$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/4jylnUY3auXNPOMi8B-xFHpzaoc.roa File: 4jylnUY3auXNPOMi8B-xFHpzaoc.roa (raw, json) Hash identifier: 4pfat8e5CE70HlWC9W7GqAMKHexf1oVLYiQ05uM5BlY= Subject key identifier: E2:3C:A5:9D:46:37:6A:E5:CD:3C:E3:22:F0:1F:B1:14:7A:73:6A:87 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E11 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/4jylnUY3auXNPOMi8B-xFHpzaoc.roa Signing time: Fri 22 Aug 2025 08:51:00 +0000 ROA not before: Fri 22 Aug 2025 08:51:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18182 IP address blocks: 61.64.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3601 (0xe11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E23CA59D46376AE5CD3CE322F01FB1147A736A87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a2:d6:49:8a:a5:4b:cd:39:ff:8e:8b:12:8c: 33:18:5d:a3:6b:38:6e:5d:73:35:7a:f2:df:04:3a: 0b:27:6a:a7:0a:83:71:b0:22:b2:eb:91:13:35:8d: 60:6b:cc:2a:79:18:16:65:c1:e9:76:4d:9e:a8:d8: a8:6d:95:fd:ee:9b:f9:52:69:4c:bf:63:66:ab:8c: 0e:df:c6:8d:ae:ad:c8:2a:fd:86:bd:3e:4a:8e:b1: 47:74:3c:8b:c0:7f:bc:3f:61:c4:55:2f:88:57:2f: 70:91:97:71:88:1b:de:3d:e7:bd:c9:32:41:e2:58: 60:ae:74:38:96:d1:42:66:bb:ca:4f:ff:c9:cd:b6: e4:f9:a3:b3:73:5c:37:e7:ca:d2:2d:bf:73:88:99: 88:8d:f0:3a:65:44:3f:15:53:93:62:d1:6a:53:03: a9:5d:ad:94:d7:00:fc:ad:d6:f1:20:b2:6b:70:81: fc:c1:2c:4a:cf:30:12:7c:6b:76:09:88:9c:2b:d3: ed:6f:c6:c0:a1:d4:06:f2:31:98:37:d3:ca:dc:4c: 4a:0a:26:3e:c2:38:e9:b2:8c:b6:f0:19:10:4e:ab: 5b:ad:17:bd:f0:7c:96:08:01:51:86:ed:dd:a8:f3: 09:49:61:f6:ff:9d:c3:a0:21:a4:4d:9e:12:80:21: 23:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3C:A5:9D:46:37:6A:E5:CD:3C:E3:22:F0:1F:B1:14:7A:73:6A:87 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/4jylnUY3auXNPOMi8B-xFHpzaoc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.128.0/17 Signature Algorithm: sha256WithRSAEncryption 43:63:ec:c9:c3:b2:57:b5:39:ae:8e:a7:5a:b3:f2:8b:32:82: 1c:57:17:25:a6:e3:7e:86:aa:a1:07:5b:b6:ce:f2:f4:10:e4: 1d:21:52:bf:2e:7a:23:86:f0:c1:d6:08:61:9b:a5:32:a1:4d: 4f:ac:4c:fd:9a:0c:e7:24:e8:96:af:81:45:94:b8:b3:e2:45: d4:24:3d:4a:cb:64:7f:07:99:7c:66:e4:2e:52:36:c1:79:75: ae:be:ff:08:d9:08:4f:41:ea:86:8f:0f:eb:6a:30:84:57:aa: c2:db:f8:4c:60:34:f3:c9:a2:fd:cf:b3:71:50:f4:ef:a3:df: 5b:08:31:ce:3b:e8:d9:f0:42:d4:35:42:a8:bd:bd:5f:fa:05: 4b:57:6d:08:78:8f:75:d8:12:09:b8:b3:cf:41:4a:06:d8:6d: 93:00:95:57:2b:1a:e0:7f:99:4f:68:5a:6b:c2:ab:8b:27:b3: 26:6b:5e:e0:15:5f:a6:38:02:b4:b5:d7:48:ec:e0:28:29:33: 4d:fe:f6:ad:dd:80:35:e8:7d:0f:2c:b1:8b:60:c2:01:17:92: 13:4d:a9:82:95:2d:44:9f:3b:31:4c:29:f4:bb:25:00:07:e0: 64:6b:77:4c:b9:c6:2d:5d:da:c2:da:74:3d:cf:8f:e4:23:9c: 8f:50:7d:38 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDhEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUyM0NBNTlENDYzNzZB RTVDRDNDRTMyMkYwMUZCMTE0N0E3MzZBODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhotZJiqVLzTn/josSjDMYXaNrOG5dczV68t8EOgsnaqcKg3Gw IrLrkRM1jWBrzCp5GBZlwel2TZ6o2Khtlf3um/lSaUy/Y2arjA7fxo2urcgq/Ya9 PkqOsUd0PIvAf7w/YcRVL4hXL3CRl3GIG949573JMkHiWGCudDiW0UJmu8pP/8nN tuT5o7NzXDfnytItv3OImYiN8DplRD8VU5Ni0WpTA6ldrZTXAPyt1vEgsmtwgfzB LErPMBJ8a3YJiJwr0+1vxsCh1AbyMZg308rcTEoKJj7COOmyjLbwGRBOq1utF73w fJYIAVGG7d2o8wlJYfb/ncOgIaRNnhKAISP7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU4jylnUY3auXNPOMi8B+xFHpzaocwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC80anlsblVZM2F1WE5QT01pOEIt eEZIcHphb2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHPUCA MA0GCSqGSIb3DQEBCwUAA4IBAQBDY+zJw7JXtTmujqdas/KLMoIcVxclpuN+hqqh B1u2zvL0EOQdIVK/LnojhvDB1ghhm6UyoU1PrEz9mgznJOiWr4FFlLiz4kXUJD1K y2R/B5l8ZuQuUjbBeXWuvv8I2QhPQeqGjw/rajCEV6rC2/hMYDTzyaL9z7NxUPTv o99bCDHOO+jZ8ELUNUKovb1f+gVLV20IeI912BIJuLPPQUoG2G2TAJVXKxrgf5lP aFprwquLJ7Mma17gFV+mOAK0tddI7OAoKTNN/vat3YA16H0PLLGLYMIBF5ITTamC lS1EnzsxTCn0uyUAB+Bka3dMucYtXdrC2nQ9z4/kI5yPUH04 -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:17 2025 by rpki-client