$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/fXkoLiNM8N-qjbejj5p-ujdC4t0.roa File: fXkoLiNM8N-qjbejj5p-ujdC4t0.roa (raw, json) Hash identifier: KVw9xfevc5xq9mZb5pNRshjKwEIfqbsCiuaLi9c9kZg= Subject key identifier: 7D:79:28:2E:23:4C:F0:DF:AA:8D:B7:A3:8F:9A:7E:BA:37:42:E2:DD Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E10 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/fXkoLiNM8N-qjbejj5p-ujdC4t0.roa Signing time: Fri 22 Aug 2025 08:51:00 +0000 ROA not before: Fri 22 Aug 2025 08:51:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18182 IP address blocks: 61.56.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3600 (0xe10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7D79282E234CF0DFAA8DB7A38F9A7EBA3742E2DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4a:08:11:ea:dc:a4:06:2c:f1:02:63:3a:f8: e2:d2:78:0a:c8:ea:b8:56:78:55:11:eb:cb:03:1f: 0d:cb:28:2a:85:f7:be:48:9b:98:5c:ee:7a:b3:d5: b4:cc:48:ed:8e:fa:1c:62:6c:dc:a8:9a:90:40:8b: c2:1b:b4:70:2a:e3:cf:47:36:fa:e2:0e:dd:55:6c: 0e:32:cf:36:27:d5:a7:73:59:42:ab:e9:41:da:71: 71:2a:84:0a:36:28:04:59:2b:55:fd:90:dc:39:3e: 06:35:f5:ea:ba:85:74:71:8e:3d:4f:15:ce:46:a7: 22:2e:7e:10:6b:2a:f2:e2:07:d5:6a:1e:f7:50:d3: 2f:f4:03:87:98:de:26:99:78:78:81:07:54:91:7f: ed:6b:37:e0:0e:61:22:29:82:f3:19:b3:27:fa:4f: 31:7f:62:66:9b:dd:31:f0:c2:cf:45:55:80:d7:ee: b1:c0:d2:49:e1:9b:f4:89:7d:5d:c5:ef:6d:b0:82: c9:37:d7:cd:4a:bb:67:b3:7d:f0:19:34:12:2f:ad: a0:dc:c8:e8:de:92:2b:ad:60:ae:6e:23:6b:be:d2: 1e:b2:1f:24:93:31:93:cb:49:ac:71:2d:b1:b1:1a: cc:8c:8e:2b:9a:23:2f:d8:40:35:cc:bf:9c:af:56: 1b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:79:28:2E:23:4C:F0:DF:AA:8D:B7:A3:8F:9A:7E:BA:37:42:E2:DD X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/fXkoLiNM8N-qjbejj5p-ujdC4t0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.128.0/19 Signature Algorithm: sha256WithRSAEncryption 32:49:7d:96:f6:d9:25:c3:64:93:d6:35:ae:f5:47:38:bd:62: c7:92:29:36:9c:6e:f3:65:1b:0e:c0:74:c9:80:12:2a:d5:ed: 82:1a:d3:70:66:56:9f:87:2f:4c:49:83:08:b3:19:d5:e3:05: 85:67:fa:56:eb:12:27:66:6d:1c:95:24:be:40:30:dc:7a:13: de:8c:6e:35:64:1d:00:67:87:76:5e:57:2f:78:5d:09:71:04: 3d:42:f8:da:38:b4:cb:f0:9c:74:dc:68:4e:6e:01:e8:77:c2: 85:65:04:31:9d:25:0f:cb:02:4d:43:c3:54:d2:8e:71:cc:1a: dd:45:5d:12:d8:c1:f2:c5:f8:ac:9e:23:50:d9:62:97:a7:b7: 8e:40:f6:fe:17:99:0d:71:59:4d:5c:72:b5:ff:59:8f:45:f6: a9:5e:ba:d5:93:13:5e:6c:2f:9b:0e:e5:3f:92:16:93:78:b4: ce:1d:56:59:f3:08:d7:71:0b:4b:6f:b2:b9:1d:2c:e3:9b:1c: 91:37:9a:92:6d:2c:96:e6:b4:91:d9:cc:6c:c4:2a:84:b6:b3: b8:ad:f4:5a:cd:7f:be:b7:97:53:a3:14:3e:1c:06:0b:b1:08: a4:7a:64:43:66:ae:22:bf:60:17:34:e1:9f:85:11:15:5c:f7: f8:67:89:7d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdENzkyODJFMjM0Q0Yw REZBQThEQjdBMzhGOUE3RUJBMzc0MkUyREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiSggR6tykBizxAmM6+OLSeArI6rhWeFUR68sDHw3LKCqF975I m5hc7nqz1bTMSO2O+hxibNyompBAi8IbtHAq489HNvriDt1VbA4yzzYn1adzWUKr 6UHacXEqhAo2KARZK1X9kNw5PgY19eq6hXRxjj1PFc5GpyIufhBrKvLiB9VqHvdQ 0y/0A4eY3iaZeHiBB1SRf+1rN+AOYSIpgvMZsyf6TzF/Ymab3THwws9FVYDX7rHA 0knhm/SJfV3F722wgsk3181Ku2ezffAZNBIvraDcyOjekiutYK5uI2u+0h6yHyST MZPLSaxxLbGxGsyMjiuaIy/YQDXMv5yvVhvhAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUfXkoLiNM8N+qjbejj5p+ujdC4t0wHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9mWGtvTGlOTThOLXFqYmVqajVw LXVqZEM0dDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPTiA MA0GCSqGSIb3DQEBCwUAA4IBAQAySX2W9tklw2ST1jWu9Uc4vWLHkik2nG7zZRsO wHTJgBIq1e2CGtNwZlafhy9MSYMIsxnV4wWFZ/pW6xInZm0clSS+QDDcehPejG41 ZB0AZ4d2XlcveF0JcQQ9QvjaOLTL8Jx03GhObgHod8KFZQQxnSUPywJNQ8NU0o5x zBrdRV0S2MHyxfisniNQ2WKXp7eOQPb+F5kNcVlNXHK1/1mPRfapXrrVkxNebC+b DuU/khaTeLTOHVZZ8wjXcQtLb7K5HSzjmxyRN5qSbSyW5rSR2cxsxCqEtrO4rfRa zX++t5dToxQ+HAYLsQikemRDZq4iv2AXNOGfhREVXPf4Z4l9 -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:13 2025 by rpki-client