$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/OMY29RwlTIGG38_LPZFYFJBtp5Y.roa File: OMY29RwlTIGG38_LPZFYFJBtp5Y.roa (raw, json) Hash identifier: DvFTEw8GxmOWf4SAGcSUPYwgQ9RpGC+UfHCvia4snCU= Subject key identifier: 38:C6:36:F5:1C:25:4C:81:86:DF:CF:CB:3D:91:58:14:90:6D:A7:96 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E12 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/OMY29RwlTIGG38_LPZFYFJBtp5Y.roa Signing time: Fri 22 Aug 2025 08:51:00 +0000 ROA not before: Fri 22 Aug 2025 08:51:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18182 IP address blocks: 61.64.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3602 (0xe12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=38C636F51C254C8186DFCFCB3D915814906DA796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:8a:cf:c9:1e:3b:75:d7:51:88:bf:61:ee:59: cb:aa:4f:ef:71:f5:79:66:27:92:82:0c:46:2f:1e: 68:bd:e8:c0:ce:12:b4:7f:7c:b8:2a:fa:f8:56:e5: 9e:85:1e:e7:b2:08:74:a4:9b:aa:7d:6c:99:51:98: b1:9c:43:78:69:60:8d:3b:b7:8f:83:46:c5:8f:82: 0f:51:1a:3b:08:1a:69:b1:9e:95:17:69:ef:43:a3: d7:aa:20:69:cc:dc:aa:9d:fb:78:f3:31:4e:6f:19: d0:49:24:39:85:1e:a0:ea:83:de:96:59:54:ac:b9: ff:f6:ea:0b:b7:64:4e:ca:aa:34:1e:a1:10:1f:8a: 40:ee:60:92:91:ec:b3:fd:e2:ba:f3:bc:da:6a:7b: ad:c3:6a:86:3f:7c:92:47:41:cb:05:72:ce:1a:d3: d6:b1:3e:e6:cd:5f:6a:e8:6c:1c:5b:ce:6f:26:bf: 25:71:cf:6b:a5:ed:25:de:41:f0:c4:6e:ee:6f:14: 57:aa:71:ac:61:f8:21:a2:3d:5b:d7:40:f3:00:7b: 46:ec:b6:94:4a:27:79:97:4f:8b:fe:aa:9c:84:22: ba:67:30:e3:20:6b:62:e4:a9:27:4a:fb:66:07:f3: b2:a0:58:a2:cb:c2:c4:ab:0c:ce:36:42:3e:0d:8a: 5f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C6:36:F5:1C:25:4C:81:86:DF:CF:CB:3D:91:58:14:90:6D:A7:96 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/OMY29RwlTIGG38_LPZFYFJBtp5Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.64.0/18 Signature Algorithm: sha256WithRSAEncryption 0e:b5:a3:59:f6:d9:ec:41:c7:32:fb:f7:8b:69:76:17:b3:5c: 76:4c:20:2b:3e:66:5e:1e:c3:7d:be:7b:d9:07:11:c9:ff:6d: 67:51:98:6e:db:58:27:68:66:90:33:50:92:c5:13:81:21:a6: 72:3b:f8:51:40:df:c3:a6:f2:09:d8:ee:c9:c4:76:eb:1c:cd: b9:fe:f2:6b:13:f3:b7:e6:71:08:23:d7:b8:f4:f2:39:a4:93: 4a:db:a8:42:ee:3d:19:8c:43:ff:ce:c8:55:9a:f7:bc:27:a5: b3:07:db:79:b1:11:19:61:b8:7c:a5:74:ce:d9:02:c8:47:37: 2b:27:44:40:8f:a9:10:91:d2:9f:96:d9:4c:a8:55:6b:6b:ce: b9:6e:74:28:65:15:5d:00:2d:cb:64:28:84:e9:3b:10:aa:ab: d4:45:f1:04:29:04:62:89:11:ca:69:c9:b7:6a:e4:b4:9d:32: 8f:71:9e:dc:39:4d:11:34:10:85:7c:fa:82:26:b8:16:16:45: f0:23:24:6a:18:a1:12:42:71:0c:4c:6f:b3:38:6b:fa:08:7a: 72:81:92:ae:da:1e:c7:50:9e:12:1f:1f:5d:de:50:9f:8a:30: d3:ab:ce:76:94:4e:5d:7b:57:4d:6c:63:25:b3:3e:11:8e:46: 5a:93:9b:7a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDhIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM4QzYzNkY1MUMyNTRD ODE4NkRGQ0ZDQjNEOTE1ODE0OTA2REE3OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD7is/JHjt111GIv2HuWcuqT+9x9XlmJ5KCDEYvHmi96MDOErR/ fLgq+vhW5Z6FHueyCHSkm6p9bJlRmLGcQ3hpYI07t4+DRsWPgg9RGjsIGmmxnpUX ae9Do9eqIGnM3Kqd+3jzMU5vGdBJJDmFHqDqg96WWVSsuf/26gu3ZE7KqjQeoRAf ikDuYJKR7LP94rrzvNpqe63DaoY/fJJHQcsFcs4a09axPubNX2robBxbzm8mvyVx z2ul7SXeQfDEbu5vFFeqcaxh+CGiPVvXQPMAe0bstpRKJ3mXT4v+qpyEIrpnMOMg a2LkqSdK+2YH87KgWKLLwsSrDM42Qj4Nil9vAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUOMY29RwlTIGG38/LPZFYFJBtp5YwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9PTVkyOVJ3bFRJR0czOF9MUFpG WUZKQnRwNVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGPUBA MA0GCSqGSIb3DQEBCwUAA4IBAQAOtaNZ9tnsQccy+/eLaXYXs1x2TCArPmZeHsN9 vnvZBxHJ/21nUZhu21gnaGaQM1CSxROBIaZyO/hRQN/DpvIJ2O7JxHbrHM25/vJr E/O35nEII9e49PI5pJNK26hC7j0ZjEP/zshVmve8J6WzB9t5sREZYbh8pXTO2QLI RzcrJ0RAj6kQkdKfltlMqFVra865bnQoZRVdAC3LZCiE6TsQqqvURfEEKQRiiRHK acm3auS0nTKPcZ7cOU0RNBCFfPqCJrgWFkXwIyRqGKESQnEMTG+zOGv6CHpygZKu 2h7HUJ4SHx9d3lCfijDTq852lE5de1dNbGMlsz4RjkZak5t6 -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:19 2025 by rpki-client