$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/4sEPrzguqMfQ89J6Yo9HUbj4cwg.roa File: 4sEPrzguqMfQ89J6Yo9HUbj4cwg.roa (raw, json) Hash identifier: LBxsDuJ1vcfyJWgizzhNcRAHcEtAU85Y+oPOPcek5xg= Subject key identifier: E2:C1:0F:AF:38:2E:A8:C7:D0:F3:D2:7A:62:8F:47:51:B8:F8:73:08 Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Certificate serial: 0B38 Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/4sEPrzguqMfQ89J6Yo9HUbj4cwg.roa Signing time: Fri 22 Aug 2025 08:56:37 +0000 ROA not before: Fri 22 Aug 2025 08:56:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 209557 IP address blocks: 2405:a640:1173::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2872 (0xb38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Validity Not Before: Aug 22 08:56:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E2C10FAF382EA8C7D0F3D27A628F4751B8F87308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dd:2b:65:73:2b:f8:8d:0a:ea:0a:fe:48:90: fd:ee:1a:a8:3c:81:10:6d:17:f7:10:ed:e1:5e:ce: cd:3e:c8:a0:b3:64:27:e7:64:90:19:82:7c:c6:5d: 9b:8a:39:69:0f:ae:87:8c:28:87:18:94:fa:44:d3: 55:0a:35:22:16:69:8f:2d:86:10:19:70:53:e6:35: 7b:65:90:e8:d8:8f:8f:73:45:2b:cb:6e:4d:32:09: 39:e7:d0:f5:fd:4f:f3:79:25:cc:2a:60:c3:c1:3c: 0b:86:51:12:3f:8e:30:30:4a:f4:67:78:d9:fe:ec: 3f:38:f3:da:6d:3a:d3:7c:d5:7f:b1:53:66:83:8c: 89:a0:e8:8a:9a:e0:02:d7:1a:c9:1c:a8:38:73:7f: 2d:fc:de:3e:af:f2:c6:29:64:6f:b5:ec:95:21:76: 38:b1:97:78:e1:68:69:97:a9:a8:92:b4:df:c2:d8: bc:e4:54:83:91:50:06:21:e5:b9:9b:81:96:ac:7c: fe:92:c4:7e:16:86:7b:55:2b:0b:46:65:13:1a:58: 5b:4f:57:77:fe:5e:89:f7:e1:69:ac:23:f2:e2:c3: 23:d7:f4:c8:17:e4:65:70:b0:ae:f4:b6:ab:81:ce: 7b:e0:bd:c1:96:91:39:3c:70:85:ce:92:46:1b:d3: e6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C1:0F:AF:38:2E:A8:C7:D0:F3:D2:7A:62:8F:47:51:B8:F8:73:08 X509v3 Authority Key Identifier: keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/4sEPrzguqMfQ89J6Yo9HUbj4cwg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a640:1173::/48 Signature Algorithm: sha256WithRSAEncryption 6a:fa:55:b7:56:0b:7e:e1:d0:2d:44:6a:3a:bd:19:62:bf:df: 42:ad:6a:a0:9d:83:63:08:fc:fa:4d:6f:71:70:4b:9d:8d:7e: 84:43:19:bc:9b:b4:7a:53:96:86:36:df:1c:a7:1c:a1:ba:61: 3b:11:d5:d2:08:5d:88:a4:4f:74:28:e8:e2:4d:ec:93:be:ba: 1e:e9:db:1d:0e:c8:a0:f0:fb:a5:ac:e0:5b:23:27:12:f8:46: ce:d6:bb:22:a5:33:16:7a:48:70:23:ff:99:fc:65:fa:a3:be: 29:01:2c:7d:41:90:29:47:69:09:31:76:f0:55:bf:93:74:da: 74:20:50:88:6c:3f:9b:26:26:72:db:13:63:32:4b:b0:20:e6: 20:43:a5:26:c5:47:0a:e0:08:58:1c:f3:d0:03:1d:24:f9:46: d9:46:7c:ca:8e:82:b2:11:ab:ba:21:08:18:68:ea:3f:4c:2b: cb:8b:a8:39:41:a0:8c:7b:e4:13:3b:2f:ae:9a:69:68:ee:83: 71:4a:fe:a6:71:35:f8:ae:0f:d5:c1:57:3c:83:ac:1a:d7:46: 08:bd:7f:60:8f:d1:22:d6:6f:2d:10:3a:89:09:8b:dd:ec:9c: 2d:78:29:54:65:38:15:a2:66:99:68:3c:21:85:a4:32:d0:6b: a7:d4:0b:cf -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCzgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjkx QkFGNkEwQzE3NkNFMEEzMjQyMzY2NkJDRTc4RjlEOTE4MjRDQjAeFw0yNTA4MjIw ODU2MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUyQzEwRkFGMzgyRUE4 QzdEMEYzRDI3QTYyOEY0NzUxQjhGODczMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH3Stlcyv4jQrqCv5IkP3uGqg8gRBtF/cQ7eFezs0+yKCzZCfn ZJAZgnzGXZuKOWkProeMKIcYlPpE01UKNSIWaY8thhAZcFPmNXtlkOjYj49zRSvL bk0yCTnn0PX9T/N5JcwqYMPBPAuGURI/jjAwSvRneNn+7D8489ptOtN81X+xU2aD jImg6Iqa4ALXGskcqDhzfy383j6v8sYpZG+17JUhdjixl3jhaGmXqaiStN/C2Lzk VIORUAYh5bmbgZasfP6SxH4WhntVKwtGZRMaWFtPV3f+Xon34WmsI/LiwyPX9MgX 5GVwsK70tquBznvgvcGWkTk8cIXOkkYb0+ZbAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU4sEPrzguqMfQ89J6Yo9HUbj4cwgwHwYDVR0jBBgwFoAUKRuvagwXbOCjJCNm a854+dkYJMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdEUy9L UnV2YWd3WGJPQ2pKQ05tYTg1NC1ka1lKTXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0tSdXZhZ3dYYk9DakpDTm1hODU0LWRrWUpNcy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RXRFMvNHNFUHJ6Z3VxTWZRODlKNllvOUhV Ymo0Y3dnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFpkAR czANBgkqhkiG9w0BAQsFAAOCAQEAavpVt1YLfuHQLURqOr0ZYr/fQq1qoJ2DYwj8 +k1vcXBLnY1+hEMZvJu0elOWhjbfHKccobphOxHV0ghdiKRPdCjo4k3sk766Hunb HQ7IoPD7pazgWyMnEvhGzta7IqUzFnpIcCP/mfxl+qO+KQEsfUGQKUdpCTF28FW/ k3TadCBQiGw/myYmctsTYzJLsCDmIEOlJsVHCuAIWBzz0AMdJPlG2UZ8yo6CshGr uiEIGGjqP0wry4uoOUGgjHvkEzsvrpppaO6DcUr+pnE1+K4P1cFXPIOsGtdGCL1/ YI/RItZvLRA6iQmL3eycLXgpVGU4FaJmmWg8IYWkMtBrp9QLzw== -----END CERTIFICATE-----Generated at Sun Aug 24 11:05:38 2025 by rpki-client