$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/sTvqqS-SPRCH8yRlOumf9XOjR6E.roa File: sTvqqS-SPRCH8yRlOumf9XOjR6E.roa (raw, json) Hash identifier: 0I1cfv6qxCLo+ekX3tB3ojlOyDYk6Oc30rVIKk1AtxI= Subject key identifier: B1:3B:EA:A9:2F:92:3D:10:87:F3:24:65:3A:E9:9F:F5:73:A3:47:A1 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E0D Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/sTvqqS-SPRCH8yRlOumf9XOjR6E.roa Signing time: Fri 22 Aug 2025 08:50:59 +0000 ROA not before: Fri 22 Aug 2025 08:50:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 39.1.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3597 (0xe0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:50:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B13BEAA92F923D1087F324653AE99FF573A347A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c5:59:44:99:a3:66:87:eb:96:16:2b:0d:9c: 3e:b2:4a:88:92:17:26:c0:c6:cd:dc:98:35:97:5c: 82:7b:7c:43:c3:a2:6d:c2:3f:df:51:8c:5e:2a:a4: 2c:11:1a:72:4a:1a:4d:a9:b6:9e:3f:75:d6:17:b7: ee:dd:16:61:14:4a:da:71:7d:35:54:fc:a1:a5:6f: 82:f2:78:00:63:01:af:a2:fe:8c:2c:4a:6f:36:5d: d3:fd:71:fa:1f:72:5b:c1:eb:ac:ed:96:6e:b2:d5: 5d:98:cb:62:1a:08:ea:a9:8f:c5:44:f5:12:70:00: f2:ac:76:f9:8a:ec:e5:c7:a7:48:b0:52:84:eb:6d: 03:09:84:fd:d3:86:b3:1e:40:b9:1d:58:7c:1e:f7: f6:01:83:c8:3a:85:e6:a1:89:29:e8:14:4b:0d:30: 8a:fe:f9:27:bc:76:44:fb:7c:ad:bf:77:b1:75:a5: c9:84:04:18:68:55:39:c9:54:88:0e:01:0f:5c:e4: eb:81:74:47:14:24:b4:d8:85:75:00:34:0c:f3:98: 6a:88:3e:ff:e8:11:73:58:cc:88:2c:06:45:be:6a: f9:91:fe:73:f2:04:b8:be:9c:db:b8:14:71:52:75: 90:7f:aa:7a:03:69:ad:9f:20:6f:2c:1e:f4:81:08: 5c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:3B:EA:A9:2F:92:3D:10:87:F3:24:65:3A:E9:9F:F5:73:A3:47:A1 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/sTvqqS-SPRCH8yRlOumf9XOjR6E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.47.0/24 Signature Algorithm: sha256WithRSAEncryption 25:92:50:ac:d2:61:70:a8:9c:2b:c8:aa:0d:48:87:42:b9:52: d8:53:b8:f0:5e:96:e8:d6:72:c2:96:71:1e:f8:06:04:1c:14: c6:74:83:9d:d0:ad:e2:8f:b5:45:a6:7d:2c:e0:73:41:f0:8e: 15:49:21:5a:e2:47:6a:0f:1b:f4:c3:ed:03:64:3e:61:9d:a4: c6:55:f5:83:d7:0b:43:ac:c0:6c:94:10:8e:bb:62:ce:e0:26: 20:c3:16:f1:2a:4c:1e:9a:df:ff:2f:01:ae:57:b7:f6:65:38: 73:c3:1a:e7:66:c8:8e:54:1f:46:5c:7d:fb:39:33:68:2f:85: ac:df:dc:48:3d:d2:9c:57:a0:24:b8:68:76:80:c2:0d:78:97: f0:86:a6:06:17:0e:0c:42:da:3e:cb:9f:7f:45:10:2d:7f:f7: a6:a3:4f:7d:57:e6:a0:e8:f7:86:ce:3c:cf:1e:f6:18:a7:a8: 60:cc:77:b0:18:29:10:17:86:da:43:25:9f:4b:93:03:15:21: f1:6b:21:39:07:58:f8:a2:6d:d6:1c:0e:72:e5:6d:9d:cb:b1: 68:28:37:d7:67:eb:f5:78:5f:61:ab:27:f7:d9:e7:1e:b4:38: 10:64:f6:a5:d0:ff:16:5b:2a:7b:aa:db:70:d9:59:9b:9a:63: 21:c0:53:7d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUwNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIxM0JFQUE5MkY5MjNE MTA4N0YzMjQ2NTNBRTk5RkY1NzNBMzQ3QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHxVlEmaNmh+uWFisNnD6ySoiSFybAxs3cmDWXXIJ7fEPDom3C P99RjF4qpCwRGnJKGk2ptp4/ddYXt+7dFmEUStpxfTVU/KGlb4LyeABjAa+i/ows Sm82XdP9cfofclvB66ztlm6y1V2Yy2IaCOqpj8VE9RJwAPKsdvmK7OXHp0iwUoTr bQMJhP3ThrMeQLkdWHwe9/YBg8g6heahiSnoFEsNMIr++Se8dkT7fK2/d7F1pcmE BBhoVTnJVIgOAQ9c5OuBdEcUJLTYhXUANAzzmGqIPv/oEXNYzIgsBkW+avmR/nPy BLi+nNu4FHFSdZB/qnoDaa2fIG8sHvSBCFz1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUsTvqqS+SPRCH8yRlOumf9XOjR6EwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9zVHZxcVMtU1BSQ0g4eVJsT3Vt ZjlYT2pSNkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJwEv MA0GCSqGSIb3DQEBCwUAA4IBAQAlklCs0mFwqJwryKoNSIdCuVLYU7jwXpbo1nLC lnEe+AYEHBTGdIOd0K3ij7VFpn0s4HNB8I4VSSFa4kdqDxv0w+0DZD5hnaTGVfWD 1wtDrMBslBCOu2LO4CYgwxbxKkwemt//LwGuV7f2ZThzwxrnZsiOVB9GXH37OTNo L4Ws39xIPdKcV6AkuGh2gMINeJfwhqYGFw4MQto+y59/RRAtf/emo099V+ag6PeG zjzPHvYYp6hgzHewGCkQF4baQyWfS5MDFSHxayE5B1j4om3WHA5y5W2dy7FoKDfX Z+v1eF9hqyf32ecetDgQZPal0P8WWyp7qttw2VmbmmMhwFN9 -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:18 2025 by rpki-client