$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/kY3dPOVnkxbfZxvdqBh_L7OUHh8.roa File: kY3dPOVnkxbfZxvdqBh_L7OUHh8.roa (raw, json) Hash identifier: YzMXOnObmmXZZ7p0IM/yNYUju0gO3164QXTVeCaWMsQ= Subject key identifier: 91:8D:DD:3C:E5:67:93:16:DF:67:1B:DD:A8:18:7F:2F:B3:94:1E:1F Certificate issuer: /CN=4B46CE8F8031BAB75364DA5BD981E888504FB411 Certificate serial: 039D Authority key identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/kY3dPOVnkxbfZxvdqBh_L7OUHh8.roa Signing time: Wed 24 Sep 2025 15:49:44 +0000 ROA not before: Wed 24 Sep 2025 15:49:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 62517 IP address blocks: 160.187.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 925 (0x39d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B46CE8F8031BAB75364DA5BD981E888504FB411 Validity Not Before: Sep 24 15:49:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=918DDD3CE5679316DF671BDDA8187F2FB3941E1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:53:cd:28:f5:3f:49:20:71:4e:4f:4a:6a:90: 69:c2:5e:21:92:c3:36:80:ae:56:0d:68:16:21:7b: c1:96:06:56:3e:fa:07:d2:8c:6b:b9:a0:41:7b:43: 2d:c2:3e:89:df:3f:f3:65:93:2e:aa:22:4c:c4:1a: 5a:e0:d2:3e:a5:54:a0:40:0b:6b:0b:42:8f:30:6a: 75:50:0d:d0:49:21:1e:63:3a:ae:a7:ad:4a:e9:e1: b4:e7:ae:41:3c:8f:1a:65:37:ee:35:38:78:ab:52: 95:8b:1f:13:41:d8:64:6a:db:f2:41:12:a2:46:a8: f0:97:80:1d:69:00:60:78:17:77:fc:8d:12:f2:54: 7c:07:eb:39:bb:28:ac:20:86:9d:86:32:13:40:44: 8b:a7:73:8a:09:dc:f5:b1:30:0c:de:74:91:b9:dd: 2e:f7:d7:21:08:72:6f:63:66:6a:a0:13:27:c1:d9: 96:1f:ec:fe:78:71:02:f1:af:e5:a3:4b:fd:1a:38: b1:e3:bb:b9:46:8b:ea:85:41:03:f6:78:44:c2:08: 6c:e0:8d:48:05:09:d5:85:02:ff:a8:5d:d6:76:24: 99:b2:0b:9a:f5:bd:5e:83:6c:2e:d1:cf:cc:96:79: d6:8d:bc:16:8f:d5:86:27:b1:35:25:90:3e:9e:bc: 61:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:8D:DD:3C:E5:67:93:16:DF:67:1B:DD:A8:18:7F:2F:B3:94:1E:1F X509v3 Authority Key Identifier: keyid:4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/kY3dPOVnkxbfZxvdqBh_L7OUHh8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.201.0/24 Signature Algorithm: sha256WithRSAEncryption 78:5a:14:45:31:fb:3c:b7:87:1e:f6:df:8a:0c:34:80:bb:bd: 71:9a:fa:ed:66:d0:2b:2f:f2:80:e3:e3:a0:89:50:fb:b7:e5: 9a:13:b5:9a:a5:6b:00:c7:36:64:46:d2:96:fe:d3:3e:69:df: 46:d2:1d:11:fb:ef:0c:d7:df:bb:fe:93:69:62:bd:f2:e8:48: 59:e0:7e:9d:ab:22:f4:58:17:ec:73:05:ba:82:56:43:8a:1a: 8e:13:e9:d1:b0:71:f0:9b:c3:2c:1c:c6:03:24:5d:cf:d7:d1: 3f:8b:ca:77:e7:91:17:51:14:bb:12:ad:f8:84:3b:17:62:07: 08:ba:d0:69:f2:2b:80:72:1d:11:4f:28:55:0d:a1:54:5a:72: 0f:2a:a2:63:0b:ef:f2:17:e9:d8:d3:40:e9:fc:c1:c0:7e:4d: f0:aa:53:e8:ad:3f:17:f3:02:dc:98:94:d3:05:94:f1:f4:5e: 08:fc:b1:44:0f:28:28:de:c9:26:ef:8b:30:da:36:8c:b1:73: 35:8e:2d:f4:aa:a4:52:9b:0d:a5:48:c1:fe:27:c0:03:c9:6f: be:7c:5d:dc:c4:b2:89:7b:5f:db:e9:8b:24:dd:2d:b5:01:d7: 98:d9:36:2b:b6:e6:b4:f9:50:15:43:48:d8:b0:eb:1f:b8:4d: 5a:5f:a2:f8 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICA50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEI0 NkNFOEY4MDMxQkFCNzUzNjREQTVCRDk4MUU4ODg1MDRGQjQxMTAeFw0yNTA5MjQx NTQ5NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkxOERERDNDRTU2Nzkz MTZERjY3MUJEREE4MTg3RjJGQjM5NDFFMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDU80o9T9JIHFOT0pqkGnCXiGSwzaArlYNaBYhe8GWBlY++gfS jGu5oEF7Qy3CPonfP/Nlky6qIkzEGlrg0j6lVKBAC2sLQo8wanVQDdBJIR5jOq6n rUrp4bTnrkE8jxplN+41OHirUpWLHxNB2GRq2/JBEqJGqPCXgB1pAGB4F3f8jRLy VHwH6zm7KKwghp2GMhNARIunc4oJ3PWxMAzedJG53S731yEIcm9jZmqgEyfB2ZYf 7P54cQLxr+WjS/0aOLHju7lGi+qFQQP2eETCCGzgjUgFCdWFAv+oXdZ2JJmyC5r1 vV6DbC7Rz8yWedaNvBaP1YYnsTUlkD6evGHlAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUkY3dPOVnkxbfZxvdqBh/L7OUHh8wHwYDVR0jBBgwFoAUS0bOj4AxurdTZNpb 2YHoiFBPtBEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO X05PMS9TMGJPajRBeHVyZFRaTnBiMllIb2lGQlB0QkUuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1MwYk9qNEF4dXJkVFpOcGIyWUhvaUZCUHRCRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RBSVdBTl9OTzEva1kzZFBPVm5r eGJmWnh2ZHFCaF9MN09VSGg4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAKC7yTANBgkqhkiG9w0BAQsFAAOCAQEAeFoURTH7PLeHHvbfigw0gLu9 cZr67WbQKy/ygOPjoIlQ+7flmhO1mqVrAMc2ZEbSlv7TPmnfRtIdEfvvDNffu/6T aWK98uhIWeB+nasi9FgX7HMFuoJWQ4oajhPp0bBx8JvDLBzGAyRdz9fRP4vKd+eR F1EUuxKt+IQ7F2IHCLrQafIrgHIdEU8oVQ2hVFpyDyqiYwvv8hfp2NNA6fzBwH5N 8KpT6K0/F/MC3JiU0wWU8fReCPyxRA8oKN7JJu+LMNo2jLFzNY4t9KqkUpsNpUjB /ifAA8lvvnxd3MSyiXtf2+mLJN0ttQHXmNk2K7bmtPlQFUNI2LDrH7hNWl+i+A== -----END CERTIFICATE-----Generated at Tue Oct 21 01:19:32 2025 by rpki-client