$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/FefmRoHkKthk2qOP0uUlxK8_Uz4.roa File: FefmRoHkKthk2qOP0uUlxK8_Uz4.roa (raw, json) Hash identifier: fU3YLrGySQGsZ2C7RIluXw9ru5NZLPq5/juCOKRUJZQ= Subject key identifier: 15:E7:E6:46:81:E4:2A:D8:64:DA:A3:8F:D2:E5:25:C4:AF:3F:53:3E Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0F10 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/FefmRoHkKthk2qOP0uUlxK8_Uz4.roa Signing time: Fri 22 Aug 2025 08:50:06 +0000 ROA not before: Fri 22 Aug 2025 08:50:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 6939 IP address blocks: 2405:8700:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3856 (0xf10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 22 08:50:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=15E7E64681E42AD864DAA38FD2E525C4AF3F533E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:2e:c2:b0:f4:67:fe:c5:35:5f:b3:97:b5: 74:18:13:ed:42:f1:60:a7:2f:67:a3:2d:40:74:c3: 66:a6:29:9d:e2:5b:83:b9:d5:fe:b0:32:db:49:81: fd:68:ec:a6:4a:72:69:04:b1:92:99:9e:13:c4:47: 94:b6:59:b2:f2:fa:fa:4a:5e:0b:11:44:f1:88:31: a6:81:b8:17:cb:f8:bc:9b:4e:3f:fe:dc:aa:76:d9: af:d2:0c:a2:11:e6:c2:3b:32:3c:c7:05:88:81:b8: 29:21:c6:66:6b:ab:d1:19:51:5c:3f:6c:27:22:fd: 24:94:98:2c:85:4f:f7:5a:b5:7e:8b:e6:da:90:ff: fa:e6:84:de:0c:0a:e2:c2:33:60:be:6b:41:9a:90: 36:48:4c:87:a4:b2:f2:6f:b1:97:94:9b:59:09:99: f9:24:71:d7:b6:c6:d0:bf:91:3d:e0:84:66:a2:17: 5d:b3:99:83:f5:4c:35:72:6c:fd:c2:6d:27:23:63: 3f:7c:10:43:27:0b:b5:5d:3c:29:7d:a2:6a:d7:fb: 04:25:4a:fe:fc:18:d1:08:17:12:c7:8b:c0:e6:3b: 13:c1:1a:f2:54:65:dc:a2:81:31:17:4a:46:f9:82: cf:fb:1d:ad:f8:ab:7c:08:fd:85:4c:4b:7d:d4:40: 93:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E7:E6:46:81:E4:2A:D8:64:DA:A3:8F:D2:E5:25:C4:AF:3F:53:3E X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/FefmRoHkKthk2qOP0uUlxK8_Uz4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:8700:3000::/48 Signature Algorithm: sha256WithRSAEncryption 89:4f:26:ed:d5:3f:1a:8d:9e:3c:6b:7c:0b:c9:77:1f:e8:05: 1c:0a:a9:4c:f3:78:4d:8e:9d:25:0a:e9:0b:b0:39:0c:ac:d1: 53:74:4e:37:2b:61:c9:9b:86:1d:87:fe:76:42:c3:af:9e:5e: 52:1d:bb:cb:9c:49:b9:5d:50:f8:0d:30:6f:22:af:7b:71:97: f7:79:50:d9:df:99:ed:ed:42:c9:ae:d2:02:c0:e8:9d:22:dc: ee:ba:34:69:c3:63:9b:90:72:82:ab:56:8e:91:6b:44:2e:84: af:30:d0:c9:f7:fd:a4:4b:93:fa:91:9e:15:91:b0:b5:ae:36: cc:14:03:3b:93:5d:0b:9e:30:30:16:57:b5:7f:53:cb:cf:d6: 30:ce:56:b2:ac:80:5a:56:f3:28:7b:ae:84:df:6c:84:6f:3c: 3a:5f:de:52:aa:4d:de:11:ba:c9:d4:2b:14:3c:72:fa:19:bf: bf:16:0d:1e:1f:e1:1d:d7:0d:5b:bb:86:31:a8:6b:bd:bb:d9: 2b:e4:2d:a8:37:1c:8e:05:db:46:38:e0:e8:b8:a7:7a:4c:15: 73:73:38:f7:c5:c3:5a:b8:48:42:fa:24:2d:0f:9c:9d:79:7b: 26:e9:07:18:18:a4:fa:8e:62:83:61:4a:db:f7:b7:58:42:c9: 52:d8:24:fd -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTA4MjIw ODUwMDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE1RTdFNjQ2ODFFNDJB RDg2NERBQTM4RkQyRTUyNUM0QUYzRjUzM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7ti7CsPRn/sU1X7OXtXQYE+1C8WCnL2ejLUB0w2amKZ3iW4O5 1f6wMttJgf1o7KZKcmkEsZKZnhPER5S2WbLy+vpKXgsRRPGIMaaBuBfL+LybTj/+ 3Kp22a/SDKIR5sI7MjzHBYiBuCkhxmZrq9EZUVw/bCci/SSUmCyFT/datX6L5tqQ //rmhN4MCuLCM2C+a0GakDZITIeksvJvsZeUm1kJmfkkcde2xtC/kT3ghGaiF12z mYP1TDVybP3CbScjYz98EEMnC7VdPCl9omrX+wQlSv78GNEIFxLHi8DmOxPBGvJU ZdyigTEXSkb5gs/7Ha34q3wI/YVMS33UQJMtAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUFefmRoHkKthk2qOP0uUlxK8/Uz4wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0ZlZm1Sb0hrS3Ro azJxT1AwdVVseEs4X1V6NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkBYcAMAAwDQYJKoZIhvcNAQELBQADggEBAIlPJu3VPxqNnjxrfAvJdx/o BRwKqUzzeE2OnSUK6QuwOQys0VN0TjcrYcmbhh2H/nZCw6+eXlIdu8ucSbldUPgN MG8ir3txl/d5UNnfme3tQsmu0gLA6J0i3O66NGnDY5uQcoKrVo6Ra0QuhK8w0Mn3 /aRLk/qRnhWRsLWuNswUAzuTXQueMDAWV7V/U8vP1jDOVrKsgFpW8yh7roTfbIRv PDpf3lKqTd4RusnUKxQ8cvoZv78WDR4f4R3XDVu7hjGoa7272SvkLag3HI4F20Y4 4Oi4p3pMFXNzOPfFw1q4SEL6JC0PnJ15eybpBxgYpPqOYoNhStv3t1hCyVLYJP0= -----END CERTIFICATE-----Generated at Sun Aug 24 09:40:14 2025 by rpki-client