$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/i34EKNC-sBnliV7Npv7ImSSUINg.roa File: i34EKNC-sBnliV7Npv7ImSSUINg.roa (raw, json) Hash identifier: qIGmglggfVFRrbthEO19uWziGMASlaeLwTQBWwb/Vz4= Subject key identifier: 8B:7E:04:28:D0:BE:B0:19:E5:89:5E:CD:A6:FE:C8:99:24:94:20:D8 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0E49 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/i34EKNC-sBnliV7Npv7ImSSUINg.roa Signing time: Fri 22 Aug 2025 08:52:39 +0000 ROA not before: Fri 22 Aug 2025 08:52:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 58.99.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3657 (0xe49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 22 08:52:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8B7E0428D0BEB019E5895ECDA6FEC899249420D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:bc:8e:86:07:44:b1:45:ac:21:81:70:b4:bf: 26:73:3c:de:e0:16:59:88:1b:e3:d5:b9:07:f6:04: e2:97:68:da:62:8b:8b:77:33:8d:44:9e:da:dc:2b: bf:09:47:19:be:ce:25:a9:e6:34:70:a5:d5:f2:6d: 00:33:1a:27:82:7e:4c:ff:ab:43:97:9a:3b:3e:a1: 38:31:86:3a:81:7c:8b:9a:11:00:b6:b3:f3:59:33: a6:76:c7:07:a7:c4:1a:ea:6e:63:dc:59:67:59:e8: b3:ad:b0:ab:f6:dc:ef:a7:6d:f4:1e:3e:5a:1e:65: af:d1:36:72:63:1f:59:5c:8c:9d:bf:39:ec:ba:35: 92:b6:d4:87:91:b5:1a:72:8b:e7:30:84:52:e7:d5: f0:d8:c9:ee:fb:5e:88:9d:c5:63:d0:00:43:08:77: 69:1d:7a:11:2f:7a:f4:1b:bc:e1:18:65:35:c0:ad: 6e:52:7e:5f:b7:12:15:34:71:24:d8:8f:06:8a:cb: d0:e7:ce:e0:7c:e2:fc:1c:bf:a8:c7:f2:16:9e:b3: 2b:9a:95:05:3e:c1:84:a9:6f:1a:68:61:fa:b6:ef: 9e:db:36:6e:65:6d:28:0e:46:32:ce:c7:9e:e8:5d: ef:02:9b:1a:44:22:fc:b4:8e:c5:22:18:f9:43:3c: a4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7E:04:28:D0:BE:B0:19:E5:89:5E:CD:A6:FE:C8:99:24:94:20:D8 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/i34EKNC-sBnliV7Npv7ImSSUINg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.99.0.0/18 Signature Algorithm: sha256WithRSAEncryption 2f:18:ed:4b:7a:8a:60:5a:1e:c0:45:d9:40:6f:54:08:78:e0: 9e:1f:49:80:63:4e:5e:2c:d8:79:22:0e:9d:4c:4e:2a:4a:9c: 94:46:1c:aa:80:ad:a1:c3:ab:cc:33:e0:79:bf:8e:f2:3c:43: 19:9e:77:f7:76:27:e4:33:49:30:b6:c8:8d:fd:38:f6:35:13: 56:84:ac:70:23:48:74:91:ff:73:ca:94:99:07:2d:bf:44:f4: 5d:ae:8b:c1:6d:49:17:be:b6:89:57:4d:b0:52:85:ea:49:40: 4b:70:34:9b:b1:80:3d:16:ca:3e:12:78:b2:98:1e:54:73:99: 2b:f4:a2:3d:2f:56:5a:b6:08:0b:5f:56:f7:b8:39:8b:5c:f1: b8:f7:8a:51:36:80:c7:04:66:a4:57:e5:86:60:de:3e:67:a5: 50:7f:f8:b3:44:a5:53:88:ac:51:96:58:ff:66:11:04:6e:e1: 0e:a7:3c:93:3e:50:29:ec:57:a7:f4:3d:0e:e2:16:c1:c3:89: 0f:1a:d4:49:7c:5f:fe:45:a7:87:ac:8b:3f:76:31:3c:40:2b: 9e:67:7a:aa:80:2c:8e:22:4f:9f:34:12:ee:1f:d8:2a:92:4d: 00:60:a6:c9:13:06:8b:52:5e:e3:7f:59:29:79:81:da:9f:07: 21:1c:bd:e4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDkkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTA4MjIw ODUyMzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhCN0UwNDI4RDBCRUIw MTlFNTg5NUVDREE2RkVDODk5MjQ5NDIwRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsvI6GB0SxRawhgXC0vyZzPN7gFlmIG+PVuQf2BOKXaNpii4t3 M41EntrcK78JRxm+ziWp5jRwpdXybQAzGieCfkz/q0OXmjs+oTgxhjqBfIuaEQC2 s/NZM6Z2xwenxBrqbmPcWWdZ6LOtsKv23O+nbfQePloeZa/RNnJjH1lcjJ2/Oey6 NZK21IeRtRpyi+cwhFLn1fDYye77XoidxWPQAEMId2kdehEvevQbvOEYZTXArW5S fl+3EhU0cSTYjwaKy9DnzuB84vwcv6jH8haesyualQU+wYSpbxpoYfq2757bNm5l bSgORjLOx57oXe8CmxpEIvy0jsUiGPlDPKSfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUi34EKNC+sBnliV7Npv7ImSSUINgwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvaTM0RUtOQy1zQm5saVY3TnB2N0lt U1NVSU5nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBjpjADAN BgkqhkiG9w0BAQsFAAOCAQEALxjtS3qKYFoewEXZQG9UCHjgnh9JgGNOXizYeSIO nUxOKkqclEYcqoCtocOrzDPgeb+O8jxDGZ5393Yn5DNJMLbIjf049jUTVoSscCNI dJH/c8qUmQctv0T0Xa6LwW1JF762iVdNsFKF6klAS3A0m7GAPRbKPhJ4spgeVHOZ K/SiPS9WWrYIC19W97g5i1zxuPeKUTaAxwRmpFflhmDePmelUH/4s0SlU4isUZZY /2YRBG7hDqc8kz5QKexXp/Q9DuIWwcOJDxrUSXxf/kWnh6yLP3YxPEArnmd6qoAs jiJPnzQS7h/YKpJNAGCmyRMGi1Je439ZKXmB2p8HIRy95A== -----END CERTIFICATE-----Generated at Sun Aug 24 13:48:46 2025 by rpki-client