$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYVC/JSVpDCofBtGtBRwEA9DRu3szGSM.roa File: JSVpDCofBtGtBRwEA9DRu3szGSM.roa (raw, json) Hash identifier: ZWtcS0iPkjoRjUPoPAYTRf6Exn4J0Rpt0CEHhiwkK6g= Subject key identifier: 25:25:69:0C:2A:1F:06:D1:AD:05:1C:04:03:D0:D1:BB:7B:33:19:23 Certificate issuer: /CN=7448D66FF329D2945C52EA01A567578B50026717 Certificate serial: 03BF Authority key identifier: 74:48:D6:6F:F3:29:D2:94:5C:52:EA:01:A5:67:57:8B:50:02:67:17 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/JSVpDCofBtGtBRwEA9DRu3szGSM.roa Signing time: Fri 22 Aug 2025 08:57:44 +0000 ROA not before: Fri 22 Aug 2025 08:57:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7483 IP address blocks: 2400:63e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 959 (0x3bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7448D66FF329D2945C52EA01A567578B50026717 Validity Not Before: Aug 22 08:57:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2525690C2A1F06D1AD051C0403D0D1BB7B331923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d2:88:51:50:94:0d:f1:cf:60:a2:3b:d7:37: fd:bd:f6:f9:fc:7a:af:43:0c:c1:f8:90:47:29:ba: 78:87:f5:b5:87:92:eb:0e:be:ae:6b:c2:5d:f4:dc: 44:41:67:9b:9a:0b:ee:6c:50:56:59:18:1d:d7:ea: a0:cc:4a:a8:fa:03:fe:59:71:29:72:be:3a:00:b3: ab:2e:27:90:21:b8:bb:60:37:a1:91:0a:11:1f:5b: 11:14:ae:6c:d9:87:ad:07:a8:07:75:51:14:60:90: d6:e1:74:e9:30:95:08:e4:0e:cc:18:e4:9d:e3:45: 6a:14:74:13:87:8d:60:ca:6b:ff:da:d5:41:91:75: d5:06:5e:b2:f1:65:93:45:ff:b0:11:0e:97:89:fd: 8f:43:c1:3a:2d:a0:46:6e:7c:a5:af:71:4e:4a:a7: 5a:83:9d:0b:d9:a0:f4:03:4a:da:6f:17:50:4e:c2: a7:7d:af:4d:16:91:18:28:62:a3:6f:a7:01:68:6b: cd:11:32:81:e6:54:ab:89:ff:35:07:22:2f:87:e4: 1a:c3:b6:6f:44:af:0b:27:91:1c:47:2b:10:da:f4: ac:c0:8b:b5:2c:9c:13:21:c4:9d:b7:5e:cf:ee:39: cf:7f:34:a9:12:9c:b3:4e:13:69:42:99:18:36:0d: 1a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:25:69:0C:2A:1F:06:D1:AD:05:1C:04:03:D0:D1:BB:7B:33:19:23 X509v3 Authority Key Identifier: keyid:74:48:D6:6F:F3:29:D2:94:5C:52:EA:01:A5:67:57:8B:50:02:67:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/JSVpDCofBtGtBRwEA9DRu3szGSM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:63e0::/32 Signature Algorithm: sha256WithRSAEncryption 77:cb:95:e5:ff:cf:02:2d:66:ca:a0:a3:58:01:16:1d:b2:3e: f9:6f:80:0b:90:d6:c0:89:36:16:57:27:e6:20:cf:5e:28:f6: 56:9a:52:98:37:d3:ba:f9:71:4f:96:7e:05:43:99:61:be:b3: 55:47:78:32:9c:1b:2c:c5:30:56:5f:c7:12:9c:db:37:5a:59: fd:3b:71:9e:43:38:50:0a:95:73:77:fa:93:fb:96:e3:bf:a7: fc:10:ca:d5:88:9c:4e:45:c3:f7:81:35:2b:76:f3:66:a4:9c: 90:4e:fe:87:c3:c0:c2:97:0f:3c:57:be:d5:27:a5:a4:27:02: c0:c7:9d:94:5c:f2:14:69:56:68:c5:91:c4:5d:b2:aa:92:44: f1:06:6d:d1:ef:16:5d:ed:37:8d:80:30:fa:e5:cf:73:55:38: ef:79:03:17:f7:14:e3:33:32:ec:51:c8:73:9d:a2:fc:e4:49: 93:c3:66:d0:95:36:c3:3a:84:30:d4:c1:95:c1:d1:84:3a:d3: 5a:6f:06:a3:53:7e:b4:58:70:ea:c3:c8:4c:d3:7c:27:f6:44: 23:90:cb:4c:96:10:85:8a:c7:dc:1f:be:13:36:1b:ea:f0:e2: ad:74:56:8b:ac:8f:89:b4:0c:d1:e1:4f:97:3f:3e:5a:e8:a5: 31:69:7b:a5 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICA78wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzQ0 OEQ2NkZGMzI5RDI5NDVDNTJFQTAxQTU2NzU3OEI1MDAyNjcxNzAeFw0yNTA4MjIw ODU3NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI1MjU2OTBDMkExRjA2 RDFBRDA1MUMwNDAzRDBEMUJCN0IzMzE5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy0ohRUJQN8c9gojvXN/299vn8eq9DDMH4kEcpuniH9bWHkusO vq5rwl303ERBZ5uaC+5sUFZZGB3X6qDMSqj6A/5ZcSlyvjoAs6suJ5AhuLtgN6GR ChEfWxEUrmzZh60HqAd1URRgkNbhdOkwlQjkDswY5J3jRWoUdBOHjWDKa//a1UGR ddUGXrLxZZNF/7ARDpeJ/Y9DwTotoEZufKWvcU5Kp1qDnQvZoPQDStpvF1BOwqd9 r00WkRgoYqNvpwFoa80RMoHmVKuJ/zUHIi+H5BrDtm9ErwsnkRxHKxDa9KzAi7Us nBMhxJ23Xs/uOc9/NKkSnLNOE2lCmRg2DRorAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUJSVpDCofBtGtBRwEA9DRu3szGSMwHwYDVR0jBBgwFoAUdEjWb/Mp0pRcUuoB pWdXi1ACZxcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lWQy9k RWpXYl9NcDBwUmNVdW9CcFdkWGkxQUNaeGMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2RFaldiX01wMHBSY1V1b0JwV2RYaTFBQ1p4Yy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NZVkMvSlNWcERDb2ZCdEd0QlJ3RUE5RFJ1 M3N6R1NNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAY+Aw DQYJKoZIhvcNAQELBQADggEBAHfLleX/zwItZsqgo1gBFh2yPvlvgAuQ1sCJNhZX J+Ygz14o9laaUpg307r5cU+WfgVDmWG+s1VHeDKcGyzFMFZfxxKc2zdaWf07cZ5D OFAKlXN3+pP7luO/p/wQytWInE5Fw/eBNSt282aknJBO/ofDwMKXDzxXvtUnpaQn AsDHnZRc8hRpVmjFkcRdsqqSRPEGbdHvFl3tN42AMPrlz3NVOO95Axf3FOMzMuxR yHOdovzkSZPDZtCVNsM6hDDUwZXB0YQ601pvBqNTfrRYcOrDyEzTfCf2RCOQy0yW EIWKx9wfvhM2G+rw4q10Vousj4m0DNHhT5c/PlropTFpe6U= -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:05 2025 by rpki-client