$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/J0pWNyrCWIY5k8mT7IBIHZfpIjs.roa File: J0pWNyrCWIY5k8mT7IBIHZfpIjs.roa (raw, json) Hash identifier: WEYg+S9Vq+N0Tlw4O8T7f46l6ys1QRnoL/fR7I/cM2A= Subject key identifier: 27:4A:56:37:2A:C2:58:86:39:93:C9:93:EC:80:48:1D:97:E9:22:3B Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9 Certificate serial: 0D5E Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/J0pWNyrCWIY5k8mT7IBIHZfpIjs.roa Signing time: Fri 22 Aug 2025 08:51:06 +0000 ROA not before: Fri 22 Aug 2025 08:51:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18185 IP address blocks: 211.76.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3422 (0xd5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9 Validity Not Before: Aug 22 08:51:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=274A56372AC258863993C993EC80481D97E9223B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b7:6c:28:a5:1a:35:7e:7d:00:f2:47:2e:25: b6:e5:1c:0b:cb:65:51:42:7d:9f:79:8d:a3:ff:62: f6:03:b5:be:3f:37:26:b5:70:65:0b:5b:1a:a4:b0: 1a:7e:f8:19:09:a4:d5:32:05:ee:bb:6f:62:6f:0c: ce:d7:82:60:f3:5f:44:4d:2d:df:09:9e:5b:15:8f: 28:47:8b:97:a0:d5:63:8d:2c:da:0f:ff:95:16:0c: 82:9c:64:cc:e8:ba:6b:94:4a:fb:a2:d3:68:2a:4a: 60:63:8d:ca:f4:0d:25:72:9b:6c:12:9e:12:a6:41: 0e:ec:db:db:99:23:fd:b7:a4:52:ee:e7:0b:b0:73: 82:cc:06:00:cf:09:b1:78:36:1e:6a:b7:2c:d5:8e: 54:f2:24:5c:d2:66:de:49:d9:82:57:0c:e5:99:15: 20:57:f4:23:30:48:a7:7b:b9:8e:1f:3e:95:a6:53: ae:63:63:66:33:1d:46:22:41:ff:ac:b4:23:5e:2c: ab:44:49:f9:64:a0:67:28:e7:86:f2:f4:07:ec:0c: 71:30:f7:d4:c9:31:9f:bd:2f:68:66:86:f4:cd:79: 7c:c9:0b:04:ff:ee:05:e5:dd:d5:d0:2b:c0:fd:58: dd:22:89:d9:7a:ff:eb:a1:8a:b9:42:b2:91:61:2a: 31:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4A:56:37:2A:C2:58:86:39:93:C9:93:EC:80:48:1D:97:E9:22:3B X509v3 Authority Key Identifier: keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/J0pWNyrCWIY5k8mT7IBIHZfpIjs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.240.0/20 Signature Algorithm: sha256WithRSAEncryption 86:95:03:0f:e6:be:86:09:e5:74:cc:bd:3a:57:12:cb:0a:7a: 63:9e:d2:ff:0a:5f:ed:c0:a9:fe:01:01:a7:ef:53:b7:0b:93: 43:b8:d8:d2:14:6b:c4:9e:c9:4a:b1:e5:72:66:0c:76:06:10: 56:54:ae:18:0d:05:bc:a8:84:d8:69:6f:d9:69:78:51:fb:20: d5:65:ef:49:cd:8d:dc:64:e2:2c:79:be:11:50:68:7e:d0:85: f4:e5:7d:ec:ec:04:97:62:ae:99:31:83:a1:e6:41:22:2e:50: 30:8b:ea:0f:18:44:bc:e2:4f:40:b1:1d:f8:9c:02:0d:e2:9f: 9d:66:ca:02:d6:05:05:8a:16:3b:d7:ea:82:51:c8:59:06:1a: b2:ea:38:bd:f5:00:69:7b:25:9f:3c:64:58:ba:69:9f:27:e1: ee:b9:2f:1b:cd:28:ce:d3:1a:09:09:68:59:ee:5d:e5:a9:24: ca:93:fb:6b:19:02:53:bc:2f:90:71:41:40:3c:86:de:9d:5c: c8:d7:c0:a5:85:a8:15:da:c6:1d:48:52:68:5a:66:44:46:82: 8f:c2:fa:ac:9e:1d:db:7b:fc:c4:cc:67:65:04:4a:50:b7:a5: 89:06:c4:8d:50:4f:f5:60:15:5d:a5:43:44:37:73:1a:07:85: 1b:14:20:bd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ5 MkJFMEFDRjk4ODdCMUE4MTkyODc1Q0ZFNzMyMjM4REUzMjJBOTAeFw0yNTA4MjIw ODUxMDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3NEE1NjM3MkFDMjU4 ODYzOTkzQzk5M0VDODA0ODFEOTdFOTIyM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0t2wopRo1fn0A8kcuJbblHAvLZVFCfZ95jaP/YvYDtb4/Nya1 cGULWxqksBp++BkJpNUyBe67b2JvDM7XgmDzX0RNLd8JnlsVjyhHi5eg1WONLNoP /5UWDIKcZMzoumuUSvui02gqSmBjjcr0DSVym2wSnhKmQQ7s29uZI/23pFLu5wuw c4LMBgDPCbF4Nh5qtyzVjlTyJFzSZt5J2YJXDOWZFSBX9CMwSKd7uY4fPpWmU65j Y2YzHUYiQf+stCNeLKtESflkoGco54by9AfsDHEw99TJMZ+9L2hmhvTNeXzJCwT/ 7gXl3dXQK8D9WN0iidl6/+uhirlCspFhKjEzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJ0pWNyrCWIY5k8mT7IBIHZfpIjswHwYDVR0jBBgwFoAUHZK+Cs+Yh7GoGSh1 z+cyI43jIqkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RV L0haSy1Dcy1ZaDdHb0dTaDF6LWN5STQzaklxay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSFpLLUNzLVloN0dvR1NoMXotY3lJNDNqSXFrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RVL0owcFdOeXJDV0lZNWs4bVQ3 SUJJSFpmcElqcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT TPAwDQYJKoZIhvcNAQELBQADggEBAIaVAw/mvoYJ5XTMvTpXEssKemOe0v8KX+3A qf4BAafvU7cLk0O42NIUa8SeyUqx5XJmDHYGEFZUrhgNBbyohNhpb9lpeFH7INVl 70nNjdxk4ix5vhFQaH7QhfTlfezsBJdirpkxg6HmQSIuUDCL6g8YRLziT0CxHfic Ag3in51mygLWBQWKFjvX6oJRyFkGGrLqOL31AGl7JZ88ZFi6aZ8n4e65LxvNKM7T GgkJaFnuXeWpJMqT+2sZAlO8L5BxQUA8ht6dXMjXwKWFqBXaxh1IUmhaZkRGgo/C +qyeHdt7/MTMZ2UESlC3pYkGxI1QT/VgFV2lQ0Q3cxoHhRsUIL0= -----END CERTIFICATE-----Generated at Sun Aug 24 13:36:49 2025 by rpki-client