$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/tusYAgISZXKToeim5fyF0G-i5tc.roa File: tusYAgISZXKToeim5fyF0G-i5tc.roa (raw, json) Hash identifier: 0Y6gC6xa6xon06SaiNyXuUTzOdlFE4CS9cNo4kigsso= Subject key identifier: B6:EB:18:02:02:12:65:72:93:A1:E8:A6:E5:FC:85:D0:6F:A2:E6:D7 Certificate issuer: /CN=D264D19B9806023E476E039C05FDCE1376AC6C3C Certificate serial: 0197 Authority key identifier: D2:64:D1:9B:98:06:02:3E:47:6E:03:9C:05:FD:CE:13:76:AC:6C:3C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0mTRm5gGAj5HbgOcBf3OE3asbDw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/tusYAgISZXKToeim5fyF0G-i5tc.roa Signing time: Fri 19 Sep 2025 06:49:21 +0000 ROA not before: Fri 19 Sep 2025 06:49:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 148996 IP address blocks: 161.248.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/0mTRm5gGAj5HbgOcBf3OE3asbDw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/0mTRm5gGAj5HbgOcBf3OE3asbDw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0mTRm5gGAj5HbgOcBf3OE3asbDw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D264D19B9806023E476E039C05FDCE1376AC6C3C Validity Not Before: Sep 19 06:49:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B6EB18020212657293A1E8A6E5FC85D06FA2E6D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:00:7b:92:4e:18:d5:29:06:6f:f5:35:13:92: b4:bb:31:14:c3:0e:08:ab:cf:f0:c7:cb:0d:a4:b2: 76:9e:60:54:a9:c4:3a:1f:f1:97:6d:61:22:c2:ae: 48:ff:37:4a:d3:a2:cb:fa:07:c6:88:93:07:2c:b6: c8:49:11:c7:7c:6c:b2:6b:04:be:6c:e6:21:b6:47: 99:da:b4:fe:dd:41:fa:47:7a:96:45:e4:46:77:36: 18:22:e8:90:fc:d3:51:03:c8:d8:23:d5:d4:ff:80: 0f:90:96:48:78:0d:46:01:0c:31:32:10:ab:43:97: 03:7d:34:06:ff:99:bf:f9:de:63:54:02:a6:0a:f4: 60:62:0f:ae:86:8c:7e:cb:a9:b6:0b:0b:6d:9d:36: ee:bc:78:21:33:70:9e:0e:00:ad:d2:6d:8f:08:82: e1:2b:ca:76:e6:a7:d8:fb:c5:ee:41:7a:73:c2:f2: a7:5a:3f:fc:47:4b:fb:a3:3c:91:bc:ab:6f:40:c8: 40:79:b5:68:8b:21:6c:2b:e6:20:20:d8:71:7e:b8: ed:55:c0:f9:ff:b9:b8:00:de:27:b9:25:d4:17:a1: 37:e8:f9:e0:b9:64:74:04:1c:77:17:66:b0:61:de: f6:4b:c6:f9:30:cd:39:9d:e3:26:b0:97:6b:d1:32: b3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:EB:18:02:02:12:65:72:93:A1:E8:A6:E5:FC:85:D0:6F:A2:E6:D7 X509v3 Authority Key Identifier: keyid:D2:64:D1:9B:98:06:02:3E:47:6E:03:9C:05:FD:CE:13:76:AC:6C:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/0mTRm5gGAj5HbgOcBf3OE3asbDw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0mTRm5gGAj5HbgOcBf3OE3asbDw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/tusYAgISZXKToeim5fyF0G-i5tc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 