$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/Z4b3y92hso2msh8Kr0eUIxiMNaE.roa File: Z4b3y92hso2msh8Kr0eUIxiMNaE.roa (raw, json) Hash identifier: Ko731AzhCAa9SNebREyRSdRoFV2NRetTIzIiuP4OcbQ= Subject key identifier: 67:86:F7:CB:DD:A1:B2:8D:A6:B2:1F:0A:AF:47:94:23:18:8C:35:A1 Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0D51 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/Z4b3y92hso2msh8Kr0eUIxiMNaE.roa Signing time: Fri 22 Aug 2025 08:48:53 +0000 ROA not before: Fri 22 Aug 2025 08:48:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 133955 IP address blocks: 223.165.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3409 (0xd51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Aug 22 08:48:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6786F7CBDDA1B28DA6B21F0AAF479423188C35A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ca:2f:f9:78:aa:8a:94:31:01:f4:6a:a2:1b: 61:7e:91:fd:c7:cc:98:e4:de:72:a8:8a:52:ab:a9: 57:7d:53:95:49:4b:51:c7:d0:b4:29:50:46:6c:b7: 98:2d:2c:f4:ea:94:a7:1c:c4:55:1f:a6:7f:cd:1e: 59:ff:71:e7:c0:42:9a:62:a0:b8:21:b1:7d:9f:57: 14:6a:66:9f:1e:c9:66:a8:86:2c:f8:51:49:52:44: ec:2b:40:51:1d:26:a7:59:d8:e1:02:ef:b5:ad:82: 74:99:4b:7f:ec:88:d4:2e:fe:e9:0e:5d:6c:d6:9f: 6d:04:3e:4b:91:2a:40:94:46:7c:d5:5a:da:b2:16: 2d:0b:92:43:e0:b6:5f:a4:46:72:8e:a2:0d:da:d0: ce:92:2d:64:f9:50:0c:cc:14:cf:70:45:36:48:1c: 56:62:2d:a2:59:2a:d4:b0:17:d5:1a:80:df:b9:b1: 80:9b:80:a0:c7:bf:00:3e:4e:36:9f:82:61:3d:18: a3:17:be:fc:6c:ad:c7:d2:39:6f:fd:f0:fa:84:96: 2f:8e:1a:16:11:f5:19:13:5a:21:b4:39:29:2f:4f: f1:f8:2d:b2:eb:f1:d4:9d:ac:b1:6b:e2:34:f7:bb: 9b:aa:b9:33:37:89:af:10:49:9c:de:7d:f3:40:a2: f4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:86:F7:CB:DD:A1:B2:8D:A6:B2:1F:0A:AF:47:94:23:18:8C:35:A1 X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/Z4b3y92hso2msh8Kr0eUIxiMNaE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.15.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:ec:5b:08:0f:45:e8:e3:fd:53:63:82:e6:68:0c:7a:db:08: 74:fc:aa:fa:58:1e:71:a8:e5:60:e8:a6:a9:a5:99:aa:5c:d0: fc:fb:d0:ab:10:07:29:05:67:b3:e7:64:6e:d4:24:eb:53:58: 33:68:88:4d:1a:00:7d:1f:03:f8:d7:72:c7:83:97:15:aa:cf: 03:7b:d3:8b:54:ba:b8:47:4b:e7:77:4f:00:ef:bf:85:94:11: 63:4b:72:38:55:b0:f8:9e:d1:e8:e5:8d:84:93:f6:92:46:81: c6:5d:cd:14:65:c4:31:a3:08:22:49:4e:0e:c3:d2:53:c9:f8: c1:c9:88:ef:35:52:df:f8:ac:3f:93:80:2b:31:33:00:d2:1d: 3d:ce:c4:3a:89:43:c9:3f:27:8d:ea:bc:3e:9c:0b:1f:e1:3d: 6f:d1:c2:91:3e:7f:65:d4:82:6f:41:c8:38:fd:ec:a7:2c:46: 32:cd:2d:96:4b:ae:e3:65:99:8f:4f:25:12:86:8e:43:84:f0: 9a:98:56:e7:b5:31:80:e4:20:6d:45:c5:93:52:59:a8:e8:a0: fb:6c:12:c3:ab:3e:75:bc:ce:69:c1:af:19:0f:b2:df:43:ed: 52:59:f7:03:fb:bd:e8:75:96:ee:5d:f7:42:11:03:68:33:78: 05:cc:1d:60 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDVEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yNTA4MjIw ODQ4NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY3ODZGN0NCRERBMUIy OERBNkIyMUYwQUFGNDc5NDIzMTg4QzM1QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgyi/5eKqKlDEB9GqiG2F+kf3HzJjk3nKoilKrqVd9U5VJS1HH 0LQpUEZst5gtLPTqlKccxFUfpn/NHln/cefAQppioLghsX2fVxRqZp8eyWaohiz4 UUlSROwrQFEdJqdZ2OEC77WtgnSZS3/siNQu/ukOXWzWn20EPkuRKkCURnzVWtqy Fi0LkkPgtl+kRnKOog3a0M6SLWT5UAzMFM9wRTZIHFZiLaJZKtSwF9UagN+5sYCb gKDHvwA+TjafgmE9GKMXvvxsrcfSOW/98PqEli+OGhYR9RkTWiG0OSkvT/H4LbLr 8dSdrLFr4jT3u5uquTM3ia8QSZzeffNAovTnAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUZ4b3y92hso2msh8Kr0eUIxiMNaEwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvWjRiM3k5Mmhz bzJtc2g4S3IwZVVJeGlNTmFFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lDzANBgkqhkiG9w0BAQsFAAOCAQEAK+xbCA9F6OP9U2OC5mgMetsI dPyq+lgecajlYOimqaWZqlzQ/PvQqxAHKQVns+dkbtQk61NYM2iITRoAfR8D+Ndy x4OXFarPA3vTi1S6uEdL53dPAO+/hZQRY0tyOFWw+J7R6OWNhJP2kkaBxl3NFGXE MaMIIklODsPSU8n4wcmI7zVS3/isP5OAKzEzANIdPc7EOolDyT8njeq8PpwLH+E9 b9HCkT5/ZdSCb0HIOP3spyxGMs0tlkuu42WZj08lEoaOQ4TwmphW57UxgOQgbUXF k1JZqOig+2wSw6s+dbzOacGvGQ+y30PtUln3A/u96HWW7l33QhEDaDN4BcwdYA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:05:31 2025 by rpki-client