$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/RSQuUuF8SaUA10D6DjWfl4fsSTM.roa File: RSQuUuF8SaUA10D6DjWfl4fsSTM.roa (raw, json) Hash identifier: etP3yRrOYCfLy1FhtmdGuwYuqwavoRdEBEkwfRs59Pw= Subject key identifier: 45:24:2E:52:E1:7C:49:A5:00:D7:40:FA:0E:35:9F:97:87:EC:49:33 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E0E Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/RSQuUuF8SaUA10D6DjWfl4fsSTM.roa Signing time: Fri 22 Aug 2025 08:51:00 +0000 ROA not before: Fri 22 Aug 2025 08:51:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 39.1.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3598 (0xe0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=45242E52E17C49A500D740FA0E359F9787EC4933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a0:c0:84:6e:74:fb:19:03:6e:fb:c3:36:8c: 01:38:37:76:3c:23:fe:b1:5b:23:37:77:30:ad:fe: b3:7c:a1:e5:c3:38:c6:7e:a8:01:db:81:b2:8d:4b: 57:2e:f2:f4:ac:3a:7e:3d:56:0b:53:53:72:25:3d: cb:86:e9:ee:6e:4b:9f:6b:29:9c:d9:53:17:6a:68: 8c:38:9a:ab:99:67:01:20:59:44:f3:ed:a4:89:b8: 72:2a:9a:72:07:5a:74:68:9e:0c:a4:d7:5c:bb:4d: 42:7d:16:a1:21:16:dc:fb:ff:43:7b:99:44:19:47: 1d:0f:c3:a2:aa:79:33:2b:58:99:b6:5b:eb:e5:63: 89:76:92:e9:84:d3:5a:a4:c6:8d:f1:6a:a0:53:0d: 44:8a:86:17:5f:49:d8:f4:41:14:db:90:df:11:a2: e3:be:3b:8a:8f:1f:93:36:47:99:1e:9f:91:02:b4: 6f:4b:db:ed:84:dc:94:f4:cc:eb:09:20:dd:e5:a9: e4:74:3a:1d:b2:1c:c5:d4:e7:83:5b:a6:2e:0e:36: 39:9b:ba:f9:42:e6:af:c1:f3:f2:8a:9c:99:04:1d: 92:95:91:47:64:67:c8:2c:92:30:c9:4f:4f:1c:8b: 61:10:ec:c9:cd:73:dc:d0:86:da:05:46:10:3f:2b: 2d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:24:2E:52:E1:7C:49:A5:00:D7:40:FA:0E:35:9F:97:87:EC:49:33 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/RSQuUuF8SaUA10D6DjWfl4fsSTM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.46.0/24 Signature Algorithm: sha256WithRSAEncryption b6:38:65:32:6b:55:85:4e:78:58:7b:f6:d5:df:0c:46:21:1e: 25:d5:d5:0a:54:78:70:80:ae:1e:8c:62:46:70:6f:fb:96:c6: ee:ed:20:a3:c7:9c:33:99:a4:bb:8f:10:70:14:e1:24:05:b4: 8c:74:49:2a:74:97:0c:50:49:59:7f:07:1e:96:b7:2a:f5:56: 62:51:c8:e6:1d:b5:9b:44:69:18:0f:64:b8:91:3a:2c:aa:fb: e8:09:c6:41:8a:e3:8d:1c:d6:e4:19:9a:08:27:92:bb:b7:ef: c5:e5:7b:21:91:e3:2e:71:a2:fc:b9:44:a4:e5:1f:7c:01:1b: 07:18:db:4b:31:2a:d8:7d:9d:49:d9:6b:97:19:9b:93:7f:64: ec:91:0d:0a:61:91:8e:50:00:c2:89:1c:f5:8f:88:ab:6d:82: 8d:af:be:6e:e7:c1:6b:e6:b2:d8:27:9b:a7:63:46:7a:d2:e4: 40:b1:7f:0f:7c:6b:4c:98:91:18:69:01:5a:ee:a5:67:3b:18: 23:de:e0:70:73:10:93:aa:1a:f9:81:49:4a:03:55:6b:e0:89: e1:fc:6d:50:81:94:c0:50:d8:5c:a1:f6:ee:a1:3f:35:30:1d: 6a:d2:ad:8b:b5:81:41:92:6f:b0:f4:a6:d8:ba:b8:cc:30:9f: 29:8d:ba:c5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDg4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ1MjQyRTUyRTE3QzQ5 QTUwMEQ3NDBGQTBFMzU5Rjk3ODdFQzQ5MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDToMCEbnT7GQNu+8M2jAE4N3Y8I/6xWyM3dzCt/rN8oeXDOMZ+ qAHbgbKNS1cu8vSsOn49VgtTU3IlPcuG6e5uS59rKZzZUxdqaIw4mquZZwEgWUTz 7aSJuHIqmnIHWnRongyk11y7TUJ9FqEhFtz7/0N7mUQZRx0Pw6KqeTMrWJm2W+vl Y4l2kumE01qkxo3xaqBTDUSKhhdfSdj0QRTbkN8RouO+O4qPH5M2R5ken5ECtG9L 2+2E3JT0zOsJIN3lqeR0Oh2yHMXU54Nbpi4ONjmbuvlC5q/B8/KKnJkEHZKVkUdk Z8gskjDJT08ci2EQ7MnNc9zQhtoFRhA/Ky2HAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQURSQuUuF8SaUA10D6DjWfl4fsSTMwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9SU1F1VXVGOFNhVUExMEQ2RGpX Zmw0ZnNTVE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJwEu MA0GCSqGSIb3DQEBCwUAA4IBAQC2OGUya1WFTnhYe/bV3wxGIR4l1dUKVHhwgK4e jGJGcG/7lsbu7SCjx5wzmaS7jxBwFOEkBbSMdEkqdJcMUElZfwcelrcq9VZiUcjm HbWbRGkYD2S4kTosqvvoCcZBiuONHNbkGZoIJ5K7t+/F5XshkeMucaL8uUSk5R98 ARsHGNtLMSrYfZ1J2WuXGZuTf2TskQ0KYZGOUADCiRz1j4irbYKNr75u58Fr5rLY J5unY0Z60uRAsX8PfGtMmJEYaQFa7qVnOxgj3uBwcxCTqhr5gUlKA1Vr4Inh/G1Q gZTAUNhcofbuoT81MB1q0q2LtYFBkm+w9KbYurjMMJ8pjbrF -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:19 2025 by rpki-client