$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/O7HquR7xpx4Bp9aP-fgAsV4YMTY.roa File: O7HquR7xpx4Bp9aP-fgAsV4YMTY.roa (raw, json) Hash identifier: zwfuRgPxKAiB3MbTJdqsuSjTV3lkv4ymqO9ytsr/1fE= Subject key identifier: 3B:B1:EA:B9:1E:F1:A7:1E:01:A7:D6:8F:F9:F8:00:B1:5E:18:31:36 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0DE8 Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/O7HquR7xpx4Bp9aP-fgAsV4YMTY.roa Signing time: Fri 22 Aug 2025 09:03:56 +0000 ROA not before: Fri 22 Aug 2025 09:03:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 2407:7100::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3560 (0xde8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 22 09:03:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3BB1EAB91EF1A71E01A7D68FF9F800B15E183136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f7:83:d3:41:32:ca:6d:68:b9:d4:88:6b:ec: 34:21:59:66:a4:cc:cb:80:67:d3:44:ef:89:e0:ce: 97:c5:44:a1:bb:bb:67:d5:10:2e:53:57:a6:e3:6a: 0c:ba:cb:00:54:4c:00:cf:44:08:9f:41:15:29:2f: cd:ab:12:3b:bf:40:03:bc:d6:f0:53:a0:79:3c:19: 0a:e4:3c:d0:11:0a:6a:e4:06:19:10:57:ae:3f:0c: c9:11:16:ff:93:6f:00:04:d5:7d:58:71:56:71:b5: 0b:1e:4b:6b:c4:51:72:ee:d3:6f:3e:00:33:dc:14: e8:35:a1:3c:fc:e2:0f:d6:b9:9f:dd:31:79:f1:09: 39:b7:9a:ff:00:21:77:9a:0c:8e:60:eb:90:bc:55: 5e:a1:f9:f6:c6:2f:75:c1:56:ef:27:67:0d:9e:30: 81:90:3d:ff:55:5b:c3:0a:08:c3:9d:83:d6:b8:09: 15:19:35:3e:0e:28:c2:fe:51:c4:ad:9c:b6:d4:59: 9b:61:25:50:35:b6:3c:85:83:54:45:0e:3c:f1:98: 89:8b:1b:35:cc:9c:98:2c:0d:fa:90:89:bb:f3:fd: ca:ca:80:17:cc:9b:5e:67:91:b3:4e:e1:e9:f2:97: 90:bc:f6:4e:bb:3e:4d:de:12:3c:1c:54:0f:73:3e: b2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B1:EA:B9:1E:F1:A7:1E:01:A7:D6:8F:F9:F8:00:B1:5E:18:31:36 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/O7HquR7xpx4Bp9aP-fgAsV4YMTY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:7100::/32 Signature Algorithm: sha256WithRSAEncryption 43:02:25:08:89:55:ca:06:1a:ff:9c:0c:8f:f7:32:38:cd:98: 51:b2:77:e8:1d:f6:d4:81:13:8a:1e:34:18:f6:ba:ce:a7:0f: 37:29:94:20:e0:0d:86:7f:69:ac:80:0c:16:8d:1c:2c:72:35: 01:c1:a6:b6:4b:2b:e8:5c:91:e1:6d:62:7f:b8:11:f2:ea:9e: cc:ba:81:42:4c:1a:ae:7b:60:5c:bd:3a:1a:94:18:16:ed:af: ba:10:8d:91:c5:b1:a9:7e:0b:04:4e:ba:7c:0d:62:2d:01:28: 29:70:14:83:a1:6a:f1:64:39:96:af:a9:60:f7:f2:a5:18:43: e2:54:95:bf:8e:d9:ce:de:af:de:1c:c8:3c:20:2d:df:b3:5e: d6:7f:76:e3:2d:a7:7f:cf:2a:0a:3d:af:0a:48:e4:cf:b0:46: 0f:85:8e:f3:f3:83:7a:68:6f:c0:7e:72:fb:76:7a:57:8b:8a: 82:51:ea:50:4a:38:28:bf:cb:5d:e5:02:bb:41:8a:0e:69:da: 02:42:66:c4:0c:3d:8e:e0:89:67:ab:17:db:10:8f:89:2f:b4: 6a:1d:52:c7:a1:fe:89:20:7c:ba:ff:13:2b:6a:45:5b:6c:68: 8c:ef:80:bb:b4:be:83:84:17:a0:70:3c:7f:2b:37:4e:fb:69: 03:40:7f:2b -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDegwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTA4MjIw OTAzNTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNCQjFFQUI5MUVGMUE3 MUUwMUE3RDY4RkY5RjgwMEIxNUUxODMxMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDj94PTQTLKbWi51Ihr7DQhWWakzMuAZ9NE74ngzpfFRKG7u2fV EC5TV6bjagy6ywBUTADPRAifQRUpL82rEju/QAO81vBToHk8GQrkPNARCmrkBhkQ V64/DMkRFv+TbwAE1X1YcVZxtQseS2vEUXLu028+ADPcFOg1oTz84g/WuZ/dMXnx CTm3mv8AIXeaDI5g65C8VV6h+fbGL3XBVu8nZw2eMIGQPf9VW8MKCMOdg9a4CRUZ NT4OKML+UcStnLbUWZthJVA1tjyFg1RFDjzxmImLGzXMnJgsDfqQibvz/crKgBfM m15nkbNO4enyl5C89k67Pk3eEjwcVA9zPrK7AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUO7HquR7xpx4Bp9aP+fgAsV4YMTYwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9PN0hxdVI3eHB4NEJw OWFQLWZnQXNWNFlNVFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAdxADANBgkqhkiG9w0BAQsFAAOCAQEAQwIlCIlVygYa/5wMj/cyOM2YUbJ3 6B321IETih40GPa6zqcPNymUIOANhn9prIAMFo0cLHI1AcGmtksr6FyR4W1if7gR 8uqezLqBQkwarntgXL06GpQYFu2vuhCNkcWxqX4LBE66fA1iLQEoKXAUg6Fq8WQ5 lq+pYPfypRhD4lSVv47Zzt6v3hzIPCAt37Ne1n924y2nf88qCj2vCkjkz7BGD4WO 8/ODemhvwH5y+3Z6V4uKglHqUEo4KL/LXeUCu0GKDmnaAkJmxAw9juCJZ6sX2xCP iS+0ah1Sx6H+iSB8uv8TK2pFW2xojO+Au7S+g4QXoHA8fys3TvtpA0B/Kw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:22 2025 by rpki-client