$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/_LlHPaoCeUCA8aVSzo9wqaaJa74.roa File: _LlHPaoCeUCA8aVSzo9wqaaJa74.roa (raw, json) Hash identifier: Skhq/b9XxVAF4D6Duy1KdHyp4qh+J0gqtGUvVrAQLCs= Subject key identifier: FC:B9:47:3D:AA:02:79:40:80:F1:A5:52:CE:8F:70:A9:A6:89:6B:BE Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0D50 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/_LlHPaoCeUCA8aVSzo9wqaaJa74.roa Signing time: Fri 22 Aug 2025 08:48:52 +0000 ROA not before: Fri 22 Aug 2025 08:48:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 133955 IP address blocks: 223.165.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3408 (0xd50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Aug 22 08:48:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FCB9473DAA02794080F1A552CE8F70A9A6896BBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:24:34:81:fa:8c:ff:65:f7:f5:82:34:fe:9c: 68:4b:c4:be:8c:74:16:a8:c7:4b:d9:b0:f4:3b:17: f4:88:67:42:43:73:55:ae:5f:f8:40:4d:34:30:f4: 85:70:9c:cc:b1:1a:d2:77:29:05:ff:fc:38:db:02: 14:0c:e1:7e:f1:8c:72:28:a7:35:11:65:43:cd:22: 5c:86:6b:e2:7e:db:e6:5c:22:f5:a8:62:f6:17:bd: 95:05:b7:17:79:10:c7:85:6a:8d:83:23:fa:69:19: 8c:97:48:4f:b6:2d:97:52:3f:ee:bb:56:09:01:00: 16:da:4b:32:44:e1:ae:ee:24:a7:80:d2:ae:52:1a: 34:fa:cb:da:34:02:a0:a0:2a:31:23:91:9a:d6:30: 8b:18:da:47:ef:14:81:78:e0:7e:45:9c:81:10:5a: c7:47:48:cd:c3:c7:14:96:93:b7:23:e4:fe:80:99: 9b:8c:d8:80:8c:73:5c:28:74:8f:35:d9:00:1c:a9: a8:23:88:d6:12:b2:e6:8e:f9:b4:ff:90:f3:8f:55: e2:84:35:9a:d2:83:a3:51:20:94:96:6c:1b:1e:99: 44:30:f2:c5:ff:3b:9c:28:6e:67:92:29:fb:e7:8b: 9e:72:f6:76:44:71:ad:f8:49:e9:45:2b:1f:a8:a0: c7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B9:47:3D:AA:02:79:40:80:F1:A5:52:CE:8F:70:A9:A6:89:6B:BE X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/_LlHPaoCeUCA8aVSzo9wqaaJa74.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.10.0/24 Signature Algorithm: sha256WithRSAEncryption 22:66:5a:ba:59:8a:3f:17:70:4b:a0:7a:0c:9d:29:06:f8:b9: 55:46:57:2a:7d:65:03:e3:4a:0d:a2:a3:0c:08:cd:a0:1e:3d: 7a:cc:6b:2c:cf:75:fc:66:85:ff:17:b7:9d:bf:88:24:07:b2: 21:77:c2:03:63:fe:a6:05:ae:87:fd:a8:be:f1:4f:e0:f1:61: 26:dc:75:65:29:37:a0:79:4e:4f:2c:e6:47:11:31:51:04:4c: 07:ba:4b:54:74:ab:9d:ca:83:4e:5c:dc:e7:01:56:41:22:87: 1c:8f:5b:3d:18:c4:20:8d:a6:53:d5:47:97:29:9c:62:92:4e: 9d:51:cb:22:22:d8:bc:9c:3a:77:74:ca:bf:f9:6b:82:b8:03: b8:68:f8:48:16:fc:b4:7d:38:f1:b9:8f:7c:64:f3:69:7a:26: 8a:6c:e5:a5:3f:79:11:31:a7:72:6e:9a:67:4f:ab:97:70:82: a6:0e:f6:bf:79:92:ee:e9:a8:3f:f8:da:ed:40:6d:b8:ad:75: 28:1f:f1:80:b4:44:d8:ec:62:ea:20:ee:a1:42:3e:ed:72:e1: 49:ee:cb:f1:5d:a6:ae:a3:6f:4f:2b:ec:5a:59:e6:29:da:92: e7:e6:c4:8c:3e:27:b2:8b:ac:17:fa:97:2f:bb:58:50:28:95: 0c:a1:6c:5e -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDVAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yNTA4MjIw ODQ4NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZDQjk0NzNEQUEwMjc5 NDA4MEYxQTU1MkNFOEY3MEE5QTY4OTZCQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHJDSB+oz/Zff1gjT+nGhLxL6MdBaox0vZsPQ7F/SIZ0JDc1Wu X/hATTQw9IVwnMyxGtJ3KQX//DjbAhQM4X7xjHIopzURZUPNIlyGa+J+2+ZcIvWo YvYXvZUFtxd5EMeFao2DI/ppGYyXSE+2LZdSP+67VgkBABbaSzJE4a7uJKeA0q5S GjT6y9o0AqCgKjEjkZrWMIsY2kfvFIF44H5FnIEQWsdHSM3DxxSWk7cj5P6AmZuM 2ICMc1wodI812QAcqagjiNYSsuaO+bT/kPOPVeKENZrSg6NRIJSWbBsemUQw8sX/ O5wobmeSKfvni55y9nZEca34SelFKx+ooMfVAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU/LlHPaoCeUCA8aVSzo9wqaaJa74wHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvX0xsSFBhb0Nl VUNBOGFWU3pvOXdxYWFKYTc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lCjANBgkqhkiG9w0BAQsFAAOCAQEAImZaulmKPxdwS6B6DJ0pBvi5 VUZXKn1lA+NKDaKjDAjNoB49esxrLM91/GaF/xe3nb+IJAeyIXfCA2P+pgWuh/2o vvFP4PFhJtx1ZSk3oHlOTyzmRxExUQRMB7pLVHSrncqDTlzc5wFWQSKHHI9bPRjE II2mU9VHlymcYpJOnVHLIiLYvJw6d3TKv/lrgrgDuGj4SBb8tH048bmPfGTzaXom imzlpT95ETGncm6aZ0+rl3CCpg72v3mS7umoP/ja7UBtuK11KB/xgLRE2Oxi6iDu oUI+7XLhSe7L8V2mrqNvTyvsWlnmKdqS5+bEjD4nsousF/qXL7tYUCiVDKFsXg== -----END CERTIFICATE-----Generated at Sun Aug 24 11:04:48 2025 by rpki-client