$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_ho6VpD9bk82PTf645psnvBJ1MY.roa File: _ho6VpD9bk82PTf645psnvBJ1MY.roa (raw, json) Hash identifier: kdzYzMXEgkNlszY83k/4jbH2hsZfk5UR5ZiVY2W6SE8= Subject key identifier: FE:1A:3A:56:90:FD:6E:4F:36:3D:37:FA:E3:9A:6C:9E:F0:49:D4:C6 Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0E54 Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_ho6VpD9bk82PTf645psnvBJ1MY.roa Signing time: Fri 22 Aug 2025 08:56:24 +0000 ROA not before: Fri 22 Aug 2025 08:56:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 202.148.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3668 (0xe54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 22 08:56:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FE1A3A5690FD6E4F363D37FAE39A6C9EF049D4C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b5:13:71:ca:3b:3c:d2:9d:9e:cc:77:78:c7: e3:27:d5:3e:c9:97:ff:58:b3:ea:f8:36:c9:49:20: 87:bc:04:37:40:dd:9f:76:ae:eb:c9:4f:24:ff:3a: bb:46:51:39:c2:71:a2:7f:63:5e:59:09:c7:10:bf: 1b:01:b4:39:28:f0:d6:56:7c:9f:73:7c:4a:21:8a: 7d:93:b5:39:05:49:21:2c:a3:71:bf:9f:c5:b3:d2: 36:ee:b6:87:4c:e0:93:27:fe:e6:63:16:31:25:6f: 0a:08:87:d0:19:38:77:b5:f8:74:e3:ec:f6:c5:8a: 56:37:5d:34:b0:15:b4:bd:4a:37:d5:57:79:7d:e9: 4b:51:1a:11:d0:c2:fb:93:9a:de:a7:9d:41:37:7f: 3e:87:7f:8b:ee:91:8c:62:8f:e3:63:17:11:c5:fe: 94:73:8e:ce:12:61:bc:fd:4c:9c:bb:af:9d:a6:8f: a1:41:52:c7:af:e1:d6:03:cb:0d:9e:34:24:cd:29: 9f:9f:b5:0f:c9:b4:92:73:b3:06:c9:ac:e6:d5:43: 1a:05:89:8b:10:b1:6d:e7:4c:4b:41:30:77:33:f6: a9:44:57:71:9c:79:5b:9d:f9:69:ad:57:a2:13:53: 04:eb:ea:eb:4e:58:65:5f:38:36:e3:8a:5d:66:4d: 36:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:1A:3A:56:90:FD:6E:4F:36:3D:37:FA:E3:9A:6C:9E:F0:49:D4:C6 X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_ho6VpD9bk82PTf645psnvBJ1MY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.148.218.0/23 Signature Algorithm: sha256WithRSAEncryption 00:3e:60:10:ce:99:bc:15:04:d8:41:29:a8:7a:44:8f:13:76: 24:29:68:b1:67:51:20:bb:9b:84:99:bf:33:37:e5:39:79:e3: ae:73:24:ce:d9:1c:b4:66:06:d8:be:6e:e1:44:aa:15:2d:38: 43:94:ff:06:ae:0b:69:0d:18:c8:6b:eb:bf:0f:45:df:61:71: ef:ab:0a:10:98:35:4d:4f:6d:a1:28:53:ca:a2:25:cc:1f:17: fb:1e:77:2d:b4:65:bf:17:c1:2a:f2:16:8b:57:9e:5f:e4:fa: e4:02:ee:0d:72:be:32:da:9f:b1:6a:4b:a6:12:2c:74:38:fc: 91:52:75:d7:40:e8:72:09:1f:38:1e:f9:94:d3:d8:d1:51:10: 2b:dc:55:67:74:00:78:0d:56:8d:3d:0e:4f:ab:25:72:78:59: 50:cc:dc:48:30:a9:b7:24:fe:5c:82:55:bb:f6:d5:c5:50:d5: 1b:c1:bd:3e:f9:33:33:42:93:61:2c:2e:e6:ca:0d:65:77:bd: 0f:96:4e:2d:7b:cb:c1:d5:81:ce:fb:e1:c6:8c:b7:78:87:4e: a0:4d:7d:28:d6:82:dc:66:41:a3:d2:26:8e:26:05:02:50:a5: eb:3a:e4:9d:04:d0:6e:c6:8d:6e:44:bb:ac:60:19:84:4f:86: ce:73:61:21 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDlQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNTA4MjIw ODU2MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZFMUEzQTU2OTBGRDZF NEYzNjNEMzdGQUUzOUE2QzlFRjA0OUQ0QzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCctRNxyjs80p2ezHd4x+Mn1T7Jl/9Ys+r4NslJIIe8BDdA3Z92 ruvJTyT/OrtGUTnCcaJ/Y15ZCccQvxsBtDko8NZWfJ9zfEohin2TtTkFSSEso3G/ n8Wz0jbutodM4JMn/uZjFjElbwoIh9AZOHe1+HTj7PbFilY3XTSwFbS9SjfVV3l9 6UtRGhHQwvuTmt6nnUE3fz6Hf4vukYxij+NjFxHF/pRzjs4SYbz9TJy7r52mj6FB Usev4dYDyw2eNCTNKZ+ftQ/JtJJzswbJrObVQxoFiYsQsW3nTEtBMHcz9qlEV3Gc eVud+WmtV6ITUwTr6utOWGVfODbjil1mTTYvAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU/ho6VpD9bk82PTf645psnvBJ1MYwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9faG82VnBEOWJrODJQVGY2NDVw c252QkoxTVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypTa MA0GCSqGSIb3DQEBCwUAA4IBAQAAPmAQzpm8FQTYQSmoekSPE3YkKWixZ1Egu5uE mb8zN+U5eeOucyTO2Ry0ZgbYvm7hRKoVLThDlP8GrgtpDRjIa+u/D0XfYXHvqwoQ mDVNT22hKFPKoiXMHxf7HncttGW/F8Eq8haLV55f5PrkAu4Ncr4y2p+xakumEix0 OPyRUnXXQOhyCR84HvmU09jRURAr3FVndAB4DVaNPQ5PqyVyeFlQzNxIMKm3JP5c glW79tXFUNUbwb0++TMzQpNhLC7myg1ld70Plk4te8vB1YHO++HGjLd4h06gTX0o 1oLcZkGj0iaOJgUCUKXrOuSdBNBuxo1uRLusYBmET4bOc2Eh -----END CERTIFICATE-----Generated at Sun Aug 24 09:40:12 2025 by rpki-client