$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/YpBQPg6plgShIfJVmHnuAfoMoi4.roa File: YpBQPg6plgShIfJVmHnuAfoMoi4.roa (raw, json) Hash identifier: wT9EOZafFijABTaC9N0Wnu9pNHYq0ToiJzUFI1dF3YY= Subject key identifier: 62:90:50:3E:0E:A9:96:04:A1:21:F2:55:98:79:EE:01:FA:0C:A2:2E Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0F1C Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/YpBQPg6plgShIfJVmHnuAfoMoi4.roa Signing time: Fri 22 Aug 2025 08:50:08 +0000 ROA not before: Fri 22 Aug 2025 08:50:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18424 IP address blocks: 121.50.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3868 (0xf1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 22 08:50:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6290503E0EA99604A121F2559879EE01FA0CA22E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:db:fc:a7:bf:7e:71:90:ca:e9:52:d5:a0:80: 0a:49:48:d7:90:11:69:e7:c3:78:89:2e:1e:74:73: 26:88:96:c6:37:f3:50:99:50:58:d3:79:98:54:df: cd:b4:d8:76:3e:4a:60:5b:d6:da:7e:2a:6c:c9:1f: 5d:fe:63:85:70:fb:33:56:25:d9:29:9a:ba:30:24: b9:77:29:1b:fe:26:86:70:a9:b8:c3:12:87:bb:8e: d1:40:99:42:19:42:4b:36:8d:a9:23:e1:cb:37:3d: 57:ad:74:9e:86:bb:05:14:df:64:01:c2:77:ac:94: 7b:96:10:02:79:d6:c9:42:45:8d:a6:00:22:6b:ec: 1b:6c:6c:8e:3a:0f:c7:19:5b:42:f6:b7:20:72:d7: f4:89:dd:a8:bd:61:8a:b7:fb:f2:be:d9:7b:64:98: f1:a8:de:2d:3e:1e:19:50:ec:45:01:87:a6:03:e2: e1:ef:d1:34:81:41:ae:e9:d2:35:9f:c4:10:ac:6a: d7:1c:03:f2:9c:ab:67:d0:c2:11:0a:c8:10:98:de: 9f:3e:23:15:ec:76:c5:bf:47:75:60:fa:93:c0:9d: 97:2e:75:86:c9:db:96:08:b6:5b:06:31:54:4a:cd: 66:40:54:a4:d5:8a:db:2b:2e:fd:8b:19:dc:b4:d4: df:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:90:50:3E:0E:A9:96:04:A1:21:F2:55:98:79:EE:01:FA:0C:A2:2E X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/YpBQPg6plgShIfJVmHnuAfoMoi4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.149.0/24 Signature Algorithm: sha256WithRSAEncryption 45:e8:26:ea:ef:82:08:25:c4:23:7f:f8:40:1f:59:53:37:1b: 3f:70:b9:96:6d:a4:7a:6c:f5:2c:eb:3f:ca:55:68:8c:8d:2b: 63:25:51:2a:cf:9e:f6:f0:21:d3:c3:a3:3c:b7:96:3d:69:56: d6:84:46:a8:26:00:70:52:2a:0b:18:e0:95:ca:d7:25:c6:00: 95:47:f0:c2:75:83:70:55:06:1b:19:7a:d7:ae:13:f5:d8:81: b3:e3:1f:b4:5d:b6:2c:29:ee:1e:11:77:d4:74:0d:99:7b:47: 56:27:04:1c:0c:fb:c9:1b:e0:bc:d2:a3:76:28:da:00:f5:36: 0e:67:80:57:b0:ee:32:31:f9:ef:ab:99:fc:e8:1e:0b:ef:bc: 71:0a:cf:00:40:d9:47:6e:84:7d:24:9f:45:59:4a:b9:d9:49: 56:42:06:d2:71:8e:d2:8c:40:02:96:0f:90:55:85:d9:f1:40: 78:7e:82:c8:19:ae:1b:39:c6:01:1b:97:90:9e:04:cc:0f:38: a7:5f:c7:69:60:77:9c:22:bd:6a:a3:a1:67:fa:f1:2a:18:d1: 20:25:41:62:b5:6a:72:9c:9b:85:60:0f:15:4e:09:1f:30:f0: dd:b5:6d:57:9a:c3:09:76:21:27:6e:76:01:6e:c3:7d:4b:bb: c9:9d:2b:09 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDxwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTA4MjIw ODUwMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYyOTA1MDNFMEVBOTk2 MDRBMTIxRjI1NTk4NzlFRTAxRkEwQ0EyMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDt2/ynv35xkMrpUtWggApJSNeQEWnnw3iJLh50cyaIlsY381CZ UFjTeZhU38202HY+SmBb1tp+KmzJH13+Y4Vw+zNWJdkpmrowJLl3KRv+JoZwqbjD Eoe7jtFAmUIZQks2jakj4cs3PVetdJ6GuwUU32QBwneslHuWEAJ51slCRY2mACJr 7BtsbI46D8cZW0L2tyBy1/SJ3ai9YYq3+/K+2XtkmPGo3i0+HhlQ7EUBh6YD4uHv 0TSBQa7p0jWfxBCsatccA/Kcq2fQwhEKyBCY3p8+IxXsdsW/R3Vg+pPAnZcudYbJ 25YItlsGMVRKzWZAVKTVitsrLv2LGdy01N/HAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUYpBQPg6plgShIfJVmHnuAfoMoi4wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL1lwQlFQZzZwbGdT aElmSlZtSG51QWZvTW9pNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB5MpUwDQYJKoZIhvcNAQELBQADggEBAEXoJurvggglxCN/+EAfWVM3Gz9w uZZtpHps9SzrP8pVaIyNK2MlUSrPnvbwIdPDozy3lj1pVtaERqgmAHBSKgsY4JXK 1yXGAJVH8MJ1g3BVBhsZeteuE/XYgbPjH7Rdtiwp7h4Rd9R0DZl7R1YnBBwM+8kb 4LzSo3Yo2gD1Ng5ngFew7jIx+e+rmfzoHgvvvHEKzwBA2UduhH0kn0VZSrnZSVZC BtJxjtKMQAKWD5BVhdnxQHh+gsgZrhs5xgEbl5CeBMwPOKdfx2lgd5wivWqjoWf6 8SoY0SAlQWK1anKcm4VgDxVOCR8w8N21bVeawwl2ISdudgFuw31Lu8mdKwk= -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:49 2025 by rpki-client