$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/EPCgWPVianmczfUF3RG7eiMWV3o.roa File: EPCgWPVianmczfUF3RG7eiMWV3o.roa (raw, json) Hash identifier: AwLXRqXosy8RgfZmoqXg8LOyeU1E3qc/GbHXF4+TxJA= Subject key identifier: 10:F0:A0:58:F5:62:6A:79:9C:CD:F5:05:DD:11:BB:7A:23:16:57:7A Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0E22 Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/EPCgWPVianmczfUF3RG7eiMWV3o.roa Signing time: Fri 22 Aug 2025 09:00:54 +0000 ROA not before: Fri 22 Aug 2025 09:00:54 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131584 IP address blocks: 111.235.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3618 (0xe22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Aug 22 09:00:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=10F0A058F5626A799CCDF505DD11BB7A2316577A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:71:54:d1:6d:f6:c9:31:0a:cf:bb:5b:70:7d: 0d:ee:bc:35:5f:fd:76:1f:bf:db:74:ff:dd:d7:ee: 8e:73:2e:25:2b:41:a0:b1:f3:56:04:0b:e4:3e:dc: b3:0c:16:5a:2c:2e:ed:a6:6c:79:24:e9:2d:08:cc: 93:49:0d:63:a3:09:02:0f:34:30:00:82:c2:c9:93: 26:84:13:89:a3:ac:60:14:76:3e:ff:b2:a7:21:bb: 78:5a:1c:59:99:c6:6b:de:9d:39:25:90:1b:5a:e5: 83:d8:9e:1a:d9:27:09:d3:0e:26:2d:89:77:c7:f7: 40:07:d3:78:ac:61:d2:5b:11:5c:aa:e8:62:19:d6: d6:f9:53:ef:72:22:41:d7:eb:f3:03:14:db:f8:77: af:c2:ad:30:62:bf:29:4f:fd:02:f3:49:c0:92:05: c6:3c:b4:12:94:04:20:1c:16:58:8c:a9:73:14:b3: a7:23:d7:bc:c4:29:ad:59:36:47:74:b1:3a:0e:fe: b9:72:c5:53:36:0c:d4:fc:10:50:f0:19:19:f3:2c: e9:26:0f:9a:6a:bf:2a:bc:81:be:e2:58:a9:62:9a: f7:c7:45:ee:d7:18:85:02:04:96:24:5d:73:b0:a5: b5:9e:fe:5a:a7:96:9a:f8:30:5f:bf:f1:30:65:d9: 97:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F0:A0:58:F5:62:6A:79:9C:CD:F5:05:DD:11:BB:7A:23:16:57:7A X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/EPCgWPVianmczfUF3RG7eiMWV3o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 111.235.192.0/18 Signature Algorithm: sha256WithRSAEncryption bb:50:4b:28:2e:a5:b3:a4:40:7a:dd:6a:7a:bc:37:92:7c:f3: ce:df:f9:30:b3:30:d0:41:78:a0:14:fb:0e:b5:a8:a9:c4:ad: f8:77:fd:ea:32:f3:51:c8:3e:ae:5a:ce:87:67:2d:ba:a8:de: a1:8a:72:2c:a8:b4:58:5a:1d:3e:74:58:72:b8:03:09:3f:07: 9c:75:5f:76:2a:95:66:7e:2d:65:ed:eb:a3:63:43:a4:e4:6c: 36:17:31:a8:ab:24:70:ad:b4:af:ca:aa:67:f8:73:66:e2:c4: ca:3c:1c:26:37:38:01:38:e2:a2:3b:81:bd:42:22:29:52:69: 9b:c2:31:37:9f:01:e6:a4:9f:8a:d8:b5:94:03:54:66:a1:0e: f3:19:b9:6b:90:c6:b8:44:5c:31:71:18:d4:49:d7:a7:56:31: 1d:27:b8:49:e3:e3:1b:c3:a2:74:b2:6c:d6:ce:df:93:cb:44: b2:cd:a9:5a:33:ec:a3:b8:bf:1c:c7:32:74:c4:70:d3:eb:c7: 88:0b:3a:be:3e:02:21:66:96:ef:81:d7:aa:f1:0d:1e:f0:66: 12:fc:24:f7:72:41:e7:5a:71:6b:ef:a6:b8:ef:c9:8e:7b:f0: ae:e1:5e:b1:ae:b0:35:6c:28:c1:92:1b:f2:7e:c1:d4:f2:93: 6f:08:6e:37 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDiIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNTA4MjIw OTAwNTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDEwRjBBMDU4RjU2MjZB Nzk5Q0NERjUwNUREMTFCQjdBMjMxNjU3N0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXcVTRbfbJMQrPu1twfQ3uvDVf/XYfv9t0/93X7o5zLiUrQaCx 81YEC+Q+3LMMFlosLu2mbHkk6S0IzJNJDWOjCQIPNDAAgsLJkyaEE4mjrGAUdj7/ sqchu3haHFmZxmvenTklkBta5YPYnhrZJwnTDiYtiXfH90AH03isYdJbEVyq6GIZ 1tb5U+9yIkHX6/MDFNv4d6/CrTBivylP/QLzScCSBcY8tBKUBCAcFliMqXMUs6cj 17zEKa1ZNkd0sToO/rlyxVM2DNT8EFDwGRnzLOkmD5pqvyq8gb7iWKlimvfHRe7X GIUCBJYkXXOwpbWe/lqnlpr4MF+/8TBl2ZenAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUEPCgWPVianmczfUF3RG7eiMWV3owHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L0VQQ2dXUFZpYW5t Y3pmVUYzUkc3ZWlNV1Yzby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZv68AwDQYJKoZIhvcNAQELBQADggEBALtQSygupbOkQHrdanq8N5J8887f +TCzMNBBeKAU+w61qKnErfh3/eoy81HIPq5azodnLbqo3qGKciyotFhaHT50WHK4 Awk/B5x1X3YqlWZ+LWXt66NjQ6TkbDYXMairJHCttK/Kqmf4c2bixMo8HCY3OAE4 4qI7gb1CIilSaZvCMTefAeakn4rYtZQDVGahDvMZuWuQxrhEXDFxGNRJ16dWMR0n uEnj4xvDonSybNbO35PLRLLNqVoz7KO4vxzHMnTEcNPrx4gLOr4+AiFmlu+B16rx DR7wZhL8JPdyQedacWvvprjvyY578K7hXrGusDVsKMGSG/J+wdTyk28Ibjc= -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:20 2025 by rpki-client