$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/xn9ZdRh-bYI6Bf0QLPdbBq2lAj0.roa File: xn9ZdRh-bYI6Bf0QLPdbBq2lAj0.roa (raw, json) Hash identifier: t475bqIe4Pnuz3gVn2aMoor3wSKY5YPx9a3DoL0RSh4= Subject key identifier: C6:7F:59:75:18:7E:6D:82:3A:05:FD:10:2C:F7:5B:06:AD:A5:02:3D Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E16 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/xn9ZdRh-bYI6Bf0QLPdbBq2lAj0.roa Signing time: Fri 22 Aug 2025 08:51:01 +0000 ROA not before: Fri 22 Aug 2025 08:51:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 39.1.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3606 (0xe16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C67F5975187E6D823A05FD102CF75B06ADA5023D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ef:fc:9e:91:d1:06:7e:00:7f:f5:65:3c:f8: 68:90:92:b4:3b:dd:3c:6b:b3:20:72:f5:6e:c3:3e: b4:b1:99:aa:eb:e0:b7:0a:59:53:7c:14:29:ea:b2: ce:cd:ea:51:85:61:17:2d:e7:8a:7e:8c:93:68:4e: 7c:a1:d0:80:f2:e4:8d:3e:ad:c9:6f:1d:28:0c:1f: 37:9e:4d:2f:eb:ae:7e:6f:40:6e:2c:aa:ba:75:e4: ad:5e:c6:ea:7c:39:27:ad:7e:24:b4:b5:e2:ba:8e: f3:12:23:c5:70:68:6a:86:51:16:77:1a:bd:f8:89: ea:b8:50:5b:3d:5e:cb:32:55:cd:3a:7d:9d:8c:bd: 1c:ae:91:30:ab:47:fa:40:ef:17:e2:fc:0f:f0:46: b5:0d:ae:cb:13:a3:4a:19:27:5d:46:be:49:d5:bc: 0f:8c:34:62:50:74:5d:74:85:cb:5b:d3:16:b3:87: 8f:47:8f:92:9d:5d:11:40:8c:a2:01:12:ab:44:bc: 09:8d:e1:d6:f3:cd:bb:8f:67:ef:ea:db:2a:42:59: 25:94:0a:fc:63:f8:42:07:53:7e:be:30:63:5a:eb: a5:09:f7:4b:36:36:c8:9f:93:f4:16:93:a0:c9:5d: 96:3d:3c:40:66:c6:60:a7:ec:79:fc:3e:8e:d4:fd: cf:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:7F:59:75:18:7E:6D:82:3A:05:FD:10:2C:F7:5B:06:AD:A5:02:3D X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/xn9ZdRh-bYI6Bf0QLPdbBq2lAj0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.0.0/20 Signature Algorithm: sha256WithRSAEncryption cb:67:65:8e:9c:2e:89:39:67:42:dc:3e:df:15:ac:4e:9e:9e: 2d:aa:f1:df:e0:ae:58:56:3e:10:3a:15:29:9f:a4:0b:eb:f5: 80:aa:63:4f:00:bf:b6:40:0d:63:02:d9:6d:37:1b:ab:e2:f4: 8d:cd:38:17:fd:bf:5e:99:45:2d:51:be:d4:f5:08:ba:2d:f7: 35:4a:be:e4:ee:98:ee:25:f0:3d:00:59:c7:ef:49:fa:8d:2f: 01:ca:73:e2:a1:73:2f:04:e8:11:28:a2:56:f9:5e:00:82:39: 79:82:c7:18:c1:1d:42:b1:44:67:46:23:b9:61:79:67:16:68: 4f:af:7d:b4:d8:bb:02:9f:65:1d:26:ab:c8:f2:96:ac:b2:e9: 19:df:f8:e6:80:c3:05:8c:c9:b7:21:6e:b1:78:9b:05:c3:8b: ba:0f:ad:12:dd:71:cd:47:19:d9:f0:ef:d1:6a:f3:05:3e:f8: c3:80:07:45:0c:bd:07:69:4b:f9:66:dd:22:c1:26:46:6d:a2: a4:40:dd:e0:44:d4:f6:0b:31:09:1f:2b:92:eb:a1:95:e3:ba: 8d:60:f9:4b:66:e3:2a:2a:3c:5f:a8:dc:9b:fa:f1:30:81:6f: c0:e6:b7:ef:3d:25:25:dc:62:b2:84:10:31:f4:25:08:c6:b5: 2c:3a:71:00 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM2N0Y1OTc1MTg3RTZE ODIzQTA1RkQxMDJDRjc1QjA2QURBNTAyM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt7/yekdEGfgB/9WU8+GiQkrQ73TxrsyBy9W7DPrSxmarr4LcK WVN8FCnqss7N6lGFYRct54p+jJNoTnyh0IDy5I0+rclvHSgMHzeeTS/rrn5vQG4s qrp15K1exup8OSetfiS0teK6jvMSI8VwaGqGURZ3Gr34ieq4UFs9XssyVc06fZ2M vRyukTCrR/pA7xfi/A/wRrUNrssTo0oZJ11GvknVvA+MNGJQdF10hctb0xazh49H j5KdXRFAjKIBEqtEvAmN4dbzzbuPZ+/q2ypCWSWUCvxj+EIHU36+MGNa66UJ90s2 Nsifk/QWk6DJXZY9PEBmxmCn7Hn8Po7U/c9tAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUxn9ZdRh+bYI6Bf0QLPdbBq2lAj0wHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC94bjlaZFJoLWJZSTZCZjBRTFBk YkJxMmxBajAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEJwEA MA0GCSqGSIb3DQEBCwUAA4IBAQDLZ2WOnC6JOWdC3D7fFaxOnp4tqvHf4K5YVj4Q OhUpn6QL6/WAqmNPAL+2QA1jAtltNxur4vSNzTgX/b9emUUtUb7U9Qi6Lfc1Sr7k 7pjuJfA9AFnH70n6jS8BynPioXMvBOgRKKJW+V4Agjl5gscYwR1CsURnRiO5YXln FmhPr3202LsCn2UdJqvI8passukZ3/jmgMMFjMm3IW6xeJsFw4u6D60S3XHNRxnZ 8O/RavMFPvjDgAdFDL0HaUv5Zt0iwSZGbaKkQN3gRNT2CzEJHyuS66GV47qNYPlL ZuMqKjxfqNyb+vEwgW/A5rfvPSUl3GKyhBAx9CUIxrUsOnEA -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:10 2025 by rpki-client