$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/QEykA7AbJSoWlFYGjRSQ1BYAVbc.roa File: QEykA7AbJSoWlFYGjRSQ1BYAVbc.roa (raw, json) Hash identifier: my0acxMjcMSoX49RdQOQoQ65EbZgyTQKIWX6H9XZo9M= Subject key identifier: 40:4C:A4:03:B0:1B:25:2A:16:94:56:06:8D:14:90:D4:16:00:55:B7 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0E4C Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/QEykA7AbJSoWlFYGjRSQ1BYAVbc.roa Signing time: Fri 22 Aug 2025 08:52:40 +0000 ROA not before: Fri 22 Aug 2025 08:52:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 49.213.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3660 (0xe4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 22 08:52:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=404CA403B01B252A169456068D1490D4160055B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:16:2d:0d:15:1d:a8:f4:c6:76:c4:aa:96:39: ce:52:70:37:3c:b2:36:c2:d0:85:55:74:21:0a:8d: c1:eb:53:5f:5c:88:83:55:80:ae:c9:93:09:15:ed: 5b:03:98:03:dc:90:ac:a9:87:97:a9:2a:ed:ff:8b: b7:ff:58:a3:e1:ce:0b:61:24:e9:dc:9d:25:12:e2: 78:48:39:14:70:53:bb:d5:43:c8:68:a2:ee:ef:50: e7:3a:67:ae:9f:fc:77:c0:5f:4d:6d:4e:3a:bb:1b: 58:1a:22:ff:40:5c:0b:d2:ec:e4:5c:ec:30:e6:80: 4d:1d:fc:b9:2d:3a:cb:74:64:59:17:a0:78:1a:35: ab:2a:10:52:5a:45:e2:e9:5a:f4:d3:2e:94:e8:6e: f4:d4:91:2e:23:81:ee:cd:6e:b1:67:a0:73:eb:d9: f1:f4:7a:54:75:1a:84:ea:b3:40:d2:eb:97:0f:67: a9:02:a4:85:17:c2:80:6d:f2:df:4a:c1:f3:d9:9d: ae:64:b5:0d:c6:c0:ae:e4:6a:1d:e8:dd:3f:20:c0: 74:32:98:a7:a4:5f:73:73:c4:6f:1b:48:ff:ac:0a: a4:cc:ba:7a:5c:28:71:cd:c6:4c:3b:01:5d:57:0b: c8:06:35:aa:4e:cb:cb:98:e8:e6:82:36:3c:22:5f: 22:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4C:A4:03:B0:1B:25:2A:16:94:56:06:8D:14:90:D4:16:00:55:B7 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/QEykA7AbJSoWlFYGjRSQ1BYAVbc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.213.128.0/17 Signature Algorithm: sha256WithRSAEncryption 6d:6c:3c:30:86:5a:fe:f5:1a:eb:ca:c5:47:3e:a2:6c:43:92: b2:10:59:90:a8:48:fb:67:a5:dd:cf:bf:cb:49:67:e5:9c:4c: b2:fb:97:56:44:51:19:b1:63:f3:73:b1:5e:81:cb:1c:fd:b9: 46:78:d8:b7:61:d4:9d:2c:07:83:90:5a:ef:01:ab:e2:6d:bf: a2:df:f6:ed:11:3f:b5:86:7d:da:49:e4:a0:a5:bc:08:41:9a: 9d:8f:31:88:72:c5:25:b9:bd:9c:c8:71:86:30:68:cb:61:57: ca:72:6d:c5:fd:7f:e3:a3:a6:96:0c:84:59:66:f3:95:51:e8: bc:f1:cd:c4:ac:d7:e5:17:f5:25:04:8b:a4:ae:b7:bf:b8:f0: a5:5a:6d:46:e4:da:37:a7:d2:dc:17:91:6b:f8:fd:dc:3d:da: 8c:5b:81:93:0f:f0:de:b1:5a:98:3e:be:b6:6f:8d:25:c2:ce: 5d:43:ba:30:f7:69:02:56:8d:d7:85:0c:b1:3b:5d:5c:7c:0e: a8:68:44:38:c9:e2:68:5d:5b:ad:89:d2:70:be:ed:bf:d9:ae: 8c:0e:07:81:16:cb:f7:71:51:98:35:d1:dc:af:fa:0b:7c:94: 71:ea:36:b3:ab:fb:fe:0e:92:bc:9e:9e:69:d1:e9:7e:b1:08: 9e:96:5a:5a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDkwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTA4MjIw ODUyNDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQwNENBNDAzQjAxQjI1 MkExNjk0NTYwNjhEMTQ5MEQ0MTYwMDU1QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCXFi0NFR2o9MZ2xKqWOc5ScDc8sjbC0IVVdCEKjcHrU19ciINV gK7JkwkV7VsDmAPckKyph5epKu3/i7f/WKPhzgthJOncnSUS4nhIORRwU7vVQ8ho ou7vUOc6Z66f/HfAX01tTjq7G1gaIv9AXAvS7ORc7DDmgE0d/LktOst0ZFkXoHga NasqEFJaReLpWvTTLpTobvTUkS4jge7NbrFnoHPr2fH0elR1GoTqs0DS65cPZ6kC pIUXwoBt8t9KwfPZna5ktQ3GwK7kah3o3T8gwHQymKekX3NzxG8bSP+sCqTMunpc KHHNxkw7AV1XC8gGNapOy8uY6OaCNjwiXyI3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUQEykA7AbJSoWlFYGjRSQ1BYAVbcwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvUUV5a0E3QWJKU29XbEZZR2pSU1Ex QllBVmJjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzHVgDAN BgkqhkiG9w0BAQsFAAOCAQEAbWw8MIZa/vUa68rFRz6ibEOSshBZkKhI+2el3c+/ y0ln5ZxMsvuXVkRRGbFj83OxXoHLHP25RnjYt2HUnSwHg5Ba7wGr4m2/ot/27RE/ tYZ92knkoKW8CEGanY8xiHLFJbm9nMhxhjBoy2FXynJtxf1/46OmlgyEWWbzlVHo vPHNxKzX5Rf1JQSLpK63v7jwpVptRuTaN6fS3BeRa/j93D3ajFuBkw/w3rFamD6+ tm+NJcLOXUO6MPdpAlaN14UMsTtdXHwOqGhEOMniaF1brYnScL7tv9mujA4HgRbL 93FRmDXR3K/6C3yUceo2s6v7/g6SvJ6eadHpfrEInpZaWg== -----END CERTIFICATE-----Generated at Sun Aug 24 13:52:15 2025 by rpki-client