$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/jvVYoO-jlxL_sYml_jhZ-uf52iA.roa File: jvVYoO-jlxL_sYml_jhZ-uf52iA.roa (raw, json) Hash identifier: qqInKcjt+6FGf8d8yStzBxDSv735U3z1kVGRI4Pr9Us= Subject key identifier: 8E:F5:58:A0:EF:A3:97:12:FF:B1:89:A5:FE:38:59:FA:E7:F9:DA:20 Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0DD6 Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/jvVYoO-jlxL_sYml_jhZ-uf52iA.roa Signing time: Fri 22 Aug 2025 08:55:11 +0000 ROA not before: Fri 22 Aug 2025 08:55:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 213430 IP address blocks: 210.67.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3542 (0xdd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: Aug 22 08:55:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8EF558A0EFA39712FFB189A5FE3859FAE7F9DA20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1f:68:64:d1:d2:ff:3c:89:c2:6a:53:6a:05: 8d:05:4a:08:ad:c8:5a:c2:01:7d:68:93:f4:31:13: a6:b1:8c:ce:14:a2:9e:72:24:c2:37:d3:86:8a:f2: 16:de:72:71:80:47:87:2e:57:f9:d4:66:fa:c6:f1: a1:22:1a:2e:49:41:1c:1f:f0:ae:b2:33:20:cb:50: fb:2d:ab:ec:f7:89:1d:9a:63:12:83:84:2f:63:ab: e4:8f:e2:fb:2e:7f:dc:3d:38:e5:7d:e7:62:09:ee: 7b:2a:c1:8a:ff:9d:84:1e:e0:46:68:3e:19:f2:d1: e6:c6:ca:3e:69:db:e2:9f:37:b8:63:6a:3b:ab:bf: 27:08:c1:98:fe:2e:d9:6e:a2:68:0a:89:a6:59:88: 3e:6a:eb:cf:01:24:5c:8d:5d:31:d9:43:e8:4c:b3: 40:f3:9d:bb:bd:31:a1:ca:28:4a:d1:82:f3:35:e0: 31:b8:47:8c:d0:22:ae:e0:11:67:b5:5c:5b:6c:0b: 12:e8:03:30:95:84:3a:c5:e7:0b:7d:f1:0e:23:4c: 04:3f:25:e2:ca:5a:81:9e:1d:b1:26:71:86:27:1b: c1:65:f7:59:ba:3d:4f:e6:d3:5e:51:5d:3d:8e:38: 0b:66:5e:61:fc:be:68:65:71:a9:06:22:91:f5:9f: 15:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F5:58:A0:EF:A3:97:12:FF:B1:89:A5:FE:38:59:FA:E7:F9:DA:20 X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/jvVYoO-jlxL_sYml_jhZ-uf52iA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.140.0/22 Signature Algorithm: sha256WithRSAEncryption ac:62:4d:80:ac:d9:f6:d8:61:52:06:58:7f:ef:5c:69:de:34: 14:83:16:6a:b1:32:ba:d5:bd:18:e7:c3:04:87:0b:f9:29:e8: 31:d3:9f:b9:26:d4:00:08:2a:3a:87:be:3d:96:2f:7b:73:74: 5b:9b:69:c2:af:c9:27:d6:18:14:e8:73:f1:02:6a:2e:6f:78: 13:a0:1b:b1:62:53:1f:c8:20:b1:8e:f9:4d:58:cc:44:a5:66: 58:11:7f:7d:5d:4e:d2:54:a5:c0:be:a8:01:59:72:9b:54:5c: 30:fe:ff:ea:19:90:c5:b4:f7:a0:00:f9:88:e6:6f:5b:5a:11: 27:38:fd:6a:98:ea:7d:e9:e1:75:90:13:b1:24:58:33:f9:ac: bb:2c:b0:52:b6:05:4d:39:0c:36:e5:fb:2a:60:63:ec:09:6c: 1e:3c:4f:52:81:a0:08:1c:a4:64:52:59:e3:9d:6d:87:c6:08: 22:9e:76:85:05:18:16:f5:8c:45:e6:35:95:d8:9d:9f:99:16: 7a:1b:71:12:6d:c3:4a:65:08:f2:36:d1:5c:47:be:27:cc:65: 49:25:e8:a5:41:0a:22:93:57:96:62:ad:f5:da:b1:88:88:e8: 80:ca:90:c4:fe:64:63:5e:ac:94:87:b3:c9:34:ab:11:85:3f: fb:37:e0:29 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDdYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA4MjIw ODU1MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFRjU1OEEwRUZBMzk3 MTJGRkIxODlBNUZFMzg1OUZBRTdGOURBMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiH2hk0dL/PInCalNqBY0FSgityFrCAX1ok/QxE6axjM4Uop5y JMI304aK8hbecnGAR4cuV/nUZvrG8aEiGi5JQRwf8K6yMyDLUPstq+z3iR2aYxKD hC9jq+SP4vsuf9w9OOV952IJ7nsqwYr/nYQe4EZoPhny0ebGyj5p2+KfN7hjajur vycIwZj+LtluomgKiaZZiD5q688BJFyNXTHZQ+hMs0Dznbu9MaHKKErRgvM14DG4 R4zQIq7gEWe1XFtsCxLoAzCVhDrF5wt98Q4jTAQ/JeLKWoGeHbEmcYYnG8Fl91m6 PU/m015RXT2OOAtmXmH8vmhlcakGIpH1nxUPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjvVYoO+jlxL/sYml/jhZ+uf52iAwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL2p2VllvTy1qbHhMX3NZbWxf amhaLXVmNTJpQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALS Q4wwDQYJKoZIhvcNAQELBQADggEBAKxiTYCs2fbYYVIGWH/vXGneNBSDFmqxMrrV vRjnwwSHC/kp6DHTn7km1AAIKjqHvj2WL3tzdFubacKvySfWGBToc/ECai5veBOg G7FiUx/IILGO+U1YzESlZlgRf31dTtJUpcC+qAFZcptUXDD+/+oZkMW096AA+Yjm b1taESc4/WqY6n3p4XWQE7EkWDP5rLsssFK2BU05DDbl+ypgY+wJbB48T1KBoAgc pGRSWeOdbYfGCCKedoUFGBb1jEXmNZXYnZ+ZFnobcRJtw0plCPI20VxHvifMZUkl 6KVBCiKTV5ZirfXasYiI6IDKkMT+ZGNerJSHs8k0qxGFP/s34Ck= -----END CERTIFICATE-----Generated at Sun Aug 24 13:35:54 2025 by rpki-client