$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/CQz2ENJSk2llmg3j47wimEnHEK8.roa File: CQz2ENJSk2llmg3j47wimEnHEK8.roa (raw, json) Hash identifier: 0HA/fNdRwL7dZN+d+dy4z73rR5XKMwdB6VXiNo1IVFc= Subject key identifier: 09:0C:F6:10:D2:52:93:69:65:9A:0D:E3:E3:BC:22:98:49:C7:10:AF Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0E21 Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/CQz2ENJSk2llmg3j47wimEnHEK8.roa Signing time: Fri 22 Aug 2025 09:00:53 +0000 ROA not before: Fri 22 Aug 2025 09:00:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131584 IP address blocks: 2400:4e80::/32 maxlen: 124 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3617 (0xe21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Aug 22 09:00:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=090CF610D2529369659A0DE3E3BC229849C710AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:32:54:9c:d3:61:d6:4b:ba:41:c0:e1:a3:cd: 79:55:23:1a:7f:ca:c9:df:ae:7a:5d:da:23:86:a3: 8d:3d:31:44:fe:e2:df:cd:e0:b5:16:4c:aa:3a:72: 53:81:08:ef:07:a3:02:84:78:ea:76:76:76:67:cb: c5:08:d5:02:dc:2c:48:b8:d0:df:57:07:65:a7:21: 9e:f2:e5:2b:ae:ad:de:37:9c:a8:e2:e0:35:ca:8a: 66:69:ff:3e:90:69:00:02:8c:2d:ac:f1:2e:15:9f: 84:14:a8:10:85:60:9d:db:78:3c:a5:49:ab:ff:78: 82:fc:05:b2:a0:e8:1b:b6:22:4d:58:ab:ae:23:bc: 41:51:85:c9:2c:b3:67:07:1c:2b:8e:a7:00:1b:dc: 0e:00:d5:7d:fd:ab:be:b6:eb:af:9a:18:cc:78:6d: 67:04:72:70:5e:7b:87:17:6b:61:83:c1:d0:7e:f1: 9a:3e:28:a5:98:28:10:77:19:d5:69:3e:b9:9e:37: 6c:8e:ed:fa:d0:e5:2d:c8:35:58:3a:a1:bc:00:2d: 35:59:3e:6f:a9:67:41:56:1c:dd:e2:08:25:de:67: 97:de:37:01:26:c3:c5:0d:59:3a:8f:23:4a:e6:fe: dd:06:af:b2:bc:d0:fd:15:95:a7:a6:b9:ac:60:8b: ad:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:0C:F6:10:D2:52:93:69:65:9A:0D:E3:E3:BC:22:98:49:C7:10:AF X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/CQz2ENJSk2llmg3j47wimEnHEK8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:4e80::/32 Signature Algorithm: sha256WithRSAEncryption bc:7b:a6:7a:64:39:ab:1f:29:11:6c:fe:d8:4c:0e:33:b8:d8: cf:46:e9:d0:07:6f:71:95:03:37:1d:1a:e3:1d:83:d4:f4:2b: 64:46:ac:02:4d:cb:36:56:e0:6c:4b:60:4d:d6:57:af:53:a3: 8a:be:19:fa:04:5e:a9:bd:39:a4:7e:fe:b6:7f:44:b4:08:b1: f7:4d:79:1d:91:35:90:51:8e:da:1d:66:51:31:9e:e7:6d:3d: d4:d2:d6:16:e2:ee:a3:41:36:51:e1:6a:a5:a1:15:6f:50:de: 75:19:e6:eb:7e:d3:63:d6:53:9d:03:ad:68:b2:39:00:66:e2: 32:2f:2a:c1:30:7e:4e:9e:bb:04:fc:4c:65:b1:99:c1:21:9d: 30:87:a6:16:0a:70:80:5c:75:a8:c7:f1:ca:1b:ec:80:c6:47: 06:3e:5d:95:37:5c:64:eb:6e:81:b3:8c:b5:36:61:98:b1:17: 27:9c:74:8b:4d:e1:60:6d:58:2c:a7:b5:bf:cc:a0:c4:57:37: 6e:62:c0:7b:c6:e3:38:69:96:c3:8a:7a:1b:25:28:fc:ee:35: 74:2c:3b:ec:04:a7:be:61:92:82:20:85:f3:4d:78:f1:e7:96: 4b:c6:79:6e:93:0b:e5:07:30:51:55:7a:8e:6b:31:c3:68:cd: 0e:f4:04:d6 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICDiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNTA4MjIw OTAwNTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA5MENGNjEwRDI1Mjkz Njk2NTlBMERFM0UzQkMyMjk4NDlDNzEwQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsMlSc02HWS7pBwOGjzXlVIxp/ysnfrnpd2iOGo409MUT+4t/N 4LUWTKo6clOBCO8HowKEeOp2dnZny8UI1QLcLEi40N9XB2WnIZ7y5Suurd43nKji 4DXKimZp/z6QaQACjC2s8S4Vn4QUqBCFYJ3beDylSav/eIL8BbKg6Bu2Ik1Yq64j vEFRhckss2cHHCuOpwAb3A4A1X39q76266+aGMx4bWcEcnBee4cXa2GDwdB+8Zo+ KKWYKBB3GdVpPrmeN2yO7frQ5S3INVg6obwALTVZPm+pZ0FWHN3iCCXeZ5feNwEm w8UNWTqPI0rm/t0Gr7K80P0Vlaemuaxgi62VAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUCQz2ENJSk2llmg3j47wimEnHEK8wHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L0NRejJFTkpTazJs bG1nM2o0N3dpbUVuSEVLOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAE6AMA0GCSqGSIb3DQEBCwUAA4IBAQC8e6Z6ZDmrHykRbP7YTA4zuNjP RunQB29xlQM3HRrjHYPU9CtkRqwCTcs2VuBsS2BN1levU6OKvhn6BF6pvTmkfv62 f0S0CLH3TXkdkTWQUY7aHWZRMZ7nbT3U0tYW4u6jQTZR4WqloRVvUN51GebrftNj 1lOdA61osjkAZuIyLyrBMH5OnrsE/ExlsZnBIZ0wh6YWCnCAXHWox/HKG+yAxkcG Pl2VN1xk626Bs4y1NmGYsRcnnHSLTeFgbVgsp7W/zKDEVzduYsB7xuM4aZbDinob JSj87jV0LDvsBKe+YZKCIIXzTXjx55ZLxnlukwvlBzBRVXqOazHDaM0O9ATW -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:37 2025 by rpki-client