$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/5hf1unkjbLUs4dX5Nxv0Z_GUnSw.roa File: 5hf1unkjbLUs4dX5Nxv0Z_GUnSw.roa (raw, json) Hash identifier: 7808o0ds4CjX1LscsajwepgJgYqRhjYKwgT6tS1RTOA= Subject key identifier: E6:17:F5:BA:79:23:6C:B5:2C:E1:D5:F9:37:1B:F4:67:F1:94:9D:2C Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0E5C Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/5hf1unkjbLUs4dX5Nxv0Z_GUnSw.roa Signing time: Fri 22 Aug 2025 08:56:26 +0000 ROA not before: Fri 22 Aug 2025 08:56:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18419 IP address blocks: 180.214.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3676 (0xe5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 22 08:56:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E617F5BA79236CB52CE1D5F9371BF467F1949D2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:67:40:72:e4:ac:d3:37:c9:28:f5:02:08:88: ef:c7:66:7b:d8:62:6b:90:63:17:1e:15:f1:cc:a5: 86:08:cd:70:e5:ca:ef:50:54:74:52:af:bf:9c:4a: 0c:63:88:37:25:ca:23:e0:38:71:8e:ff:05:d4:1c: b1:c9:02:c8:bc:81:c2:39:ec:0b:5a:f5:52:39:fe: 15:af:18:d1:33:93:7b:5a:57:c7:1b:3b:bd:5a:26: c1:c8:56:8c:7c:45:bf:63:f8:1f:d8:f8:96:d7:91: fe:a6:65:20:00:5f:50:bd:51:4d:b3:73:4a:42:79: 71:81:db:d5:f8:3e:cc:e4:e5:4d:6f:99:d9:74:30: 81:0b:65:4e:46:b1:4d:7a:a8:6e:7f:ca:66:d2:f1: f4:6f:dc:b9:9f:5d:72:2e:72:0e:59:03:2e:53:41: 3c:16:93:cd:e1:38:21:12:a2:11:84:37:a8:cb:7e: 11:d4:08:93:f0:14:ba:97:2a:06:1f:31:45:2c:b2: c4:80:cc:54:0c:28:0e:51:4a:63:16:00:05:c5:75: 6d:6c:d1:f2:0a:3f:e4:52:42:b3:ed:88:28:36:d6: 8b:a2:d6:98:2d:17:fe:af:7d:4e:98:f0:0e:c5:2e: bf:8f:df:d8:bf:0b:5a:31:c5:72:7e:72:12:09:d1: f7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:17:F5:BA:79:23:6C:B5:2C:E1:D5:F9:37:1B:F4:67:F1:94:9D:2C X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/5hf1unkjbLUs4dX5Nxv0Z_GUnSw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.214.176.0/20 Signature Algorithm: sha256WithRSAEncryption 43:b0:47:5f:8d:0c:2b:67:5a:0a:05:e0:08:4e:c5:dd:eb:ee: 33:c9:1c:e4:f4:65:eb:62:1c:71:2f:2c:65:03:fd:7f:9f:79: b3:a3:f8:58:99:9b:3f:38:55:13:26:4a:f4:46:26:b9:9d:ad: 3a:7f:0f:c6:65:0f:2e:c2:d7:2b:e4:ff:d3:ae:9a:c7:db:f8: bc:77:3e:e7:aa:29:e7:65:5d:de:b2:52:59:14:d2:9f:32:20: 7e:11:dc:9d:10:0d:42:7d:dc:aa:94:3b:ac:85:d7:84:c8:07: 33:32:b9:7e:89:b1:d7:fc:66:b7:04:5e:c8:64:7f:f5:f7:d8: 5c:f0:76:af:95:8d:48:00:ab:3c:2f:4c:9a:11:97:69:c5:79: 3c:46:2f:9e:98:54:0c:28:d4:1a:48:19:e5:eb:6d:e1:11:36: b0:c9:e5:8f:ee:5e:05:80:5d:30:02:09:1a:79:fc:8b:bd:bd: f3:1e:4e:75:66:af:28:e6:65:95:5a:73:74:90:ff:d1:59:a7: c8:87:3a:79:62:ae:d7:6c:21:42:ea:a6:9b:e7:33:75:16:7d: 21:a2:da:da:21:9a:85:72:79:fc:85:c8:d1:2b:41:1f:ab:42: 27:c0:a4:22:4e:8d:97:52:d8:fc:da:b1:69:3f:57:99:c5:74: d4:22:61:5b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNTA4MjIw ODU2MjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU2MTdGNUJBNzkyMzZD QjUyQ0UxRDVGOTM3MUJGNDY3RjE5NDlEMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaZ0By5KzTN8ko9QIIiO/HZnvYYmuQYxceFfHMpYYIzXDlyu9Q VHRSr7+cSgxjiDclyiPgOHGO/wXUHLHJAsi8gcI57Ata9VI5/hWvGNEzk3taV8cb O71aJsHIVox8Rb9j+B/Y+JbXkf6mZSAAX1C9UU2zc0pCeXGB29X4Pszk5U1vmdl0 MIELZU5GsU16qG5/ymbS8fRv3LmfXXIucg5ZAy5TQTwWk83hOCESohGEN6jLfhHU CJPwFLqXKgYfMUUsssSAzFQMKA5RSmMWAAXFdW1s0fIKP+RSQrPtiCg21oui1pgt F/6vfU6Y8A7FLr+P39i/C1oxxXJ+chIJ0fcLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU5hf1unkjbLUs4dX5Nxv0Z/GUnSwwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS81aGYxdW5ramJMVXM0ZFg1Tnh2 MFpfR1VuU3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEtNaw MA0GCSqGSIb3DQEBCwUAA4IBAQBDsEdfjQwrZ1oKBeAITsXd6+4zyRzk9GXrYhxx LyxlA/1/n3mzo/hYmZs/OFUTJkr0Ria5na06fw/GZQ8uwtcr5P/TrprH2/i8dz7n qinnZV3eslJZFNKfMiB+EdydEA1CfdyqlDushdeEyAczMrl+ibHX/Ga3BF7IZH/1 99hc8HavlY1IAKs8L0yaEZdpxXk8Ri+emFQMKNQaSBnl623hETawyeWP7l4FgF0w AgkaefyLvb3zHk51Zq8o5mWVWnN0kP/RWafIhzp5Yq7XbCFC6qab5zN1Fn0hotra IZqFcnn8hcjRK0Efq0InwKQiTo2XUtj82rFpP1eZxXTUImFb -----END CERTIFICATE-----Generated at Sun Aug 24 06:46:39 2025 by rpki-client