$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/4uGz6ORX9GVWBG5qIbdNtRkkljQ.roa File: 4uGz6ORX9GVWBG5qIbdNtRkkljQ.roa (raw, json) Hash identifier: 7xHQuRTUiVTDTLnPo13QF0K5S/Q9TjDQZbC1dV2/u0w= Subject key identifier: E2:E1:B3:E8:E4:57:F4:65:56:04:6E:6A:21:B7:4D:B5:19:24:96:34 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0E47 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4uGz6ORX9GVWBG5qIbdNtRkkljQ.roa Signing time: Fri 22 Aug 2025 08:52:39 +0000 ROA not before: Fri 22 Aug 2025 08:52:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 61.60.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3655 (0xe47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 22 08:52:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E2E1B3E8E457F46556046E6A21B74DB519249634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5f:ae:82:e7:5a:77:59:74:a1:21:86:89:09: 4f:b5:ed:29:de:00:98:db:6d:21:f9:75:de:7f:89: db:57:0b:12:fe:60:ca:88:db:15:58:3c:c0:ec:df: a4:a2:65:03:00:bb:cf:90:18:8b:58:39:95:9f:36: 68:8c:cb:b4:f4:ea:f7:49:3d:e9:07:ce:aa:94:e5: 56:a7:ec:4d:d7:cc:5b:7e:d1:a4:78:29:aa:f6:8a: 8a:78:4a:2c:e0:8f:fc:02:d6:7a:7f:d4:22:a6:1d: 4c:22:0c:aa:fa:ae:d9:63:36:35:85:7f:af:f9:1e: d7:bf:25:05:d3:51:f5:48:d7:fc:cd:29:64:38:f8: db:30:cf:dd:ed:94:60:ef:c1:26:23:77:90:2f:aa: 03:ad:6f:2f:b6:c9:4c:60:21:b6:13:77:e3:18:03: c3:53:17:51:d2:d0:d1:22:72:de:f4:75:46:6c:03: 0b:9e:39:97:e3:ea:5d:41:a5:93:0a:de:fa:d8:61: 73:69:7a:da:d4:74:7c:a4:90:9e:3f:42:1d:45:a6: 2c:d8:ad:25:fb:c5:24:f5:ea:ce:40:15:55:e7:92: 77:98:bb:a5:90:ad:7a:fb:60:14:09:6c:1a:7a:37: cd:8d:83:d4:45:63:ee:55:ce:17:1d:1f:38:e3:aa: 4e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E1:B3:E8:E4:57:F4:65:56:04:6E:6A:21:B7:4D:B5:19:24:96:34 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4uGz6ORX9GVWBG5qIbdNtRkkljQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.224.0/20 Signature Algorithm: sha256WithRSAEncryption 08:dc:29:39:cb:d8:d3:a5:30:43:21:ce:ff:a5:7d:e1:b6:ab: 6c:0b:ad:c9:4d:20:4e:c3:3b:f4:14:f0:ca:d6:de:d7:04:0f: 88:90:f2:b3:e8:63:46:81:2b:5a:3e:72:51:ca:45:b7:60:76: a0:06:ed:f8:b0:3a:63:dc:4c:cc:76:d0:a5:c0:c3:55:f7:95: 94:1d:82:7d:85:43:2b:1c:25:0d:f3:e1:62:1b:44:2d:af:3b: 67:f6:16:13:94:9c:fe:ea:72:10:b8:83:01:05:81:99:b0:05: cb:69:69:cc:20:02:25:df:f5:f2:46:34:b2:44:91:99:94:20: 72:e8:70:a2:bd:f9:b7:f7:8d:85:80:2d:9b:d1:c7:30:99:43: 3b:84:21:12:47:53:53:f1:7e:b3:4d:6b:fc:ab:37:9d:b2:ab: df:e7:b5:27:cf:de:28:75:8c:f6:15:62:c0:71:34:37:4d:d5: 3a:89:37:59:3e:a9:7a:48:e0:94:44:cb:54:75:b8:aa:4d:0a: 49:1b:59:2e:8b:b9:bf:83:ed:8b:73:47:16:54:69:52:fd:33: ad:2b:7c:ed:f1:c4:6d:56:81:79:be:16:d5:9c:d2:fc:2a:9f: 1c:04:b5:be:88:cd:50:46:0b:45:73:54:e4:a8:2a:85:a9:3f: 4f:a9:b4:1a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDkcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTA4MjIw ODUyMzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUyRTFCM0U4RTQ1N0Y0 NjU1NjA0NkU2QTIxQjc0REI1MTkyNDk2MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMX66C51p3WXShIYaJCU+17SneAJjbbSH5dd5/idtXCxL+YMqI 2xVYPMDs36SiZQMAu8+QGItYOZWfNmiMy7T06vdJPekHzqqU5Van7E3XzFt+0aR4 Kar2iop4Sizgj/wC1np/1CKmHUwiDKr6rtljNjWFf6/5Hte/JQXTUfVI1/zNKWQ4 +Nswz93tlGDvwSYjd5AvqgOtby+2yUxgIbYTd+MYA8NTF1HS0NEict70dUZsAwue OZfj6l1BpZMK3vrYYXNpetrUdHykkJ4/Qh1FpizYrSX7xST16s5AFVXnkneYu6WQ rXr7YBQJbBp6N82Ng9RFY+5VzhcdHzjjqk6DAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU4uGz6ORX9GVWBG5qIbdNtRkkljQwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvNHVHejZPUlg5R1ZXQkc1cUliZE50 UmtrbGpRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD084DAN BgkqhkiG9w0BAQsFAAOCAQEACNwpOcvY06UwQyHO/6V94barbAutyU0gTsM79BTw ytbe1wQPiJDys+hjRoErWj5yUcpFt2B2oAbt+LA6Y9xMzHbQpcDDVfeVlB2CfYVD KxwlDfPhYhtELa87Z/YWE5Sc/upyELiDAQWBmbAFy2lpzCACJd/18kY0skSRmZQg cuhwor35t/eNhYAtm9HHMJlDO4QhEkdTU/F+s01r/Ks3nbKr3+e1J8/eKHWM9hVi wHE0N03VOok3WT6pekjglETLVHW4qk0KSRtZLou5v4Pti3NHFlRpUv0zrSt87fHE bVaBeb4W1ZzS/CqfHAS1vojNUEYLRXNU5Kgqhak/T6m0Gg== -----END CERTIFICATE-----Generated at Sun Aug 24 13:52:45 2025 by rpki-client