$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4XfHzwZwVYmznZ5CCJNJ3lOjuEI.roa File: 4XfHzwZwVYmznZ5CCJNJ3lOjuEI.roa (raw, json) Hash identifier: bR4SxyCJGeiJnHEswyFDofE+8/L6j5PhW5a8nMPotCE= Subject key identifier: E1:77:C7:CF:06:70:55:89:B3:9D:9E:42:08:93:49:DE:53:A3:B8:42 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1491 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4XfHzwZwVYmznZ5CCJNJ3lOjuEI.roa Signing time: Tue 16 Sep 2025 07:17:24 +0000 ROA not before: Tue 16 Sep 2025 07:17:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 101.101.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5265 (0x1491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Sep 16 07:17:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E177C7CF06705589B39D9E42089349DE53A3B842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cc:ad:47:89:79:b7:fb:5e:ff:d0:2e:ae:f2: 05:54:d0:c2:a4:d0:7d:fb:d8:43:bf:90:86:ca:72: 6c:85:08:77:21:10:3a:1e:7a:4d:8e:b9:6a:91:d3: aa:25:91:61:42:6f:16:62:32:09:94:40:09:e2:d6: bb:15:09:36:f4:da:53:d5:0c:8c:52:38:c4:b3:61: aa:dd:ff:45:0e:a7:03:8c:60:a3:75:66:58:9d:2c: 45:6c:3d:57:91:73:a4:07:e2:ef:98:d2:c0:3f:9f: f6:d8:3d:ee:e1:ff:67:70:50:45:2e:78:02:99:64: 2f:68:ae:55:8d:16:8c:8b:92:d9:49:b2:db:87:fc: 7a:fd:5c:a6:d6:68:f5:0a:83:8e:87:d3:85:79:86: 3a:a9:2d:72:b6:a3:b6:37:dd:4b:7e:61:cf:90:be: 31:66:96:e2:af:8a:29:9e:5a:78:98:10:48:a8:a6: 59:a7:89:02:b2:91:7d:6a:2f:5f:7e:05:57:fb:03: 95:1c:36:c3:b5:a2:d2:6a:70:14:b2:20:c1:98:fe: 57:cf:70:31:c9:12:be:77:b3:7f:73:f6:55:5a:68: 45:ad:fc:f9:fd:1d:c4:70:8a:12:c3:dc:73:70:2b: 31:2e:68:8c:00:7a:7e:49:7d:b6:25:18:74:8c:8b: 23:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:77:C7:CF:06:70:55:89:B3:9D:9E:42:08:93:49:DE:53:A3:B8:42 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4XfHzwZwVYmznZ5CCJNJ3lOjuEI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.101.101.0/24 Signature Algorithm: sha256WithRSAEncryption aa:30:6e:ca:93:a4:dd:94:1e:e3:99:c3:f4:fd:19:44:85:23: 5a:05:59:19:c4:d1:6e:41:cc:59:3e:0e:fc:b3:b5:2d:75:8d: cc:6d:b7:c3:fb:84:eb:30:56:08:98:e9:f9:99:01:89:c9:40: 0d:a8:2c:24:4a:a1:75:50:a0:2a:ea:f4:40:6f:a2:5f:87:92: 9c:3d:cb:ba:1c:bf:0a:ab:79:f0:03:a9:ed:21:ae:80:27:e8: 9a:e8:bb:04:48:7e:26:ae:7f:d9:40:f7:39:e8:6a:1e:a6:92: d7:b6:43:e1:26:27:98:38:2d:cc:05:b1:3a:f5:f0:c8:e8:b2: 9c:bd:c0:5d:7b:8f:55:ae:8a:4d:ef:df:c1:db:4a:28:eb:bb: ca:8b:03:43:af:0a:b1:23:63:53:a7:10:00:13:55:39:a0:dc: 48:2a:27:24:4d:a8:66:91:c6:89:e6:bb:03:2e:e8:41:f6:04: a4:d0:fd:4d:e1:08:63:13:02:38:dd:59:52:26:3b:9d:e2:8a: 28:dc:fb:17:fa:85:c9:00:6b:ca:ab:5a:f0:98:fd:7b:3e:46: 80:62:4c:0b:6d:a9:a9:26:37:17:75:5a:4b:24:a3:ea:3b:e4: e9:c1:66:5d:59:b2:1d:26:67:6d:16:e8:43:be:52:0c:ab:ec: ad:3c:c7:b3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFJEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA5MTYw NzE3MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUxNzdDN0NGMDY3MDU1 ODlCMzlEOUU0MjA4OTM0OURFNTNBM0I4NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8zK1HiXm3+17/0C6u8gVU0MKk0H372EO/kIbKcmyFCHchEDoe ek2OuWqR06olkWFCbxZiMgmUQAni1rsVCTb02lPVDIxSOMSzYard/0UOpwOMYKN1 ZlidLEVsPVeRc6QH4u+Y0sA/n/bYPe7h/2dwUEUueAKZZC9orlWNFoyLktlJstuH /Hr9XKbWaPUKg46H04V5hjqpLXK2o7Y33Ut+Yc+QvjFmluKviimeWniYEEioplmn iQKykX1qL19+BVf7A5UcNsO1otJqcBSyIMGY/lfPcDHJEr53s39z9lVaaEWt/Pn9 HcRwihLD3HNwKzEuaIwAen5JfbYlGHSMiyPpAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU4XfHzwZwVYmznZ5CCJNJ3lOjuEIwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy80WGZIendad1ZZbXpuWjVDQ0pO SjNsT2p1RUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWVl MA0GCSqGSIb3DQEBCwUAA4IBAQCqMG7Kk6TdlB7jmcP0/RlEhSNaBVkZxNFuQcxZ Pg78s7UtdY3MbbfD+4TrMFYImOn5mQGJyUANqCwkSqF1UKAq6vRAb6Jfh5KcPcu6 HL8Kq3nwA6ntIa6AJ+ia6LsESH4mrn/ZQPc56GoeppLXtkPhJieYOC3MBbE69fDI 6LKcvcBde49VropN79/B20oo67vKiwNDrwqxI2NTpxAAE1U5oNxIKickTahmkcaJ 5rsDLuhB9gSk0P1N4QhjEwI43VlSJjud4ooo3PsX+oXJAGvKq1rwmP17PkaAYkwL bampJjcXdVpLJKPqO+TpwWZdWbIdJmdtFuhDvlIMq+ytPMez -----END CERTIFICATE-----Generated at Mon Oct 20 19:50:57 2025 by rpki-client