$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/BYuOsBryRqI0I9BPqA8Yn6b38Zw.roa File: BYuOsBryRqI0I9BPqA8Yn6b38Zw.roa (raw, json) Hash identifier: 1H3jMp+DC8t5aCAlB9q2cMzvSwrbCbFZSw+ld3l+x1w= Subject key identifier: 05:8B:8E:B0:1A:F2:46:A2:34:23:D0:4F:A8:0F:18:9F:A6:F7:F1:9C Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E0F Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/BYuOsBryRqI0I9BPqA8Yn6b38Zw.roa Signing time: Fri 22 Aug 2025 08:51:00 +0000 ROA not before: Fri 22 Aug 2025 08:51:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 39.1.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3599 (0xe0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=058B8EB01AF246A23423D04FA80F189FA6F7F19C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:01:31:c9:8e:47:3c:e8:3d:28:b7:0a:d4:20: 9e:13:fd:6f:5a:de:66:70:fd:9c:52:48:32:2b:7b: b7:77:69:b9:79:68:d0:7d:c2:5a:be:ad:c5:95:d2: 9a:38:52:46:c4:ed:50:23:33:6d:59:a5:7e:87:31: 95:91:42:3f:85:1d:88:bf:10:d3:df:4b:c6:81:44: 01:f9:58:39:d6:72:bc:22:1f:39:26:e1:bb:3d:20: de:66:16:c2:ca:56:f8:64:9a:cc:77:be:06:3a:42: 54:3a:b1:73:8b:b4:06:72:0a:0c:de:6a:5a:ce:f4: 92:93:b6:18:f8:13:af:bc:dd:d6:35:29:e6:9d:ee: 00:e2:e2:a6:0b:b7:0a:4b:a0:f9:20:4e:95:6c:ff: f1:aa:1c:cb:bd:b6:57:c4:1b:24:42:08:9b:63:7a: 42:18:8f:b4:a4:e1:5c:83:80:96:3d:bb:cc:58:d8: 07:90:61:31:46:9b:52:8d:ad:f4:d7:3f:21:c0:60: c7:9f:9d:f1:ce:92:34:d5:c7:4d:a3:d5:53:ff:fd: 23:bd:f4:f3:57:b9:00:3a:42:5d:69:49:9a:ba:dc: a2:68:74:45:44:3b:05:63:35:a1:36:fd:aa:57:e7: 05:57:33:bd:e6:17:9b:7e:3d:8e:fe:74:d2:18:ec: 34:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8B:8E:B0:1A:F2:46:A2:34:23:D0:4F:A8:0F:18:9F:A6:F7:F1:9C X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/BYuOsBryRqI0I9BPqA8Yn6b38Zw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.45.0/24 Signature Algorithm: sha256WithRSAEncryption 93:73:57:9f:8b:05:8a:67:f8:14:d5:9e:2c:d4:ca:b7:f1:bf: 41:27:a6:af:97:98:d1:80:ef:93:eb:95:9e:52:e6:3f:69:ae: 62:3f:bd:6e:77:bc:e6:f4:cc:ea:95:03:00:a5:93:6f:74:6d: 0f:0a:d8:a8:ac:28:1c:0a:9e:0c:77:fa:49:26:f2:2e:bf:78: ae:04:99:b9:a5:f3:1a:db:a1:ff:cb:81:4c:da:2b:00:6e:ce: b2:a3:ba:1f:70:f3:5e:a0:b0:6d:b1:62:e4:87:7c:62:56:b0: 70:5d:71:b0:1f:8f:a8:ec:50:67:7a:18:c4:aa:32:7d:72:1f: 13:53:50:5e:f5:6b:76:0f:b1:78:03:93:15:5c:14:d1:48:b9: e5:f0:af:99:55:24:4c:b6:2b:58:70:37:a9:15:d9:74:8a:67: 1d:02:2f:31:78:00:9a:b8:1d:70:6f:e4:51:59:1c:66:78:33: 6b:86:2a:13:f6:e6:1a:ac:c8:cc:22:e0:06:e5:a3:a7:31:19: e2:9d:fc:1f:14:bb:53:eb:bb:96:8c:ea:8e:d9:3a:6e:36:31: 7a:89:3b:4d:9c:d5:8a:71:af:23:76:22:30:82:44:a0:16:a3: ff:72:5c:23:c3:ee:bb:83:d3:f7:b9:0d:73:ad:0d:4c:ee:d3: 62:d8:7d:b9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDg8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA1OEI4RUIwMUFGMjQ2 QTIzNDIzRDA0RkE4MEYxODlGQTZGN0YxOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlATHJjkc86D0otwrUIJ4T/W9a3mZw/ZxSSDIre7d3abl5aNB9 wlq+rcWV0po4UkbE7VAjM21ZpX6HMZWRQj+FHYi/ENPfS8aBRAH5WDnWcrwiHzkm 4bs9IN5mFsLKVvhkmsx3vgY6QlQ6sXOLtAZyCgzealrO9JKTthj4E6+83dY1Kead 7gDi4qYLtwpLoPkgTpVs//GqHMu9tlfEGyRCCJtjekIYj7Sk4VyDgJY9u8xY2AeQ YTFGm1KNrfTXPyHAYMefnfHOkjTVx02j1VP//SO99PNXuQA6Ql1pSZq63KJodEVE OwVjNaE2/apX5wVXM73mF5t+PY7+dNIY7DShAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUBYuOsBryRqI0I9BPqA8Yn6b38ZwwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9CWXVPc0JyeVJxSTBJOUJQcUE4 WW42YjM4Wncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJwEt MA0GCSqGSIb3DQEBCwUAA4IBAQCTc1efiwWKZ/gU1Z4s1Mq38b9BJ6avl5jRgO+T 65WeUuY/aa5iP71ud7zm9MzqlQMApZNvdG0PCtiorCgcCp4Md/pJJvIuv3iuBJm5 pfMa26H/y4FM2isAbs6yo7ofcPNeoLBtsWLkh3xiVrBwXXGwH4+o7FBnehjEqjJ9 ch8TU1Be9Wt2D7F4A5MVXBTRSLnl8K+ZVSRMtitYcDepFdl0imcdAi8xeACauB1w b+RRWRxmeDNrhioT9uYarMjMIuAG5aOnMRninfwfFLtT67uWjOqO2TpuNjF6iTtN nNWKca8jdiIwgkSgFqP/clwjw+67g9P3uQ1zrQ1M7tNi2H25 -----END CERTIFICATE-----Generated at Sun Aug 24 13:42:14 2025 by rpki-client