$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/BXmjuG74x7gvL1F1kxa1eQzcOjM.roa File: BXmjuG74x7gvL1F1kxa1eQzcOjM.roa (raw, json) Hash identifier: oteuy+2pLVhQ20gkma8KCenKK8nUui1cZxLcBHxCIhA= Subject key identifier: 05:79:A3:B8:6E:F8:C7:B8:2F:2F:51:75:93:16:B5:79:0C:DC:3A:33 Certificate issuer: /CN=C3FC116A3CCB105AB50DA417679B1F9C70A4BD97 Certificate serial: 049B Authority key identifier: C3:FC:11:6A:3C:CB:10:5A:B5:0D:A4:17:67:9B:1F:9C:70:A4:BD:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/BXmjuG74x7gvL1F1kxa1eQzcOjM.roa Signing time: Fri 22 Aug 2025 09:01:41 +0000 ROA not before: Fri 22 Aug 2025 09:01:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 208148 IP address blocks: 2407:a0c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/w_wRajzLEFq1DaQXZ5sfnHCkvZc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/w_wRajzLEFq1DaQXZ5sfnHCkvZc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1179 (0x49b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3FC116A3CCB105AB50DA417679B1F9C70A4BD97 Validity Not Before: Aug 22 09:01:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0579A3B86EF8C7B82F2F51759316B5790CDC3A33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:05:c1:00:df:5b:50:f6:b0:1b:8d:75:4d:11: eb:14:10:ee:86:dd:66:44:72:8c:7a:2d:b6:52:90: 26:7d:a3:e2:03:d1:03:20:8c:3d:e4:25:43:40:e7: 0d:7b:98:a3:0c:9e:be:92:53:e7:1c:41:5d:ef:9c: 86:92:5c:c7:c8:c5:ec:90:68:6b:63:90:73:a4:7a: 56:5b:f3:d0:2f:8d:67:ef:7a:f2:c9:85:cf:41:c6: 95:a8:c1:5f:91:91:d3:de:a5:81:17:10:8e:6b:d3: e9:4b:52:db:b0:ab:c3:d1:a5:a7:fc:a7:a2:6e:1c: 49:3c:76:5c:23:e3:27:6d:5d:46:94:69:f6:9e:82: f7:01:d4:92:73:0f:69:01:6b:18:46:26:95:ac:72: 9b:45:21:53:a0:ca:e8:0c:ad:8a:e9:86:8b:81:5c: aa:65:8d:83:d7:d6:7d:c8:66:b4:e3:a1:3f:1a:a5: 07:82:2d:d4:1a:ac:05:fb:ad:ee:cb:1e:8a:33:d2: a0:01:c9:01:58:c4:44:3d:9d:58:0c:4b:ea:d0:2f: 9f:aa:a1:c7:32:b6:26:a6:48:ce:2a:22:d9:ed:33: 4e:b8:4f:de:42:44:62:5d:ba:d5:57:c9:e6:d9:fd: 74:04:80:c0:62:cf:c2:54:ec:41:53:7a:20:ea:7e: c8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:79:A3:B8:6E:F8:C7:B8:2F:2F:51:75:93:16:B5:79:0C:DC:3A:33 X509v3 Authority Key Identifier: keyid:C3:FC:11:6A:3C:CB:10:5A:B5:0D:A4:17:67:9B:1F:9C:70:A4:BD:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/w_wRajzLEFq1DaQXZ5sfnHCkvZc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/BXmjuG74x7gvL1F1kxa1eQzcOjM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:a0c0::/32 Signature