$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/q8MZgMWgdtePuCv9114g_FqV6KY.roa File: q8MZgMWgdtePuCv9114g_FqV6KY.roa (raw, json) Hash identifier: ZPULdz8ciqCZCwIwOw2ZvUgUjQs9WSuMXc4jxCbfUFw= Subject key identifier: AB:C3:19:80:C5:A0:76:D7:8F:B8:2B:FD:D7:5E:20:FC:5A:95:E8:A6 Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Certificate serial: 0318 Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/q8MZgMWgdtePuCv9114g_FqV6KY.roa Signing time: Fri 22 Aug 2025 09:01:34 +0000 ROA not before: Fri 22 Aug 2025 09:01:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 2400:c9a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 792 (0x318) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Validity Not Before: Aug 22 09:01:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ABC31980C5A076D78FB82BFDD75E20FC5A95E8A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cc:f6:28:1a:27:24:22:04:d8:75:50:43:47: 77:2b:89:27:23:69:94:68:9a:35:f1:23:04:53:35: f7:f0:7c:8d:db:54:34:7f:dd:2e:d7:e8:36:e8:c3: e0:27:93:f2:e7:3f:d8:ea:1f:3c:92:99:be:4f:08: c3:5a:0a:76:92:01:00:05:ff:f0:7c:f3:e2:01:97: 8f:7b:87:8e:08:9b:61:c8:19:00:7e:12:c2:e6:a6: 54:89:9c:0a:1b:a4:e1:2e:21:28:48:58:f9:ff:11: 6b:c1:50:5a:33:25:90:e3:19:80:87:6d:7a:36:73: d0:66:2a:cd:7e:e3:7d:c7:a1:a6:9b:fc:b0:c0:d4: 46:2c:4f:80:c6:1f:8c:3b:ff:de:9e:e5:ff:82:44: 81:72:6d:13:35:c7:8e:fa:99:12:98:53:44:7a:76: f6:b6:f4:50:2b:e5:a5:02:38:4f:da:a0:86:ca:10: be:ba:2e:02:1f:05:6e:ea:64:fc:19:7e:68:a6:cb: 90:da:cf:fc:38:76:4a:a2:01:70:56:95:8e:e0:a8: 8c:32:00:b9:d9:9b:8f:e3:c5:3a:11:7c:6a:08:2a: fd:9d:ab:96:4c:b2:fa:2a:fe:ca:ab:66:68:ea:10: 1f:d9:73:e4:a0:00:1b:70:49:96:d5:24:25:13:dc: 1e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C3:19:80:C5:A0:76:D7:8F:B8:2B:FD:D7:5E:20:FC:5A:95:E8:A6 X509v3 Authority Key Identifier: keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/q8MZgMWgdtePuCv9114g_FqV6KY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:c9a0::/32 Signature Algorithm: sha256WithRSAEncryption 5b:0f:d8:ce:30:65:21:84:eb:a1:a1:fb:03:d4:9f:df:34:c4: 76:03:a5:35:93:b2:81:e8:7b:88:80:dc:b2:74:2a:69:37:bb: fe:d8:07:e2:34:ee:d6:61:75:ee:e6:e3:a9:a2:a3:a5:7c:6b: d5:18:d0:1f:11:88:ba:09:86:b2:40:92:cf:ea:bf:34:4a:ea: 73:ab:ba:55:30:c5:43:ee:2d:d8:0d:6e:3e:d7:19:82:62:ea: b9:1e:da:7a:4a:13:00:55:0e:c1:2d:5f:9a:61:08:70:a4:3d: a6:ed:96:4e:6f:9b:5a:fc:71:6b:30:00:bc:d9:46:02:7d:e3: 4c:23:82:05:18:cf:85:d3:3b:dd:15:7c:9a:cc:c7:92:08:cd: 78:53:3d:38:e6:31:e4:36:e5:13:df:4f:1b:3a:b3:8d:57:97: 23:be:a0:e3:ba:05:98:54:8b:88:93:6d:d8:f1:52:8b:e6:a6: 27:c6:4f:31:2a:29:6b:4b:49:cf:7d:db:18:6c:60:8e:66:39: 2f:77:01:78:a5:03:ed:2b:e1:25:ad:5b:0e:b2:60:14:7a:c5: 1c:7f:88:95:f3:fe:2e:fe:a8:a8:0e:c9:71:ba:41:6e:ea:a9: 08:72:8f:f7:51:39:b1:06:e0:ee:1d:33:c8:26:f0:a0:a5:84: 0f:ee:17:ca -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICAxgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yNTA4MjIw OTAxMzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFCQzMxOTgwQzVBMDc2 RDc4RkI4MkJGREQ3NUUyMEZDNUE5NUU4QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnzPYoGickIgTYdVBDR3criScjaZRomjXxIwRTNffwfI3bVDR/ 3S7X6Dbow+Ank/LnP9jqHzySmb5PCMNaCnaSAQAF//B88+IBl497h44Im2HIGQB+ EsLmplSJnAobpOEuIShIWPn/EWvBUFozJZDjGYCHbXo2c9BmKs1+433Hoaab/LDA 1EYsT4DGH4w7/96e5f+CRIFybRM1x476mRKYU0R6dva29FAr5aUCOE/aoIbKEL66 LgIfBW7qZPwZfmimy5Daz/w4dkqiAXBWlY7gqIwyALnZm4/jxToRfGoIKv2dq5ZM svoq/sqrZmjqEB/Zc+SgABtwSZbVJCUT3B4tAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUq8MZgMWgdtePuCv9114g/FqV6KYwHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0 wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vcThNWmdNV2dk dGVQdUN2OTExNGdfRnFWNktZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQAyaAwDQYJKoZIhvcNAQELBQADggEBAFsP2M4wZSGE66Gh+wPUn980 xHYDpTWTsoHoe4iA3LJ0Kmk3u/7YB+I07tZhde7m46mio6V8a9UY0B8RiLoJhrJA ks/qvzRK6nOrulUwxUPuLdgNbj7XGYJi6rke2npKEwBVDsEtX5phCHCkPabtlk5v m1r8cWswALzZRgJ940wjggUYz4XTO90VfJrMx5IIzXhTPTjmMeQ25RPfTxs6s41X lyO+oOO6BZhUi4iTbdjxUovmpifGTzEqKWtLSc992xhsYI5mOS93AXilA+0r4SWt Ww6yYBR6xRx/iJXz/i7+qKgOyXG6QW7qqQhyj/dRObEG4O4dM8gm8KClhA/uF8o= -----END CERTIFICATE-----Generated at Sun Aug 24 09:57:34 2025 by rpki-client