$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/tBGhpIupM7lkE9fnnRKX5Ug5c2Y.roa File: tBGhpIupM7lkE9fnnRKX5Ug5c2Y.roa (raw, json) Hash identifier: sQkHCs4MFnWtWLqWrePOp47szTBDGUNw4tmIoaPmyV8= Subject key identifier: B4:11:A1:A4:8B:A9:33:B9:64:13:D7:E7:9D:12:97:E5:48:39:73:66 Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0E17 Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/tBGhpIupM7lkE9fnnRKX5Ug5c2Y.roa Signing time: Fri 22 Aug 2025 09:00:51 +0000 ROA not before: Fri 22 Aug 2025 09:00:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 101.3.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3607 (0xe17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Aug 22 09:00:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B411A1A48BA933B96413D7E79D1297E548397366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:93:4e:2e:20:54:27:85:d3:6b:c7:10:48:53: 63:3c:0d:1b:05:ca:f1:4b:97:5b:6f:90:7e:26:67: 5f:2f:64:25:3e:14:be:0b:8f:57:b9:ea:b1:5b:41: eb:f6:65:e1:13:6f:47:17:ee:c6:d2:15:f7:c9:7c: 22:a3:84:ae:5b:9b:94:e3:43:c8:48:09:51:3f:d0: f5:4f:22:82:a3:fd:46:9d:d6:4b:4a:ed:65:70:7a: fb:d4:0b:af:e6:14:17:56:0b:df:f8:37:5a:53:7c: 6e:15:fd:47:96:7c:a6:81:82:fc:be:5d:c3:69:78: 6a:dc:dc:dc:16:0e:4d:82:ce:af:b9:91:c0:cc:f8: b0:68:35:97:c7:74:da:86:8c:f7:f5:07:1a:23:d2: b4:61:17:44:ae:41:90:7d:39:a6:d9:7d:4e:ef:82: 05:66:3d:97:aa:7a:8f:fd:69:f2:3c:9a:38:bd:86: 2a:c1:b0:20:8c:f3:05:b3:bf:56:1c:c1:4a:4b:51: 34:b8:33:c5:56:19:28:c2:5b:76:cd:91:4a:37:06: ce:6a:4d:34:9f:4e:14:67:d2:18:82:73:ee:55:c4: a6:ec:bc:c3:d8:66:4e:3a:fd:1a:82:0f:dc:71:ab: 2b:1b:aa:09:bd:f1:2a:33:54:19:84:cd:bd:4d:0e: bb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:11:A1:A4:8B:A9:33:B9:64:13:D7:E7:9D:12:97:E5:48:39:73:66 X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/tBGhpIupM7lkE9fnnRKX5Ug5c2Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.3.192.0/20 Signature Algorithm: sha256WithRSAEncryption 59:a5:53:4e:90:0b:a3:39:e4:17:39:ab:c8:22:8a:d7:7f:34: 7f:62:b9:34:e3:93:13:fe:40:88:e1:18:f6:59:90:b4:78:41: a5:b9:26:bd:53:ed:99:ac:7c:ff:45:30:9c:fd:37:ee:c6:95: 77:7c:c4:5e:24:79:a4:58:02:4d:c6:d9:ea:a3:ba:da:a4:50: 47:8a:50:89:a4:af:a7:cb:fa:51:58:5c:e8:95:3d:98:29:87: 27:ac:43:12:82:9b:4b:9c:ba:19:d7:c8:20:e5:d0:98:d3:bd: a2:26:cd:ef:26:94:59:e1:1a:2b:a4:37:ef:91:0b:e9:d6:28: 58:5c:a9:dd:75:d6:0c:e6:8e:c2:d4:30:ac:6f:47:1a:75:98: 2f:c8:75:1b:a3:52:b0:31:f7:6c:b6:59:a0:82:21:46:cb:cd: 42:d4:f5:79:41:7a:cf:9f:a8:6f:b0:76:a4:ec:c4:39:ef:d7: 0e:c4:09:8d:3e:3c:4e:4c:74:04:64:a4:9c:03:44:dc:a5:9f: 9d:8b:7e:06:5d:08:1d:f5:11:fa:ba:8f:7c:b0:55:d5:64:cc: 52:2c:08:56:d2:4c:94:03:12:2c:35:f6:c5:c8:39:99:be:af: 1f:10:3c:00:60:aa:57:7a:fa:37:d9:cd:79:82:df:76:8c:f8: 8b:b2:82:d8 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDhcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNTA4MjIw OTAwNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI0MTFBMUE0OEJBOTMz Qjk2NDEzRDdFNzlEMTI5N0U1NDgzOTczNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVk04uIFQnhdNrxxBIU2M8DRsFyvFLl1tvkH4mZ18vZCU+FL4L j1e56rFbQev2ZeETb0cX7sbSFffJfCKjhK5bm5TjQ8hICVE/0PVPIoKj/Uad1ktK 7WVwevvUC6/mFBdWC9/4N1pTfG4V/UeWfKaBgvy+XcNpeGrc3NwWDk2Czq+5kcDM +LBoNZfHdNqGjPf1Bxoj0rRhF0SuQZB9OabZfU7vggVmPZeqeo/9afI8mji9hirB sCCM8wWzv1YcwUpLUTS4M8VWGSjCW3bNkUo3Bs5qTTSfThRn0hiCc+5VxKbsvMPY Zk46/RqCD9xxqysbqgm98SozVBmEzb1NDrs3AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUtBGhpIupM7lkE9fnnRKX5Ug5c2YwHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L3RCR2hwSXVwTTds a0U5Zm5uUktYNVVnNWMyWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARlA8AwDQYJKoZIhvcNAQELBQADggEBAFmlU06QC6M55Bc5q8giitd/NH9i uTTjkxP+QIjhGPZZkLR4QaW5Jr1T7ZmsfP9FMJz9N+7GlXd8xF4keaRYAk3G2eqj utqkUEeKUImkr6fL+lFYXOiVPZgphyesQxKCm0ucuhnXyCDl0JjTvaImze8mlFnh GiukN++RC+nWKFhcqd111gzmjsLUMKxvRxp1mC/IdRujUrAx92y2WaCCIUbLzULU 9XlBes+fqG+wdqTsxDnv1w7ECY0+PE5MdARkpJwDRNyln52LfgZdCB31Efq6j3yw VdVkzFIsCFbSTJQDEiw19sXIOZm+rx8QPABgqld6+jfZzXmC33aM+Iuygtg= -----END CERTIFICATE-----Generated at Sun Aug 24 09:17:45 2025 by rpki-client