$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/5FX90Fmd8wLXP6bNxffFE3GG-4s.roa File: 5FX90Fmd8wLXP6bNxffFE3GG-4s.roa (raw, json) Hash identifier: hnHW0HVTQEoljJZ7vMFaTtMk27agfta0TQWiZQLIL1c= Subject key identifier: E4:55:FD:D0:59:9D:F3:02:D7:3F:A6:CD:C5:F7:C5:13:71:86:FB:8B Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E67 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/5FX90Fmd8wLXP6bNxffFE3GG-4s.roa Signing time: Fri 22 Aug 2025 08:58:14 +0000 ROA not before: Fri 22 Aug 2025 08:58:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131596 IP address blocks: 116.241.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3687 (0xe67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E455FDD0599DF302D73FA6CDC5F7C5137186FB8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8b:99:63:79:41:8a:b9:90:e0:78:32:bd:5d: ef:27:6f:80:f2:92:71:9d:b4:fc:de:85:50:79:10: ef:f8:74:6d:1d:45:b5:4d:2a:1f:37:2d:66:1d:9a: 38:52:5d:00:10:2c:80:59:7c:0d:37:b9:ba:fa:42: fe:cd:9b:7e:12:3b:2a:be:8a:ea:ff:08:18:26:54: 60:91:ce:49:f3:83:9b:29:d7:59:10:35:e5:1a:85: 55:ee:83:42:a7:70:7a:0b:09:8b:83:ae:ec:3b:ff: bf:6f:52:99:28:7b:d3:c0:93:8e:0b:62:4a:7d:30: ba:51:6b:cf:dd:79:45:2b:b0:f3:92:be:bd:c5:02: bd:38:10:70:64:02:30:a5:95:39:d2:d5:16:95:61: 24:f7:fb:e8:7c:dd:85:39:65:a2:db:96:11:44:a3: 60:12:c4:89:b9:de:e8:fc:ad:cd:70:94:d2:6f:9f: 1a:12:aa:e4:06:75:31:cf:c2:44:95:d6:7f:0c:d0: d1:a7:e8:d9:eb:47:0b:00:a9:0b:ac:4c:0f:d6:ca: 98:76:c1:c9:b1:6f:76:7f:fc:1b:ec:e5:80:fe:c4: 4d:f6:9d:4d:3e:58:32:81:7a:e4:89:71:9e:ae:fe: bb:2e:2f:51:e7:9b:da:47:76:2f:9d:ac:7f:a5:26: fb:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:55:FD:D0:59:9D:F3:02:D7:3F:A6:CD:C5:F7:C5:13:71:86:FB:8B X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/5FX90Fmd8wLXP6bNxffFE3GG-4s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.241.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6f:b6:a3:72:24:c7:5c:1f:9c:29:49:af:80:01:8a:b6:fd:06: a0:0d:5e:7c:06:e0:7b:66:f8:34:12:47:59:b4:da:c2:9f:26: c3:7f:8c:ae:cb:a2:6a:12:64:96:6c:5e:0c:38:b8:09:da:da: bb:f3:f3:1a:84:79:a6:85:6d:19:70:45:d8:07:8d:06:e9:b1: 7c:65:d0:98:3d:ec:dc:44:0c:71:f7:ea:04:0b:ab:11:82:e6: 1c:cf:d5:e6:c4:a9:68:c3:12:51:7d:a6:48:97:ea:3e:e0:f1: 41:86:13:60:02:db:89:30:26:79:a3:f9:12:6e:3d:dc:68:fe: 75:5b:7a:7e:d3:31:0d:21:ea:b1:90:5f:e1:40:5b:f2:bc:d0: 9c:6d:2e:40:fe:64:27:27:a6:e2:03:6d:da:2b:10:dd:02:c0: 45:aa:d9:3e:3e:25:4b:49:ac:7c:30:64:2b:ed:d3:bb:1e:73: e7:b5:50:3b:a3:6c:17:1d:df:62:60:96:a6:cb:b6:8d:b7:1c: f8:44:8d:89:15:d5:17:dd:4b:21:57:98:18:dd:f5:ca:2a:11: 6b:44:cf:c9:43:2c:e3:5c:dc:90:86:0f:8a:e6:6f:57:df:ef: 6e:3f:03:38:79:72:59:e7:d1:40:af:60:24:97:6f:eb:a8:29: 23:59:4f:5c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDmcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU0NTVGREQwNTk5REYz MDJENzNGQTZDREM1RjdDNTEzNzE4NkZCOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4i5ljeUGKuZDgeDK9Xe8nb4DyknGdtPzehVB5EO/4dG0dRbVN Kh83LWYdmjhSXQAQLIBZfA03ubr6Qv7Nm34SOyq+iur/CBgmVGCRzknzg5sp11kQ NeUahVXug0KncHoLCYuDruw7/79vUpkoe9PAk44LYkp9MLpRa8/deUUrsPOSvr3F Ar04EHBkAjCllTnS1RaVYST3++h83YU5ZaLblhFEo2ASxIm53uj8rc1wlNJvnxoS quQGdTHPwkSV1n8M0NGn6NnrRwsAqQusTA/Wyph2wcmxb3Z//Bvs5YD+xE32nU0+ WDKBeuSJcZ6u/rsuL1Hnm9pHdi+drH+lJvulAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU5FX90Fmd8wLXP6bNxffFE3GG+4swHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS81Rlg5MEZtZDh3TFhQNmJOeGZm RkUzR0ctNHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAdPEw DQYJKoZIhvcNAQELBQADggEBAG+2o3Ikx1wfnClJr4ABirb9BqANXnwG4Htm+DQS R1m02sKfJsN/jK7LomoSZJZsXgw4uAna2rvz8xqEeaaFbRlwRdgHjQbpsXxl0Jg9 7NxEDHH36gQLqxGC5hzP1ebEqWjDElF9pkiX6j7g8UGGE2AC24kwJnmj+RJuPdxo /nVben7TMQ0h6rGQX+FAW/K80JxtLkD+ZCcnpuIDbdorEN0CwEWq2T4+JUtJrHww ZCvt07sec+e1UDujbBcd32JglqbLto23HPhEjYkV1RfdSyFXmBjd9coqEWtEz8lD LONc3JCGD4rmb1ff724/Azh5clnn0UCvYCSXb+uoKSNZT1w= -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:20 2025 by rpki-client