$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINAN/zRzF_S06gQiySRQ6wolsE3Kbklo.roa File: zRzF_S06gQiySRQ6wolsE3Kbklo.roa (raw, json) Hash identifier: 6hgjX9qE6pzWzQTkj61Jant3DgumbYqExtpuKgmBPG4= Subject key identifier: CD:1C:C5:FD:2D:3A:81:08:B2:49:14:3A:C2:89:6C:13:72:9B:92:5A Certificate issuer: /CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97 Certificate serial: 0270 Authority key identifier: 27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/zRzF_S06gQiySRQ6wolsE3Kbklo.roa Signing time: Fri 22 Aug 2025 09:03:11 +0000 ROA not before: Fri 22 Aug 2025 09:03:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 103.64.20.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 624 (0x270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97 Validity Not Before: Aug 22 09:03:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CD1CC5FD2D3A8108B249143AC2896C13729B925A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:57:3c:1e:74:92:dd:85:c9:24:ab:52:45:2a: 3d:ad:60:1b:c8:5e:49:5a:9e:90:92:4d:f4:39:30: 87:aa:77:a7:d8:5f:c3:1d:7c:48:11:d5:36:53:cf: 50:32:73:c3:19:86:7f:f6:2b:d5:59:7f:3e:35:29: 30:3d:4a:dc:ff:95:4d:2b:0d:5f:40:05:59:bd:45: 1e:91:b3:2d:9a:b6:e9:93:07:1f:c7:2f:b5:d3:1f: e0:84:c7:89:50:b4:94:46:8a:e8:a9:a1:12:7b:25: 5a:9e:f3:66:16:dd:70:d7:53:64:24:01:93:08:cc: 5d:2e:7e:65:55:bd:b4:f4:62:36:8a:2e:c4:37:82: 1a:7f:ad:62:f8:e9:78:81:23:27:f7:1c:88:c7:d7: dc:4e:36:df:ab:10:90:5d:94:e7:6c:09:a2:76:6a: 81:54:16:be:78:74:be:e0:fe:05:aa:97:51:5a:72: 51:63:ef:0f:fa:eb:6c:86:19:cd:55:57:12:b9:d4: 9a:a0:48:39:e6:e1:31:54:53:66:73:ec:ba:5d:b1: 8a:41:69:35:be:81:a1:a6:fa:61:50:7d:81:25:ca: 43:df:33:c0:bb:84:17:8b:3b:18:48:75:f5:23:5c: 52:a4:7c:91:2e:38:c3:54:cc:d9:85:a8:7a:e8:e7: 0f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:1C:C5:FD:2D:3A:81:08:B2:49:14:3A:C2:89:6C:13:72:9B:92:5A X509v3 Authority Key Identifier: keyid:27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/zRzF_S06gQiySRQ6wolsE3Kbklo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.64.20.0/23 Signature Algorithm: sha256WithRSAEncryption a6:53:2c:db:5d:51:2e:ef:15:ea:36:f0:98:6d:8a:97:e4:98: 9d:bb:6a:3b:d2:66:02:45:49:8d:f6:38:9a:be:60:34:97:bc: eb:24:0a:a3:ff:ec:d7:fd:ed:a3:e3:f4:17:b2:08:5e:e1:6f: fd:37:03:8b:b2:63:77:bf:b6:e5:81:7e:05:57:06:4e:3c:d5: f8:65:b8:58:b0:3a:ca:03:ea:d3:54:d8:fe:e5:1b:99:72:ff: 89:e6:f8:dc:21:05:28:7a:28:7e:3f:e6:6d:7e:36:72:db:a4: e9:f9:a6:af:75:08:eb:46:bb:4b:9b:0d:29:41:8d:ef:57:73: 30:e0:9b:88:46:79:18:af:c4:2e:34:a8:4f:76:2e:da:9f:43: ef:1f:1c:c3:39:d8:fd:33:79:6d:11:de:8e:b0:3d:3f:b3:5c: a5:03:2f:35:89:00:78:2a:78:59:18:d3:2a:2e:9f:46:40:ef: 7f:8f:a7:07:91:e0:02:51:ec:2e:a7:87:3b:09:2e:43:68:d1: af:b3:1f:3d:fa:30:1a:da:6a:23:21:8b:3a:82:1c:7a:06:eb: 5c:b7:6c:ed:ec:2d:3d:aa:94:fd:32:a8:41:6c:b8:38:52:c4: 21:99:9b:1a:59:c0:02:32:14:d2:14:52:c7:e9:84:45:a8:3b: ec:55:6e:d5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjdF MTY5OUM2Q0ZCRDc3MEY5NDNBNkJERjM4RjZCRjQ4MUJCMUU5NzAeFw0yNTA4MjIw OTAzMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENEMUNDNUZEMkQzQTgx MDhCMjQ5MTQzQUMyODk2QzEzNzI5QjkyNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEVzwedJLdhckkq1JFKj2tYBvIXklanpCSTfQ5MIeqd6fYX8Md fEgR1TZTz1Ayc8MZhn/2K9VZfz41KTA9Stz/lU0rDV9ABVm9RR6Rsy2atumTBx/H L7XTH+CEx4lQtJRGiuipoRJ7JVqe82YW3XDXU2QkAZMIzF0ufmVVvbT0YjaKLsQ3 ghp/rWL46XiBIyf3HIjH19xONt+rEJBdlOdsCaJ2aoFUFr54dL7g/gWql1FaclFj 7w/662yGGc1VVxK51JqgSDnm4TFUU2Zz7LpdsYpBaTW+gaGm+mFQfYElykPfM8C7 hBeLOxhIdfUjXFKkfJEuOMNUzNmFqHro5w+7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUzRzF/S06gQiySRQ6wolsE3KbklowHwYDVR0jBBgwFoAUJ+FpnGz713D5Q6a9 849r9IG7HpcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWElOQU4v Si1GcG5HejcxM0Q1UTZhOTg0OXI5SUc3SHBjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9KLUZwbkd6NzEzRDVRNmE5ODQ5cjlJRzdIcGMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9YSU5BTi96UnpGX1MwNmdRaXlTUlE2d29s c0UzS2JrbG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0AU MA0GCSqGSIb3DQEBCwUAA4IBAQCmUyzbXVEu7xXqNvCYbYqX5Jidu2o70mYCRUmN 9jiavmA0l7zrJAqj/+zX/e2j4/QXsghe4W/9NwOLsmN3v7blgX4FVwZOPNX4ZbhY sDrKA+rTVNj+5RuZcv+J5vjcIQUoeih+P+ZtfjZy26Tp+aavdQjrRrtLmw0pQY3v V3Mw4JuIRnkYr8QuNKhPdi7an0PvHxzDOdj9M3ltEd6OsD0/s1ylAy81iQB4KnhZ GNMqLp9GQO9/j6cHkeACUewup4c7CS5DaNGvsx89+jAa2mojIYs6ghx6Butct2zt 7C09qpT9MqhBbLg4UsQhmZsaWcACMhTSFFLH6YRFqDvsVW7V -----END CERTIFICATE-----Generated at Sun Aug 24 09:21:16 2025 by rpki-client