$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/D74v__A_3T--3vmJYIJ5RI2UMYc.roa File: D74v__A_3T--3vmJYIJ5RI2UMYc.roa (raw, json) Hash identifier: aJwOlL4IH5jqfcLW3YBYHCAtZDUF2aY4X0U0ljhyCR4= Subject key identifier: 0F:BE:2F:FF:F0:3F:DD:3F:BE:DE:F9:89:60:82:79:44:8D:94:31:87 Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0D52 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/D74v__A_3T--3vmJYIJ5RI2UMYc.roa Signing time: Fri 22 Aug 2025 08:48:53 +0000 ROA not before: Fri 22 Aug 2025 08:48:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 133955 IP address blocks: 223.165.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3410 (0xd52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Aug 22 08:48:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0FBE2FFFF03FDD3FBEDEF989608279448D943187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4f:91:5f:14:eb:9d:7e:7f:db:e4:11:6a:4f: a6:fa:0d:6a:3e:e2:d9:86:bf:d4:47:9a:80:15:e4: a0:0c:10:c1:b1:78:58:e7:69:03:b9:33:4f:02:44: d7:fa:3a:fb:39:9a:01:bc:0a:9b:1b:b8:c3:ec:e0: aa:05:08:9a:71:7f:1a:3e:66:9f:8c:d8:f5:d7:6b: 65:3c:fd:96:21:96:65:15:8e:c4:38:27:62:d0:51: 18:07:a1:f1:7b:0b:08:7b:e6:5c:2e:6d:83:a4:83: ca:6a:d1:f0:0b:de:68:9e:31:ca:76:b3:28:cf:82: 87:cf:9d:d3:ce:71:43:0e:93:b8:75:65:28:b0:44: 7a:03:a6:e3:e1:51:23:e4:77:66:34:1d:9b:52:87: f2:41:d3:d6:cb:73:9d:43:cc:6c:cf:73:55:25:32: ea:85:67:bf:e7:7b:9e:88:e6:42:56:cd:cd:f4:fc: 04:1c:9b:c7:00:70:85:8a:0e:5a:38:f2:04:1e:76: 19:76:ce:49:40:64:9d:d4:60:3e:6f:f6:a3:19:75: d8:57:f8:e4:64:58:fd:39:90:1e:8a:15:02:f0:44: 2a:d1:69:b0:8c:53:1a:0b:dd:89:49:ed:38:00:ef: 07:61:5b:84:54:b2:23:32:35:67:47:a0:2d:d9:83: 12:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BE:2F:FF:F0:3F:DD:3F:BE:DE:F9:89:60:82:79:44:8D:94:31:87 X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/D74v__A_3T--3vmJYIJ5RI2UMYc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.9.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:8c:7d:f9:32:8a:0f:e1:b6:e4:fb:46:db:d4:28:0d:8d:7f: fb:b1:91:a4:23:00:d2:b1:53:2c:63:87:a2:37:74:49:a3:c8: b1:81:9a:2b:4c:ae:b4:a7:6a:e0:e5:f2:2a:67:7b:9b:56:76: 60:76:e7:bd:79:80:c7:da:5e:b6:30:3a:26:91:bd:49:ba:0e: a5:a0:84:75:9d:4a:92:37:a4:58:03:6e:c6:29:f1:28:ee:96: 6d:5b:28:23:6b:ca:66:47:4e:33:13:1e:2c:2a:96:bc:a6:b1: 68:75:ce:ba:f4:f1:38:c7:23:b9:f4:4f:62:f3:f0:f6:a6:67: 26:65:4a:44:f5:83:ba:7d:47:3e:03:55:4c:d5:02:25:00:54: 2b:69:11:dd:b4:55:45:16:09:43:9f:7a:ef:7a:28:d9:2e:70: cf:96:0c:11:e1:51:e0:e5:01:41:b3:57:e4:bd:c7:09:54:b0: 25:2d:5e:b6:24:07:0b:a5:80:87:16:8c:db:d8:4b:99:63:a2: 85:8c:82:98:d9:18:bd:c7:63:58:0f:e8:f6:06:ab:de:70:b0: 31:ea:b4:a4:f5:6c:d5:bd:35:5d:3d:6e:88:90:69:5c:4e:8a: 5d:5d:af:c6:35:62:8f:31:73:ed:cb:94:97:42:90:44:f5:b6: 05:40:32:86 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDVIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yNTA4MjIw ODQ4NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBGQkUyRkZGRjAzRkRE M0ZCRURFRjk4OTYwODI3OTQ0OEQ5NDMxODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPT5FfFOudfn/b5BFqT6b6DWo+4tmGv9RHmoAV5KAMEMGxeFjn aQO5M08CRNf6Ovs5mgG8CpsbuMPs4KoFCJpxfxo+Zp+M2PXXa2U8/ZYhlmUVjsQ4 J2LQURgHofF7Cwh75lwubYOkg8pq0fAL3mieMcp2syjPgofPndPOcUMOk7h1ZSiw RHoDpuPhUSPkd2Y0HZtSh/JB09bLc51DzGzPc1UlMuqFZ7/ne56I5kJWzc30/AQc m8cAcIWKDlo48gQedhl2zklAZJ3UYD5v9qMZddhX+ORkWP05kB6KFQLwRCrRabCM UxoL3YlJ7TgA7wdhW4RUsiMyNWdHoC3ZgxK7AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUD74v//A/3T++3vmJYIJ5RI2UMYcwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvRDc0dl9fQV8z VC0tM3ZtSllJSjVSSTJVTVljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lCTANBgkqhkiG9w0BAQsFAAOCAQEAWox9+TKKD+G25PtG29QoDY1/ +7GRpCMA0rFTLGOHojd0SaPIsYGaK0yutKdq4OXyKmd7m1Z2YHbnvXmAx9petjA6 JpG9SboOpaCEdZ1KkjekWANuxinxKO6WbVsoI2vKZkdOMxMeLCqWvKaxaHXOuvTx OMcjufRPYvPw9qZnJmVKRPWDun1HPgNVTNUCJQBUK2kR3bRVRRYJQ59673oo2S5w z5YMEeFR4OUBQbNX5L3HCVSwJS1etiQHC6WAhxaM29hLmWOihYyCmNkYvcdjWA/o 9gar3nCwMeq0pPVs1b01XT1uiJBpXE6KXV2vxjVijzFz7cuUl0KQRPW2BUAyhg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:05:39 2025 by rpki-client