$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/ErFIRBvMe5l5O4PZ1S1PrkC9qF8.roa File: ErFIRBvMe5l5O4PZ1S1PrkC9qF8.roa (raw, json) Hash identifier: ZImLB5TS/meY9HTqpMYM6khLYps8jakn4+RMe3IJ7Wo= Subject key identifier: 12:B1:48:44:1B:CC:7B:99:79:3B:83:D9:D5:2D:4F:AE:40:BD:A8:5F Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Certificate serial: 027F Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/ErFIRBvMe5l5O4PZ1S1PrkC9qF8.roa Signing time: Fri 22 Aug 2025 09:01:01 +0000 ROA not before: Fri 22 Aug 2025 09:01:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 2914 IP address blocks: 202.160.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Validity Not Before: Aug 22 09:01:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=12B148441BCC7B99793B83D9D52D4FAE40BDA85F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:5a:0e:ef:e6:9f:dc:b7:22:55:3c:92:be:31: c9:6c:18:8f:23:4d:a4:0a:78:c2:5e:fc:c0:95:e2: 12:41:15:92:db:1f:35:a1:4f:d7:6f:a8:23:17:f3: 81:bb:a7:c9:af:36:ea:df:e2:f9:a8:4b:c6:86:80: 77:f2:cb:7a:36:be:eb:54:48:d5:2c:21:66:fa:54: c0:f3:92:88:b9:d7:e6:6e:d5:3c:01:d9:80:59:6b: 2e:1d:15:fb:fb:22:63:c7:d4:89:f8:e4:2a:0c:8c: 98:4a:50:ed:f9:14:b1:fb:27:f6:71:7a:2e:c0:9b: 7b:03:b5:63:10:98:06:44:ee:fa:1d:f2:ec:0d:b7: 7d:a7:0e:8b:d6:f2:88:aa:74:d2:c4:2c:54:34:cb: 7a:1f:10:05:47:7e:94:e1:31:7c:66:5f:49:8a:dd: 01:c6:bd:1e:00:99:3d:bf:03:56:78:a8:4c:ba:20: b9:6c:c8:cf:fb:69:ae:40:03:76:32:4c:1d:c2:31: 95:42:ad:07:93:7c:e7:71:77:5d:43:76:2c:ca:3e: c6:95:47:fe:a1:06:7b:8f:b2:10:a9:32:69:e3:3d: 98:58:6b:f5:52:28:c6:32:4c:29:ff:ac:13:31:8d: c4:3f:0c:7e:ff:da:bd:39:f1:53:79:e1:24:28:f1: c7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B1:48:44:1B:CC:7B:99:79:3B:83:D9:D5:2D:4F:AE:40:BD:A8:5F X509v3 Authority Key Identifier: keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/ErFIRBvMe5l5O4PZ1S1PrkC9qF8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.64.0/21 Signature Algorithm: sha256WithRSAEncryption 0e:4d:d9:7c:e9:8f:72:78:4e:79:74:9c:9d:67:71:33:54:f5: c2:89:47:ea:52:d1:c5:c9:b5:b1:0e:19:88:f5:f4:41:b6:72: 28:60:f7:4a:dc:39:72:94:d0:0a:c4:79:d5:a0:54:fa:81:b1: ca:ee:94:db:1d:6e:c9:46:4d:dd:17:d2:21:8e:d7:f2:0c:97: 4b:d3:85:86:6d:80:45:74:77:17:cc:89:d3:74:10:70:2e:84: 88:1e:69:dd:e9:46:af:d0:1a:0a:0a:b2:b6:13:f9:6b:5c:88: 25:1b:99:9d:32:12:70:a6:1c:b8:ea:d5:66:30:64:ee:0b:c6: 18:69:ea:35:3a:c9:68:39:a8:ce:ae:35:55:cd:69:61:f4:48: 70:5f:84:3e:c5:bc:2c:f4:ed:5a:78:4a:45:03:a0:a3:3e:4d: 68:e8:03:b0:09:e2:ab:71:93:74:03:47:f3:2f:58:db:a9:44: 04:b4:04:e9:4d:49:94:49:0b:80:07:ac:19:8e:7c:69:e7:51: 87:91:33:b1:90:9e:aa:ec:d0:04:9f:4a:5e:f1:2b:87:a4:bb: 5a:a1:9a:72:bf:94:86:39:80:4c:e9:07:fc:13:8e:02:0b:0a: 5d:26:9d:13:c5:6b:63:90:d6:12:39:65:a6:5f:27:8c:10:e4: 9a:4c:54:ee -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNTA4MjIw OTAxMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDEyQjE0ODQ0MUJDQzdC OTk3OTNCODNEOUQ1MkQ0RkFFNDBCREE4NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD0Wg7v5p/ctyJVPJK+MclsGI8jTaQKeMJe/MCV4hJBFZLbHzWh T9dvqCMX84G7p8mvNurf4vmoS8aGgHfyy3o2vutUSNUsIWb6VMDzkoi51+Zu1TwB 2YBZay4dFfv7ImPH1In45CoMjJhKUO35FLH7J/Zxei7Am3sDtWMQmAZE7vod8uwN t32nDovW8oiqdNLELFQ0y3ofEAVHfpThMXxmX0mK3QHGvR4AmT2/A1Z4qEy6ILls yM/7aa5AA3YyTB3CMZVCrQeTfOdxd11DdizKPsaVR/6hBnuPshCpMmnjPZhYa/VS KMYyTCn/rBMxjcQ/DH7/2r058VN54SQo8ccFAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUErFIRBvMe5l5O4PZ1S1PrkC9qF8wHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9 HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL0VyRklSQnZNZTVs NU80UFoxUzFQcmtDOXFGOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKoEAwDQYJKoZIhvcNAQELBQADggEBAA5N2Xzpj3J4Tnl0nJ1ncTNU9cKJ R+pS0cXJtbEOGYj19EG2cihg90rcOXKU0ArEedWgVPqBscrulNsdbslGTd0X0iGO 1/IMl0vThYZtgEV0dxfMidN0EHAuhIgead3pRq/QGgoKsrYT+WtciCUbmZ0yEnCm HLjq1WYwZO4Lxhhp6jU6yWg5qM6uNVXNaWH0SHBfhD7FvCz07Vp4SkUDoKM+TWjo A7AJ4qtxk3QDR/MvWNupRAS0BOlNSZRJC4AHrBmOfGnnUYeRM7GQnqrs0ASfSl7x K4eku1qhmnK/lIY5gEzpB/wTjgILCl0mnRPFa2OQ1hI5ZaZfJ4wQ5JpMVO4= -----END CERTIFICATE-----Generated at Sun Aug 24 07:42:10 2025 by rpki-client