$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/0I_EK12y05qQKc6gXdEO_Vh5_u0.roa File: 0I_EK12y05qQKc6gXdEO_Vh5_u0.roa (raw, json) Hash identifier: qiD5FegzUvboYAm0zGyj5aWWHyraonD3e6CpVVD8G4c= Subject key identifier: D0:8F:C4:2B:5D:B2:D3:9A:90:29:CE:A0:5D:D1:0E:FD:58:79:FE:ED Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0D54 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/0I_EK12y05qQKc6gXdEO_Vh5_u0.roa Signing time: Fri 22 Aug 2025 08:48:54 +0000 ROA not before: Fri 22 Aug 2025 08:48:54 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 133955 IP address blocks: 223.165.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3412 (0xd54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Aug 22 08:48:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D08FC42B5DB2D39A9029CEA05DD10EFD5879FEED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:be:42:7d:1f:ab:2c:4a:6b:cf:7a:25:ab:27: df:86:2c:ea:6e:87:67:fa:72:71:b9:92:25:ba:3a: 44:a8:bb:41:46:81:1b:90:d4:b0:a2:38:c7:be:99: ee:ae:1e:61:fe:c9:24:b2:fd:1f:90:63:f5:4b:f6: 40:ec:32:6c:8d:e4:da:5b:74:14:61:28:b0:95:65: 85:0e:3a:a1:f4:66:b7:e5:89:af:85:c3:ee:6f:6b: f2:fb:78:ec:6d:b0:b0:7c:90:1b:02:6b:54:3f:71: f6:4a:8d:36:65:db:94:47:a7:23:a3:5c:24:7c:a7: 64:f8:43:af:73:10:40:f7:d3:f4:c9:f5:d4:41:20: 6f:ee:d0:64:a7:33:65:38:23:5f:91:be:06:f5:29: 5d:8a:fc:37:ec:34:4f:ca:4c:d8:af:ab:be:44:e8: 51:06:8d:c1:c1:20:e6:e0:1f:c5:6f:fe:ac:60:ca: d5:25:7f:b3:6e:84:4a:ce:ad:0f:f1:e2:d4:69:b2: c0:49:b9:ec:71:da:c4:07:05:2f:3e:f5:f2:66:81: 81:da:ec:33:f8:34:80:3d:19:06:5f:9e:31:8d:0c: 02:20:28:3e:e0:ea:dc:d2:6f:b9:10:2d:0a:36:5d: f4:28:cf:03:05:6f:10:c5:ec:69:e4:62:66:7d:ac: ab:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:8F:C4:2B:5D:B2:D3:9A:90:29:CE:A0:5D:D1:0E:FD:58:79:FE:ED X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/0I_EK12y05qQKc6gXdEO_Vh5_u0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.8.0/24 Signature Algorithm: sha256WithRSAEncryption 56:d1:c0:60:ca:30:34:12:11:97:1f:2a:18:39:59:4e:c9:c0: 57:01:dc:ea:c9:69:a4:b6:dc:80:70:3f:9d:a6:ab:ca:61:34: 55:08:9a:82:4b:21:ec:e2:4f:2c:1a:7d:6a:c4:d4:dc:09:6a: 51:a6:d0:25:ef:19:f1:67:8b:43:99:89:0d:50:90:26:b8:b4: ea:be:43:05:2c:84:00:13:93:12:7a:5c:cc:63:9f:59:b3:61: ea:b0:c4:4e:3e:68:f4:51:df:61:27:e9:f5:fd:2d:1d:82:d7: 68:a3:08:04:10:d9:14:a7:8b:1e:2c:2a:0f:2a:a3:77:cd:4f: 95:8f:27:3b:a9:95:4f:83:8f:e7:fd:27:55:74:8b:23:e3:2a: 55:7a:de:38:47:6d:b1:36:7c:a7:33:32:35:d7:b0:bb:22:7f: f8:99:b5:e3:05:21:a3:ac:d9:57:b3:c5:da:84:7a:f5:03:1e: 6e:78:c6:25:e4:ec:70:8d:7f:63:73:da:cb:89:ad:3a:28:d9: da:11:a3:01:36:d9:00:77:62:fe:af:f6:49:3f:be:c7:69:9b: c7:b3:32:d4:6c:76:9d:9f:c3:2b:05:83:3f:de:57:70:fd:9a: 71:1d:3c:24:d0:72:5e:6c:70:8d:79:9e:d1:30:23:5d:a2:04: 97:1f:fa:ae -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDVQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yNTA4MjIw ODQ4NTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQwOEZDNDJCNURCMkQz OUE5MDI5Q0VBMDVERDEwRUZENTg3OUZFRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEvkJ9H6ssSmvPeiWrJ9+GLOpuh2f6cnG5kiW6OkSou0FGgRuQ 1LCiOMe+me6uHmH+ySSy/R+QY/VL9kDsMmyN5NpbdBRhKLCVZYUOOqH0Zrflia+F w+5va/L7eOxtsLB8kBsCa1Q/cfZKjTZl25RHpyOjXCR8p2T4Q69zEED30/TJ9dRB IG/u0GSnM2U4I1+Rvgb1KV2K/DfsNE/KTNivq75E6FEGjcHBIObgH8Vv/qxgytUl f7NuhErOrQ/x4tRpssBJuexx2sQHBS8+9fJmgYHa7DP4NIA9GQZfnjGNDAIgKD7g 6tzSb7kQLQo2XfQozwMFbxDF7GnkYmZ9rKsnAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU0I/EK12y05qQKc6gXdEO/Vh5/u0wHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvMElfRUsxMnkw NXFRS2M2Z1hkRU9fVmg1X3UwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lCDANBgkqhkiG9w0BAQsFAAOCAQEAVtHAYMowNBIRlx8qGDlZTsnA VwHc6slppLbcgHA/naarymE0VQiagksh7OJPLBp9asTU3AlqUabQJe8Z8WeLQ5mJ DVCQJri06r5DBSyEABOTEnpczGOfWbNh6rDETj5o9FHfYSfp9f0tHYLXaKMIBBDZ FKeLHiwqDyqjd81PlY8nO6mVT4OP5/0nVXSLI+MqVXreOEdtsTZ8pzMyNdewuyJ/ +Jm14wUho6zZV7PF2oR69QMebnjGJeTscI1/Y3Pay4mtOijZ2hGjATbZAHdi/q/2 ST++x2mbx7My1Gx2nZ/DKwWDP95XcP2acR08JNByXmxwjXme0TAjXaIElx/6rg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:06:00 2025 by rpki-client