$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/YRHxiXt805LQZ1d8Y2knw4hnN54.roa File: YRHxiXt805LQZ1d8Y2knw4hnN54.roa (raw, json) Hash identifier: NISqLBuTIae3loWvUIDNUzIZtFP30DLGraPTFixxuSo= Subject key identifier: 61:11:F1:89:7B:7C:D3:92:D0:67:57:7C:63:69:27:C3:88:67:37:9E Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1465 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/YRHxiXt805LQZ1d8Y2knw4hnN54.roa Signing time: Fri 22 Aug 2025 08:51:29 +0000 ROA not before: Fri 22 Aug 2025 08:51:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 119.75.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5221 (0x1465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 22 08:51:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6111F1897B7CD392D067577C636927C38867379E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:66:26:43:1c:90:22:46:c5:35:57:9f:4c:df: 7a:2c:e7:23:1d:31:ab:5e:95:72:a2:4f:6d:20:c5: 64:c6:1c:2d:47:06:10:fd:1b:dc:b1:97:3a:3e:2b: 99:a3:98:d1:9e:99:28:8f:5d:39:32:90:09:02:8e: 23:ba:a0:30:e4:dd:61:75:2a:2b:9d:a8:92:ec:03: 08:ac:b5:c8:59:40:b2:c0:ae:db:79:23:35:19:e4: 91:77:c4:5e:dd:14:ab:ab:96:b4:7e:3d:83:95:02: e3:82:60:5c:22:da:82:c0:ba:8d:15:ef:8b:4c:25: 1a:f3:13:b4:a1:e2:b8:6b:cc:de:65:f6:95:3e:7a: 68:c6:8f:f7:10:15:63:98:e6:6d:89:3c:3b:50:8d: 86:cb:49:5f:42:61:28:10:5f:32:5a:12:77:d6:c7: 3b:41:d1:8b:6f:86:fc:59:19:fd:6d:16:cf:86:b9: 68:da:5c:6d:a0:24:22:4a:f0:15:3b:dd:48:89:1b: ab:75:5b:92:05:8f:5f:1f:41:96:cc:e1:ed:2c:55: 3d:4f:e4:0c:9f:4f:78:1b:69:d6:3d:60:a1:a3:cc: 18:6c:45:fe:48:d0:32:21:4f:8b:22:5a:77:82:9a: 3b:2c:76:bf:1c:0a:0f:f4:b1:b7:34:2c:01:a4:4f: 8a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:11:F1:89:7B:7C:D3:92:D0:67:57:7C:63:69:27:C3:88:67:37:9E X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/YRHxiXt805LQZ1d8Y2knw4hnN54.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.75.245.0/24 Signature Algorithm: sha256WithRSAEncryption 75:44:ac:ce:f6:f0:57:7d:20:31:1e:34:3b:14:74:ad:b7:18: a5:c4:aa:c6:b6:a5:ab:6f:f1:0a:4c:6c:62:e4:32:64:6f:0a: 96:97:4c:30:b2:14:80:22:dc:5f:8e:03:c6:8c:9e:3f:72:7f: c8:21:c9:db:83:f5:ba:dc:48:95:c2:b8:79:8b:90:9b:8c:91: bb:c3:a3:1c:c7:e4:a0:3f:55:c6:85:0e:ca:04:51:d0:d3:72: cf:78:9e:79:92:4a:50:0d:76:da:3f:13:43:1c:2a:2a:a5:44: 3c:57:2d:42:26:db:b0:7b:94:d3:83:88:92:d1:83:8c:4a:d8: f3:d7:1c:69:8b:d9:3a:16:46:35:81:2d:4a:74:68:b4:f0:7f: 7b:52:08:47:82:da:0b:51:ef:3d:58:26:4d:0b:c8:fd:7d:2f: 72:58:76:d9:36:e4:7c:d9:33:3e:58:c7:00:f1:ca:96:b1:46: b0:73:05:cd:cd:5d:e8:5b:c4:ac:29:2e:21:04:53:0f:2c:62: 54:06:b6:66:20:58:ad:97:ff:2f:c3:0c:6e:4d:bc:87:35:d2: 1f:b7:bf:0b:38:5e:6c:87:bd:d7:d8:47:87:e7:c8:b3:48:9c: 12:bb:8f:c6:cc:68:bf:a0:1a:f8:d8:2b:ef:f7:f2:be:41:60: 7c:e1:30:74 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFGUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA4MjIw ODUxMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYxMTFGMTg5N0I3Q0Qz OTJEMDY3NTc3QzYzNjkyN0MzODg2NzM3OUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXZiZDHJAiRsU1V59M33os5yMdMatelXKiT20gxWTGHC1HBhD9 G9yxlzo+K5mjmNGemSiPXTkykAkCjiO6oDDk3WF1KiudqJLsAwistchZQLLArtt5 IzUZ5JF3xF7dFKurlrR+PYOVAuOCYFwi2oLAuo0V74tMJRrzE7Sh4rhrzN5l9pU+ emjGj/cQFWOY5m2JPDtQjYbLSV9CYSgQXzJaEnfWxztB0YtvhvxZGf1tFs+GuWja XG2gJCJK8BU73UiJG6t1W5IFj18fQZbM4e0sVT1P5AyfT3gbadY9YKGjzBhsRf5I 0DIhT4siWneCmjssdr8cCg/0sbc0LAGkT4qDAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUYRHxiXt805LQZ1d8Y2knw4hnN54wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9ZUkh4aVh0ODA1TFFaMWQ4WTJr bnc0aG5ONTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd0v1 MA0GCSqGSIb3DQEBCwUAA4IBAQB1RKzO9vBXfSAxHjQ7FHSttxilxKrGtqWrb/EK TGxi5DJkbwqWl0wwshSAItxfjgPGjJ4/cn/IIcnbg/W63EiVwrh5i5CbjJG7w6Mc x+SgP1XGhQ7KBFHQ03LPeJ55kkpQDXbaPxNDHCoqpUQ8Vy1CJtuwe5TTg4iS0YOM Stjz1xxpi9k6FkY1gS1KdGi08H97UghHgtoLUe89WCZNC8j9fS9yWHbZNuR82TM+ WMcA8cqWsUawcwXNzV3oW8SsKS4hBFMPLGJUBrZmIFitl/8vwwxuTbyHNdIft78L OF5sh73X2EeH58izSJwSu4/GzGi/oBr42Cvv9/K+QWB84TB0 -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:19 2025 by rpki-client