A799ADE8185F181E122B9961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e1:98:04:33:2d:2d:98:47:a7:ca:b4:fd:aa: 02:e5:9d:ab:03:3c:f3:82:0e:74:5c:3e:03:c4:d4: 22:a6:ac:c4:54:bf:8d:0c:20:b9:7e:a9:0b:79:e0: fe:e5:7c:64:52:7d:fe:b2:60:1c:85:48:2c:94:4b: 5c:f2:5a:4c:81:de:55:90:c0:bb:ca:af:46:ef:1c: 06:54:15:50:4a:e3:03:68:d4:af:83:9a:2e:9e:b9: c8:cd:28:96:8e:37:65:03:b2:f5:5b:22:6c:46:b2: 19:b2:e0:96:c7:89:14:db:14:d9:d0:9d:60:b2:52: c5:69:bf:58:de:5c:48:86:f6:79:cc:f6:cc:0d:35: 95:14:7c:0f:1b:c2:f1:f5:72:ed:75:d8:77:78:83: f8:c3:ea:d5:0f:58:5a:02:63:4f:81:a6:d5:46:7f: 7d:03:34:1a:1d:25:d0:19:a6:52:e2:c5:4d:c4:6b: d3:61:5d:2b:df:73:75:4b:2e:82:9c:2e:bf:c2:f5: d0:c6:ad:05:80:28:2e:60:4f:94:ee:d9:00:e9:6c: 8b:bd:dd:30:b9:9a:b3:03:cc:1b:40:82:60:75:ed: 7e:fd:b5:de:42:8d:99:b9:28:87:c2:86:2c:37:a0: 01:fb:33:33:cc:d8:05:63:1d:2f:61:f9:12:30:8c: 50:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:91:E5:B9:93:82:BE:60:A7:99:AD:E8:18:5F:18:1E:12:2B:99:61 X509v3 Authority Key Identifier: keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/5pHluZOCvmCnma3oGF8YHhIrmWE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5f20:1000::/36 Signature Algorithm: sha256WithRSAEncryption 1e:93:6c:d9:c9:28:af:b8:3d:78:ce:e3:da:a6:33:38:c5:24: 5c:03:cd:ce:34:a0:26:ed:45:03:27:9e:f2:0d:5c:7b:c6:5e: 27:3c:84:8c:32:a1:b4:8d:b9:f3:92:a7:1a:89:91:ef:bd:79: 8c:02:e2:e9:18:6f:51:bc:fe:60:6d:3d:bb:17:cf:49:68:1b: 64:a5:54:4c:74:c3:53:6a:7e:a8:e2:f1:77:53:72:eb:61:63: cd:78:ea:2c:bf:4e:08:64:99:c9:2b:16:ae:2b:03:a7:2e:3b: bb:cd:cf:b5:7c:db:c8:97:f1:cb:58:af:b8:5d:ef:30:c5:b8: 10:3b:fa:3d:6d:92:a7:43:92:fd:40:52:a8:29:5c:66:f6:95: 3f:ba:9e:2f:b9:65:ad:fe:6c:b0:f2:f1:fa:b6:84:40:87:cf: 4f:53:13:dd:e4:74:47:8c:36:af:06:c0:50:76:3d:77:94:83: 86:70:8f:0a:88:9c:0e:e9:5c:36:8d:71:dd:01:06:b7:2e:7a: c8:bb:c5:ce:8d:1b:55:77:dd:f3:03:34:68:cd:c0:41:63:ee: 78:e4:05:76:f0:10:9a:63:3a:c6:5b:fd:f7:7e:66:d9:a4:83: 5a:8c:6f:c9:86:88:ca:2d:37:f8:7b:9a:11:b4:c9:ad:15:d6: db:8e:61:79 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVG RjkwMzA2QjQ3QTdERTAzMDdGMEUzMzVCNERDN0YyN0RFQTRGQjAeFw0yNTA4MjIw ODUwMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU2OTFFNUI5OTM4MkJF NjBBNzk5QURFODE4NUYxODFFMTIyQjk5NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDu4ZgEMy0tmEenyrT9qgLlnasDPPOCDnRcPgPE1CKmrMRUv40M ILl+qQt54P7lfGRSff6yYByFSCyUS1zyWkyB3lWQwLvKr0bvHAZUFVBK4wNo1K+D mi6eucjNKJaON2UDsvVbImxGshmy4JbHiRTbFNnQnWCyUsVpv1jeXEiG9nnM9swN NZUUfA8bwvH1cu112Hd4g/jD6tUPWFoCY0+BptVGf30DNBodJdAZplLixU3Ea9Nh XSvfc3VLLoKcLr/C9dDGrQWAKC5gT5Tu2QDpbIu93TC5mrMDzBtAgmB17X79td5C jZm5KIfChiw3oAH7MzPM2AVjHS9h+RIwjFA5AgMBAAGjggH4MIIB9DAdBgNVHQ4E FgQU5pHluZOCvmCnma3oGF8YHhIrmWEwHwYDVR0jBBgwFoAUNf+QMGtHp94DB/Dj NbTcfyfepPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklD T0xURC9OZi1RTUd0SHA5NERCX0RqTmJUY2Z5ZmVwUHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NISUpJQ09MVEQvNXBIbHVaT0N2 bUNubWEzb0dGOFlIaElybVdFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQC AAIwCAMGBCQBXyAQMA0GCSqGSIb3DQEBCwUAA4IBAQAek2zZySivuD14zuPapjM4 xSRcA83ONKAm7UUDJ57yDVx7xl4nPISMMqG0jbnzkqcaiZHvvXmMAuLpGG9RvP5g bT27F89JaBtkpVRMdMNTan6o4vF3U3LrYWPNeOosv04IZJnJKxauKwOnLju7zc+1 fNvIl/HLWK+4Xe8wxbgQO/o9bZKnQ5L9QFKoKVxm9pU/up4vuWWt/myw8vH6toRA h89PUxPd5HRHjDavBsBQdj13lIOGcI8KiJwO6Vw2jXHdAQa3LnrIu8XOjRtVd93z AzRozcBBY+545AV28BCaYzrGW/33fmbZpINajG/JhojKLTf4e5oRtMmtFdbbjmF5 -----END CERTIFICATE-----Generated at Sun Aug 24 07:03:38 2025 by rpki-client