$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TDC/FCe9vDef6jKDykxsvQVMK1QEIXc.roa File: FCe9vDef6jKDykxsvQVMK1QEIXc.roa (raw, json) Hash identifier: 2/1YSwkYwUXj2evMwkGh6bAZSwtKlXnHUjYzsz6xMrM= Subject key identifier: 14:27:BD:BC:37:9F:EA:32:83:CA:4C:6C:BD:05:4C:2B:54:04:21:77 Certificate issuer: /CN=063F818DACB171B835415ABD278993922F3CDC5D Certificate serial: 0295 Authority key identifier: 06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/FCe9vDef6jKDykxsvQVMK1QEIXc.roa Signing time: Fri 22 Aug 2025 09:02:12 +0000 ROA not before: Fri 22 Aug 2025 09:02:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 201217 IP address blocks: 103.220.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=063F818DACB171B835415ABD278993922F3CDC5D Validity Not Before: Aug 22 09:02:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1427BDBC379FEA3283CA4C6CBD054C2B54042177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:dc:b4:1f:5e:34:e0:fe:84:35:69:98:7d:8a: b6:7a:33:d4:ab:34:ae:9c:56:a7:2b:e3:c8:bc:f3: 79:5a:1b:75:9e:c6:c2:c2:c4:45:f0:12:94:97:3b: ba:79:1c:3a:aa:21:d4:0f:f3:4e:5f:9e:b7:8c:0b: ab:92:2d:14:69:af:9a:8e:a4:89:7f:c0:bc:70:25: da:0a:4a:eb:8f:52:03:69:c0:ca:ad:c8:bc:d2:ba: 4c:f8:45:f5:5d:84:a4:df:12:f5:f9:53:27:c9:9b: 5c:91:29:3d:ef:f5:43:c3:1c:bf:c7:84:11:d0:94: ba:42:84:df:50:63:2a:e4:1f:48:24:dd:b9:39:85: 0f:3a:41:18:b4:b7:1f:89:05:c2:4e:a8:c2:89:71: a0:ed:e4:80:85:8d:5d:c7:de:b2:9a:15:0d:d6:fe: 7e:bd:31:8a:95:59:0f:89:03:f7:1c:10:c8:78:dd: bd:dc:14:58:38:da:a9:6a:34:d8:c4:91:f7:ad:57: b3:d1:e2:1c:21:f2:97:5f:4e:fe:aa:65:c0:da:57: f7:63:e3:56:92:86:ce:08:9d:02:ed:c7:f4:b8:78: d8:8a:64:b7:bd:43:03:3c:e3:60:8d:6a:5b:a3:5c: 9d:5f:90:6f:83:b6:5c:f4:a4:86:08:73:3b:e4:6f: 37:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:27:BD:BC:37:9F:EA:32:83:CA:4C:6C:BD:05:4C:2B:54:04:21:77 X509v3 Authority Key Identifier: keyid:06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/FCe9vDef6jKDykxsvQVMK1QEIXc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.220.218.0/24 Signature Algorithm: sha256WithRSAEncryption 66:59:43:6b:d2:ec:25:68:f7:3e:80:08:d6:54:da:49:7a:bd: 5b:8d:a6:54:19:11:3d:88:e2:25:77:19:71:67:95:cc:c9:c5: 9b:80:b2:5c:16:b0:b0:0a:cd:ec:25:27:fe:06:e3:60:6f:00: 72:a1:89:de:b8:47:43:1e:f9:46:ee:ba:e0:86:48:a4:bb:01: 61:11:97:03:c2:00:b2:f5:ae:e9:6a:ba:1f:72:da:11:63:44: eb:cf:ed:d4:32:b5:95:96:3b:76:a0:98:d7:da:79:f9:40:3a: 1d:40:7c:ff:de:e8:e0:26:0b:bb:0d:0c:2c:d5:2b:b1:bb:e0: 84:90:f6:8d:09:56:7f:30:6a:c8:d2:8e:57:af:c4:ba:4b:9d: fc:38:5a:06:4e:c1:bc:4f:b4:46:3f:5e:6f:d3:28:13:56:9c: bb:17:d7:45:19:4e:56:67:99:96:12:f3:06:cc:77:45:fa:5d: ef:71:77:b6:87:14:62:98:7f:0e:e9:c8:e2:b2:01:01:07:be: b7:57:5f:e9:50:7e:45:cc:78:47:67:78:3d:88:f2:b1:ff:de: c5:b2:ec:5d:1a:6f:53:6b:98:c6:16:c8:29:1c:77:1b:ed:28: e8:b5:d8:68:cd:90:c0:f8:33:d5:b5:6a:b4:33:85:d3:8d:03: 6f:9d:4d:05 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICApUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDYz RjgxOERBQ0IxNzFCODM1NDE1QUJEMjc4OTkzOTIyRjNDREM1RDAeFw0yNTA4MjIw OTAyMTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE0MjdCREJDMzc5RkVB MzI4M0NBNEM2Q0JEMDU0QzJCNTQwNDIxNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCY3LQfXjTg/oQ1aZh9irZ6M9SrNK6cVqcr48i883laG3WexsLC xEXwEpSXO7p5HDqqIdQP805fnreMC6uSLRRpr5qOpIl/wLxwJdoKSuuPUgNpwMqt yLzSukz4RfVdhKTfEvX5UyfJm1yRKT3v9UPDHL/HhBHQlLpChN9QYyrkH0gk3bk5 hQ86QRi0tx+JBcJOqMKJcaDt5ICFjV3H3rKaFQ3W/n69MYqVWQ+JA/ccEMh43b3c FFg42qlqNNjEkfetV7PR4hwh8pdfTv6qZcDaV/dj41aShs4InQLtx/S4eNiKZLe9 QwM842CNalujXJ1fkG+Dtlz0pIYIczvkbzddAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUFCe9vDef6jKDykxsvQVMK1QEIXcwHwYDVR0jBBgwFoAUBj+Bjayxcbg1QVq9 J4mTki883F0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVERDL0Jq LUJqYXl4Y2JnMVFWcTlKNG1Ua2k4ODNGMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev QmotQmpheXhjYmcxUVZxOUo0bVRraTg4M0YwLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVERDL0ZDZTl2RGVmNmpLRHlreHN2UVZNSzFR RUlYYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn3NowDQYJ KoZIhvcNAQELBQADggEBAGZZQ2vS7CVo9z6ACNZU2kl6vVuNplQZET2I4iV3GXFn lczJxZuAslwWsLAKzewlJ/4G42BvAHKhid64R0Me+UbuuuCGSKS7AWERlwPCALL1 rulquh9y2hFjROvP7dQytZWWO3agmNfaeflAOh1AfP/e6OAmC7sNDCzVK7G74ISQ 9o0JVn8wasjSjlevxLpLnfw4WgZOwbxPtEY/Xm/TKBNWnLsX10UZTlZnmZYS8wbM d0X6Xe9xd7aHFGKYfw7pyOKyAQEHvrdXX+lQfkXMeEdneD2I8rH/3sWy7F0ab1Nr mMYWyCkcdxvtKOi12GjNkMD4M9W1arQzhdONA2+dTQU= -----END CERTIFICATE-----Generated at Sun Aug 24 12:59:47 2025 by rpki-client