$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Se1mxmNVYPq5samKh3_lyLCORXU.roa File: Se1mxmNVYPq5samKh3_lyLCORXU.roa (raw, json) Hash identifier: fXBELN6Jy24JbG9q3P2+F4U8J8Ui3HSOJroKrsVR0FM= Subject key identifier: 49:ED:66:C6:63:55:60:FA:B9:B1:A9:8A:87:7F:E5:C8:B0:8E:45:75 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0E41 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Se1mxmNVYPq5samKh3_lyLCORXU.roa Signing time: Fri 22 Aug 2025 08:52:37 +0000 ROA not before: Fri 22 Aug 2025 08:52:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 2403:5200::/32 maxlen: 96 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3649 (0xe41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 22 08:52:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=49ED66C6635560FAB9B1A98A877FE5C8B08E4575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:fc:65:69:c3:21:b2:94:2f:b3:cd:1f:f7:e3: d5:5e:00:4c:62:70:b8:fc:de:d7:87:91:0d:68:c6: 4c:81:bf:f3:4a:3e:d8:ef:0c:50:56:d3:09:57:77: 9d:0e:8c:e0:0e:46:bf:44:b1:d8:ab:44:96:23:63: 1b:94:90:26:0c:e4:67:20:93:ad:87:1d:8b:79:b8: b8:6f:be:89:ac:05:98:a3:d6:54:3c:ce:3b:e1:ef: 35:85:b8:a5:44:38:74:56:6c:7c:0f:c7:4c:c8:d5: b5:58:cd:60:d5:c3:0e:de:b5:8f:c8:b3:e9:54:04: d2:af:ed:b6:c5:98:25:24:75:8a:24:6d:fc:f3:59: 84:c5:55:44:b6:fa:69:3b:50:ce:e5:81:2c:d3:10: 38:41:c6:16:2b:04:3f:88:99:7c:ef:e4:b1:cb:13: ae:7a:c0:bd:e4:cf:4a:d4:bb:88:98:21:5c:39:9b: ba:26:29:c2:2f:ad:50:e5:b1:30:91:d1:fd:67:f5: 2b:d6:53:c6:bc:70:92:77:33:f7:6e:f0:ba:cb:c9: 82:8b:6e:39:1e:1a:97:7d:59:9e:6a:a2:46:2b:50: 05:d7:61:05:29:00:60:85:6f:e2:ce:8b:23:f3:03: 5a:be:d7:ee:d0:42:10:ec:a1:f4:8b:4b:ce:ec:e5: ca:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:ED:66:C6:63:55:60:FA:B9:B1:A9:8A:87:7F:E5:C8:B0:8E:45:75 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Se1mxmNVYPq5samKh3_lyLCORXU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:5200::/32 Signature Algorithm: sha256WithRSAEncryption 20:46:3f:d2:74:b0:22:99:64:fe:71:df:32:8b:4a:2e:13:98: ce:84:69:d2:92:2c:c4:46:57:58:8a:89:cd:f7:e7:cb:99:9e: 4a:f3:8f:bc:64:d0:53:08:7c:e1:5b:e1:dc:a3:eb:9c:b5:ec: 59:2d:6a:9a:bd:ef:c3:6a:f9:03:25:c5:69:8d:05:0c:73:e1: 5b:35:bc:95:e6:0a:e7:3e:0c:e9:ad:62:44:3f:61:f5:9f:2a: 30:2f:a8:fc:59:a5:3c:2f:81:a0:c9:ae:91:d0:bc:5a:1a:73: f9:b6:15:5d:a0:2a:03:e7:d9:ff:fd:03:6b:ff:d5:b3:73:78: 9f:d1:8d:43:a7:8c:85:25:59:2e:92:26:73:a9:e4:a5:08:a3: cd:22:ff:a3:97:ce:91:1a:b9:72:f0:7b:91:fa:0c:39:0b:82: dc:f2:a3:f9:4d:90:45:31:70:1b:f1:91:fd:d5:ff:0b:a6:94: 1c:31:9d:21:54:5f:ec:45:01:bc:ce:38:a0:9e:64:9e:45:46: 1c:36:02:eb:ce:e4:05:74:bb:a2:11:25:b0:0c:15:78:3d:a8: 4d:4a:1a:83:cf:3b:b2:39:76:ae:50:18:24:09:76:59:4b:ff: 8f:c6:84:fe:85:df:00:d0:e6:5a:a7:e2:51:64:69:ec:ae:4c: ac:6c:d2:90 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTA4MjIw ODUyMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ5RUQ2NkM2NjM1NTYw RkFCOUIxQTk4QTg3N0ZFNUM4QjA4RTQ1NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2/GVpwyGylC+zzR/349VeAExicLj83teHkQ1oxkyBv/NKPtjv DFBW0wlXd50OjOAORr9EsdirRJYjYxuUkCYM5Gcgk62HHYt5uLhvvomsBZij1lQ8 zjvh7zWFuKVEOHRWbHwPx0zI1bVYzWDVww7etY/Is+lUBNKv7bbFmCUkdYokbfzz WYTFVUS2+mk7UM7lgSzTEDhBxhYrBD+ImXzv5LHLE656wL3kz0rUu4iYIVw5m7om KcIvrVDlsTCR0f1n9SvWU8a8cJJ3M/du8LrLyYKLbjkeGpd9WZ5qokYrUAXXYQUp AGCFb+LOiyPzA1q+1+7QQhDsofSLS87s5cptAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUSe1mxmNVYPq5samKh3/lyLCORXUwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvU2UxbXhtTlZZUHE1c2FtS2gzX2x5 TENPUlhVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDUgAw DQYJKoZIhvcNAQELBQADggEBACBGP9J0sCKZZP5x3zKLSi4TmM6EadKSLMRGV1iK ic3358uZnkrzj7xk0FMIfOFb4dyj65y17Fktapq978Nq+QMlxWmNBQxz4Vs1vJXm Cuc+DOmtYkQ/YfWfKjAvqPxZpTwvgaDJrpHQvFoac/m2FV2gKgPn2f/9A2v/1bNz eJ/RjUOnjIUlWS6SJnOp5KUIo80i/6OXzpEauXLwe5H6DDkLgtzyo/lNkEUxcBvx kf3V/wumlBwxnSFUX+xFAbzOOKCeZJ5FRhw2AuvO5AV0u6IRJbAMFXg9qE1KGoPP O7I5dq5QGCQJdllL/4/GhP6F3wDQ5lqn4lFkaeyuTKxs0pA= -----END CERTIFICATE-----Generated at Sun Aug 24 13:48:46 2025 by rpki-client