$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/DPYuqdj9R3UZhJ7PXnqrKX-qpB0.roa File: DPYuqdj9R3UZhJ7PXnqrKX-qpB0.roa (raw, json) Hash identifier: +yE7LoVPL8tJY9d8qyhaeFemxBORI9luFIdti1Fkzrg= Subject key identifier: 0C:F6:2E:A9:D8:FD:47:75:19:84:9E:CF:5E:7A:AB:29:7F:AA:A4:1D Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0DE6 Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/DPYuqdj9R3UZhJ7PXnqrKX-qpB0.roa Signing time: Fri 22 Aug 2025 09:03:56 +0000 ROA not before: Fri 22 Aug 2025 09:03:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 202.12.76.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3558 (0xde6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 22 09:03:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0CF62EA9D8FD477519849ECF5E7AAB297FAAA41D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4e:cf:99:e2:78:12:71:90:2b:d4:74:3e:e5: b8:b8:83:92:8f:e8:d6:7b:9d:2c:61:3c:f7:65:67: 2f:c1:be:1e:15:42:1e:80:52:dc:92:97:8d:43:90: 5e:a4:ce:82:09:a7:97:9e:32:6d:ce:56:ce:b3:58: cb:a6:84:70:fc:cf:bc:8e:f2:17:6b:60:4f:d9:9a: 88:9a:bc:79:f8:80:71:fa:27:c1:02:e5:92:81:b5: c6:aa:6b:c4:76:d6:7f:f1:21:f7:b6:bf:ec:af:fe: f4:0c:8c:19:49:a9:30:5a:1c:81:c7:f0:c4:b4:ae: 1c:ee:4e:de:7a:04:3e:a9:f4:9e:ff:b8:1b:5a:2a: 53:1e:cb:49:16:54:06:5f:57:ff:73:66:f5:49:89: 18:e0:86:dc:db:59:b9:b6:64:e4:a2:2a:0c:fd:d1: c6:e0:77:8d:12:f9:de:17:81:1c:db:5b:00:fa:5d: da:26:7b:d2:d7:e8:74:4a:58:7c:9f:ce:10:52:ba: c7:7f:58:1e:67:d4:64:45:66:9e:8d:e4:f6:33:33: bf:ec:4d:4b:21:0a:33:75:ac:66:2a:a9:65:53:19: 7e:db:59:d9:8c:f5:76:81:ad:ff:a8:d9:b7:fb:26: 01:af:8c:7a:5e:e5:d0:70:bc:8a:b2:cc:ab:f5:80: f8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F6:2E:A9:D8:FD:47:75:19:84:9E:CF:5E:7A:AB:29:7F:AA:A4:1D X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/DPYuqdj9R3UZhJ7PXnqrKX-qpB0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.12.76.0/22 Signature Algorithm: sha256WithRSAEncryption 87:79:80:58:6c:c9:e9:0f:5f:c2:37:a6:b8:5a:34:1b:45:da: 15:d2:1a:bc:c5:bb:e0:9f:d3:c2:b2:19:cc:9c:b4:40:f8:0c: b1:29:74:6c:62:47:47:90:ae:00:d8:4e:87:ec:23:c7:0a:68: c2:4a:82:05:2c:b7:5e:bf:04:63:28:3a:30:e4:ca:05:f4:48: d3:7a:22:21:65:9c:c5:43:95:e2:dc:0b:b2:52:8b:60:24:86: 27:2a:d2:91:6b:67:cc:53:9e:04:f2:e5:32:dd:11:c1:3d:a6: d8:59:8e:5f:b6:b5:05:10:33:68:8c:c1:4d:e6:6d:e4:b8:85: 62:26:17:cc:04:0d:3f:5a:41:39:c8:64:de:69:78:85:9b:55: 58:c1:d2:56:1e:dd:81:dd:03:82:c1:38:f4:3c:54:ae:5d:bb: e9:79:a1:69:cd:c4:c2:8c:8a:83:61:d7:df:dd:c6:d7:3b:28: 03:ac:33:2b:b5:b1:0e:d6:cd:ba:70:76:a1:dc:a6:04:3c:ab: 8d:05:9a:76:21:08:7a:51:c5:71:31:9f:68:91:c8:9a:bf:56: 90:69:d1:35:7a:70:ac:06:8f:20:11:d0:2a:bf:aa:1f:0a:56: b6:28:6b:8f:37:06:fb:b7:06:78:bf:14:54:4e:27:04:fb:17: b6:bf:37:16 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDeYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTA4MjIw OTAzNTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBDRjYyRUE5RDhGRDQ3 NzUxOTg0OUVDRjVFN0FBQjI5N0ZBQUE0MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVTs+Z4ngScZAr1HQ+5bi4g5KP6NZ7nSxhPPdlZy/Bvh4VQh6A UtySl41DkF6kzoIJp5eeMm3OVs6zWMumhHD8z7yO8hdrYE/ZmoiavHn4gHH6J8EC 5ZKBtcaqa8R21n/xIfe2v+yv/vQMjBlJqTBaHIHH8MS0rhzuTt56BD6p9J7/uBta KlMey0kWVAZfV/9zZvVJiRjghtzbWbm2ZOSiKgz90cbgd40S+d4XgRzbWwD6Xdom e9LX6HRKWHyfzhBSusd/WB5n1GRFZp6N5PYzM7/sTUshCjN1rGYqqWVTGX7bWdmM 9XaBrf+o2bf7JgGvjHpe5dBwvIqyzKv1gPiVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUDPYuqdj9R3UZhJ7PXnqrKX+qpB0wHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9EUFl1cWRqOVIzVVpo SjdQWG5xcktYLXFwQjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCygxMMA0GCSqGSIb3DQEBCwUAA4IBAQCHeYBYbMnpD1/CN6a4WjQbRdoV0hq8 xbvgn9PCshnMnLRA+AyxKXRsYkdHkK4A2E6H7CPHCmjCSoIFLLdevwRjKDow5MoF 9EjTeiIhZZzFQ5Xi3AuyUotgJIYnKtKRa2fMU54E8uUy3RHBPabYWY5ftrUFEDNo jMFN5m3kuIViJhfMBA0/WkE5yGTeaXiFm1VYwdJWHt2B3QOCwTj0PFSuXbvpeaFp zcTCjIqDYdff3cbXOygDrDMrtbEO1s26cHah3KYEPKuNBZp2IQh6UcVxMZ9okcia v1aQadE1enCsBo8gEdAqv6ofCla2KGuPNwb7twZ4vxRUTicE+xe2vzcW -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:54 2025 by rpki-client