$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/dQIhHtxPgB4qTbOb9Dt-oMLMzbc.roa File: dQIhHtxPgB4qTbOb9Dt-oMLMzbc.roa (raw, json) Hash identifier: SxQmQU0DkQBqowqMGlt7FWkozo5bjuTvX0JLtYVGMcs= Subject key identifier: 75:02:21:1E:DC:4F:80:1E:2A:4D:B3:9B:F4:3B:7E:A0:C2:CC:CD:B7 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E17 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/dQIhHtxPgB4qTbOb9Dt-oMLMzbc.roa Signing time: Fri 22 Aug 2025 08:51:01 +0000 ROA not before: Fri 22 Aug 2025 08:51:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 39.1.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3607 (0xe17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7502211EDC4F801E2A4DB39BF43B7EA0C2CCCDB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2b:29:27:c8:b9:17:e5:d7:fa:bc:86:57:d1: d6:8f:e2:b0:81:cb:1a:2f:05:13:d5:60:4f:4a:10: aa:59:0e:81:4e:1f:94:f2:6f:72:8c:97:e2:6b:19: 52:74:30:be:73:48:93:04:89:32:db:6f:e0:c8:c3: 5c:0e:97:cd:a9:64:e5:ea:86:de:3b:6e:7f:62:bc: 8f:1f:aa:28:65:4e:c9:57:bc:f5:95:81:bc:04:79: 47:89:6b:31:b6:bb:32:65:3b:fd:e9:26:4c:31:e1: a4:9e:1d:b3:ed:8e:12:f7:91:d2:9a:01:96:c3:48: 64:72:3e:36:fc:88:b1:8b:d1:a0:5c:bd:bb:19:02: 52:94:ad:35:27:f1:ca:ff:ae:21:92:32:6c:b9:44: 58:c4:56:37:62:c0:93:d4:3a:1c:51:b8:1a:1a:5f: 30:d9:aa:6f:cb:76:e6:a4:6f:db:c3:7d:74:9e:2e: 8f:95:3d:71:51:36:b8:e8:9f:35:79:ea:30:9d:c2: eb:79:0e:64:d8:d4:57:be:d9:ab:69:da:0e:f9:87: cf:62:0e:f1:e5:e5:d7:61:9d:b1:c6:3d:3d:5f:c5: 0d:c1:34:be:f2:86:c3:76:73:57:b8:11:91:16:5f: 3d:87:cf:26:b5:7a:11:9e:3f:9e:51:08:62:5e:35: 64:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:02:21:1E:DC:4F:80:1E:2A:4D:B3:9B:F4:3B:7E:A0:C2:CC:CD:B7 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/dQIhHtxPgB4qTbOb9Dt-oMLMzbc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.32.0/21 Signature Algorithm: sha256WithRSAEncryption a2:3d:d9:90:8a:61:d5:27:96:7e:bd:9f:20:00:77:43:01:83: 5d:6f:a2:3d:c9:32:28:60:85:85:02:d1:14:cd:ac:b6:c4:47: 35:f7:12:9d:f2:23:e9:b4:7c:ba:9c:8d:cc:e3:a1:aa:40:1c: c5:c5:58:75:59:ef:ff:c2:a9:1f:13:d9:2a:25:58:82:f3:11: 45:bc:65:e3:69:42:0a:02:a8:66:c8:cc:a5:59:6e:bb:75:6f: 5c:6c:79:ea:43:3b:e7:7b:ea:dd:6d:0d:b6:95:29:85:fd:9d: 01:a9:a4:20:7c:18:c3:00:8a:0c:5c:5b:31:45:f0:4a:52:b0: e1:22:c3:aa:9d:74:4f:6d:6c:70:d8:35:38:f5:74:c2:2f:93: 89:10:33:f4:88:02:37:2f:8a:01:17:1f:f5:b3:c3:bc:13:73: 1c:91:cd:99:55:ef:d4:9a:d0:77:fc:2a:69:73:fc:9f:aa:ff: 55:06:8f:17:65:b8:ab:00:17:2d:bc:69:9c:18:48:cc:5b:f9: a2:38:24:8c:34:77:15:ee:b5:00:c1:43:79:87:c7:ee:86:fd: 23:59:c1:e7:11:4a:c5:ef:df:71:75:39:69:18:2c:c1:73:37: 16:65:3a:0d:0b:50:1a:fd:bc:b5:2b:46:06:9d:fa:2a:b3:68: 82:16:05:49 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDhcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc1MDIyMTFFREM0Rjgw MUUyQTREQjM5QkY0M0I3RUEwQzJDQ0NEQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+KyknyLkX5df6vIZX0daP4rCByxovBRPVYE9KEKpZDoFOH5Ty b3KMl+JrGVJ0ML5zSJMEiTLbb+DIw1wOl82pZOXqht47bn9ivI8fqihlTslXvPWV gbwEeUeJazG2uzJlO/3pJkwx4aSeHbPtjhL3kdKaAZbDSGRyPjb8iLGL0aBcvbsZ AlKUrTUn8cr/riGSMmy5RFjEVjdiwJPUOhxRuBoaXzDZqm/Lduakb9vDfXSeLo+V PXFRNrjonzV56jCdwut5DmTY1Fe+2atp2g75h89iDvHl5ddhnbHGPT1fxQ3BNL7y hsN2c1e4EZEWXz2Hzya1ehGeP55RCGJeNWR5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUdQIhHtxPgB4qTbOb9Dt+oMLMzbcwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9kUUloSHR4UGdCNHFUYk9iOUR0 LW9NTE16YmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDJwEg MA0GCSqGSIb3DQEBCwUAA4IBAQCiPdmQimHVJ5Z+vZ8gAHdDAYNdb6I9yTIoYIWF AtEUzay2xEc19xKd8iPptHy6nI3M46GqQBzFxVh1We//wqkfE9kqJViC8xFFvGXj aUIKAqhmyMylWW67dW9cbHnqQzvne+rdbQ22lSmF/Z0BqaQgfBjDAIoMXFsxRfBK UrDhIsOqnXRPbWxw2DU49XTCL5OJEDP0iAI3L4oBFx/1s8O8E3Mckc2ZVe/UmtB3 /Cppc/yfqv9VBo8XZbirABctvGmcGEjMW/miOCSMNHcV7rUAwUN5h8fuhv0jWcHn EUrF799xdTlpGCzBczcWZToNC1Aa/by1K0YGnfoqs2iCFgVJ -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:06 2025 by rpki-client