$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/0OlqV-x9GgU2QpPB5aZKF3G16DY.roa File: 0OlqV-x9GgU2QpPB5aZKF3G16DY.roa (raw, json) Hash identifier: vVLZx1dJAkQyu0nsSRx+7ypMOgQIzRP81gZrLOhMQlw= Subject key identifier: D0:E9:6A:57:EC:7D:1A:05:36:42:93:C1:E5:A6:4A:17:71:B5:E8:36 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0E44 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/0OlqV-x9GgU2QpPB5aZKF3G16DY.roa Signing time: Fri 22 Aug 2025 08:52:38 +0000 ROA not before: Fri 22 Aug 2025 08:52:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 61.67.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3652 (0xe44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 22 08:52:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D0E96A57EC7D1A05364293C1E5A64A1771B5E836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d6:14:ed:a1:5f:20:2b:91:16:ce:71:82:69: 91:ed:f4:96:4e:28:6c:f9:04:10:d2:c9:fc:2e:a4: 3d:fa:a4:c7:6c:bb:bc:eb:5c:c1:59:7a:23:e3:f5: 97:2d:42:90:2c:e9:cc:b3:6a:32:5e:5b:bd:c6:2c: fa:1f:b6:2b:50:17:6d:f7:33:b7:a2:48:3f:60:9f: fb:ce:41:ab:5d:57:4a:4f:cc:d5:60:fa:86:0d:7c: 43:5d:71:96:86:5d:22:a4:96:84:f7:e3:52:3b:e1: 04:5e:fc:fc:c9:69:5b:3f:e5:d1:36:c1:67:bd:d9: 9d:6f:f7:bc:ed:24:ac:da:31:12:5d:1d:3c:44:e5: 85:ba:51:96:86:94:dd:45:92:35:0b:f1:4f:61:a9: 0b:5a:3a:2a:81:7e:af:0d:c8:f5:f9:91:a1:b5:fe: 34:ca:e6:5d:54:f4:1c:87:a1:e1:1b:ca:ad:5c:9c: 57:30:76:4a:2c:02:e3:bd:48:76:c8:38:4f:a3:5e: 37:e9:cb:21:a0:ee:72:15:48:26:f9:a5:18:2a:c4: 59:4c:73:f6:4f:72:78:dc:86:3e:9f:74:cf:9f:dc: 4e:c3:20:e0:89:64:c8:4b:63:d9:04:a6:1f:1d:b2: 66:44:72:27:d6:68:ca:8d:ef:40:27:cd:8d:4a:36: 64:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E9:6A:57:EC:7D:1A:05:36:42:93:C1:E5:A6:4A:17:71:B5:E8:36 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/0OlqV-x9GgU2QpPB5aZKF3G16DY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.32.0/20 Signature Algorithm: sha256WithRSAEncryption 55:59:63:26:a7:03:70:99:99:44:59:f1:42:9f:f8:38:95:66: 4a:47:8e:55:bd:8a:4f:ce:47:f3:9e:fe:2f:ae:d8:99:fe:e7: 74:7a:4e:93:f0:9c:6c:28:ad:95:7f:28:06:f7:6c:01:19:89: ae:71:4c:9f:bc:df:c9:cb:d0:26:5b:6e:f6:03:92:f6:0b:59: 25:a4:33:68:e3:c8:6f:6d:5f:87:1d:0c:6b:23:8b:c0:a1:8e: 21:c4:02:dd:aa:36:08:b2:45:75:85:64:2e:68:74:e7:ed:26: ed:32:db:5c:b8:26:9d:b1:fe:ad:ac:45:b9:8f:a4:8a:da:27: 04:16:90:57:f7:18:37:79:be:26:cc:c4:3b:ad:c7:e5:4f:4e: 29:e8:70:36:6f:83:c6:d2:90:18:1c:c5:15:b2:96:98:b6:ac: e3:14:63:57:de:7a:d3:0f:74:97:fd:a3:58:bf:45:00:1a:51: d8:28:53:d5:bb:ac:35:74:ef:18:61:a8:10:04:31:94:94:39: fb:25:ba:f0:5e:0f:9d:3b:ae:ad:da:b2:ce:ac:1e:ad:84:34: 8f:27:35:fb:1d:e5:6a:8a:f6:fa:88:e4:cc:bb:2e:1f:c4:44: f4:ef:10:e7:32:71:dc:6b:5d:e9:8c:af:48:b8:44:40:38:52: 48:a9:78:0d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTA4MjIw ODUyMzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQwRTk2QTU3RUM3RDFB MDUzNjQyOTNDMUU1QTY0QTE3NzFCNUU4MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDx1hTtoV8gK5EWznGCaZHt9JZOKGz5BBDSyfwupD36pMdsu7zr XMFZeiPj9ZctQpAs6cyzajJeW73GLPoftitQF233M7eiSD9gn/vOQatdV0pPzNVg +oYNfENdcZaGXSKkloT341I74QRe/PzJaVs/5dE2wWe92Z1v97ztJKzaMRJdHTxE 5YW6UZaGlN1FkjUL8U9hqQtaOiqBfq8NyPX5kaG1/jTK5l1U9ByHoeEbyq1cnFcw dkosAuO9SHbIOE+jXjfpyyGg7nIVSCb5pRgqxFlMc/ZPcnjchj6fdM+f3E7DIOCJ ZMhLY9kEph8dsmZEcifWaMqN70AnzY1KNmTdAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU0OlqV+x9GgU2QpPB5aZKF3G16DYwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvME9scVYteDlHZ1UyUXBQQjVhWktG M0cxNkRZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD1DIDAN BgkqhkiG9w0BAQsFAAOCAQEAVVljJqcDcJmZRFnxQp/4OJVmSkeOVb2KT85H857+ L67Ymf7ndHpOk/CcbCitlX8oBvdsARmJrnFMn7zfycvQJltu9gOS9gtZJaQzaOPI b21fhx0MayOLwKGOIcQC3ao2CLJFdYVkLmh05+0m7TLbXLgmnbH+raxFuY+kiton BBaQV/cYN3m+JszEO63H5U9OKehwNm+DxtKQGBzFFbKWmLas4xRjV9560w90l/2j WL9FABpR2ChT1busNXTvGGGoEAQxlJQ5+yW68F4PnTuurdqyzqwerYQ0jyc1+x3l aor2+ojkzLsuH8RE9O8Q5zJx3Gtd6YyvSLhEQDhSSKl4DQ== -----END CERTIFICATE-----Generated at Sun Aug 24 13:51:19 2025 by rpki-client