$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/9HplhWs0n6dH_VwegtQPjUY3Q6Q.roa File: 9HplhWs0n6dH_VwegtQPjUY3Q6Q.roa (raw, json) Hash identifier: WLlCN6MzlqkuJo1ki0ZkGurUOlOJuydjQmdfqRBljgU= Subject key identifier: F4:7A:65:85:6B:34:9F:A7:47:FD:5C:1E:82:D4:0F:8D:46:37:43:A4 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0F17 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/9HplhWs0n6dH_VwegtQPjUY3Q6Q.roa Signing time: Fri 22 Aug 2025 08:50:07 +0000 ROA not before: Fri 22 Aug 2025 08:50:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18424 IP address blocks: 121.50.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3863 (0xf17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 22 08:50:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F47A65856B349FA747FD5C1E82D40F8D463743A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:68:5d:43:63:8e:5e:9f:a4:5a:67:40:fe:05: 8a:72:4e:98:cf:c9:a0:22:c2:f9:84:80:4f:34:d6: 13:dd:e8:18:14:99:a2:a5:72:3c:1c:a0:5c:f2:4c: b8:05:93:97:06:67:43:c5:4d:29:3d:85:44:55:9e: d7:c9:68:d2:22:7d:6f:90:14:f6:89:0b:c2:d3:99: 8e:fe:d0:a6:40:37:82:1c:1d:73:b7:2b:f2:df:74: ad:ad:fd:c8:ec:e2:15:6c:a4:a9:86:1b:c7:b3:0c: 1f:f7:cf:2d:d5:90:02:4b:be:b3:c9:ef:c2:de:2c: a9:55:cb:e8:82:22:56:31:e3:f0:ef:22:61:bc:31: c5:e9:4b:8f:09:ec:7c:53:d7:cd:77:1f:d2:87:c7: 58:d9:e5:42:37:c6:bf:83:23:f3:20:50:fc:18:a6: 24:cd:39:f6:72:0b:49:3e:5f:f1:19:39:13:54:c2: d3:0c:b4:3b:18:dc:f1:1d:0a:8a:e0:17:a1:af:14: 10:1f:cc:c3:6f:42:d7:9f:ed:8b:c8:63:36:69:36: b0:32:d5:b4:a3:e9:04:f9:4b:a4:5b:81:ae:e8:58: f8:a6:43:43:85:f2:af:5a:95:8b:e0:bd:e2:4e:95: 6e:3f:60:dc:29:93:b7:51:74:48:1b:38:18:74:dc: 7d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:7A:65:85:6B:34:9F:A7:47:FD:5C:1E:82:D4:0F:8D:46:37:43:A4 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/9HplhWs0n6dH_VwegtQPjUY3Q6Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.144.0/21 Signature Algorithm: sha256WithRSAEncryption 19:40:96:c2:cc:80:d0:2e:c1:7e:d9:0e:cb:af:d1:0a:80:0f: 39:94:af:cb:c8:e5:ad:f0:0a:15:c6:5d:f0:0c:13:14:c9:54: 05:f5:4c:f0:24:de:a2:60:65:66:fb:7d:89:29:1a:3a:96:ba: 8b:1e:0b:15:ea:57:c5:81:19:0f:ed:9f:49:8e:bd:ff:76:2b: b1:a8:98:7a:20:79:67:75:86:d9:7c:54:94:c0:be:e7:e6:e9: 7b:44:83:c1:2b:65:bc:a8:60:2e:46:52:23:8c:ca:4c:37:f4: 35:6e:c3:94:9e:51:fa:35:1f:cb:c2:15:7d:f7:de:48:35:cc: 33:54:ba:a8:ba:5e:d7:1e:2d:02:4f:b5:7b:41:7f:13:26:7d: 4c:eb:9a:10:64:02:72:e0:19:fa:32:0d:db:16:2c:79:8e:8b: d8:92:6e:59:aa:83:6c:ef:50:27:d3:1e:96:0f:7b:84:dd:5e: d6:47:cc:ea:40:1e:6e:f6:c6:67:81:46:01:6d:e4:5a:ee:57: b7:2b:34:23:a6:e7:2c:bc:be:6d:96:8d:ff:ea:09:81:1c:21: 08:2e:b2:19:ae:dc:5e:0e:e5:b4:78:3c:81:db:84:50:a9:00: 45:22:ae:cf:03:48:a1:8f:2a:b0:e2:dc:fb:6f:b0:16:d2:82: 91:b5:d0:97 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDxcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTA4MjIw ODUwMDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY0N0E2NTg1NkIzNDlG QTc0N0ZENUMxRTgyRDQwRjhENDYzNzQzQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCraF1DY45en6RaZ0D+BYpyTpjPyaAiwvmEgE801hPd6BgUmaKl cjwcoFzyTLgFk5cGZ0PFTSk9hURVntfJaNIifW+QFPaJC8LTmY7+0KZAN4IcHXO3 K/LfdK2t/cjs4hVspKmGG8ezDB/3zy3VkAJLvrPJ78LeLKlVy+iCIlYx4/DvImG8 McXpS48J7HxT1813H9KHx1jZ5UI3xr+DI/MgUPwYpiTNOfZyC0k+X/EZORNUwtMM tDsY3PEdCorgF6GvFBAfzMNvQtef7YvIYzZpNrAy1bSj6QT5S6Rbga7oWPimQ0OF 8q9alYvgveJOlW4/YNwpk7dRdEgbOBh03H37AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU9HplhWs0n6dH/VwegtQPjUY3Q6QwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOLzlIcGxoV3MwbjZk SF9Wd2VndFFQalVZM1E2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN5MpAwDQYJKoZIhvcNAQELBQADggEBABlAlsLMgNAuwX7ZDsuv0QqADzmU r8vI5a3wChXGXfAMExTJVAX1TPAk3qJgZWb7fYkpGjqWuoseCxXqV8WBGQ/tn0mO vf92K7GomHogeWd1htl8VJTAvufm6XtEg8ErZbyoYC5GUiOMykw39DVuw5SeUfo1 H8vCFX333kg1zDNUuqi6XtceLQJPtXtBfxMmfUzrmhBkAnLgGfoyDdsWLHmOi9iS blmqg2zvUCfTHpYPe4TdXtZHzOpAHm72xmeBRgFt5FruV7crNCOm5yy8vm2Wjf/q CYEcIQgushmu3F4O5bR4PIHbhFCpAEUirs8DSKGPKrDi3PtvsBbSgpG10Jc= -----END CERTIFICATE-----Generated at Sun Aug 24 07:43:53 2025 by rpki-client