Algorithm: sha256WithRSAEncryption c1:fe:64:4c:13:85:3a:0a:03:c9:d6:d0:59:b1:d3:96:75:f9: a9:f8:02:0d:15:67:f8:2c:9e:a3:79:dc:b1:76:49:3b:92:20: ed:f8:97:2c:77:13:39:b9:f6:c0:35:68:1e:96:49:4c:8a:bb: 3b:34:52:17:14:b2:3d:34:25:3b:2a:37:bb:44:80:83:43:04: 69:71:cb:7a:b8:ba:d3:ec:75:ed:e8:d1:47:7b:ef:ba:dd:84: fa:22:97:15:28:10:af:bd:b0:45:04:22:1b:bf:20:22:5a:04: af:6b:5f:b6:d9:92:b4:ac:3e:f0:bc:c6:1c:04:cb:bc:3d:6a: c7:e7:6b:1c:50:af:d3:45:76:1f:de:88:e8:42:2d:5c:1d:f5: a3:7b:2f:06:70:a1:13:91:62:86:18:01:dd:62:fe:0d:81:49: ce:1e:57:1e:ce:09:14:4a:f9:8b:54:65:f3:3f:8b:48:4f:30: 5a:14:fd:ff:47:46:f1:e8:d8:93:32:a9:a6:e1:84:27:98:45: da:1f:32:75:0d:cd:e2:17:83:37:91:1f:76:8e:52:ab:52:d0: 7e:59:a4:39:0d:47:77:1b:a7:bc:95:de:ab:22:2f:8e:05:28: 23:33:8d:7f:e8:0c:3b:eb:14:aa:ff:f7:6a:e3:80:14:fe:ad: e2:8b:f9:90 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICBJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzNG QzExNkEzQ0NCMTA1QUI1MERBNDE3Njc5QjFGOUM3MEE0QkQ5NzAeFw0yNTA4MjIw OTAxNDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA1NzlBM0I4NkVGOEM3 QjgyRjJGNTE3NTkzMTZCNTc5MENEQzNBMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBBcEA31tQ9rAbjXVNEesUEO6G3WZEcox6LbZSkCZ9o+ID0QMg jD3kJUNA5w17mKMMnr6SU+ccQV3vnIaSXMfIxeyQaGtjkHOkelZb89AvjWfvevLJ hc9BxpWowV+RkdPepYEXEI5r0+lLUtuwq8PRpaf8p6JuHEk8dlwj4ydtXUaUafae gvcB1JJzD2kBaxhGJpWscptFIVOgyugMrYrphouBXKpljYPX1n3IZrTjoT8apQeC LdQarAX7re7LHooz0qAByQFYxEQ9nVgMS+rQL5+qoccytiamSM4qItntM064T95C RGJdutVXyebZ/XQEgMBiz8JU7EFTeiDqfsihAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUBXmjuG74x7gvL1F1kxa1eQzcOjMwHwYDVR0jBBgwFoAUw/wRajzLEFq1DaQX Z5sfnHCkvZcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV09MRk5F VC93X3dSYWp6TEVGcTFEYVFYWjVzZm5IQ2t2WmMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3dfd1JhanpMRUZxMURhUVhaNXNmbkhDa3ZaYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1dPTEZORVQvQlhtanVHNzR4N2d2TDFG MWt4YTFlUXpjT2pNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQHoMAwDQYJKoZIhvcNAQELBQADggEBAMH+ZEwThToKA8nW0Fmx05Z1+an4Ag0V Z/gsnqN53LF2STuSIO34lyx3Ezm59sA1aB6WSUyKuzs0UhcUsj00JTsqN7tEgIND BGlxy3q4utPsde3o0Ud777rdhPoilxUoEK+9sEUEIhu/ICJaBK9rX7bZkrSsPvC8 xhwEy7w9asfnaxxQr9NFdh/eiOhCLVwd9aN7LwZwoRORYoYYAd1i/g2BSc4eVx7O CRRK+YtUZfM/i0hPMFoU/f9HRvHo2JMyqabhhCeYRdofMnUNzeIXgzeRH3aOUqtS 0H5ZpDkNR3cbp7yV3qsiL44FKCMzjX/oDDvrFKr/92rjgBT+reKL+ZA= -----END CERTIFICATE-----Generated at Sun Aug 24 08:14:32 2025 by rpki-client