161.248.144.0/24 Signature Algorithm: sha256WithRSAEncryption 36:2f:95:c1:86:50:4f:5b:4b:44:f8:56:59:47:e9:1c:f1:1e: d3:f5:39:65:15:e1:26:7b:59:86:11:e5:4b:4b:f2:24:aa:21: f8:08:80:4e:00:0f:e2:76:5b:c6:69:49:fd:77:e4:a8:e3:1d: 17:fa:fc:85:d6:c7:6a:b3:ba:6a:60:9d:67:2e:a4:83:79:f5: ba:ba:ee:62:5d:6e:0c:6b:a2:80:3d:ee:fb:51:49:1d:8c:ea: 8f:99:69:8f:da:85:b2:67:85:72:1c:f1:b3:99:ea:a0:31:e6: e3:9b:6d:9d:1e:f0:30:82:0c:cd:56:85:6a:8b:38:03:56:6d: 2f:67:06:c1:fd:de:1c:78:f6:42:af:9b:2b:12:11:85:29:23: 1c:dc:03:d5:ec:d1:20:a0:81:a5:c6:cf:d1:b0:b2:6f:7e:ad: 10:e9:47:24:4c:df:76:69:9e:98:e3:3c:e9:56:83:a8:61:74: 58:cb:9d:0d:6e:a5:ad:7b:1d:e0:99:27:43:71:77:94:1b:be: 9d:fe:b1:eb:68:3a:96:79:3d:f6:ae:a5:26:70:56:1f:ab:4a: cd:35:13:02:67:2e:4c:f3:23:b6:6b:b8:3b:bb:3c:d2:d5:11: 96:b8:a4:40:b3:20:4c:96:9b:3b:de:0b:36:90:05:d2:51:a9: d9:1a:6c:62 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDI2 NEQxOUI5ODA2MDIzRTQ3NkUwMzlDMDVGRENFMTM3NkFDNkMzQzAeFw0yNTA5MTkw NjQ5MjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI2RUIxODAyMDIxMjY1 NzI5M0ExRThBNkU1RkM4NUQwNkZBMkU2RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFAHuSThjVKQZv9TUTkrS7MRTDDgirz/DHyw2ksnaeYFSpxDof 8ZdtYSLCrkj/N0rTosv6B8aIkwcstshJEcd8bLJrBL5s5iG2R5natP7dQfpHepZF 5EZ3Nhgi6JD801EDyNgj1dT/gA+Qlkh4DUYBDDEyEKtDlwN9NAb/mb/53mNUAqYK 9GBiD66GjH7LqbYLC22dNu68eCEzcJ4OAK3SbY8IguErynbmp9j7xe5BenPC8qda P/xHS/ujPJG8q29AyEB5tWiLIWwr5iAg2HF+uO1VwPn/ubgA3ie5JdQXoTfo+eC5 ZHQEHHcXZrBh3vZLxvkwzTmd4yawl2vRMrMjAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUtusYAgISZXKToeim5fyF0G+i5tcwHwYDVR0jBBgwFoAU0mTRm5gGAj5HbgOc Bf3OE3asbDwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOR1RJ QU4vMG1UUm01Z0dBajVIYmdPY0JmM09FM2FzYkR3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS8wbVRSbTVnR0FqNUhiZ09jQmYzT0UzYXNiRHcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5HVElBTi90dXNZQWdJU1pYS1Rv ZWltNWZ5RjBHLWk1dGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAofiQMA0GCSqGSIb3DQEBCwUAA4IBAQA2L5XBhlBPW0tE+FZZR+kc8R7T9Tll FeEme1mGEeVLS/IkqiH4CIBOAA/idlvGaUn9d+So4x0X+vyF1sdqs7pqYJ1nLqSD efW6uu5iXW4Ma6KAPe77UUkdjOqPmWmP2oWyZ4VyHPGzmeqgMebjm22dHvAwggzN VoVqizgDVm0vZwbB/d4cePZCr5srEhGFKSMc3APV7NEgoIGlxs/RsLJvfq0Q6Uck TN92aZ6Y4zzpVoOoYXRYy50NbqWtex3gmSdDcXeUG76d/rHraDqWeT32rqUmcFYf q0rNNRMCZy5M8yO2a7g7uzzS1RGWuKRAsyBMlps73gs2kAXSUanZGmxi -----END CERTIFICATE-----Generated at Tue Oct 21 01:23:16 2025 by rpki-client