$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/yMQNJ5rpGO2EMq7YTQOc1czvOR8.roa File: yMQNJ5rpGO2EMq7YTQOc1czvOR8.roa (raw, json) Hash identifier: 4pGf+5UYpv64Br4DDrIX5BJf5rAM3m2vGdnIUChL7jc= Subject key identifier: C8:C4:0D:27:9A:E9:18:ED:84:32:AE:D8:4D:03:9C:D5:CC:EF:39:1F Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0E3C Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/yMQNJ5rpGO2EMq7YTQOc1czvOR8.roa Signing time: Fri 22 Aug 2025 08:52:36 +0000 ROA not before: Fri 22 Aug 2025 08:52:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 61.67.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3644 (0xe3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 22 08:52:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C8C40D279AE918ED8432AED84D039CD5CCEF391F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f4:c4:8e:9e:0e:0a:40:ef:7f:a9:28:88:62: 73:42:04:ac:7d:15:d5:7f:bd:63:63:ff:ff:68:f6: ea:47:b9:82:e3:bc:88:00:49:eb:51:55:34:98:82: bb:4c:98:ed:1f:e9:9e:eb:e5:7c:8e:39:91:8d:64: 7e:fd:94:56:da:e5:0a:c6:08:6e:87:2b:86:2a:76: c1:49:a9:93:e6:5d:15:37:e4:ba:02:24:c6:3a:a9: 39:0a:f9:69:83:55:ae:43:3e:d6:9f:4d:8d:af:3e: 17:d6:23:a4:c9:f6:3d:2f:3e:a6:12:a7:75:54:3e: 98:cd:a4:65:2f:f7:aa:f7:27:df:2f:2d:cc:47:d2: b0:f2:d2:ab:99:a5:88:4b:36:17:22:df:eb:c3:45: 1a:8a:6f:70:cd:25:70:08:d1:16:73:dc:38:f7:42: 2c:e8:78:67:56:70:b0:aa:c5:f9:f1:ac:59:bf:4c: 15:0e:39:67:df:08:4b:10:59:33:a1:9f:c6:16:d0: 53:e4:e9:c3:75:34:28:dd:81:cc:73:37:03:11:a1: 24:2b:22:fc:d0:df:bd:c8:6d:a8:d2:ed:77:d1:ef: 47:86:be:d2:c2:9f:01:61:78:41:13:ee:a8:3b:25: 40:91:38:64:db:d6:dd:42:89:6b:c4:39:34:d9:11: 4b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C4:0D:27:9A:E9:18:ED:84:32:AE:D8:4D:03:9C:D5:CC:EF:39:1F X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/yMQNJ5rpGO2EMq7YTQOc1czvOR8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.16.0/20 Signature Algorithm: sha256WithRSAEncryption 02:e6:f8:eb:cf:1c:a8:9e:5a:8c:ca:38:65:48:04:0c:98:a3: f0:61:c3:9f:b3:cc:b7:46:7c:d5:6b:8c:c3:be:42:8d:0e:84: 5b:c9:4e:6f:9e:eb:c0:c1:b1:06:a5:ca:f3:f4:fb:ff:b2:f9: c1:e8:6e:18:f1:19:67:7b:2d:51:93:7c:f5:cf:d5:fb:22:8b: b7:12:37:8c:81:5c:15:a9:08:8c:3f:4b:c1:04:12:fc:88:42: cd:e6:a5:88:87:6e:0f:d1:fe:9f:7b:0c:5e:08:15:2c:29:c6: f1:01:1b:e6:34:4c:57:35:c8:f6:b3:3f:48:68:19:fe:b4:7a: 8f:d1:0b:d9:de:63:c4:3d:c7:09:ac:1b:83:10:81:93:9e:11: cf:b7:14:ef:ca:c9:1a:09:21:34:d4:ed:0e:e6:2f:cd:c3:76: 88:0b:53:a6:19:da:3f:7b:a7:81:e3:f9:04:fe:25:25:39:a2: 0b:8d:21:2e:8f:33:e9:c8:c4:9d:c9:74:66:5d:81:3d:11:67: 20:73:27:c3:3b:6d:98:27:77:33:bd:ed:5a:0e:c6:05:f9:73: 48:7e:32:4b:47:cb:a9:68:05:64:c2:fd:35:fd:68:cf:a6:ad: 3b:73:47:7a:3e:45:94:f5:00:0f:5b:47:cc:24:2c:0c:8c:c3: d2:f8:5b:a9 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDjwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTA4MjIw ODUyMzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM4QzQwRDI3OUFFOTE4 RUQ4NDMyQUVEODREMDM5Q0Q1Q0NFRjM5MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI9MSOng4KQO9/qSiIYnNCBKx9FdV/vWNj//9o9upHuYLjvIgA SetRVTSYgrtMmO0f6Z7r5XyOOZGNZH79lFba5QrGCG6HK4YqdsFJqZPmXRU35LoC JMY6qTkK+WmDVa5DPtafTY2vPhfWI6TJ9j0vPqYSp3VUPpjNpGUv96r3J98vLcxH 0rDy0quZpYhLNhci3+vDRRqKb3DNJXAI0RZz3Dj3QizoeGdWcLCqxfnxrFm/TBUO OWffCEsQWTOhn8YW0FPk6cN1NCjdgcxzNwMRoSQrIvzQ373IbajS7XfR70eGvtLC nwFheEET7qg7JUCROGTb1t1CiWvEOTTZEUv9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUyMQNJ5rpGO2EMq7YTQOc1czvOR8wHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAveU1RTko1cnBHTzJFTXE3WVRRT2Mx Y3p2T1I4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD1DEDAN BgkqhkiG9w0BAQsFAAOCAQEAAub4688cqJ5ajMo4ZUgEDJij8GHDn7PMt0Z81WuM w75CjQ6EW8lOb57rwMGxBqXK8/T7/7L5wehuGPEZZ3stUZN89c/V+yKLtxI3jIFc FakIjD9LwQQS/IhCzealiIduD9H+n3sMXggVLCnG8QEb5jRMVzXI9rM/SGgZ/rR6 j9EL2d5jxD3HCawbgxCBk54Rz7cU78rJGgkhNNTtDuYvzcN2iAtTphnaP3ungeP5 BP4lJTmiC40hLo8z6cjEncl0Zl2BPRFnIHMnwzttmCd3M73tWg7GBflzSH4yS0fL qWgFZML9Nf1oz6atO3NHej5FlPUAD1tHzCQsDIzD0vhbqQ== -----END CERTIFICATE-----Generated at Sun Aug 24 13:51:19 2025 by rpki-client