$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/Dh42fbm8p5DYhNStik-b_ijy89M.roa File: Dh42fbm8p5DYhNStik-b_ijy89M.roa (raw, json) Hash identifier: 9jOx4gvDfFAkjdiVh/k0MOJWZlw6f+L/TC5nToP1hSs= Subject key identifier: 0E:1E:36:7D:B9:BC:A7:90:D8:84:D4:AD:8A:4F:9B:FE:28:F2:F3:D3 Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0DD1 Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/Dh42fbm8p5DYhNStik-b_ijy89M.roa Signing time: Fri 22 Aug 2025 08:55:10 +0000 ROA not before: Fri 22 Aug 2025 08:55:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4783 IP address blocks: 210.67.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3537 (0xdd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: Aug 22 08:55:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0E1E367DB9BCA790D884D4AD8A4F9BFE28F2F3D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6b:fb:70:75:ef:3f:33:3c:74:4f:9c:07:d6: a1:31:d9:ba:c0:75:58:8c:07:49:32:23:95:b0:f8: 8e:a1:84:a7:6b:7e:c7:a2:af:6d:5d:68:34:b8:ee: c0:7e:d1:0e:36:03:b2:c2:ce:fe:b9:f4:14:0f:fe: 76:f7:d4:6f:b7:51:2e:2e:8b:ad:6a:19:bf:68:24: 7c:7c:87:c9:10:e7:9c:83:1a:97:ba:29:bb:bc:7a: 44:36:96:90:50:85:e3:35:3d:05:b0:49:f6:7c:ca: 07:aa:ab:a5:f7:61:e5:30:97:2a:b9:ab:e5:63:39: cb:67:34:26:db:a3:99:6b:34:a8:50:42:f7:65:f9: 13:2f:d1:3b:34:33:f8:c8:2e:4c:86:7e:54:98:2f: a1:ce:4d:22:b7:e9:ba:d6:56:b2:55:d5:b9:81:c6: 89:ff:dd:b5:02:d7:5c:76:d3:76:eb:29:6a:22:8f: 09:8c:f5:a8:58:b7:08:be:3e:19:64:f3:b5:ba:02: a5:82:95:08:54:3f:81:5d:35:cd:72:c7:d4:8a:a8: 64:c0:71:c3:6a:08:be:83:d4:fb:18:48:c6:f5:0e: e3:90:11:e2:d8:d9:3a:24:db:90:b9:f2:64:59:be: fa:5a:17:4c:97:0a:0d:7c:f1:db:02:6d:cd:00:af: 26:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1E:36:7D:B9:BC:A7:90:D8:84:D4:AD:8A:4F:9B:FE:28:F2:F3:D3 X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/Dh42fbm8p5DYhNStik-b_ijy89M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.128.0/21 Signature Algorithm: sha256WithRSAEncryption 0e:9e:c0:f1:87:17:06:19:53:e0:96:67:ec:5d:a7:f8:c3:5f: 25:ff:52:cc:44:34:65:3e:b9:a3:e7:61:8f:fd:ab:df:91:dd: ed:92:2e:d2:0d:c6:76:db:ff:b8:f3:7d:6e:67:ee:0a:ac:cf: aa:64:8b:9e:95:38:a5:b6:c4:d4:6f:56:a9:11:c8:0d:dd:68: 95:d4:60:6e:d1:40:d8:fb:70:95:e5:53:23:a7:8e:40:af:23: 5b:ab:93:91:7c:fc:06:b3:f4:32:fd:dc:04:4d:be:b6:59:d3: 6d:7b:1d:2f:7f:29:c5:96:fa:2e:0d:a4:12:ed:c0:9d:a6:c2: a9:f7:f3:63:a6:9e:74:57:3e:4e:5f:10:04:e6:cb:bb:93:db: 85:6d:7f:7b:98:50:a0:7f:d0:65:62:9f:7e:cf:ae:9d:92:c5: 1e:e9:16:bd:c3:50:87:9b:d4:7b:c3:64:80:23:6c:5e:83:6b: c9:17:03:d3:0a:15:7f:ba:85:d3:74:92:11:ff:73:ec:84:06: ad:6a:ff:43:df:e9:e2:7f:60:06:09:a0:09:c6:e2:c4:e5:53: ce:89:02:09:b8:a5:30:03:6f:26:3d:40:2a:2d:4f:81:ff:ff: 9e:a5:3e:24:2e:7e:9b:a0:07:a1:e3:b5:60:28:9a:15:11:40: 48:db:2d:2b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDdEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA4MjIw ODU1MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBFMUUzNjdEQjlCQ0E3 OTBEODg0RDRBRDhBNEY5QkZFMjhGMkYzRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLa/twde8/Mzx0T5wH1qEx2brAdViMB0kyI5Ww+I6hhKdrfsei r21daDS47sB+0Q42A7LCzv659BQP/nb31G+3US4ui61qGb9oJHx8h8kQ55yDGpe6 Kbu8ekQ2lpBQheM1PQWwSfZ8ygeqq6X3YeUwlyq5q+VjOctnNCbbo5lrNKhQQvdl +RMv0Ts0M/jILkyGflSYL6HOTSK36brWVrJV1bmBxon/3bUC11x203brKWoijwmM 9ahYtwi+Phlk87W6AqWClQhUP4FdNc1yx9SKqGTAccNqCL6D1PsYSMb1DuOQEeLY 2Tok25C58mRZvvpaF0yXCg188dsCbc0ArybXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDh42fbm8p5DYhNStik+b/ijy89MwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL0RoNDJmYm04cDVEWWhOU3Rp ay1iX2lqeTg5TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPS Q4AwDQYJKoZIhvcNAQELBQADggEBAA6ewPGHFwYZU+CWZ+xdp/jDXyX/UsxENGU+ uaPnYY/9q9+R3e2SLtINxnbb/7jzfW5n7gqsz6pki56VOKW2xNRvVqkRyA3daJXU YG7RQNj7cJXlUyOnjkCvI1urk5F8/Aaz9DL93ARNvrZZ0217HS9/KcWW+i4NpBLt wJ2mwqn382OmnnRXPk5fEATmy7uT24Vtf3uYUKB/0GVin37Prp2SxR7pFr3DUIeb 1HvDZIAjbF6Da8kXA9MKFX+6hdN0khH/c+yEBq1q/0Pf6eJ/YAYJoAnG4sTlU86J Agm4pTADbyY9QCotT4H//56lPiQufpugB6HjtWAomhURQEjbLSs= -----END CERTIFICATE-----Generated at Sun Aug 24 13:36:50 2025 by rpki-client