$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/SRQIvA9xmohf3blP6r-2E3gTEUI.roa File: SRQIvA9xmohf3blP6r-2E3gTEUI.roa (raw, json) Hash identifier: wFQWcGszYeJWOc7e9uUKe7o/7t9ELxpzs+iQ6m+NGlk= Subject key identifier: 49:14:08:BC:0F:71:9A:88:5F:DD:B9:4F:EA:BF:B6:13:78:13:11:42 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0E3F Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/SRQIvA9xmohf3blP6r-2E3gTEUI.roa Signing time: Fri 22 Aug 2025 08:52:36 +0000 ROA not before: Fri 22 Aug 2025 08:52:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 49.213.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3647 (0xe3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 22 08:52:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=491408BC0F719A885FDDB94FEABFB61378131142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b2:3f:d4:9f:1c:30:d8:f7:dd:7a:47:7d:aa: a2:66:29:24:19:b7:4c:ce:cb:d7:30:51:d9:6a:8c: 0e:99:ad:30:0f:0b:cc:f7:ea:7d:1a:7d:b0:c3:f1: fb:cb:33:e3:3d:6b:09:a7:fb:96:bd:8e:17:5f:a3: 8d:3e:5b:f8:a2:10:8d:b7:ad:7e:d1:14:db:13:23: 57:0d:ee:0e:fb:40:9d:f9:ce:94:84:b4:3b:62:48: 0b:5b:a0:b9:d0:e9:7b:11:00:05:42:97:32:6c:02: 59:24:d1:76:76:01:40:37:01:7d:2a:09:03:99:ad: 38:9d:1d:b4:c8:c5:51:36:69:f8:a0:0f:e3:7f:37: 52:2c:37:1d:93:01:d2:a6:50:c2:4d:b4:2b:0e:3d: 92:62:2c:41:31:bd:45:98:86:0b:62:3d:11:da:55: e5:24:f6:ad:43:2e:84:b0:9a:2c:17:69:52:52:04: 8b:3f:42:eb:a4:71:a4:15:d6:b7:0b:38:56:da:88: 18:89:f9:42:84:e6:b9:9b:24:ce:a3:e0:2f:91:a6: 41:2f:bc:3d:2b:03:38:f9:a1:c2:40:26:ce:a0:ba: 65:e4:e0:b1:67:e2:99:83:f1:91:1c:e5:9c:2a:b3: bc:f7:49:8c:df:bb:d9:bd:33:8e:82:09:4e:76:bb: 57:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:14:08:BC:0F:71:9A:88:5F:DD:B9:4F:EA:BF:B6:13:78:13:11:42 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/SRQIvA9xmohf3blP6r-2E3gTEUI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.213.128.0/17 Signature Algorithm: sha256WithRSAEncryption 8f:26:bf:87:8f:77:f3:3e:b3:72:56:3a:4a:df:8a:fb:79:3c: 4b:89:ef:90:60:38:4d:d4:56:e5:e4:4d:f8:dd:e2:b1:f4:b8: 45:73:1f:51:9e:da:e2:79:16:5c:20:7e:0a:4f:0f:d2:a7:55: 78:f8:ef:a4:31:21:85:c8:54:12:9f:3f:cd:50:84:0b:8d:fa: cf:e8:ba:21:7a:5a:b2:c0:53:e2:ee:61:13:15:e2:11:5d:bd: 69:8d:67:3b:5c:80:db:b8:fc:46:d8:67:88:76:70:62:8d:09: c9:08:b2:5f:a0:7e:79:49:40:bd:e1:0a:12:0b:8d:93:da:14: 73:50:29:b4:26:ec:8b:0e:51:70:34:24:67:4d:be:12:d6:34: 66:fb:b1:71:41:6b:53:7a:e6:48:b9:15:18:31:91:d5:f5:dd: 9b:e8:7e:93:b3:92:e6:e4:55:08:72:10:97:6b:34:75:dd:31: 2f:63:85:5d:9c:a1:0e:98:76:a4:1d:59:4b:6f:08:45:21:b5: ea:dd:6e:ce:44:70:ff:6a:b2:b9:ba:76:1a:81:15:3c:d3:f6: f1:a9:d4:8c:8f:bc:45:e5:54:e4:c0:06:63:c3:82:87:74:bd: 61:e2:60:a0:5b:62:f3:2f:40:0d:7e:38:a0:8d:1a:3f:e4:15: 8a:bc:89:70 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTA4MjIw ODUyMzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ5MTQwOEJDMEY3MTlB ODg1RkREQjk0RkVBQkZCNjEzNzgxMzExNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbsj/Unxww2Pfdekd9qqJmKSQZt0zOy9cwUdlqjA6ZrTAPC8z3 6n0afbDD8fvLM+M9awmn+5a9jhdfo40+W/iiEI23rX7RFNsTI1cN7g77QJ35zpSE tDtiSAtboLnQ6XsRAAVClzJsAlkk0XZ2AUA3AX0qCQOZrTidHbTIxVE2afigD+N/ N1IsNx2TAdKmUMJNtCsOPZJiLEExvUWYhgtiPRHaVeUk9q1DLoSwmiwXaVJSBIs/ QuukcaQV1rcLOFbaiBiJ+UKE5rmbJM6j4C+RpkEvvD0rAzj5ocJAJs6gumXk4LFn 4pmD8ZEc5Zwqs7z3SYzfu9m9M46CCU52u1eFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUSRQIvA9xmohf3blP6r+2E3gTEUIwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvU1JRSXZBOXhtb2hmM2JsUDZyLTJF M2dURVVJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzHVgDAN BgkqhkiG9w0BAQsFAAOCAQEAjya/h4938z6zclY6St+K+3k8S4nvkGA4TdRW5eRN +N3isfS4RXMfUZ7a4nkWXCB+Ck8P0qdVePjvpDEhhchUEp8/zVCEC436z+i6IXpa ssBT4u5hExXiEV29aY1nO1yA27j8RthniHZwYo0JyQiyX6B+eUlAveEKEguNk9oU c1AptCbsiw5RcDQkZ02+EtY0ZvuxcUFrU3rmSLkVGDGR1fXdm+h+k7OS5uRVCHIQ l2s0dd0xL2OFXZyhDph2pB1ZS28IRSG16t1uzkRw/2qyubp2GoEVPNP28anUjI+8 ReVU5MAGY8OCh3S9YeJgoFti8y9ADX44oI0aP+QViryJcA== -----END CERTIFICATE-----Generated at Sun Aug 24 14:21:05 2025 by rpki-client