$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/Zd9HEDXuw6WMlR73XrXIRaMrdgg.roa File: Zd9HEDXuw6WMlR73XrXIRaMrdgg.roa (raw, json) Hash identifier: SXUr2IlVNq15G3U1XCSGqtUdNd4BZFV/EoNMr9V5x+s= Subject key identifier: 65:DF:47:10:35:EE:C3:A5:8C:95:1E:F7:5E:B5:C8:45:A3:2B:76:08 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0DEA Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/Zd9HEDXuw6WMlR73XrXIRaMrdgg.roa Signing time: Fri 22 Aug 2025 09:03:57 +0000 ROA not before: Fri 22 Aug 2025 09:03:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 43.254.16.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3562 (0xdea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 22 09:03:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=65DF471035EEC3A58C951EF75EB5C845A32B7608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fc:02:4c:0f:8d:6e:93:8a:4d:e4:8c:90:19: b0:c9:1a:9e:5f:d4:59:1e:e4:ff:fb:60:9e:67:e0: 0c:0e:95:23:a7:67:a0:9b:9e:f4:e4:b6:55:c6:31: c2:d4:29:66:1c:4e:a9:13:20:06:75:1c:f7:f5:97: 3e:1a:f3:24:47:48:4d:16:4c:1b:f7:79:b2:a9:dd: d5:47:c5:9b:8b:e0:28:af:96:6d:4d:50:13:84:b7: 70:4f:72:d1:bb:4f:40:85:51:a6:0c:86:93:86:fd: 00:ac:8e:04:81:da:b7:da:f8:c4:22:ac:12:8a:59: d4:ec:6f:c6:5f:d8:89:2b:67:9b:59:41:33:c8:5e: 4d:3f:a7:d2:35:53:3b:61:14:cc:61:48:9b:7b:a9: 6f:63:da:fb:79:bf:2a:3c:78:e2:73:64:14:ea:34: 07:7b:fa:23:97:44:02:ba:00:27:01:7c:40:d8:2e: af:13:6d:8d:67:3d:c8:27:4f:0a:bb:aa:c7:8e:0b: 25:02:48:e4:7e:bf:10:4e:40:94:1a:bd:9e:5a:bd: 9e:6b:ef:96:a8:7e:3f:d0:77:9c:8d:6a:6c:7f:1a: 15:a1:74:97:70:50:c2:c8:22:c9:5d:34:db:4f:53: de:1a:3b:fe:85:66:36:eb:e1:d9:3f:1a:18:e7:2b: 41:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DF:47:10:35:EE:C3:A5:8C:95:1E:F7:5E:B5:C8:45:A3:2B:76:08 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/Zd9HEDXuw6WMlR73XrXIRaMrdgg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.254.16.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:e6:7e:c8:d3:23:4c:dc:fd:eb:03:1e:54:70:d7:5f:98:2d: 4a:ed:b4:32:aa:47:e6:93:cd:40:59:08:7b:4f:40:70:02:3b: a6:22:c1:c0:e4:51:5e:a7:e6:55:eb:0f:79:17:ba:ac:9e:23: 9e:a2:2e:8f:7f:f1:cf:fc:6a:43:95:57:5d:31:9b:a6:54:fc: f2:07:48:26:91:30:c4:8b:84:73:3a:e2:08:cb:33:e2:56:11: 63:1a:ea:ab:13:1c:db:13:f3:2a:7e:82:81:61:b9:23:28:45: ed:ba:53:36:56:82:76:51:da:1a:4d:58:58:82:92:1e:92:2c: 7f:d5:8a:24:fe:01:9f:27:99:c7:d8:7f:86:90:ca:78:ab:a5: 20:dd:c6:ed:3c:86:11:60:24:7a:ab:46:6b:f4:6d:eb:ef:69: 2e:25:42:9f:33:10:ff:dd:2d:af:61:67:80:a0:73:15:4e:94: a7:23:d4:53:b7:cf:f6:74:f8:55:15:29:e5:b4:39:55:6c:7c: d0:27:1b:b0:d5:d8:66:a1:73:66:12:d8:77:a1:35:20:dc:71: 9b:cb:f0:8e:8b:f7:7d:5a:3b:e0:2b:84:13:7b:4f:26:5a:6d: 58:e4:1f:c4:58:85:29:1b:f3:c5:55:c8:ba:fd:48:33:37:c8: f2:75:c1:d9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTA4MjIw OTAzNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY1REY0NzEwMzVFRUMz QTU4Qzk1MUVGNzVFQjVDODQ1QTMyQjc2MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK/AJMD41uk4pN5IyQGbDJGp5f1Fke5P/7YJ5n4AwOlSOnZ6Cb nvTktlXGMcLUKWYcTqkTIAZ1HPf1lz4a8yRHSE0WTBv3ebKp3dVHxZuL4Civlm1N UBOEt3BPctG7T0CFUaYMhpOG/QCsjgSB2rfa+MQirBKKWdTsb8Zf2IkrZ5tZQTPI Xk0/p9I1UzthFMxhSJt7qW9j2vt5vyo8eOJzZBTqNAd7+iOXRAK6ACcBfEDYLq8T bY1nPcgnTwq7qseOCyUCSOR+vxBOQJQavZ5avZ5r75aofj/Qd5yNamx/GhWhdJdw UMLIIsldNNtPU94aO/6FZjbr4dk/GhjnK0FBAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZd9HEDXuw6WMlR73XrXIRaMrdggwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9aZDlIRURYdXc2V01s UjczWHJYSVJhTXJkZ2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCK/4QMA0GCSqGSIb3DQEBCwUAA4IBAQBN5n7I0yNM3P3rAx5UcNdfmC1K7bQy qkfmk81AWQh7T0BwAjumIsHA5FFep+ZV6w95F7qsniOeoi6Pf/HP/GpDlVddMZum VPzyB0gmkTDEi4RzOuIIyzPiVhFjGuqrExzbE/MqfoKBYbkjKEXtulM2VoJ2Udoa TVhYgpIekix/1Yok/gGfJ5nH2H+GkMp4q6Ug3cbtPIYRYCR6q0Zr9G3r72kuJUKf MxD/3S2vYWeAoHMVTpSnI9RTt8/2dPhVFSnltDlVbHzQJxuw1dhmoXNmEth3oTUg 3HGby/COi/d9WjvgK4QTe08mWm1Y5B/EWIUpG/PFVci6/UgzN8jydcHZ -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:42 2025 by rpki-client