$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IVibC69SMkVPpFh5VWNu00soZzc.roa File: IVibC69SMkVPpFh5VWNu00soZzc.roa (raw, json) Hash identifier: 4mj7nxLKJP4DJj4m3Jnj5IvmoJabF77XGRvFCH7i908= Subject key identifier: 21:58:9B:0B:AF:52:32:45:4F:A4:58:79:55:63:6E:D3:4B:28:67:37 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 146E Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IVibC69SMkVPpFh5VWNu00soZzc.roa Signing time: Fri 22 Aug 2025 08:51:30 +0000 ROA not before: Fri 22 Aug 2025 08:51:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131644 IP address blocks: 182.173.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5230 (0x146e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 22 08:51:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=21589B0BAF5232454FA4587955636ED34B286737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f0:96:8e:88:27:90:05:fa:e0:be:09:1c:a8: d8:46:eb:4b:e7:94:9c:1a:79:b3:c0:62:87:17:cb: f2:62:03:c4:9e:67:8f:a9:84:57:5d:36:7b:5f:f9: 61:10:af:80:9f:07:eb:62:22:4c:4c:ee:4e:25:89: 22:0b:36:f8:3d:8a:4d:ac:eb:9d:d4:26:0c:5c:33: 5c:1b:78:70:a2:54:b3:9d:84:fb:31:4d:bb:67:27: 28:82:06:0f:10:32:ef:99:b6:32:d9:10:19:7b:48: 12:1d:20:7a:f1:a9:83:6a:eb:a8:54:5c:57:67:af: 2f:bc:75:68:98:dc:29:12:05:23:18:d2:27:bb:72: 70:06:4c:93:b2:1f:dc:ea:cc:37:9a:32:0e:09:0d: f7:4e:1e:1f:11:d5:ae:27:7b:f9:8e:8d:11:b5:1f: 3a:fe:ce:9c:9c:ce:d3:58:29:5c:ac:1e:24:20:9c: 27:33:f7:a9:fc:cf:45:f3:4a:b9:52:d9:46:15:83: e9:53:3e:5b:90:35:60:c7:aa:a3:3c:c3:be:b9:a5: 6b:dc:a4:88:9d:3c:d2:81:62:9a:d5:27:68:df:c4: 54:9e:8b:77:88:f3:50:d3:d2:54:7e:d8:f3:66:71: 7d:69:13:42:ca:03:77:ed:5f:ee:81:37:11:14:92: 34:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:58:9B:0B:AF:52:32:45:4F:A4:58:79:55:63:6E:D3:4B:28:67:37 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IVibC69SMkVPpFh5VWNu00soZzc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.173.4.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:8d:ab:f4:ff:77:aa:f5:84:99:52:ee:16:31:1a:b7:dc:0a: 78:4a:dc:52:4f:d0:66:b4:c3:3d:09:fa:4b:aa:7a:e7:0c:e4: 2e:e4:fa:e0:84:f8:81:32:40:4b:fc:b5:18:5b:36:2b:d6:d3: 8c:5e:6a:38:4a:ee:c0:59:2e:75:aa:d8:55:4f:66:9d:f0:b3: 07:a2:73:f0:95:15:49:23:03:35:7d:a5:63:6c:7f:69:bd:25: 65:bb:60:65:91:df:51:e6:3a:0a:6b:0d:14:e7:d8:e2:1b:22: 4e:e5:19:23:7b:6b:7d:18:74:02:ce:c4:2e:7a:07:e8:77:3b: 06:39:a1:cb:db:0b:b3:c8:2c:56:0a:0b:f2:0d:53:2b:7e:74: f1:11:a7:d9:d3:84:32:0b:22:c2:1a:4e:0e:e8:77:72:ac:7f: 8a:c9:75:5f:09:ac:b2:7d:cc:31:62:33:98:b2:ca:67:e3:31: b1:76:4e:67:17:65:1a:54:16:99:cb:0a:64:79:c3:cd:d2:7c: d0:16:b3:22:0e:d0:86:a9:3d:c7:4a:d7:7e:6d:d1:1e:39:30: 3a:30:25:9d:8e:a3:3e:29:79:a9:eb:6f:42:3b:a5:f4:79:16: ab:d3:38:04:d9:81:d5:48:f1:70:91:99:2a:fa:f1:49:d6:31: 75:42:78:3c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFG4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA4MjIw ODUxMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIxNTg5QjBCQUY1MjMy NDU0RkE0NTg3OTU1NjM2RUQzNEIyODY3MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx8JaOiCeQBfrgvgkcqNhG60vnlJwaebPAYocXy/JiA8SeZ4+p hFddNntf+WEQr4CfB+tiIkxM7k4liSILNvg9ik2s653UJgxcM1wbeHCiVLOdhPsx TbtnJyiCBg8QMu+ZtjLZEBl7SBIdIHrxqYNq66hUXFdnry+8dWiY3CkSBSMY0ie7 cnAGTJOyH9zqzDeaMg4JDfdOHh8R1a4ne/mOjRG1Hzr+zpycztNYKVysHiQgnCcz 96n8z0XzSrlS2UYVg+lTPluQNWDHqqM8w765pWvcpIidPNKBYprVJ2jfxFSei3eI 81DT0lR+2PNmcX1pE0LKA3ftX+6BNxEUkjQrAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUIVibC69SMkVPpFh5VWNu00soZzcwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9JVmliQzY5U01rVlBwRmg1VldO dTAwc29aemMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtq0E MA0GCSqGSIb3DQEBCwUAA4IBAQA8jav0/3eq9YSZUu4WMRq33Ap4StxST9BmtMM9 CfpLqnrnDOQu5PrghPiBMkBL/LUYWzYr1tOMXmo4Su7AWS51qthVT2ad8LMHonPw lRVJIwM1faVjbH9pvSVlu2Blkd9R5joKaw0U59jiGyJO5Rkje2t9GHQCzsQuegfo dzsGOaHL2wuzyCxWCgvyDVMrfnTxEafZ04QyCyLCGk4O6HdyrH+KyXVfCayyfcwx YjOYsspn4zGxdk5nF2UaVBaZywpkecPN0nzQFrMiDtCGqT3HStd+bdEeOTA6MCWd jqM+KXmp629CO6X0eRar0zgE2YHVSPFwkZkq+vFJ1jF1Qng8 -----END CERTIFICATE-----Generated at Sun Aug 24 06:45:56 2025 by rpki-client